$ rpki-client -vvf rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.mft File: Q_dCP5PWuglpQFn7I974Uo0mSZ0.mft (raw, json) Hash identifier: tQiT/Ow2cX5UBlS0sqwbvT6alN2b6JmDcutoFDmkHLE= Subject key identifier: 40:C4:B2:CF:7D:37:19:04:7B:90:A4:C1:04:3E:BC:A4:BB:D8:5E:1E Authority key identifier: 43:F7:42:3F:93:D6:BA:09:69:40:59:FB:23:DE:F8:52:8D:26:49:9D Certificate issuer: /CN=A9186D9F/serialNumber=43F7423F93D6BA09694059FB23DEF8528D26499D Certificate serial: AD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q_dCP5PWuglpQFn7I974Uo0mSZ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.mft Manifest number: AB Signing time: Thu 15 May 2025 05:23:02 +0000 Manifest this update: Thu 15 May 2025 05:23:02 +0000 Manifest next update: Thu 22 May 2025 05:23:02 +0000 Files and hashes: 1: Q_dCP5PWuglpQFn7I974Uo0mSZ0.crl (hash: lgO39/2e9SG7B33F67V+7gCM1jHKbNljrCg0gg0ZpNA=) 2: 17EA0C7A38DF11EF8EEDB25EC4F9AE02.roa (hash: sflqoJJiQSUE3/D/FoYHXfA8MjGPanF4iuCvuWOV/9c=) 3: A63A2DFA2F5411EF9A12027FC4F9AE02.roa (hash: 3L8GR/TKBQutwByYr9Yt28Y5Yf6Lgn2PEAhMb4FmV9A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.crl rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q_dCP5PWuglpQFn7I974Uo0mSZ0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 05:23:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 173 (0xad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186D9F, serialNumber=43F7423F93D6BA09694059FB23DEF8528D26499D Validity Not Before: May 15 05:23:02 2025 GMT Not After : May 22 05:23:02 2025 GMT Subject: CN=68257a36-92cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:2d:ae:5a:19:c3:85:99:e5:3c:81:6b:1b:60: 2b:d1:a5:0b:ff:98:57:21:a4:97:72:a5:ed:d2:02: 4a:15:22:f0:2f:d5:ca:f6:9d:24:bc:4b:58:80:55: b0:88:25:98:9a:9b:7e:c4:27:57:cc:7d:5a:37:2e: 51:2d:cf:b9:ee:ab:e4:39:2f:0b:ae:87:18:72:9e: 1b:81:90:49:65:51:03:38:a7:2f:3e:4c:de:c5:86: 0d:79:de:07:04:6a:fa:31:24:94:dd:1f:83:8f:66: f5:5a:0d:01:50:87:17:9c:04:d5:90:34:55:71:0f: ab:49:d9:5b:9d:0f:90:a8:5a:3b:be:0a:7a:08:c4: 68:02:2f:5c:74:eb:0c:06:5a:94:5c:2c:38:0b:c0: 7d:f1:4f:6f:4c:26:d9:ac:d0:98:9e:95:46:79:c6: 46:70:08:03:9a:c9:08:7e:81:3f:2a:63:c5:ca:90: 37:a8:68:92:61:a1:ea:9a:5a:66:45:82:c1:92:bb: a1:8c:b9:13:c1:45:d3:c4:f6:89:97:1e:9a:c0:9c: 4f:9d:09:62:be:bb:01:0a:78:c2:63:0b:4c:3a:99: 63:c6:a9:eb:c5:f3:bc:74:36:49:d8:2f:94:92:fc: 74:ef:f2:ee:77:92:21:53:05:a4:00:e8:53:2f:59: 20:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:C4:B2:CF:7D:37:19:04:7B:90:A4:C1:04:3E:BC:A4:BB:D8:5E:1E X509v3 Authority Key Identifier: keyid:43:F7:42:3F:93:D6:BA:09:69:40:59:FB:23:DE:F8:52:8D:26:49:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q_dCP5PWuglpQFn7I974Uo0mSZ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:e6:1c:c5:99:4d:52:3f:b3:ce:f4:14:92:74:82:5e:0f:2b: 07:10:bb:e3:02:45:03:5a:b2:1a:96:1b:aa:80:a9:64:89:6c: ef:41:dd:c0:a8:d6:95:ae:2d:a7:f5:d4:4e:6b:0c:32:0a:c8: e9:68:36:1b:b3:f6:37:f2:69:2e:99:cb:e2:46:47:20:04:f6: 60:1b:90:11:f4:2c:81:ad:91:ec:1f:b0:ca:81:78:e7:e4:c8: 1b:a1:81:4f:41:be:95:7d:74:2a:a0:df:1f:87:90:e1:99:de: f8:ff:5b:32:22:ae:9f:be:f2:0d:38:ef:fa:0c:4b:05:3b:71: 33:e7:59:53:89:65:96:29:9d:ef:71:fa:8b:1d:eb:a3:1f:be: 61:38:41:4c:c6:9c:2c:9f:cd:be:65:58:a2:8f:d4:4c:3c:2c: 01:66:a5:34:6b:37:4b:da:9d:89:91:6e:fd:97:c8:7b:44:85: 1f:96:8b:14:60:0d:2c:6f:0f:9b:6e:43:c5:a4:e5:80:61:ee: 2d:32:35:e6:ab:33:d7:44:29:92:f4:57:ad:d9:43:a0:98:03: 4c:22:cb:b9:d3:dd:e8:1d:f6:18:a7:45:d8:e9:49:05:8a:b9: 22:f5:b7:d0:66:ac:f1:24:89:9b:36:12:cf:ea:a9:de:3d:80: b5:e6:0d:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODZEOUYxMTAvBgNVBAUTKDQzRjc0MjNGOTNENkJBMDk2OTQwNTlGQjIzREVGODUy OEQyNjQ5OUQwHhcNMjUwNTE1MDUyMzAyWhcNMjUwNTIyMDUyMzAyWjAYMRYwFAYD VQQDEw02ODI1N2EzNi05MmNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvy2uWhnDhZnlPIFrG2Ar0aUL/5hXIaSXcqXt0gJKFSLwL9XK9p0kvEtYgFWw iCWYmpt+xCdXzH1aNy5RLc+57qvkOS8LrocYcp4bgZBJZVEDOKcvPkzexYYNed4H BGr6MSSU3R+Dj2b1Wg0BUIcXnATVkDRVcQ+rSdlbnQ+QqFo7vgp6CMRoAi9cdOsM BlqUXCw4C8B98U9vTCbZrNCYnpVGecZGcAgDmskIfoE/KmPFypA3qGiSYaHqmlpm RYLBkruhjLkTwUXTxPaJlx6awJxPnQlivrsBCnjCYwtMOpljxqnrxfO8dDZJ2C+U kvx07/Lud5IhUwWkAOhTL1kgpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEDEss99 NxkEe5CkwQQ+vKS72F4eMB8GA1UdIwQYMBaAFEP3Qj+T1roJaUBZ+yPe+FKNJkmd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NkQ5Ri9BOTM2RTQ0MDJF MDQxMUVGODZGMjlENzlDNEY5QUUwMi9RX2RDUDVQV3VnbHBRRm43STk3NFVvMG1T WjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FfZENQNVBXdWdscFFGbjdJOTc0VW8wbVNaMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NkQ5Ri9BOTM2RTQ0MDJFMDQxMUVGODZGMjlENzlDNEY5QUUwMi9RX2RDUDVQV3Vn bHBRRm43STk3NFVvMG1TWjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC75hzFmU1SP7PO9BSSdIJeDysHELvjAkUDWrIalhuqgKlkiWzvQd3A qNaVri2n9dROawwyCsjpaDYbs/Y38mkumcviRkcgBPZgG5AR9CyBrZHsH7DKgXjn 5MgboYFPQb6VfXQqoN8fh5Dhmd74/1syIq6fvvINOO/6DEsFO3Ez51lTiWWWKZ3v cfqLHeujH75hOEFMxpwsn82+ZViij9RMPCwBZqU0azdL2p2JkW79l8h7RIUflosU YA0sbw+bbkPFpOWAYe4tMjXmqzPXRCmS9Fet2UOgmANMIsu5093oHfYYp0XY6UkF irki9bfQZqzxJImbNhLP6qnePYC15g2L -----END CERTIFICATE-----Generated at Thu May 15 18:18:13 2025 by rpki-client