$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft File: q2JivH0C7BrUi3HamLc9IqNi2vA.mft (raw, json) Hash identifier: kbPAYcHcLLBwQuiySCvsiMILQ9T9KggTblEWjn/oEZI= Subject key identifier: 94:87:F0:67:93:72:5F:05:F7:6F:E2:29:6D:6F:51:6C:81:08:66:FB Authority key identifier: AB:62:62:BC:7D:02:EC:1A:D4:8B:71:DA:98:B7:3D:22:A3:62:DA:F0 Certificate issuer: /CN=A91E2454/serialNumber=AB6262BC7D02EC1AD48B71DA98B73D22A362DAF0 Certificate serial: 35E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft Manifest number: 351B Signing time: Thu 24 Apr 2025 14:28:43 +0000 Manifest this update: Thu 24 Apr 2025 14:28:43 +0000 Manifest next update: Thu 01 May 2025 14:28:43 +0000 Files and hashes: 1: q2JivH0C7BrUi3HamLc9IqNi2vA.crl (hash: aWJHOeAP1f/I7WoZWlEuBXWqMAcOe81CTcEzG9DBxj8=) 2: 4D5247EEA4C911E782854F50C4F9AE02.roa (hash: 0ae8AXI4ti/g7kjicz0FuqIQr5KuRMl+VwlLXivxPFk=) 3: 78123422B0CD11E58B55FC73C4F9AE02.roa (hash: ELjtbDvUJdRIE0OkklMq1ckQ7DJ/Pb2ipSH84CeiKCg=) 4: 7B938024B0CD11E58B55FC73C4F9AE02.roa (hash: 7ydpzn/QoSWEXvjnGZJ1ta2JwlGF9ANK2aScVlru+Tc=) 5: 7F4D30ACB0CD11E58B55FC73C4F9AE02.roa (hash: YwQuCfTd/qrlJSeamxwuUJ+BvQmXE+p3bNmQY1uUsFo=) 6: 4BF67550A4C911E782854F50C4F9AE02.roa (hash: nr6/7CG6oXudz0l6iz2yM+GZu8wisnZlSv+XVHe+5pE=) 7: 7D920C1AB0CD11E58B55FC73C4F9AE02.roa (hash: GEX+sNV+gjoBRlfbvjQXv3uXeYnL4cH1wK1KCC8jYpA=) 8: 9C193BAC08C511EDBC862E48C4F9AE02.roa (hash: 896PbO0EonUimzXSLkBsI3knk6hd3BAHtAyqYKCmbBE=) 9: 816FA9C0B07611EFA5773917C4F9AE02.roa (hash: Pe6tz3jNRPR6gXfsK8tx8lrjl8rvWTB+EFpcz7nsWc8=) 10: 4C9925F2A4C911E782854F50C4F9AE02.roa (hash: R2/SizcxlFy6GiKbWh9BC6IePjx7ZGaL4yUJEBHXwDg=) 11: 8207CCA0906C11EC86E8B711C4F9AE02.roa (hash: /ugniFpN/rGX8I1uxfmMZJryeFfYuWgB3WroPzoi6qU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.crl rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:28:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13798 (0x35e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2454, serialNumber=AB6262BC7D02EC1AD48B71DA98B73D22A362DAF0 Validity Not Before: Apr 24 14:28:43 2025 GMT Not After : May 1 14:28:43 2025 GMT Subject: CN=680a4a9b-b39c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:fd:92:cb:1d:2f:1c:02:ed:5b:c3:e2:d6:9f: 6c:97:bd:b7:0d:bb:12:2d:42:bb:fa:dc:fa:56:da: 74:53:30:69:66:1a:02:62:14:ee:ab:0d:ce:bd:07: bb:d2:28:cb:2c:35:f2:26:ca:c8:c9:6b:5e:4b:3e: 2a:aa:2b:92:9b:ba:90:f1:40:50:a3:68:57:ea:aa: d2:f1:ef:2a:12:e5:fd:8b:43:31:19:f8:d4:46:11: 12:7e:be:65:10:6c:c2:d5:3e:19:eb:a0:38:e3:cb: a4:b3:bc:38:79:6f:82:3d:3c:1d:f2:7c:1f:7f:52: 6a:a7:80:2d:35:d1:ea:04:2e:fb:93:dc:c3:b0:69: 16:52:ca:43:cc:3d:d0:e9:b4:27:e5:e3:3c:1c:e4: d6:3c:9f:a9:fe:19:83:07:47:6f:60:c3:13:f7:3c: 8b:14:31:bf:2e:45:14:b0:6d:29:76:a6:8d:e5:16: ef:f3:a8:3d:3c:c2:77:fb:d9:8f:9e:1d:c1:e8:1c: e3:5a:57:af:1d:ed:30:c6:41:fa:62:22:bf:fc:ab: 