$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft File: QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft (raw, json) Hash identifier: N6aUzQpyf1HPbv+0BcNdSsr8ozJBLTzzJigH8Vw3qOw= Subject key identifier: CB:83:2E:6A:3C:25:29:58:35:C1:74:16:38:0D:28:6D:E4:B0:E7:74 Authority key identifier: 41:E3:80:A0:C9:FA:BC:C1:0F:8E:A3:29:63:52:E6:A7:87:8D:35:3B Certificate issuer: /CN=A91F4F4C/serialNumber=41E380A0C9FABCC10F8EA3296352E6A7878D353B Certificate serial: 07B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft Manifest number: 07AD Signing time: Thu 24 Apr 2025 21:00:51 +0000 Manifest this update: Thu 24 Apr 2025 21:00:51 +0000 Manifest next update: Thu 01 May 2025 21:00:51 +0000 Files and hashes: 1: QeOAoMn6vMEPjqMpY1Lmp4eNNTs.crl (hash: HXWKGTcbmqfnUXwxee6hH7Qx2QiVcK/lr088wphT/XU=) 2: 770BCA98F97A11EAB938DA5DC4F9AE02.roa (hash: fZBIeDUKsdRpTczFyA/tRXZpgobXbgClU9BqXFuQJMY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.crl rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1972 (0x7b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4F4C, serialNumber=41E380A0C9FABCC10F8EA3296352E6A7878D353B Validity Not Before: Apr 24 21:00:51 2025 GMT Not After : May 1 21:00:51 2025 GMT Subject: CN=680aa683-bc1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:4c:ee:ed:9e:d6:cf:85:63:66:f7:45:83:d4: b5:9c:b5:55:71:d9:5d:7a:3b:1b:71:f3:3e:9d:17: 0a:40:32:77:49:69:09:f3:13:ad:ea:31:5f:d9:f9: 0e:ff:95:cf:51:68:61:e5:a8:be:50:54:0a:f8:a1: e1:39:59:2a:18:03:15:2f:18:fe:2b:e9:bc:c0:60: 29:f5:24:84:7c:8c:b8:ab:9e:62:52:ce:5b:a9:e4: 1e:be:03:11:93:e8:03:01:03:3f:96:c6:11:e7:eb: 84:94:eb:be:a2:01:e1:6d:e6:b4:7e:b6:22:ec:5a: 07:a1:69:a9:74:1a:42:72:5a:44:e6:d6:37:a8:62: d4:46:ea:15:fc:0b:69:40:5e:4a:33:0a:1d:7e:f4: e4:d3:d8:72:a7:c8:e0:b4:10:85:c3:19:12:54:d6: 16:b9:4f:d7:78:39:98:d2:cd:54:af:d3:03:cd:ae: 60:a9:09:30:8e:26:96:21:1e:71:ab:1b:67:a7:4d: 52:f1:3b:b5:f8:aa:cb:77:e4:bb:fb:c2:ff:56:b3: 11:6a:11:f7:83:91:6e:a2:5a:e1:f0:2b:71:b8:ef: 01:6a:0a:1e:60:29:df:47:5e:bd:0a:27:c4:a5:45: ed:c5:a1:92:ed:8d:db:7d:87:fb:05:f4:84:9e:61: 25:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:83:2E:6A:3C:25:29:58:35:C1:74:16:38:0D:28:6D:E4:B0:E7:74 X509v3 Authority Key Identifier: keyid:41:E3:80:A0:C9:FA:BC:C1:0F:8E:A3:29:63:52:E6:A7:87:8D:35:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:99:02:6f:62:cb:ae:31:a9:b5:9f:9c:3b:7a:c6:cc:dd:41: 