$ rpki-client -vvf rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.mft File: QVQG7YC02Sekeai6BCEWri0RoaY.mft (raw, json) Hash identifier: NNknuS4w4pDhBIpqoA/eOa0iId57xCDozjGUJipLY/0= Subject key identifier: 35:CA:7A:55:95:57:80:1C:6A:4B:D9:55:01:D7:D0:48:B9:1C:BF:84 Authority key identifier: 41:54:06:ED:80:B4:D9:27:A4:79:A8:BA:04:21:16:AE:2D:11:A1:A6 Certificate issuer: /CN=A91EFBA1/serialNumber=415406ED80B4D927A479A8BA042116AE2D11A1A6 Certificate serial: 18D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVQG7YC02Sekeai6BCEWri0RoaY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.mft Manifest number: 18AA Signing time: Thu 24 Apr 2025 16:31:32 +0000 Manifest this update: Thu 24 Apr 2025 16:31:31 +0000 Manifest next update: Thu 01 May 2025 16:31:31 +0000 Files and hashes: 1: QVQG7YC02Sekeai6BCEWri0RoaY.crl (hash: LXt4R8WsW0zwC1QY+tu634V9OUhEQovrsmzhQkq9uX0=) 2: 62C9C1CEE03111EEBECE581EC4F9AE02.roa (hash: /HjqJb3HeVbYY01kD6wIaTbG/Ekr2hN/Y4VOZSnVUZ8=) 3: 43E9842C185A11EF9D0C4338C4F9AE02.roa (hash: irpR0h3jscaijLl59Cc3m/8UUXHvczEBFVSowrAT4Uk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.crl rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVQG7YC02Sekeai6BCEWri0RoaY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:31:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6356 (0x18d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EFBA1, serialNumber=415406ED80B4D927A479A8BA042116AE2D11A1A6 Validity Not Before: Apr 24 16:31:31 2025 GMT Not After : May 1 16:31:31 2025 GMT Subject: CN=680a6763-af87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:5f:43:d0:9e:9a:ac:4b:4a:d3:e1:af:44:b6: bc:82:c0:93:25:23:cf:b6:c9:0f:bf:da:76:e1:4d: 9c:31:24:78:76:ee:70:5e:80:bf:e1:16:bb:14:58: 22:bb:f8:cb:36:5f:82:27:ae:c7:1d:63:3b:c8:1a: a3:fe:cc:f4:65:b2:fe:ff:9f:e6:0a:b1:ec:a9:2b: da:51:8b:b5:fe:54:6c:9f:46:04:fe:f0:d9:08:88: e3:6e:10:ac:08:16:7f:be:d5:08:d4:53:15:39:69: 63:21:04:f2:55:48:bb:fe:8d:47:a9:07:1c:88:8b: f4:cb:d8:0f:e6:20:98:ab:40:ff:3f:5d:ed:db:fa: 7d:09:bf:4b:87:fb:72:8d:e7:f1:1a:33:0d:3f:85: db:cc:54:f2:ce:af:09:91:28:cb:30:2a:a1:ca:29: 13:51:ad:9c:a3:f9:af:ab:b0:a3:5a:33:b7:81:b7: 23:ec:b4:e8:16:df:bc:47:62:c7:25:9c:06:98:1c: 1e:d9:5b:b6:f7:cf:0e:d4:31:3a:ea:3c:fc:72:fd: 8f:ce:61:f5:da:58:62:35:f6:a9:0c:b4:24:25:06: 03:94:45:83:27:e3:e7:04:44:20:d3:c2:4f:e8:c2: 85:10:e0:61:ab:95:48:62:cf:cf:8c:1f:dc:ee:eb: 40:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:CA:7A:55:95:57:80:1C:6A:4B:D9:55:01:D7:D0:48:B9:1C:BF:84 X509v3 Authority Key Identifier: