$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6B73/EA809FF26ED211ECAE2EB829C4F9AE02/2qqxLpL6DuBDwg7q8r5GlqLDeHc.mft File: 2qqxLpL6DuBDwg7q8r5GlqLDeHc.mft (raw, json) Hash identifier: xPFL6Ca/sn1CnikiFgssMQe+OWfd+7f04k6mOyIIOaU= Subject key identifier: 0B:5B:39:05:28:8B:AE:1C:30:AB:8B:45:16:6C:D6:58:EF:CA:7E:91 Authority key identifier: DA:AA:B1:2E:92:FA:0E:E0:43:C2:0E:EA:F2:BE:46:96:A2:C3:78:77 Certificate issuer: /CN=A91E6B73/serialNumber=DAAAB12E92FA0EE043C20EEAF2BE4696A2C37877 Certificate serial: 0404 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2qqxLpL6DuBDwg7q8r5GlqLDeHc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6B73/EA809FF26ED211ECAE2EB829C4F9AE02/2qqxLpL6DuBDwg7q8r5GlqLDeHc.mft Manifest number: 03FD Signing time: Fri 25 Apr 2025 00:15:08 +0000 Manifest this update: Fri 25 Apr 2025 00:15:08 +0000 Manifest next update: Fri 02 May 2025 00:15:08 +0000 Files and hashes: 1: 2qqxLpL6DuBDwg7q8r5GlqLDeHc.crl (hash: BbvJT1mq1dvLQpTsHX3oCPXCB0fKd9GEqTSvua13zlY=) 2: 4F12B4886EEB11EC8699607FC4F9AE02.roa (hash: oZqrtJQlT3Kbcps4JCliN7dRzvuckdjDLLEfBNjz0jM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6B73/EA809FF26ED211ECAE2EB829C4F9AE02/2qqxLpL6DuBDwg7q8r5GlqLDeHc.crl rsync://rpki.apnic.net/member_repository/A91E6B73/EA809FF26ED211ECAE2EB829C4F9AE02/2qqxLpL6DuBDwg7q8r5GlqLDeHc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2qqxLpL6DuBDwg7q8r5GlqLDeHc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:15:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1028 (0x404) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6B73, serialNumber=DAAAB12E92FA0EE043C20EEAF2BE4696A2C37877 Validity Not Before: Apr 25 00:15:08 2025 GMT Not After : May 2 00:15:08 2025 GMT Subject: CN=680ad40c-0618 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:0d:16:e8:60:d1:f7:82:da:7c:8e:d6:be:d3: da:eb:44:ca:6d:8f:d8:e5:48:e5:d2:30:17:d6:30: 04:41:08:00:62:b6:3e:43:24:1b:13:66:68:2a:3b: 35:f6:03:2e:56:f1:a4:d7:0c:4d:f7:7a:58:f0:70: 23:21:b0:be:44:a0:9a:0b:03:d2:ff:59:87:6e:dc: 28:a8:53:9a:1c:32:16:f5:fc:85:d9:a1:5a:f5:1e: 6a:db:78:8d:c0:20:78:6f:f7:c2:32:de:d1:aa:f6: 28:11:6d:04:51:94:57:76:74:bd:03:ce:fe:a9:b2: 3b:49:72:5e:cb:bc:77:45:70:8b:60:9f:3c:a8:f9: ad:2b:f7:34:ed:41:7f:80:03:df:a9:9d:35:b8:fb: 15:94:22:8f:4a:6f:27:31:f7:18:4e:69:ee:1c:8d: b8:26:94:fb:27:92:f8:6b:80:f0:bc:85:1e:fb:3e: 3c:d1:f9:f9:2a:4e:f8:49:25:1f:6a:06:04:19:40: f0:0d:c5:b5:1d:a2:07:db:c6:12:06:3f:c6:c0:17: b2:09:0a:6d:ae:ac:bf:98:f3:ee:4f:25:b8:43:35: 68:fe:32:ee:75:26:81:44:6e:79:2b:d3:4a:b0:3f: 13:aa:db:54:eb:8c:4f:a2:68:ee:6c:34:d6:ad:49: 78:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:5B:39:05:28:8B:AE:1C:30:AB:8B:45:16:6C:D6:58:EF:CA:7E:91 X509v3 Authority Key Identifier: