$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECD98/7802048A66A411EA8FCB2B6FC4F9AE02/QcZcAPCmsH08D2sSkFZPv4OC2nM.mft File: QcZcAPCmsH08D2sSkFZPv4OC2nM.mft (raw, json) Hash identifier: u4hOcCrppULFdkrwuG6FQmBfuh8te/j6aFWIZohpy6E= Subject key identifier: 23:F8:04:6B:65:19:27:3B:1C:82:71:35:D4:17:A3:36:94:44:A9:49 Authority key identifier: 41:C6:5C:00:F0:A6:B0:7D:3C:0F:6B:12:90:56:4F:BF:83:82:DA:73 Certificate issuer: /CN=A91ECD98/serialNumber=41C65C00F0A6B07D3C0F6B1290564FBF8382DA73 Certificate serial: 0A47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QcZcAPCmsH08D2sSkFZPv4OC2nM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECD98/7802048A66A411EA8FCB2B6FC4F9AE02/QcZcAPCmsH08D2sSkFZPv4OC2nM.mft Manifest number: 0A3F Signing time: Thu 24 Apr 2025 19:37:43 +0000 Manifest this update: Thu 24 Apr 2025 19:37:42 +0000 Manifest next update: Thu 01 May 2025 19:37:42 +0000 Files and hashes: 1: QcZcAPCmsH08D2sSkFZPv4OC2nM.crl (hash: fENOvf364FJaMs5AoRrlsoq4+JDBz00QOdumoxrqpcQ=) 2: F760C48ACE0111EB980FBD53C4F9AE02.roa (hash: lEjGikQ+ii4jtTGbAoJ/KSsQ3VS5/CajiRstqwCSiwQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECD98/7802048A66A411EA8FCB2B6FC4F9AE02/QcZcAPCmsH08D2sSkFZPv4OC2nM.crl rsync://rpki.apnic.net/member_repository/A91ECD98/7802048A66A411EA8FCB2B6FC4F9AE02/QcZcAPCmsH08D2sSkFZPv4OC2nM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QcZcAPCmsH08D2sSkFZPv4OC2nM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:37:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2631 (0xa47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECD98, serialNumber=41C65C00F0A6B07D3C0F6B1290564FBF8382DA73 Validity Not Before: Apr 24 19:37:42 2025 GMT Not After : May 1 19:37:42 2025 GMT Subject: CN=680a9307-f8de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:11:34:e8:0f:f2:71:35:01:f1:91:49:3f:5b: c5:c1:b7:bd:c2:70:24:6a:98:e5:ef:09:38:77:f9: 2e:ac:60:f5:83:a4:a5:ea:ff:fd:12:16:55:79:fa: 33:ee:d1:5a:64:f3:5f:0d:b1:e2:cc:9e:83:59:dd: 91:6a:7b:02:dd:08:87:3a:8f:01:a4:63:20:e2:1e: de:e5:4d:5b:71:5e:f2:af:d3:5e:98:79:7e:f7:db: fc:ae:3a:8b:56:8f:e9:d1:ec:0c:a2:7a:44:70:31: fd:e9:93:a6:a0:ac:4d:b4:ee:c9:6f:e5:4a:8c:41: 9c:e9:e8:8f:dd:b5:1f:45:20:65:17:f1:c0:81:ff: 91:d4:e3:eb:5f:d8:a1:04:0c:32:e3:b0:d7:60:27: 93:07:ae:d6:1c:ca:e3:eb:29:09:0a:25:51:88:bb: f6:12:35:9a:b9:63:8d:c9:d3:86:0c:f4:7e:94:c1: 9d:89:86:b6:10:ef:ea:84:20:0d:8f:92:32:8e:ec: 63:35:77:43:2d:3c:a5:71:7d:eb:37:8c:96:67:33: 6c:03:1f:a4:8b:49:80:cf:6b:19:b4:e9:a6:77:9b: 19:9f:61:a2:60:f6:73:64:2c:c7:e9:33:20:22:89: e9:fe:d7:d4:ae:70:a7:c9:7a:3f:39:62:e4:33:c4: 50:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:F8:04:6B:65:19:27:3B:1C:82:71:35:D4:17:A3:36:94:44:A9:49 X509v3 Authority Key Identifier: