$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft File: Qf4dQTWrLWdiPnYIM5hGitT6odw.mft (raw, json) Hash identifier: Prq1tEd+6WTJQyG73bWv/YcdlJrDc+wSQPVpbmsSxS0= Subject key identifier: 7D:CD:51:37:5D:78:FF:53:A7:9A:37:00:82:F9:59:EF:4C:D6:F8:22 Authority key identifier: 41:FE:1D:41:35:AB:2D:67:62:3E:76:08:33:98:46:8A:D4:FA:A1:DC Certificate issuer: /CN=A911B5D7/serialNumber=41FE1D4135AB2D67623E76083398468AD4FAA1DC Certificate serial: 1BEA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qf4dQTWrLWdiPnYIM5hGitT6odw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft Manifest number: 1BB9 Signing time: Sat 10 May 2025 16:11:33 +0000 Manifest this update: Sat 10 May 2025 16:11:33 +0000 Manifest next update: Sat 17 May 2025 16:11:33 +0000 Files and hashes: 1: Qf4dQTWrLWdiPnYIM5hGitT6odw.crl (hash: wmyvO8SlAbXyiEBPhoQT2mj5jmEpGrfTFHMuL4+zIcY=) 2: C177A6728D2011EF97C11D3CC4F9AE02.roa (hash: qqv99MidNMOt4MehbGZ8pvkQ6h/BMUNOb2r+cG35R9s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.crl rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qf4dQTWrLWdiPnYIM5hGitT6odw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 16:11:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7146 (0x1bea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5D7, serialNumber=41FE1D4135AB2D67623E76083398468AD4FAA1DC Validity Not Before: May 10 16:11:33 2025 GMT Not After : May 17 16:11:33 2025 GMT Subject: CN=681f7ab5-1957 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:9b:ce:85:6c:cd:ec:14:8a:1b:29:2e:bc:46: 64:67:c1:07:4c:2b:f6:8a:46:4d:d9:0e:a8:64:2f: cb:f4:49:d0:cd:5e:9e:3f:3f:b9:47:55:f4:12:fc: 77:5a:15:a2:42:fd:d1:6e:56:e9:68:d3:04:cf:46: a5:29:ae:90:9b:59:78:a7:e6:4d:36:ad:0d:d6:f0: 23:31:50:69:1b:70:89:62:ea:a9:38:60:f2:76:01: 93:0e:d9:b8:c2:37:fb:5d:2e:d8:4f:d5:d0:34:2d: 19:78:9e:0f:1a:d4:85:ce:64:d9:7b:90:83:15:3e: bd:64:91:11:25:70:b1:ec:6a:72:67:ce:64:ef:8d: 81:04:67:08:ec:0e:5f:d9:22:b9:6b:9b:b8:5f:f1: 22:87:b1:67:0f:02:0f:eb:da:d5:68:04:9e:9f:f1: 6b:f2:c1:7d:5a:05:6f:7e:89:78:68:69:88:cd:e7: 14:b0:19:09:91:f4:66:3f:8f:8e:42:c9:5b:88:84: 88:cc:4b:44:16:2c:98:02:75:0b:a6:68:2b:23:33: bc:dd:1b:0d:3e:dc:03:2b:b0:7b:77:a1:2e:5c:ef: 28:ff:bf:b4:b7:ae:22:3c:4b:46:a9:ec:04:d5:f7: 52:8c:67:72:83:bc:e6:2b:d0:4a:b2:4d:57:e1:54: 9e:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:CD:51:37:5D:78:FF:53:A7:9A:37:00:82:F9:59:EF:4C:D6:F8:22 X509v3 Authority Key Identifier: keyid:41:FE:1D:41:35:AB:2D:67:62:3E:76:08:33:98:46:8A:D4:FA:A1:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qf4dQTWrLWdiPnYIM5hGitT6odw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:74:8b:00:7c:17:bd:65:43:fb:fa:74:04:97:db:4f:f9:2f: f7:7d:32:a1:b5:da:d5:9a:28:e6:be:22:8b:a5:7b:4b:2d:6c: e2:b3:23:5b:32:df:e8:26:97:ee:6e:62:d6:cb:f5:5d:e3:ff: 5c:c9:e6:65:24:11:f2:0e:18:21:a7:df:6b:c1:8d:bb:46:57: 67:d6:45:23:66:5d:39:47:01:0a:8e:94:cd:a1:1a:ea:a8:08: 27:82:40:d9:41:9f:17:38:c5:04:af:c7:c5:24:be:cd:17:90: 4a:28:b7:6c:75:b2:00:b6:b0:d7:2a:97:32:8e:c2:e2:ce:17: 45:2a:0f:cf:f5:2c:9e:14:eb:c6:37:32:7d:5f:2f:15:f4:68: 40:a8:b2:f2:74:d6:13:ed:0b:e7:e6:44:67:de:75:0a:0b:6b: ab:0c:d1:bc:30:9c:f1:50:f8:59:9d:08:00:8b:a4:eb:b4:1d: ed:62:bb:5b:78:2b:ad:b4:77:b8:ee:b3:49:54:c7:f9:1a:22: e3:c9:a1:4a:40:b1:07:de:20:bc:1b:d0:83:74:35:c7:30:2d: ae:a2:c8:48:c8:8a:86:a8:be:03:40:30:e3:e8:45:1a:79:20: da:e9:a3:c6:84:48:31:5b:be:1f:ac:ec:82:80:af:3d:e8:98: 27:96:3f:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG+owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1RDcxMTAvBgNVBAUTKDQxRkUxRDQxMzVBQjJENjc2MjNFNzYwODMzOTg0NjhB RDRGQUExREMwHhcNMjUwNTEwMTYxMTMzWhcNMjUwNTE3MTYxMTMzWjAYMRYwFAYD VQQDEw02ODFmN2FiNS0xOTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtJvOhWzN7BSKGykuvEZkZ8EHTCv2ikZN2Q6oZC/L9EnQzV6ePz+5R1X0Evx3 WhWiQv3RblbpaNMEz0alKa6Qm1l4p+ZNNq0N1vAjMVBpG3CJYuqpOGDydgGTDtm4 wjf7XS7YT9XQNC0ZeJ4PGtSFzmTZe5CDFT69ZJERJXCx7GpyZ85k742BBGcI7A5f 2SK5a5u4X/Eih7FnDwIP69rVaASen/Fr8sF9WgVvfol4aGmIzecUsBkJkfRmP4+O QslbiISIzEtEFiyYAnULpmgrIzO83RsNPtwDK7B7d6EuXO8o/7+0t64iPEtGqewE 1fdSjGdyg7zmK9BKsk1X4VSeUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH3NUTdd eP9Tp5o3AIL5We9M1vgiMB8GA1UdIwQYMBaAFEH+HUE1qy1nYj52CDOYRorU+qHc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVENy8yNTg3MkJCRTAz QjQxMUU3QjgxMUFBMTRDNEY5QUUwMi9RZjRkUVRXckxXZGlQbllJTTVoR2l0VDZv ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FmNGRRVFdyTFdkaVBuWUlNNWhHaXRUNm9kdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjVENy8yNTg3MkJCRTAzQjQxMUU3QjgxMUFBMTRDNEY5QUUwMi9RZjRkUVRXckxX ZGlQbllJTTVoR2l0VDZvZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhdIsAfBe9ZUP7+nQEl9tP+S/3fTKhtdrVmijmviKLpXtLLWzisyNb Mt/oJpfubmLWy/Vd4/9cyeZlJBHyDhghp99rwY27Rldn1kUjZl05RwEKjpTNoRrq qAgngkDZQZ8XOMUEr8fFJL7NF5BKKLdsdbIAtrDXKpcyjsLizhdFKg/P9SyeFOvG NzJ9Xy8V9GhAqLLydNYT7Qvn5kRn3nUKC2urDNG8MJzxUPhZnQgAi6TrtB3tYrtb eCuttHe47rNJVMf5GiLjyaFKQLEH3iC8G9CDdDXHMC2uoshIyIqGqL4DQDDj6EUa eSDa6aPGhEgxW74frOyCgK896Jgnlj8X -----END CERTIFICATE-----Generated at Sun May 11 07:40:27 2025 by rpki-client