$ rpki-client -vvf rpki.apnic.net/member_repository/A91F77FC/FED90156AF3011E9AEE13E34C4F9AE02/q6TDlMi5vRUbOziWObjG_4BwSfI.mft File: q6TDlMi5vRUbOziWObjG_4BwSfI.mft (raw, json) Hash identifier: 6tsBezdHrEEFkhRhmYLJxRYnK3thHpoA+qBqzzOnn3s= Subject key identifier: 22:81:79:E1:7F:78:91:42:2C:30:A0:45:9A:4C:2A:29:83:1E:0D:D7 Authority key identifier: AB:A4:C3:94:C8:B9:BD:15:1B:3B:38:96:39:B8:C6:FF:80:70:49:F2 Certificate issuer: /CN=A91F77FC/serialNumber=ABA4C394C8B9BD151B3B389639B8C6FF807049F2 Certificate serial: 0DEC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q6TDlMi5vRUbOziWObjG_4BwSfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F77FC/FED90156AF3011E9AEE13E34C4F9AE02/q6TDlMi5vRUbOziWObjG_4BwSfI.mft Manifest number: 0DE4 Signing time: Thu 24 Apr 2025 17:50:38 +0000 Manifest this update: Thu 24 Apr 2025 17:50:37 +0000 Manifest next update: Thu 01 May 2025 17:50:37 +0000 Files and hashes: 1: q6TDlMi5vRUbOziWObjG_4BwSfI.crl (hash: eJxQS1uwW0XPp8l3SA8ThEEQ5gaNcjL5nPFjeDp3ksY=) 2: 70783ACCAF3411E99DF2F83EC4F9AE02.roa (hash: T9i0DKwHASY+s6SnXICLRaNhTKqbk+FbtGkLEMvl4c4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F77FC/FED90156AF3011E9AEE13E34C4F9AE02/q6TDlMi5vRUbOziWObjG_4BwSfI.crl rsync://rpki.apnic.net/member_repository/A91F77FC/FED90156AF3011E9AEE13E34C4F9AE02/q6TDlMi5vRUbOziWObjG_4BwSfI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q6TDlMi5vRUbOziWObjG_4BwSfI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:50:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3564 (0xdec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F77FC, serialNumber=ABA4C394C8B9BD151B3B389639B8C6FF807049F2 Validity Not Before: Apr 24 17:50:37 2025 GMT Not After : May 1 17:50:37 2025 GMT Subject: CN=680a79ee-1e96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d7:92:0c:66:ed:f9:be:f2:e1:b1:05:8c:8f: 48:6f:4b:5b:ca:d2:c7:7e:39:89:f7:79:95:68:3a: f3:4f:e6:81:0a:a4:19:11:52:d6:68:05:76:a1:e6: de:b5:fe:c3:34:d3:ae:05:b9:7a:c8:8f:fd:38:6c: 6a:cc:9f:6a:14:6f:83:1d:8d:d1:e1:0e:15:79:56: b2:d8:1a:e4:a4:07:5a:37:92:1d:63:d4:7c:91:c7: 2b:08:c6:bd:ab:82:04:0f:c9:00:d3:f6:6b:af:7d: 05:c5:30:83:76:10:84:81:3b:fc:90:d4:67:73:ba: a0:a1:7b:05:bf:e1:53:48:d1:f1:88:25:dd:03:29: 9f:4f:d9:2a:5f:a7:fa:9c:e4:e1:55:2b:b4:8b:79: e8:5c:bb:72:f4:9a:b6:1d:22:9d:7b:67:54:9a:41: f5:f4:34:f5:d3:1c:14:37:50:4c:10:05:47:19:a7: 2f:6a:46:ee:fb:13:21:8d:ae:2f:d6:b3:f0:49:e9: 94:d6:d5:ac:bf:e6:a2:c8:f9:4e:74:5a:e4:83:1a: fe:25:96:70:4c:a9:2d:08:40:33:bb:ff:85:f8:8e: 99:c8:ae:8d:9e:76:b4:b3:1d:11:30:16:a1:18:d3: 93:c5:85:c8:23:46:4c:0f:62:d1:3f:a3:f3:4d:ca: 20:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:81:79:E1:7F:78:91:42:2C:30:A0:45:9A:4C:2A:29:83:1E:0D:D7 X509v3 Authority Key Identifier: