$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/5ECC15AA257511E7AC0D172AC4F9AE02/Qp7OGTjMiSSxEQllyc9PlkhgIBg.mft File: Qp7OGTjMiSSxEQllyc9PlkhgIBg.mft (raw, json) Hash identifier: 0N6qhorPPSx+iGioeWw7YdfKmv5ccGLKEO8z4hKCZQw= Subject key identifier: 07:85:B2:9A:04:1F:E4:A9:04:95:69:A7:98:8F:A7:4B:23:E1:9C:63 Authority key identifier: 42:9E:CE:19:38:CC:89:24:B1:11:09:65:C9:CF:4F:96:48:60:20:18 Certificate issuer: /CN=A914EAE4/serialNumber=429ECE1938CC8924B1110965C9CF4F9648602018 Certificate serial: 1B06 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Qp7OGTjMiSSxEQllyc9PlkhgIBg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/5ECC15AA257511E7AC0D172AC4F9AE02/Qp7OGTjMiSSxEQllyc9PlkhgIBg.mft Manifest number: 1B02 Signing time: Mon 12 May 2025 16:15:57 +0000 Manifest this update: Mon 12 May 2025 16:15:57 +0000 Manifest next update: Mon 19 May 2025 16:15:57 +0000 Files and hashes: 1: Qp7OGTjMiSSxEQllyc9PlkhgIBg.crl (hash: OnD2l6nIfSelSfAsYUkhFczsbsjN0cZsFuzAhIAmew8=) 2: 7E1ADD74E00E11EDA7E1B640C4F9AE02.roa (hash: l8rbVcrxpBL4K1nr5JzCpQg12eUyxOnsIOK36gYUlKo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/5ECC15AA257511E7AC0D172AC4F9AE02/Qp7OGTjMiSSxEQllyc9PlkhgIBg.crl rsync://rpki.apnic.net/member_repository/A914EAE4/5ECC15AA257511E7AC0D172AC4F9AE02/Qp7OGTjMiSSxEQllyc9PlkhgIBg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Qp7OGTjMiSSxEQllyc9PlkhgIBg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 16:15:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6918 (0x1b06) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4, serialNumber=429ECE1938CC8924B1110965C9CF4F9648602018 Validity Not Before: May 12 16:15:57 2025 GMT Not After : May 19 16:15:57 2025 GMT Subject: CN=68221ebd-1371 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:d5:a4:6d:fd:db:9d:9f:0c:a6:d9:f8:25:ba: 1f:6f:43:c2:0d:5c:66:54:ed:cf:cd:cf:2c:09:ed: ff:b5:d4:45:f0:f1:b1:65:cf:2b:54:56:80:5c:7a: 05:94:28:16:72:fe:e4:e7:6e:16:b9:80:5b:1e:04: 95:04:4c:5e:65:d3:8d:8e:46:56:df:ca:13:e2:29: 89:e4:76:86:4e:4c:6b:a2:08:38:35:35:37:ed:99: a9:e5:76:86:18:1d:07:00:9d:1e:58:09:2f:e0:56: 65:d5:d1:72:f8:a5:3c:3e:76:fa:ff:db:02:06:43: 07:7a:be:4b:1d:42:b6:1e:fb:62:bb:0b:6f:16:e3: 40:ea:f3:a0:12:6e:45:c9:35:30:70:f5:1c:a2:b3: e4:5b:72:f4:de:8e:c4:0a:4d:b5:8e:48:be:e5:5d: 08:c0:4d:77:8b:4b:60:93:1a:84:8f:50:14:c5:44: 5a:88:67:c3:06:b5:07:bd:d9:4f:05:2e:11:07:b8: 8b:a3:41:32:fa:9a:7a:be:7a:4c:c6:37:02:c5:d1: 85:d8:66:0c:0f:a7:9a:a3:00:29:1d:71:53:ac:57: ee:a5:97:b8:ed:3e:55:62:ef:36:a0:47:fd:2b:be: 10:a0:82:5e:e9:b9:3d:99:cb:11:7e:34:cb:e2:98: b6:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:85:B2:9A:04:1F:E4:A9:04:95:69:A7:98:8F:A7:4B:23:E1:9C:63 X509v3 Authority Key Identifier: