$ rpki-client -vvf rpki.apnic.net/member_repository/A9164164/A68E264EA18211EF8F4E1623C4F9AE02/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.mft File: qHNyAfpMZPoAVkAi2wb2Dn7izQ0.mft (raw, json) Hash identifier: PbexV+1EXTJNwSRShq+2QZtZhSjF0GRUtmF5i/Ta5WY= Subject key identifier: CA:B2:FC:97:BB:27:9B:56:4F:07:84:B2:EE:38:90:98:E0:EB:A2:E0 Authority key identifier: A8:73:72:01:FA:4C:64:FA:00:56:40:22:DB:06:F6:0E:7E:E2:CD:0D Certificate issuer: /CN=A9164164/serialNumber=A8737201FA4C64FA00564022DB06F60E7EE2CD0D Certificate serial: 60 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164164/A68E264EA18211EF8F4E1623C4F9AE02/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.mft Manifest number: 5F Signing time: Thu 15 May 2025 06:20:33 +0000 Manifest this update: Thu 15 May 2025 06:20:32 +0000 Manifest next update: Thu 22 May 2025 06:20:32 +0000 Files and hashes: 1: qHNyAfpMZPoAVkAi2wb2Dn7izQ0.crl (hash: nbb/hFadkV08DzoD9k5A+cKiOnPqmrtKrJ7b3mK0H28=) 2: F1487C2AA18211EFA2B7E923C4F9AE02.roa (hash: ow0JlSSKtHwrzhAKotnC4Hb7SPL+BmK/kbudjjYhQGA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164164/A68E264EA18211EF8F4E1623C4F9AE02/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.crl rsync://rpki.apnic.net/member_repository/A9164164/A68E264EA18211EF8F4E1623C4F9AE02/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 06:20:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 96 (0x60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164164, serialNumber=A8737201FA4C64FA00564022DB06F60E7EE2CD0D Validity Not Before: May 15 06:20:32 2025 GMT Not After : May 22 06:20:32 2025 GMT Subject: CN=682587b0-1ba6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:85:db:9e:6e:a5:4a:c7:0b:ca:0c:25:30:a5: c5:44:0e:28:a6:39:84:89:f4:ef:ab:91:73:38:75: 0e:81:54:c7:bc:fe:22:53:2a:82:1c:8f:9c:74:f3: 6b:b9:da:ff:64:a4:ff:b3:c4:59:bd:61:ab:b8:29: c8:ec:35:f6:97:85:34:df:6a:a4:c4:b9:65:03:ad: c7:5d:4e:df:37:bd:e4:97:e9:3a:7b:43:36:04:7d: ee:70:5b:82:aa:29:f8:84:d5:9d:5d:a4:41:1f:8e: 92:ca:3f:51:45:df:5a:49:0b:d3:ad:99:76:f0:6a: d6:2e:18:c5:66:b1:47:57:c1:71:e0:8c:4c:19:46: 06:b2:a6:1e:1d:6a:25:cb:40:f7:f3:ff:ba:90:62: 3b:89:c3:ec:59:0b:02:3b:aa:97:d7:52:8c:50:57: f2:69:c7:dd:90:5f:7f:cb:32:a0:9d:b3:28:d6:65: 4b:ac:5e:4d:08:78:bc:29:bf:b4:7e:58:9c:e8:87: c5:44:bb:c4:7c:8e:91:47:4a:47:cd:fa:7d:ee:20: bc:b2:b4:a3:7f:85:9d:7b:66:da:20:91:8e:53:30: 86:1e:c3:71:3c:62:25:05:cb:6c:7d:78:aa:22:cc: ac:d6:5d:4b:7e:33:4e:54:09:71:c3:31:0c:65:73: 0d:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:B2:FC:97:BB:27:9B:56:4F:07:84:B2:EE:38:90:98:E0:EB:A2:E0 X509v3 Authority Key Identifier: keyid:A8:73:72:01:FA:4C:64:FA:00:56:40:22:DB:06:F6:0E:7E:E2:CD:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164164/A68E264EA18211EF8F4E1623C4F9AE02/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164164/A68E264EA18211EF8F4E1623C4F9AE02/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:71:a3:00:19:66:d4:7c:6c:e5:fc:c1:60:1c:d0:2a:4e:1c: a8:94:28:d4:c8:60:cb:2d:e4:25:ca:bd:0f:72:0e:6b:87:72: 15:48:40:86:a1:15:e6:eb:56:7f:c6:37:7b:d4:98:e0:31:c5: fb:aa:a4:28:8c:b7:e9:9e:85:79:c3:5c:2a:ca:72:91:52:da: 1e:1e:4d:6c:69:c5:b4:3a:6b:84:3a:37:61:85:4d:1f:67:ad: 7f:a9:73:99:de:a8:94:1a:67:fb:0c:e5:d5:c1:40:28:92:ff: 6a:49:8f:71:51:d4:7f:c7:97:b0:30:2b:9e:e7:2a:da:93:e5: 85:e1:cd:73:b4:7c:8f:78:aa:df:71:db:a1:e8:6c:03:80:61: c7:4d:c5:f9:a5:fd:7d:8e:9f:c7:53:6b:91:35:44:f1:9c:98: f0:7c:bd:84:83:af:6b:08:b7:fb:bf:d3:86:8d:c7:b3:ed:a3: e4:a6:00:9f:3d:97:02:5a:7a:46:1f:ea:bf:49:09:ec:ae:01: dc:1a:3e:7a:1b:af:9c:61:73:b6:e5:0c:39:ec:d9:a0:95:46: 1a:1a:a5:18:45:27:f8:dd:49:d0:54:cd:d8:dd:fa:14:89:8b: 3a:c6:6e:f9:65:b7:22:2e:2f:a7:27:51:90:eb:2e:1b:a6:01: 50:ee:0c:e1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NDE2NDExMC8GA1UEBRMoQTg3MzcyMDFGQTRDNjRGQTAwNTY0MDIyREIwNkY2MEU3 RUUyQ0QwRDAeFw0yNTA1MTUwNjIwMzJaFw0yNTA1MjIwNjIwMzJaMBgxFjAUBgNV BAMTDTY4MjU4N2IwLTFiYTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCjhduebqVKxwvKDCUwpcVEDiimOYSJ9O+rkXM4dQ6BVMe8/iJTKoIcj5x082u5 2v9kpP+zxFm9Yau4KcjsNfaXhTTfaqTEuWUDrcddTt83veSX6Tp7QzYEfe5wW4Kq KfiE1Z1dpEEfjpLKP1FF31pJC9OtmXbwatYuGMVmsUdXwXHgjEwZRgayph4daiXL QPfz/7qQYjuJw+xZCwI7qpfXUoxQV/Jpx92QX3/LMqCdsyjWZUusXk0IeLwpv7R+ WJzoh8VEu8R8jpFHSkfN+n3uILyytKN/hZ17ZtogkY5TMIYew3E8YiUFy2x9eKoi zKzWXUt+M05UCXHDMQxlcw31AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUyrL8l7sn m1ZPB4Sy7jiQmODrouAwHwYDVR0jBBgwFoAUqHNyAfpMZPoAVkAi2wb2Dn7izQ0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY0MTY0L0E2OEUyNjRFQTE4 MjExRUY4RjRFMTYyM0M0RjlBRTAyL3FITnlBZnBNWlBvQVZrQWkyd2IyRG43aXpR MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcUhOeUFmcE1aUG9BVmtBaTJ3YjJEbjdpelEwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY0 MTY0L0E2OEUyNjRFQTE4MjExRUY4RjRFMTYyM0M0RjlBRTAyL3FITnlBZnBNWlBv QVZrQWkyd2IyRG43aXpRMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI9xowAZZtR8bOX8wWAc0CpOHKiUKNTIYMst5CXKvQ9yDmuHchVIQIah FebrVn/GN3vUmOAxxfuqpCiMt+mehXnDXCrKcpFS2h4eTWxpxbQ6a4Q6N2GFTR9n rX+pc5neqJQaZ/sM5dXBQCiS/2pJj3FR1H/Hl7AwK57nKtqT5YXhzXO0fI94qt9x 26HobAOAYcdNxfml/X2On8dTa5E1RPGcmPB8vYSDr2sIt/u/04aNx7Pto+SmAJ89 lwJaekYf6r9JCeyuAdwaPnobr5xhc7blDDns2aCVRhoapRhFJ/jdSdBUzdjd+hSJ izrGbvlltyIuL6cnUZDrLhumAVDuDOE= -----END CERTIFICATE-----Generated at Fri May 16 08:09:41 2025 by rpki-client