keyid:41:54:06:ED:80:B4:D9:27:A4:79:A8:BA:04:21:16:AE:2D:11:A1:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVQG7YC02Sekeai6BCEWri0RoaY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:ad:04:76:e4:d3:c9:63:02:43:ad:ac:4c:5b:a6:73:c6:09: 30:28:8f:15:15:6b:80:b3:69:45:98:4a:b2:1c:52:fa:6b:d5: 2e:94:6c:11:52:ee:84:19:95:1c:d9:76:0b:a0:6a:04:9c:b6: 64:bf:87:be:55:4e:f1:a2:c0:23:ba:0b:37:9e:fb:27:17:b7: 3a:67:91:e3:6b:bc:bb:67:ab:46:b7:cb:fc:4f:02:f9:36:53: 3d:d2:cc:be:60:01:b2:73:fe:45:2c:5f:13:39:33:4e:49:5b: 44:6a:b4:e4:46:67:5b:cf:e8:35:78:86:d0:2e:a2:fd:9f:07: ca:73:18:30:d4:d3:51:ae:8e:14:6c:dc:08:f4:f1:81:49:b5: 20:7f:59:4a:9f:ff:5e:d5:97:0a:dc:bc:5e:56:04:28:f9:9f: 8e:af:0b:5c:97:ac:97:6c:fd:31:2a:77:ba:96:b6:d2:ac:31: d2:a1:2c:72:ec:49:09:88:9c:1a:96:59:8e:37:a2:4b:1e:5b: 57:80:5e:09:d8:5c:c6:1f:67:14:a5:71:07:33:b7:99:51:54: 97:9d:58:65:83:8d:49:44:2e:e2:9c:61:8f:e2:df:bb:40:80: a2:0b:cc:9c:f4:ae:38:b4:96:a9:d5:f2:78:38:51:e5:61:85: 2f:d8:e3:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGNQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUZCQTExMTAvBgNVBAUTKDQxNTQwNkVEODBCNEQ5MjdBNDc5QThCQTA0MjExNkFF MkQxMUExQTYwHhcNMjUwNDI0MTYzMTMxWhcNMjUwNTAxMTYzMTMxWjAYMRYwFAYD VQQDEw02ODBhNjc2My1hZjg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp19D0J6arEtK0+GvRLa8gsCTJSPPtskPv9p24U2cMSR4du5wXoC/4Ra7FFgi u/jLNl+CJ67HHWM7yBqj/sz0ZbL+/5/mCrHsqSvaUYu1/lRsn0YE/vDZCIjjbhCs CBZ/vtUI1FMVOWljIQTyVUi7/o1HqQcciIv0y9gP5iCYq0D/P13t2/p9Cb9Lh/ty jefxGjMNP4XbzFTyzq8JkSjLMCqhyikTUa2co/mvq7CjWjO3gbcj7LToFt+8R2LH JZwGmBwe2Vu2988O1DE66jz8cv2PzmH12lhiNfapDLQkJQYDlEWDJ+PnBEQg08JP 6MKFEOBhq5VIYs/PjB/c7utA9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDXKelWV V4AcakvZVQHX0Ei5HL+EMB8GA1UdIwQYMBaAFEFUBu2AtNknpHmougQhFq4tEaGm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRkJBMS8yQUQ1MUY0Qzk5 MDMxMUU3QTVFOTVDNkZDNEY5QUUwMi9RVlFHN1lDMDJTZWtlYWk2QkNFV3JpMFJv YVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FWUUc3WUMwMlNla2VhaTZCQ0VXcmkwUm9hWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RkJBMS8yQUQ1MUY0Qzk5MDMxMUU3QTVFOTVDNkZDNEY5QUUwMi9RVlFHN1lDMDJT ZWtlYWk2QkNFV3JpMFJvYVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjrQR25NPJYwJDraxMW6ZzxgkwKI8VFWuAs2lFmEqyHFL6a9UulGwR Uu6EGZUc2XYLoGoEnLZkv4e+VU7xosAjugs3nvsnF7c6Z5Hja7y7Z6tGt8v8TwL5 NlM90sy+YAGyc/5FLF8TOTNOSVtEarTkRmdbz+g1eIbQLqL9nwfKcxgw1NNRro4U bNwI9PGBSbUgf1lKn/9e1ZcK3LxeVgQo+Z+Orwtcl6yXbP0xKne6lrbSrDHSoSxy 7EkJiJwallmON6JLHltXgF4J2FzGH2cUpXEHM7eZUVSXnVhlg41JRC7inGGP4t+7 QICiC8yc9K44tJap1fJ4OFHlYYUv2OPw -----END CERTIFICATE-----Generated at Sat Apr 26 17:07:07 2025 by rpki-client