keyid:DA:AA:B1:2E:92:FA:0E:E0:43:C2:0E:EA:F2:BE:46:96:A2:C3:78:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6B73/EA809FF26ED211ECAE2EB829C4F9AE02/2qqxLpL6DuBDwg7q8r5GlqLDeHc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2qqxLpL6DuBDwg7q8r5GlqLDeHc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6B73/EA809FF26ED211ECAE2EB829C4F9AE02/2qqxLpL6DuBDwg7q8r5GlqLDeHc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:27:ed:d6:47:a0:b7:21:86:c1:da:19:e0:30:81:d4:0c:72: 5b:09:4a:26:b7:88:98:f7:3a:ce:1d:03:da:dc:d2:77:bc:69: 91:d2:da:60:25:d2:ee:6f:02:60:f3:84:6c:7d:bf:b2:db:cc: a7:49:17:ea:c5:0a:4f:58:17:02:1b:6e:74:bb:03:03:b5:0d: f9:7c:fa:79:be:03:71:60:f9:9b:ee:36:e1:ba:1b:ea:0c:2a: 72:b5:69:f8:98:83:92:10:63:93:ef:f3:73:02:f6:52:be:69: c4:b7:29:3a:e5:8c:9d:8f:a3:1f:54:94:98:71:8c:c7:18:d9: ba:cd:b5:80:fc:d0:67:61:a4:e0:1f:d5:85:be:71:a2:5f:73: 78:65:a1:7b:2d:f3:8a:cc:cc:cc:97:e7:3a:11:55:fd:12:a3: ab:aa:89:4e:9b:15:f8:36:c6:7b:b4:74:9d:22:58:88:b0:b6: b9:30:51:3d:a7:d1:c2:9f:86:fb:9e:53:6b:32:a2:2c:df:93: b4:ce:01:7a:b3:ec:dc:1d:7b:de:55:c2:d9:b4:77:9a:49:3b: 47:69:a5:a0:60:00:fd:4d:d5:dd:b7:77:34:61:7f:c3:3f:2e: 14:38:e0:dc:6e:83:c1:33:67:76:fb:fd:61:8d:63:b2:0e:4c: e1:57:f8:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZCNzMxMTAvBgNVBAUTKERBQUFCMTJFOTJGQTBFRTA0M0MyMEVFQUYyQkU0Njk2 QTJDMzc4NzcwHhcNMjUwNDI1MDAxNTA4WhcNMjUwNTAyMDAxNTA4WjAYMRYwFAYD VQQDEw02ODBhZDQwYy0wNjE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7A0W6GDR94LafI7WvtPa60TKbY/Y5Ujl0jAX1jAEQQgAYrY+QyQbE2ZoKjs1 9gMuVvGk1wxN93pY8HAjIbC+RKCaCwPS/1mHbtwoqFOaHDIW9fyF2aFa9R5q23iN wCB4b/fCMt7RqvYoEW0EUZRXdnS9A87+qbI7SXJey7x3RXCLYJ88qPmtK/c07UF/ gAPfqZ01uPsVlCKPSm8nMfcYTmnuHI24JpT7J5L4a4DwvIUe+z480fn5Kk74SSUf agYEGUDwDcW1HaIH28YSBj/GwBeyCQptrqy/mPPuTyW4QzVo/jLudSaBRG55K9NK sD8TqttU64xPomjubDTWrUl4fQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAtbOQUo i64cMKuLRRZs1ljvyn6RMB8GA1UdIwQYMBaAFNqqsS6S+g7gQ8IO6vK+Rpaiw3h3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkI3My9FQTgwOUZGMjZF RDIxMUVDQUUyRUI4MjlDNEY5QUUwMi8ycXF4THBMNkR1QkR3ZzdxOHI1R2xxTERl SGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJxcXhMcEw2RHVCRHdnN3E4cjVHbHFMRGVIYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkI3My9FQTgwOUZGMjZFRDIxMUVDQUUyRUI4MjlDNEY5QUUwMi8ycXF4THBMNkR1 QkR3ZzdxOHI1R2xxTERlSGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBJ+3WR6C3IYbB2hngMIHUDHJbCUomt4iY9zrOHQPa3NJ3vGmR0tpg JdLubwJg84Rsfb+y28ynSRfqxQpPWBcCG250uwMDtQ35fPp5vgNxYPmb7jbhuhvq DCpytWn4mIOSEGOT7/NzAvZSvmnEtyk65Yydj6MfVJSYcYzHGNm6zbWA/NBnYaTg H9WFvnGiX3N4ZaF7LfOKzMzMl+c6EVX9EqOrqolOmxX4NsZ7tHSdIliIsLa5MFE9 p9HCn4b7nlNrMqIs35O0zgF6s+zcHXveVcLZtHeaSTtHaaWgYAD9TdXdt3c0YX/D Py4UOODcboPBM2d2+/1hjWOyDkzhV/iK -----END CERTIFICATE-----Generated at Sat Apr 26 04:31:39 2025 by rpki-client