keyid:41:C6:5C:00:F0:A6:B0:7D:3C:0F:6B:12:90:56:4F:BF:83:82:DA:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECD98/7802048A66A411EA8FCB2B6FC4F9AE02/QcZcAPCmsH08D2sSkFZPv4OC2nM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QcZcAPCmsH08D2sSkFZPv4OC2nM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECD98/7802048A66A411EA8FCB2B6FC4F9AE02/QcZcAPCmsH08D2sSkFZPv4OC2nM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:ba:04:f2:d4:4e:2a:d6:1c:aa:2d:a2:bc:2e:8e:20:1c:c2: 3f:82:7e:0f:45:32:91:58:8d:44:d3:b3:73:88:32:7a:e6:16: 5c:b0:05:80:7f:5d:79:36:1d:4b:78:28:71:d3:af:0d:f5:bd: cd:b8:cf:32:8a:b4:c5:be:fc:a4:6b:bb:a1:64:df:c8:4b:13: b6:e6:fb:62:58:ea:56:d2:55:c2:63:27:c1:d3:27:16:17:40: fa:b7:66:36:6c:c3:b7:32:21:26:a9:59:90:5c:66:b8:27:8e: 76:3d:0b:2c:2f:31:83:a6:90:81:5f:b0:4b:af:0c:43:05:9d: af:a0:53:ef:55:fa:67:5a:f0:a2:c7:1c:b0:08:fe:5d:62:13: 88:13:54:57:9c:ed:e1:ab:35:fc:20:d5:de:73:90:cb:84:cd: bd:f6:5d:83:24:d7:be:1d:d9:57:c2:47:9d:6a:be:16:ed:74: c4:b6:82:a6:5e:0b:a3:d1:20:0d:1d:57:bb:63:bf:26:0c:34: d2:92:e6:a0:7d:f0:8e:32:09:cd:4a:fc:81:02:76:fc:44:54: c8:e1:fa:ad:c8:51:6e:4a:66:75:24:ac:1a:a6:95:c7:75:5b: dc:bd:13:94:88:4a:d7:5a:b4:f2:6a:e4:12:9d:1f:af:2e:ca: 13:96:21:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNEOTgxMTAvBgNVBAUTKDQxQzY1QzAwRjBBNkIwN0QzQzBGNkIxMjkwNTY0RkJG ODM4MkRBNzMwHhcNMjUwNDI0MTkzNzQyWhcNMjUwNTAxMTkzNzQyWjAYMRYwFAYD VQQDEw02ODBhOTMwNy1mOGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwBE06A/ycTUB8ZFJP1vFwbe9wnAkapjl7wk4d/kurGD1g6Sl6v/9EhZVefoz 7tFaZPNfDbHizJ6DWd2RansC3QiHOo8BpGMg4h7e5U1bcV7yr9NemHl+99v8rjqL Vo/p0ewMonpEcDH96ZOmoKxNtO7Jb+VKjEGc6eiP3bUfRSBlF/HAgf+R1OPrX9ih BAwy47DXYCeTB67WHMrj6ykJCiVRiLv2EjWauWONydOGDPR+lMGdiYa2EO/qhCAN j5IyjuxjNXdDLTylcX3rN4yWZzNsAx+ki0mAz2sZtOmmd5sZn2GiYPZzZCzH6TMg Ionp/tfUrnCnyXo/OWLkM8RQ5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCP4BGtl GSc7HIJxNdQXozaURKlJMB8GA1UdIwQYMBaAFEHGXADwprB9PA9rEpBWT7+Dgtpz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0Q5OC83ODAyMDQ4QTY2 QTQxMUVBOEZDQjJCNkZDNEY5QUUwMi9RY1pjQVBDbXNIMDhEMnNTa0ZaUHY0T0My bk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FjWmNBUENtc0gwOEQyc1NrRlpQdjRPQzJuTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Q0Q5OC83ODAyMDQ4QTY2QTQxMUVBOEZDQjJCNkZDNEY5QUUwMi9RY1pjQVBDbXNI MDhEMnNTa0ZaUHY0T0Mybk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEugTy1E4q1hyqLaK8Lo4gHMI/gn4PRTKRWI1E07NziDJ65hZcsAWA f115Nh1LeChx068N9b3NuM8yirTFvvyka7uhZN/ISxO25vtiWOpW0lXCYyfB0ycW F0D6t2Y2bMO3MiEmqVmQXGa4J452PQssLzGDppCBX7BLrwxDBZ2voFPvVfpnWvCi xxywCP5dYhOIE1RXnO3hqzX8INXec5DLhM299l2DJNe+HdlXwkedar4W7XTEtoKm Xguj0SANHVe7Y78mDDTSkuagffCOMgnNSvyBAnb8RFTI4fqtyFFuSmZ1JKwappXH dVvcvROUiErXWrTyauQSnR+vLsoTliFM -----END CERTIFICATE-----Generated at Sat Apr 26 04:19:52 2025 by rpki-client