keyid:AB:A4:C3:94:C8:B9:BD:15:1B:3B:38:96:39:B8:C6:FF:80:70:49:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F77FC/FED90156AF3011E9AEE13E34C4F9AE02/q6TDlMi5vRUbOziWObjG_4BwSfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q6TDlMi5vRUbOziWObjG_4BwSfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F77FC/FED90156AF3011E9AEE13E34C4F9AE02/q6TDlMi5vRUbOziWObjG_4BwSfI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:51:96:e4:d9:51:10:c6:2a:af:63:2f:02:63:11:d1:50:3c: 9d:84:58:4b:9c:7b:17:7f:a7:64:d1:70:04:35:d9:cc:41:94: d0:58:f8:bd:e8:c7:d5:bb:ad:5d:38:89:5a:6a:61:69:d6:70: 8a:1b:b0:ae:ef:21:ed:94:c9:62:50:a3:5c:44:8b:28:ec:60: 96:a6:f3:c4:d4:15:59:2e:78:4d:16:cc:ef:da:df:0c:0d:56: e9:ac:c1:2a:a2:ea:cf:d7:c7:84:31:4d:d2:c1:b3:f1:60:cd: e8:04:8d:40:36:ff:a4:ed:bd:a7:6a:9e:00:9d:81:86:a6:40: 6e:fc:2a:ce:c3:fa:ed:49:64:09:75:ae:37:bf:c6:00:c5:dd: be:8a:8e:19:72:f6:29:18:17:ad:61:76:82:13:71:ba:d1:e1: 13:08:46:7c:db:8a:c1:36:be:da:a9:01:b9:50:87:7c:71:82: 48:e7:7e:bd:a8:16:00:5f:45:da:10:94:52:cc:15:5d:f7:5c: 27:1b:3e:aa:af:d9:18:9c:40:70:b2:80:7f:32:7b:4b:38:a1: 8d:b4:93:c3:37:df:bd:c4:5a:24:96:76:f0:f3:b3:6e:64:d3: 79:f4:4c:d1:c3:bd:60:4f:83:b2:67:03:9c:e1:f3:a4:2c:6b: e1:4b:cd:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDewwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjc3RkMxMTAvBgNVBAUTKEFCQTRDMzk0QzhCOUJEMTUxQjNCMzg5NjM5QjhDNkZG ODA3MDQ5RjIwHhcNMjUwNDI0MTc1MDM3WhcNMjUwNTAxMTc1MDM3WjAYMRYwFAYD VQQDEw02ODBhNzllZS0xZTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqdeSDGbt+b7y4bEFjI9Ib0tbytLHfjmJ93mVaDrzT+aBCqQZEVLWaAV2oebe tf7DNNOuBbl6yI/9OGxqzJ9qFG+DHY3R4Q4VeVay2BrkpAdaN5IdY9R8kccrCMa9 q4IED8kA0/Zrr30FxTCDdhCEgTv8kNRnc7qgoXsFv+FTSNHxiCXdAymfT9kqX6f6 nOThVSu0i3noXLty9Jq2HSKde2dUmkH19DT10xwUN1BMEAVHGacvakbu+xMhja4v 1rPwSemU1tWsv+aiyPlOdFrkgxr+JZZwTKktCEAzu/+F+I6ZyK6Nnna0sx0RMBah GNOTxYXII0ZMD2LRP6PzTcog1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCKBeeF/ eJFCLDCgRZpMKimDHg3XMB8GA1UdIwQYMBaAFKukw5TIub0VGzs4ljm4xv+AcEny MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzdGQy9GRUQ5MDE1NkFG MzAxMUU5QUVFMTNFMzRDNEY5QUUwMi9xNlREbE1pNXZSVWJPemlXT2JqR180QndT ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3E2VERsTWk1dlJVYk96aVdPYmpHXzRCd1NmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzdGQy9GRUQ5MDE1NkFGMzAxMUU5QUVFMTNFMzRDNEY5QUUwMi9xNlREbE1pNXZS VWJPemlXT2JqR180QndTZkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+UZbk2VEQxiqvYy8CYxHRUDydhFhLnHsXf6dk0XAENdnMQZTQWPi9 6MfVu61dOIlaamFp1nCKG7Cu7yHtlMliUKNcRIso7GCWpvPE1BVZLnhNFszv2t8M DVbprMEqourP18eEMU3SwbPxYM3oBI1ANv+k7b2nap4AnYGGpkBu/CrOw/rtSWQJ da43v8YAxd2+io4ZcvYpGBetYXaCE3G60eETCEZ824rBNr7aqQG5UId8cYJI5369 qBYAX0XaEJRSzBVd91wnGz6qr9kYnEBwsoB/MntLOKGNtJPDN9+9xFoklnbw87Nu ZNN59EzRw71gT4OyZwOc4fOkLGvhS81q -----END CERTIFICATE-----Generated at Sat Apr 26 04:30:39 2025 by rpki-client