9f:b5:17:ad:31:49:a5:56:d5:07:80:fc:7a:47:48:ce:72:55: 91:3f:99:0e:eb:cb:3d:04:24:ba:37:09:22:fd:89:e0:d7:f9: a9:7a:45:a5:9c:35:dd:63:55:2b:f8:ed:37:29:60:b2:ca:1e: 4a:87:7e:10:1f:a4:54:50:40:cf:8e:69:61:85:d7:57:a1:40: f7:d4:b6:0f:0e:05:0f:44:73:42:5d:7e:4d:09:0e:e0:83:16: 81:46:d2:b9:1f:17:20:af:19:41:67:cd:76:ed:a5:7f:5c:fd: bb:1b:1e:f9:6e:75:9c:66:b3:12:68:95:b2:84:d1:eb:3c:26: 73:2b:03:dc:13:10:cd:7e:7e:d7:95:06:bd:23:8d:70:4f:a9: 61:ee:48:62:84:48:2b:63:ea:c3:7f:e8:aa:8e:4b:36:5d:bf: 75:85:12:20:b0:44:2a:15:5c:1f:6f:d3:73:0c:19:27:38:74: 66:8c:17:44:49:f9:9f:c2:5b:5d:40:f7:1a:f3:be:08:d8:11: b8:ac:40:f4:36:fe:05:18:c5:6d:97:50:7e:b9:22:74:69:5a: 26:e6:22:60:93:f6:1d:87:e0:8f:06:27:69:e4:8d:2b:e6:0e: 12:8d:1e:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRGNEMxMTAvBgNVBAUTKDQxRTM4MEEwQzlGQUJDQzEwRjhFQTMyOTYzNTJFNkE3 ODc4RDM1M0IwHhcNMjUwNDI0MjEwMDUxWhcNMjUwNTAxMjEwMDUxWjAYMRYwFAYD VQQDEw02ODBhYTY4My1iYzFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwEzu7Z7Wz4VjZvdFg9S1nLVVcdldejsbcfM+nRcKQDJ3SWkJ8xOt6jFf2fkO /5XPUWhh5ai+UFQK+KHhOVkqGAMVLxj+K+m8wGAp9SSEfIy4q55iUs5bqeQevgMR k+gDAQM/lsYR5+uElOu+ogHhbea0frYi7FoHoWmpdBpCclpE5tY3qGLURuoV/Atp QF5KMwodfvTk09hyp8jgtBCFwxkSVNYWuU/XeDmY0s1Ur9MDza5gqQkwjiaWIR5x qxtnp01S8Tu1+KrLd+S7+8L/VrMRahH3g5Fuolrh8CtxuO8BagoeYCnfR169CifE pUXtxaGS7Y3bfYf7BfSEnmEl7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMuDLmo8 JSlYNcF0FjgNKG3ksOd0MB8GA1UdIwQYMBaAFEHjgKDJ+rzBD46jKWNS5qeHjTU7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEY0Qy85NDA3NjVGQ0Y5 NzYxMUVBOTUzNEMwNDNDNEY5QUUwMi9RZU9Bb01uNnZNRVBqcU1wWTFMbXA0ZU5O VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FlT0FvTW42dk1FUGpxTXBZMUxtcDRlTk5Ucy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEY0Qy85NDA3NjVGQ0Y5NzYxMUVBOTUzNEMwNDNDNEY5QUUwMi9RZU9Bb01uNnZN RVBqcU1wWTFMbXA0ZU5OVHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVmQJvYsuuMam1n5w7esbM3UGftRetMUmlVtUHgPx6R0jOclWRP5kO 68s9BCS6Nwki/Yng1/mpekWlnDXdY1Ur+O03KWCyyh5Kh34QH6RUUEDPjmlhhddX oUD31LYPDgUPRHNCXX5NCQ7ggxaBRtK5HxcgrxlBZ8127aV/XP27Gx75bnWcZrMS aJWyhNHrPCZzKwPcExDNfn7XlQa9I41wT6lh7khihEgrY+rDf+iqjks2Xb91hRIg sEQqFVwfb9NzDBknOHRmjBdESfmfwltdQPca874I2BG4rED0Nv4FGMVtl1B+uSJ0 aVom5iJgk/Ydh+CPBidp5I0r5g4SjR7V -----END CERTIFICATE-----Generated at Sat Apr 26 17:11:39 2025 by rpki-client