keyid:42:9E:CE:19:38:CC:89:24:B1:11:09:65:C9:CF:4F:96:48:60:20:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/5ECC15AA257511E7AC0D172AC4F9AE02/Qp7OGTjMiSSxEQllyc9PlkhgIBg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Qp7OGTjMiSSxEQllyc9PlkhgIBg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/5ECC15AA257511E7AC0D172AC4F9AE02/Qp7OGTjMiSSxEQllyc9PlkhgIBg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:71:ec:8a:a1:1d:af:27:30:7d:ff:87:b2:0f:01:3f:f0:d2: 66:38:8d:9e:89:55:a6:9c:0d:95:7d:86:c8:46:4b:d9:38:ec: 9f:56:1c:2b:7d:74:9b:93:5c:27:b3:10:40:a1:b0:8b:28:0a: 44:b7:32:67:d0:b7:1c:73:b9:21:0b:c0:3c:e1:39:27:06:2f: 34:c3:27:5e:ca:45:15:ce:b5:ea:d0:db:90:1e:76:33:7f:fc: 66:e5:13:82:14:f9:30:0a:4a:7a:66:fa:51:23:4c:ce:c9:37: 44:d9:c1:7c:79:2a:1f:de:1c:93:c8:df:9f:ac:0c:c0:cd:80: b0:c9:c3:14:4b:68:bf:04:d5:f0:6d:c8:43:f9:22:57:b0:ea: fb:d9:56:14:23:f4:44:45:a5:c3:cc:b0:31:16:d7:9a:1c:bf: 66:cf:3c:ea:75:91:1f:4a:19:71:6f:88:8f:bd:5a:43:13:70: 28:c9:2b:46:4b:75:5d:2d:61:ce:0e:fd:62:be:3f:7d:92:bf: 27:3f:d3:cd:af:3f:2c:e9:a1:a0:dc:e3:9b:66:fa:74:09:f7: c3:80:15:79:49:b4:d2:76:76:db:29:36:ca:b0:c8:83:8d:0a: 78:76:7c:1b:65:54:29:68:d9:54:f1:6d:f9:15:40:4b:9e:14: 36:62:d8:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGwYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKDQyOUVDRTE5MzhDQzg5MjRCMTExMDk2NUM5Q0Y0Rjk2 NDg2MDIwMTgwHhcNMjUwNTEyMTYxNTU3WhcNMjUwNTE5MTYxNTU3WjAYMRYwFAYD VQQDEw02ODIyMWViZC0xMzcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6tWkbf3bnZ8Mptn4Jbofb0PCDVxmVO3Pzc8sCe3/tdRF8PGxZc8rVFaAXHoF lCgWcv7k524WuYBbHgSVBExeZdONjkZW38oT4imJ5HaGTkxrogg4NTU37Zmp5XaG GB0HAJ0eWAkv4FZl1dFy+KU8Pnb6/9sCBkMHer5LHUK2HvtiuwtvFuNA6vOgEm5F yTUwcPUcorPkW3L03o7ECk21jki+5V0IwE13i0tgkxqEj1AUxURaiGfDBrUHvdlP BS4RB7iLo0Ey+pp6vnpMxjcCxdGF2GYMD6eaowApHXFTrFfupZe47T5VYu82oEf9 K74QoIJe6bk9mcsRfjTL4pi2iQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAeFspoE H+SpBJVpp5iPp0sj4ZxjMB8GA1UdIwQYMBaAFEKezhk4zIkksREJZcnPT5ZIYCAY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC81RUNDMTVBQTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9RcDdPR1RqTWlTU3hFUWxseWM5UGxraGdJ QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FwN09HVGpNaVNTeEVRbGx5YzlQbGtoZ0lCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUFFNC81RUNDMTVBQTI1NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9RcDdPR1RqTWlT U3hFUWxseWM5UGxraGdJQmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMceyKoR2vJzB9/4eyDwE/8NJmOI2eiVWmnA2VfYbIRkvZOOyfVhwr fXSbk1wnsxBAobCLKApEtzJn0Lccc7khC8A84TknBi80wydeykUVzrXq0NuQHnYz f/xm5ROCFPkwCkp6ZvpRI0zOyTdE2cF8eSof3hyTyN+frAzAzYCwycMUS2i/BNXw bchD+SJXsOr72VYUI/RERaXDzLAxFteaHL9mzzzqdZEfShlxb4iPvVpDE3AoyStG S3VdLWHODv1ivj99kr8nP9PNrz8s6aGg3OObZvp0CffDgBV5SbTSdnbbKTbKsMiD jQp4dnwbZVQpaNlU8W35FUBLnhQ2YthO -----END CERTIFICATE-----Generated at Tue May 13 11:20:07 2025 by rpki-client