15:a8:6b:3f:0f:8a:d0:f4:01:22:2a:aa:3b:d4:f2: c6:cf:50:96:55:4c:8b:08:8e:8f:2c:99:99:c0:f9: 04:dd:93:e6:17:42:ca:90:10:9f:bb:2d:f4:49:dc: 74:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:87:F0:67:93:72:5F:05:F7:6F:E2:29:6D:6F:51:6C:81:08:66:FB X509v3 Authority Key Identifier: keyid:AB:62:62:BC:7D:02:EC:1A:D4:8B:71:DA:98:B7:3D:22:A3:62:DA:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:ac:7d:b6:4f:c8:bc:4d:38:04:49:64:1d:22:f9:a2:c2:9c: ae:54:b3:02:32:ad:b4:fc:4f:ae:36:11:fc:e2:28:f4:64:3c: 22:e2:c9:8c:50:a3:0f:18:41:bc:d9:14:5b:93:1b:97:3f:c5: 58:bc:41:b2:55:84:5d:0d:5d:8c:e8:14:fa:d1:3c:8f:3a:43: 28:be:b7:6c:2e:1c:71:c2:6c:fa:65:8a:f2:a5:49:6f:3d:24: 82:5a:33:77:0d:75:96:34:96:55:62:0e:d4:3a:24:18:d6:84: 69:39:e7:4a:04:80:ed:9d:c9:83:c1:51:be:64:72:ec:b3:21: 29:56:ea:dc:4f:50:4a:07:5d:b7:ec:bc:85:89:94:60:fa:1f: 6e:60:0e:08:1c:90:0f:39:c5:d4:2a:b3:d6:c2:f3:e0:9b:a3: 3c:9f:18:4f:3e:c0:9a:e1:74:d7:d5:51:24:ac:88:a7:34:d0: 71:7d:f0:2e:03:7c:bf:9a:bd:49:2f:d4:77:0f:d3:2f:a4:2a: d0:c2:f2:24:37:48:47:bb:1e:04:90:87:41:78:94:ec:b5:28: d4:6d:55:85:78:d5:06:c7:ed:89:99:5f:14:0a:92:23:18:b1: d0:ce:63:cd:45:54:42:11:71:eb:8c:ca:46:23:8e:bf:7a:e1: cd:9a:e8:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNeYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI0NTQxMTAvBgNVBAUTKEFCNjI2MkJDN0QwMkVDMUFENDhCNzFEQTk4QjczRDIy QTM2MkRBRjAwHhcNMjUwNDI0MTQyODQzWhcNMjUwNTAxMTQyODQzWjAYMRYwFAYD VQQDEw02ODBhNGE5Yi1iMzljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1v2Syx0vHALtW8Pi1p9sl723DbsSLUK7+tz6Vtp0UzBpZhoCYhTuqw3OvQe7 0ijLLDXyJsrIyWteSz4qqiuSm7qQ8UBQo2hX6qrS8e8qEuX9i0MxGfjURhESfr5l EGzC1T4Z66A448uks7w4eW+CPTwd8nwff1Jqp4AtNdHqBC77k9zDsGkWUspDzD3Q 6bQn5eM8HOTWPJ+p/hmDB0dvYMMT9zyLFDG/LkUUsG0pdqaN5Rbv86g9PMJ3+9mP nh3B6BzjWlevHe0wxkH6YiK//KsVqGs/D4rQ9AEiKqo71PLGz1CWVUyLCI6PLJmZ wPkE3ZPmF0LKkBCfuy30Sdx09QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJSH8GeT cl8F92/iKW1vUWyBCGb7MB8GA1UdIwQYMBaAFKtiYrx9Auwa1Itx2pi3PSKjYtrw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjQ1NC9ENEMzMEI0MjFE ODcxMUUyQTE5ODIyRTAwOEIwMkNEMi9xMkppdkgwQzdCclVpM0hhbUxjOUlxTmky dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3EySml2SDBDN0JyVWkzSGFtTGM5SXFOaTJ2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjQ1NC9ENEMzMEI0MjFEODcxMUUyQTE5ODIyRTAwOEIwMkNEMi9xMkppdkgwQzdC clVpM0hhbUxjOUlxTmkydkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBorH22T8i8TTgESWQdIvmiwpyuVLMCMq20/E+uNhH84ij0ZDwi4smM UKMPGEG82RRbkxuXP8VYvEGyVYRdDV2M6BT60TyPOkMovrdsLhxxwmz6ZYrypUlv PSSCWjN3DXWWNJZVYg7UOiQY1oRpOedKBIDtncmDwVG+ZHLssyEpVurcT1BKB123 7LyFiZRg+h9uYA4IHJAPOcXUKrPWwvPgm6M8nxhPPsCa4XTX1VEkrIinNNBxffAu A3y/mr1JL9R3D9MvpCrQwvIkN0hHux4EkIdBeJTstSjUbVWFeNUGx+2JmV8UCpIj GLHQzmPNRVRCEXHrjMpGI46/euHNmuhH -----END CERTIFICATE-----Generated at Sat Apr 26 14:10:42 2025 by rpki-client