$ rpki-client -vvf rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.mft File: qHJCtzYn1CkjSl9UxSO7Qeu-h6o.mft (raw, json) Hash identifier: lO7ABK/6QJiGwLMBsRzaj5S2O4lUyEAZmpkI+yx9zbY= Subject key identifier: C7:40:83:9F:4C:64:32:36:37:24:A5:04:2C:6A:E2:31:59:0C:E8:9B Authority key identifier: A8:72:42:B7:36:27:D4:29:23:4A:5F:54:C5:23:BB:41:EB:BE:87:AA Certificate issuer: /CN=A911FABC/serialNumber=A87242B73627D429234A5F54C523BB41EBBE87AA Certificate serial: 01A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.mft Manifest number: 01A3 Signing time: Thu 15 May 2025 02:53:01 +0000 Manifest this update: Thu 15 May 2025 02:53:00 +0000 Manifest next update: Thu 22 May 2025 02:53:00 +0000 Files and hashes: 1: qHJCtzYn1CkjSl9UxSO7Qeu-h6o.crl (hash: WCix0OMhFl/1gLTuaNWwbz0AfLQgXU35Q+dSnahsZHg=) 2: 9BF55430C4D611EDA65E8C87C4F9AE02.roa (hash: li4OxnhOQgQRujPF67sN5Xz793LOnzHpSZGFaFwRWYE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.crl rsync://rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 02:53:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 424 (0x1a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911FABC, serialNumber=A87242B73627D429234A5F54C523BB41EBBE87AA Validity Not Before: May 15 02:53:00 2025 GMT Not After : May 22 02:53:00 2025 GMT Subject: CN=6825570d-70fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:d8:2a:ef:c3:b8:df:ae:88:3f:fb:fc:cb:e6: 43:71:86:4d:32:a6:f2:09:de:36:87:7b:bc:df:b9: 24:f2:10:e0:52:44:c9:f9:39:a3:12:7f:bc:3c:7a: c8:0d:b6:dc:ee:ba:a8:31:ef:74:d3:af:be:ec:eb: cc:16:81:7f:db:41:a5:fa:81:ea:48:a8:e1:28:81: 38:b7:85:d1:2f:d3:92:ef:64:de:00:67:63:d2:6e: 60:71:a6:b5:d3:59:9a:d4:4f:a9:aa:dd:3b:51:94: 56:a9:13:09:d5:5a:ac:b5:20:d5:3c:9b:df:9e:70: 2f:22:51:9e:8b:c3:e2:56:07:12:d9:99:54:64:49: b3:4b:0c:47:2c:78:54:55:e3:17:99:c9:e7:c8:e6: 9d:5a:a9:46:78:ca:d0:ac:90:39:b5:13:f1:40:54: d0:01:b1:5c:0b:57:25:be:d4:76:75:9e:68:30:94: 3b:9d:cb:66:83:fa:08:6c:75:78:b5:ae:ea:bd:55: f4:d5:f4:df:0d:b3:53:7f:8b:83:c5:67:a4:8f:fa: 9d:b6:0d:30:42:70:ae:c0:87:3b:48:b7:2e:3d:49: 1c:59:34:f3:9f:0e:41:3e:f0:87:69:d6:a9:e8:aa: 61:8d:fb:65:d1:a7:bc:a7:35:25:f2:b2:3e:02:67: 0c:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:40:83:9F:4C:64:32:36:37:24:A5:04:2C:6A:E2:31:59:0C:E8:9B X509v3 Authority Key Identifier: keyid:A8:72:42:B7:36:27:D4:29:23:4A:5F:54:C5:23:BB:41:EB:BE:87:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:e8:b9:7d:3e:5d:ac:49:47:66:4d:ce:15:98:e0:80:3b:86: 