$ rpki-client -vvf rpki.apnic.net/member_repository/A91F33D6/83B6519683F911EBA7157777C4F9AE02/gqPk4CGF_7caxsaYwGdUjZzBhxA.mft File: gqPk4CGF_7caxsaYwGdUjZzBhxA.mft (raw, json) Hash identifier: ZHKK30aRoTzpn6sm9UUUFLv3gfDLOgpdwfInSalrUpE= Subject key identifier: CD:DA:E4:1B:AA:88:82:20:CE:D1:78:87:E2:A4:F4:F6:F8:3C:90:32 Authority key identifier: 82:A3:E4:E0:21:85:FF:B7:1A:C6:C6:98:C0:67:54:8D:9C:C1:87:10 Certificate issuer: /CN=A91F33D6/serialNumber=82A3E4E02185FFB71AC6C698C067548D9CC18710 Certificate serial: 065B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gqPk4CGF_7caxsaYwGdUjZzBhxA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F33D6/83B6519683F911EBA7157777C4F9AE02/gqPk4CGF_7caxsaYwGdUjZzBhxA.mft Manifest number: 064E Signing time: Thu 24 Apr 2025 22:19:00 +0000 Manifest this update: Thu 24 Apr 2025 22:19:00 +0000 Manifest next update: Thu 01 May 2025 22:19:00 +0000 Files and hashes: 1: gqPk4CGF_7caxsaYwGdUjZzBhxA.crl (hash: lsNZHKySfLoRn7qRPpnsBtsYBo1AqSQ8nSfOC0Xedvc=) 2: 9C53117E83FB11EBB159507AC4F9AE02.roa (hash: vkyP11luhnXeWA23/INygAjf676dmOUmLr8+nJsgHpw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F33D6/83B6519683F911EBA7157777C4F9AE02/gqPk4CGF_7caxsaYwGdUjZzBhxA.crl rsync://rpki.apnic.net/member_repository/A91F33D6/83B6519683F911EBA7157777C4F9AE02/gqPk4CGF_7caxsaYwGdUjZzBhxA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gqPk4CGF_7caxsaYwGdUjZzBhxA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:18:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1627 (0x65b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F33D6, serialNumber=82A3E4E02185FFB71AC6C698C067548D9CC18710 Validity Not Before: Apr 24 22:19:00 2025 GMT Not After : May 1 22:19:00 2025 GMT Subject: CN=680ab8d4-65fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ef:ad:28:ac:92:2e:34:fd:31:91:48:37:16: bd:42:73:7d:e3:04:18:64:26:c8:4c:d9:ea:79:00: 29:84:a3:b1:f7:c7:b3:e5:46:ab:84:26:79:05:fa: f7:f5:ac:e2:ca:8a:98:ae:13:1c:02:b1:a1:54:e8: a0:19:68:4a:b5:e1:8d:11:46:34:26:f4:d7:35:fc: 88:e8:67:d7:da:c8:1b:c2:13:65:28:75:0e:f6:19: 0d:2b:d2:ac:84:8a:d8:8f:bb:3a:00:21:a8:9d:64: 36:54:95:2a:a9:5a:9f:5e:ce:e3:7a:c1:5e:15:67: ef:84:29:eb:fe:5b:99:88:55:6e:75:bf:09:3f:41: fb:24:85:13:db:67:de:5d:fd:13:a4:12:ae:52:c1: 22:0d:bb:ac:de:d7:e7:6c:03:e4:78:29:a8:9b:e7: f6:ae:50:fc:fb:1f:10:9f:51:cc:c1:f8:d7:39:67: c4:d0:5d:51:00:40:f9:8b:05:7a:b7:85:95:f0:b2: ef:d1:3e:e8:ae:e2:26:d5:59:91:f1:3c:ec:59:02: 26:94:7c:62:4f:2f:36:58:27:8d:76:4f:5f:c5:7c: a2:03:da:c7:6e:e7:97:31:a9:61:a2:02:a1:54:c4: cc:29:63:af:67:9f:ac:85:2b:53:0d:8e:eb:66:1b: 3c:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:DA:E4:1B:AA:88:82:20:CE:D1:78:87:E2:A4:F4:F6:F8:3C:90:32 X509v3 Authority Key Identifier: keyid:82:A3:E4:E0:21:85:FF:B7:1A:C6:C6:98:C0:67:54:8D:9C:C1:87:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F33D6/83B6519683F911EBA7157777C4F9AE02/gqPk4CGF_7caxsaYwGdUjZzBhxA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gqPk4CGF_7caxsaYwGdUjZzBhxA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F33D6/83B6519683F911EBA7157777C4F9AE02/gqPk4CGF_7caxsaYwGdUjZzBhxA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:39:3c:44:55:90:6b:4a:ab:f1:35:c2:10:7c:ac:41:40:31: 3e:b8:09:ff:68:b1:55:4a:34:3b:64:c6:c6:32:a5:2e:d9:8a: 01:63:c3:6c:b9:41:0e:d9:2c:92:23:e2:00:f1:65:de:a4:06: 31:2b:1f:75:be:1a:ff:27:c1:1a:6b:1e:e5:c2:44:49:da:a8: 59:f3:a2:9f:4c:78:c1:33:01:22:29:33:5f:55:56:df:8e:ca: db:b2:2a:4f:54:7b:b8:0a:78:7a:7b:36:be:0d:ac:18:bf:da: 18:ed:76:49:3c:c9:15:82:eb:9c:e5:da:0f:03:c9:02:22:c8: 5a:89:3c:6b:df:4c:95:ea:81:a4:a0:3d:aa:d8:a9:a0:f6:35: 00:e0:2a:3e:64:32:93:00:d4:bc:1d:8a:2f:3d:40:87:db:66: 96:23:fd:32:ce:8b:2c:d5:e6:d9:b0:a8:bf:49:5b:da:8f:10: cb:7e:59:d2:a8:cb:8b:ae:fc:7a:8e:59:12:55:dd:c0:8d:f3: ca:0d:b7:8d:73:8b:7e:91:ea:97:41:9b:52:a7:80:3f:52:69: 13:25:4e:ee:e0:d9:2d:ef:87:a9:87:2f:d6:24:62:1b:ec:45: 39:5a:5b:14:b3:de:df:5d:ea:65:7e:f0:79:a6:9b:af:50:92: 91:fc:c3:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjMzRDYxMTAvBgNVBAUTKDgyQTNFNEUwMjE4NUZGQjcxQUM2QzY5OEMwNjc1NDhE OUNDMTg3MTAwHhcNMjUwNDI0MjIxOTAwWhcNMjUwNTAxMjIxOTAwWjAYMRYwFAYD VQQDEw02ODBhYjhkNC02NWZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAte+tKKySLjT9MZFINxa9QnN94wQYZCbITNnqeQAphKOx98ez5UarhCZ5Bfr3 9aziyoqYrhMcArGhVOigGWhKteGNEUY0JvTXNfyI6GfX2sgbwhNlKHUO9hkNK9Ks hIrYj7s6ACGonWQ2VJUqqVqfXs7jesFeFWfvhCnr/luZiFVudb8JP0H7JIUT22fe Xf0TpBKuUsEiDbus3tfnbAPkeCmom+f2rlD8+x8Qn1HMwfjXOWfE0F1RAED5iwV6 t4WV8LLv0T7oruIm1VmR8TzsWQImlHxiTy82WCeNdk9fxXyiA9rHbueXMalhogKh VMTMKWOvZ5+shStTDY7rZhs8LwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM3a5Buq iIIgztF4h+Kk9Pb4PJAyMB8GA1UdIwQYMBaAFIKj5OAhhf+3GsbGmMBnVI2cwYcQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzNENi84M0I2NTE5Njgz RjkxMUVCQTcxNTc3NzdDNEY5QUUwMi9ncVBrNENHRl83Y2F4c2FZd0dkVWpaekJo eEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dxUGs0Q0dGXzdjYXhzYVl3R2RValp6Qmh4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MzNENi84M0I2NTE5NjgzRjkxMUVCQTcxNTc3NzdDNEY5QUUwMi9ncVBrNENHRl83 Y2F4c2FZd0dkVWpaekJoeEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPOTxEVZBrSqvxNcIQfKxBQDE+uAn/aLFVSjQ7ZMbGMqUu2YoBY8Ns uUEO2SySI+IA8WXepAYxKx91vhr/J8Eaax7lwkRJ2qhZ86KfTHjBMwEiKTNfVVbf jsrbsipPVHu4Cnh6eza+DawYv9oY7XZJPMkVguuc5doPA8kCIshaiTxr30yV6oGk oD2q2Kmg9jUA4Co+ZDKTANS8HYovPUCH22aWI/0yzoss1ebZsKi/SVvajxDLflnS qMuLrvx6jlkSVd3AjfPKDbeNc4t+keqXQZtSp4A/UmkTJU7u4Nkt74ephy/WJGIb 7EU5WlsUs97fXeplfvB5ppuvUJKR/MPj -----END CERTIFICATE-----Generated at Sat Apr 26 12:57:45 2025 by rpki-client