$ rpki-client -vvf rpki.apnic.net/member_repository/A913DF3B/CDBA812EF03A11EB8D30E058C4F9AE02/qJaxcL8NiHI_NsesIIeFSqKEvXE.mft File: qJaxcL8NiHI_NsesIIeFSqKEvXE.mft (raw, json) Hash identifier: m+W1hX0znDdkitEC+U75JLa4nigUWHcyLQlhxCMSPxc= Subject key identifier: 59:63:1E:22:93:F2:84:42:2E:D2:35:52:A2:8B:55:5C:03:85:65:8E Authority key identifier: A8:96:B1:70:BF:0D:88:72:3F:36:C7:AC:20:87:85:4A:A2:84:BD:71 Certificate issuer: /CN=A913DF3B/serialNumber=A896B170BF0D88723F36C7AC2087854AA284BD71 Certificate serial: 0542 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qJaxcL8NiHI_NsesIIeFSqKEvXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913DF3B/CDBA812EF03A11EB8D30E058C4F9AE02/qJaxcL8NiHI_NsesIIeFSqKEvXE.mft Manifest number: 053D Signing time: Sat 10 May 2025 23:03:12 +0000 Manifest this update: Sat 10 May 2025 23:03:12 +0000 Manifest next update: Sat 17 May 2025 23:03:12 +0000 Files and hashes: 1: qJaxcL8NiHI_NsesIIeFSqKEvXE.crl (hash: Lu/1KtZ/kLsgDgl9aetSmP3qI7xrLKgniGO8RxvlApM=) 2: 8D7E9B7EF03D11EB804DF61FC4F9AE02.roa (hash: K0g8xWII4g0z2vzjoBYClHiJj2EJk6kk9zBp36ie6T4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913DF3B/CDBA812EF03A11EB8D30E058C4F9AE02/qJaxcL8NiHI_NsesIIeFSqKEvXE.crl rsync://rpki.apnic.net/member_repository/A913DF3B/CDBA812EF03A11EB8D30E058C4F9AE02/qJaxcL8NiHI_NsesIIeFSqKEvXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qJaxcL8NiHI_NsesIIeFSqKEvXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 23:03:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1346 (0x542) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913DF3B, serialNumber=A896B170BF0D88723F36C7AC2087854AA284BD71 Validity Not Before: May 10 23:03:12 2025 GMT Not After : May 17 23:03:12 2025 GMT Subject: CN=681fdb30-aead Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:1a:82:ef:99:90:3c:90:9c:dc:e3:a1:25:39: 7e:ea:4d:eb:63:d3:e8:a9:c3:41:88:1a:d2:d0:33: ef:a1:07:13:02:27:23:38:39:44:b7:da:c7:b5:9f: ff:a9:a6:10:e0:fd:b0:71:04:da:90:71:7c:a4:c8: 70:7a:fd:5a:76:a3:9f:4d:f8:9e:fc:c4:9a:8e:d5: 52:9f:64:25:1b:a3:10:1d:c4:17:9d:be:6f:ec:41: de:12:3c:7c:d1:57:21:d6:21:4e:41:8e:3e:61:34: c0:63:4f:bf:22:f3:9e:3e:97:b4:bf:96:2a:04:4e: a1:0c:25:46:52:48:3f:8b:03:e3:36:6c:a6:2d:2d: bf:4e:c1:bb:a5:22:2d:9c:e2:c9:08:d9:5f:ba:ed: 8d:96:4e:1b:5f:64:bd:11:b7:de:29:0d:93:31:b8: 77:8b:da:ad:53:7d:2f:3f:b1:a9:0f:84:f3:fe:8f: 4b:03:73:7f:80:11:9c:53:f4:9f:0c:25:0b:32:8f: 88:72:ad:62:40:37:c2:6f:d1:81:34:b4:6c:aa:c6: 2c:1d:ca:fe:7b:15:8e:41:78:50:ab:eb:80:a2:1d: ad:af:c1:f0:db:86:c6:3e:07:c4:8f:e1:51:22:8b: 65:a0:60:cd:0b:60:b1:8b:33:82:e0:61:b0:45:d9: da:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:63:1E:22:93:F2:84:42:2E:D2:35:52:A2:8B:55:5C:03:85:65:8E X509v3 Authority Key Identifier: keyid:A8:96:B1:70:BF:0D:88:72:3F:36:C7:AC:20:87:85:4A:A2:84:BD:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913DF3B/CDBA812EF03A11EB8D30E058C4F9AE02/qJaxcL8NiHI_NsesIIeFSqKEvXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qJaxcL8NiHI_NsesIIeFSqKEvXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913DF3B/CDBA812EF03A11EB8D30E058C4F9AE02/qJaxcL8NiHI_NsesIIeFSqKEvXE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:7c:a4:9e:a3:32:e4:9a:b6:28:a3:03:78:5f:4b:63:3f:54: 21:40:44:9a:2d:47:41:f5:81:27:bc:ff:0b:23:77:96:ae:6f: b4:05:4d:9e:fa:73:3a:5a:bd:7c:c5:cc:8c:e8:5b:ee:64:56: 77:9b:c7:03:ac:d7:bc:f3:be:b1:a8:fb:33:7a:64:3a:9c:93: 6c:0f:0d:c5:4c:52:00:12:48:4f:70:42:4f:1a:9d:49:1d:6e: 8e:cc:e7:dd:7e:e5:da:51:dd:e7:3d:22:40:54:fe:a2:39:50: a8:d5:aa:d9:ae:69:35:c7:3d:39:c4:69:62:34:57:1c:fd:c2: e3:38:88:f3:e9:39:ff:06:8f:7c:90:90:a7:55:5e:61:b2:65: 78:da:b5:48:1f:bf:69:88:36:19:4e:49:72:52:db:75:1c:b4: 36:e0:96:e6:36:1b:e5:9e:b4:ea:0c:1c:44:bf:e0:5b:9d:39: da:74:49:9d:81:fe:f2:07:a5:b4:9e:b1:c9:de:e5:76:be:51: 89:4d:8c:e6:0b:5e:8f:8c:8e:75:68:2c:a5:6e:aa:93:f8:4e: 38:21:86:1f:dc:0b:b7:dc:8f:e4:2b:6a:01:9f:fe:e6:85:85: 5b:15:40:f8:c5:2e:14:f0:82:fc:72:ed:8e:56:38:ac:9f:08: 00:f7:15:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0RGM0IxMTAvBgNVBAUTKEE4OTZCMTcwQkYwRDg4NzIzRjM2QzdBQzIwODc4NTRB QTI4NEJENzEwHhcNMjUwNTEwMjMwMzEyWhcNMjUwNTE3MjMwMzEyWjAYMRYwFAYD VQQDEw02ODFmZGIzMC1hZWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5BqC75mQPJCc3OOhJTl+6k3rY9PoqcNBiBrS0DPvoQcTAicjODlEt9rHtZ// qaYQ4P2wcQTakHF8pMhwev1adqOfTfie/MSajtVSn2QlG6MQHcQXnb5v7EHeEjx8 0Vch1iFOQY4+YTTAY0+/IvOePpe0v5YqBE6hDCVGUkg/iwPjNmymLS2/TsG7pSIt nOLJCNlfuu2Nlk4bX2S9EbfeKQ2TMbh3i9qtU30vP7GpD4Tz/o9LA3N/gBGcU/Sf DCULMo+Icq1iQDfCb9GBNLRsqsYsHcr+exWOQXhQq+uAoh2tr8Hw24bGPgfEj+FR IotloGDNC2CxizOC4GGwRdnaiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFljHiKT 8oRCLtI1UqKLVVwDhWWOMB8GA1UdIwQYMBaAFKiWsXC/DYhyPzbHrCCHhUqihL1x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzREYzQi9DREJBODEyRUYw M0ExMUVCOEQzMEUwNThDNEY5QUUwMi9xSmF4Y0w4TmlISV9Oc2VzSUllRlNxS0V2 WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FKYXhjTDhOaUhJX05zZXNJSWVGU3FLRXZYRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz REYzQi9DREJBODEyRUYwM0ExMUVCOEQzMEUwNThDNEY5QUUwMi9xSmF4Y0w4TmlI SV9Oc2VzSUllRlNxS0V2WEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVfKSeozLkmrYoowN4X0tjP1QhQESaLUdB9YEnvP8LI3eWrm+0BU2e +nM6Wr18xcyM6FvuZFZ3m8cDrNe8876xqPszemQ6nJNsDw3FTFIAEkhPcEJPGp1J HW6OzOfdfuXaUd3nPSJAVP6iOVCo1arZrmk1xz05xGliNFcc/cLjOIjz6Tn/Bo98 kJCnVV5hsmV42rVIH79piDYZTklyUtt1HLQ24JbmNhvlnrTqDBxEv+BbnTnadEmd gf7yB6W0nrHJ3uV2vlGJTYzmC16PjI51aCylbqqT+E44IYYf3Au33I/kK2oBn/7m hYVbFUD4xS4U8IL8cu2OVjisnwgA9xWI -----END CERTIFICATE-----Generated at Sun May 11 15:13:57 2025 by rpki-client