18:51:f4:97:29:31:92:32:a3:9c:80:5b:b7:fa:29:41:24:ca: dd:67:7c:84:7f:b1:d9:c8:5d:9e:98:e4:29:bb:fe:a4:8d:ec: 40:29:ff:a9:01:b9:ec:7c:67:5a:76:72:7d:dd:e8:84:66:62: a7:4e:3c:fc:b2:3b:f0:6b:e1:bb:1b:b0:4a:57:09:3e:7b:80: 0e:ec:85:ad:fc:02:99:e9:30:a2:42:08:c2:dc:f7:dd:7f:9e: cd:36:cf:d3:89:99:f5:a5:1e:81:ac:b7:cf:45:c0:e6:98:72: 16:d9:5d:8c:54:fe:db:91:dc:ed:77:47:09:a7:8c:58:de:24: 5e:91:09:92:c5:5b:0b:d5:e6:56:e5:50:8c:5b:05:d0:72:0a: 8d:79:e5:58:d1:e8:90:cd:ce:08:31:0d:5d:3e:48:37:6e:77: 08:14:0d:4f:da:32:55:a7:a1:92:87:10:be:ee:6f:5c:e5:93: 1a:6b:16:92:c8:55:86:9c:ea:f5:d5:b2:71:cd:a5:c2:b0:5d: 7c:61:a4:f7:70:80:4d:c5:c8:bf:9f:6f:93:ad:01:76:ef:08: 1e:f6:87:63:07:58:82:a5:a5:b0:6d:19:1b:38:0e:7c:63:ea: 2f:5f:76:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAagwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUZBQkMxMTAvBgNVBAUTKEE4NzI0MkI3MzYyN0Q0MjkyMzRBNUY1NEM1MjNCQjQx RUJCRTg3QUEwHhcNMjUwNTE1MDI1MzAwWhcNMjUwNTIyMDI1MzAwWjAYMRYwFAYD VQQDEw02ODI1NTcwZC03MGZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA69gq78O4366IP/v8y+ZDcYZNMqbyCd42h3u837kk8hDgUkTJ+TmjEn+8PHrI Dbbc7rqoMe9006++7OvMFoF/20Gl+oHqSKjhKIE4t4XRL9OS72TeAGdj0m5gcaa1 01ma1E+pqt07UZRWqRMJ1VqstSDVPJvfnnAvIlGei8PiVgcS2ZlUZEmzSwxHLHhU VeMXmcnnyOadWqlGeMrQrJA5tRPxQFTQAbFcC1clvtR2dZ5oMJQ7nctmg/oIbHV4 ta7qvVX01fTfDbNTf4uDxWekj/qdtg0wQnCuwIc7SLcuPUkcWTTznw5BPvCHadap 6Kphjftl0ae8pzUl8rI+AmcMUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMdAg59M ZDI2NySlBCxq4jFZDOibMB8GA1UdIwQYMBaAFKhyQrc2J9QpI0pfVMUju0Hrvoeq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRkFCQy9EOTQyMDA3NkM0 RDIxMUVEQkYwRTE5ODJDNEY5QUUwMi9xSEpDdHpZbjFDa2pTbDlVeFNPN1FldS1o Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FISkN0elluMUNralNsOVV4U083UWV1LWg2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RkFCQy9EOTQyMDA3NkM0RDIxMUVEQkYwRTE5ODJDNEY5QUUwMi9xSEpDdHpZbjFD a2pTbDlVeFNPN1FldS1oNm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBW6Ll9Pl2sSUdmTc4VmOCAO4YYUfSXKTGSMqOcgFu3+ilBJMrdZ3yE f7HZyF2emOQpu/6kjexAKf+pAbnsfGdadnJ93eiEZmKnTjz8sjvwa+G7G7BKVwk+ e4AO7IWt/AKZ6TCiQgjC3Pfdf57NNs/TiZn1pR6BrLfPRcDmmHIW2V2MVP7bkdzt d0cJp4xY3iRekQmSxVsL1eZW5VCMWwXQcgqNeeVY0eiQzc4IMQ1dPkg3bncIFA1P 2jJVp6GShxC+7m9c5ZMaaxaSyFWGnOr11bJxzaXCsF18YaT3cIBNxci/n2+TrQF2 7wge9odjB1iCpaWwbRkbOA58Y+ovX3a+ -----END CERTIFICATE-----Generated at Thu May 15 12:35:51 2025 by rpki-client