$ rpki-client -vvf rpki.apnic.net/member_repository/A919EA3B/89D0060A261611EEBE76105CC4F9AE02/QqwYh98sn_RowA68BlWa4XkLfUE.mft File: QqwYh98sn_RowA68BlWa4XkLfUE.mft (raw, json) Hash identifier: eh2xvXjpoxaUsGBPBlse3f4zczQ70L1mM3XRLEKT4UI= Subject key identifier: D2:88:76:A1:CB:61:1D:B0:DA:2A:EE:93:71:56:5F:67:BE:66:D8:78 Authority key identifier: 42:AC:18:87:DF:2C:9F:F4:68:C0:0E:BC:06:55:9A:E1:79:0B:7D:41 Certificate issuer: /CN=A919EA3B/serialNumber=42AC1887DF2C9FF468C00EBC06559AE1790B7D41 Certificate serial: 0158 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QqwYh98sn_RowA68BlWa4XkLfUE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EA3B/89D0060A261611EEBE76105CC4F9AE02/QqwYh98sn_RowA68BlWa4XkLfUE.mft Manifest number: 0154 Signing time: Sun 11 May 2025 03:00:29 +0000 Manifest this update: Sun 11 May 2025 03:00:29 +0000 Manifest next update: Sun 18 May 2025 03:00:29 +0000 Files and hashes: 1: QqwYh98sn_RowA68BlWa4XkLfUE.crl (hash: nFUy8QhcgF8ELh4MaEJzFoC6zVgIvNCowApZpmkgSZw=) 2: 2E7C802A261711EEB93AAC74C4F9AE02.roa (hash: NtVr+Q7HShmkJFOy0YbH7GTXqw6iLfwSuRim5kkOY4k=) 3: 0218C21E261711EE9AEA7674C4F9AE02.roa (hash: f3Z+Plktu1vEK5J7Cr0wnZHXTAmT6g0Q0RBssxjNlNw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EA3B/89D0060A261611EEBE76105CC4F9AE02/QqwYh98sn_RowA68BlWa4XkLfUE.crl rsync://rpki.apnic.net/member_repository/A919EA3B/89D0060A261611EEBE76105CC4F9AE02/QqwYh98sn_RowA68BlWa4XkLfUE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QqwYh98sn_RowA68BlWa4XkLfUE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 03:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 344 (0x158) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EA3B, serialNumber=42AC1887DF2C9FF468C00EBC06559AE1790B7D41 Validity Not Before: May 11 03:00:29 2025 GMT Not After : May 18 03:00:29 2025 GMT Subject: CN=682012cd-c107 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:aa:6a:15:36:0a:c0:64:01:18:a2:67:b1:71: 65:3f:be:5e:29:8a:8e:19:f8:68:aa:77:4d:50:d0: 3e:de:47:1e:f7:de:82:19:02:80:fd:32:61:2a:79: f5:4c:e0:81:f0:cc:7d:7f:c0:f2:b4:c2:1a:cb:e0: 6c:d0:54:54:a0:5c:ca:4c:ba:11:d7:91:f9:06:89: 3d:8b:16:7b:37:70:2b:8a:bf:e5:93:a9:5c:3a:98: b4:b4:c8:32:a8:05:f8:48:3b:12:bd:7c:c2:d1:17: 08:2f:70:61:d5:c7:03:be:a5:af:93:ac:d4:7b:25: ee:d2:fb:9d:a8:a0:6a:dd:f8:44:6e:cd:c9:c9:49: 1e:ca:6c:10:16:6b:8d:b6:20:b9:18:c4:af:b7:74: 14:52:a7:55:a1:be:f0:c3:02:42:9e:70:fa:c9:bf: 7a:77:e3:d2:4c:83:24:0d:06:c2:84:61:83:e6:9d: 9b:ca:c7:3d:6c:66:2a:c6:79:9d:35:59:2c:ef:e4: c8:c1:48:47:60:9c:3f:40:89:3c:48:dc:9e:e8:31: fb:83:3f:04:de:a8:9a:de:2d:d0:5a:57:2b:5c:c1: 57:0a:56:0c:64:4a:af:2d:e2:73:38:bd:ee:f6:55: 35:17:3b:bc:42:09:40:43:d6:d5:15:2b:3b:b1:02: 36:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:88:76:A1:CB:61:1D:B0:DA:2A:EE:93:71:56:5F:67:BE:66:D8:78 X509v3 Authority Key Identifier: keyid:42:AC:18:87:DF:2C:9F:F4:68:C0:0E:BC:06:55:9A:E1:79:0B:7D:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EA3B/89D0060A261611EEBE76105CC4F9AE02/QqwYh98sn_RowA68BlWa4XkLfUE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QqwYh98sn_RowA68BlWa4XkLfUE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EA3B/89D0060A261611EEBE76105CC4F9AE02/QqwYh98sn_RowA68BlWa4XkLfUE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:44:b4:a2:84:ce:46:c9:e7:01:71:26:2e:77:86:6d:a0:17: 9e:85:9a:14:44:62:1b:85:2e:36:2a:e9:ac:0f:9a:da:c6:2c: 8b:15:81:ec:1d:87:3b:db:8d:8b:1f:f8:6e:dc:05:4f:de:c2: 09:6b:1f:d2:86:f1:cb:56:62:0b:37:d0:21:3f:b8:85:bc:91: 60:fe:5a:cd:c4:43:d3:1f:42:43:65:e8:df:2e:72:e6:01:64: 7e:52:a5:0e:df:dc:ae:2d:2d:40:01:ac:70:c1:aa:11:31:9d: 99:50:1d:46:04:7d:fe:97:7e:ba:ca:b6:a0:64:dd:ad:ec:ee: f6:5e:fb:2c:e6:23:b1:37:2e:d9:5e:c2:51:36:b0:fc:b4:24: cc:5a:e8:a6:a7:02:e2:e1:7d:f4:ea:ad:ba:dd:3e:ad:8e:8d: e4:75:23:57:55:14:e7:ab:8e:c8:26:d8:74:05:c8:54:5b:f2: e1:a4:f3:29:d0:47:1f:67:df:43:fb:8d:95:38:8d:03:2a:9f: 8a:b5:5b:73:a1:8c:b0:a0:84:a0:6f:3f:30:49:27:d8:a7:fd: 63:00:c5:c5:4b:fd:07:4f:24:7a:2b:6b:8d:6d:02:16:2f:eb: 2d:e6:27:32:a3:fc:ef:21:be:46:b1:17:c3:a2:1f:b6:b3:5f: 11:a6:80:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVBM0IxMTAvBgNVBAUTKDQyQUMxODg3REYyQzlGRjQ2OEMwMEVCQzA2NTU5QUUx NzkwQjdENDEwHhcNMjUwNTExMDMwMDI5WhcNMjUwNTE4MDMwMDI5WjAYMRYwFAYD VQQDEw02ODIwMTJjZC1jMTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuapqFTYKwGQBGKJnsXFlP75eKYqOGfhoqndNUNA+3kce996CGQKA/TJhKnn1 TOCB8Mx9f8DytMIay+Bs0FRUoFzKTLoR15H5Bok9ixZ7N3Arir/lk6lcOpi0tMgy qAX4SDsSvXzC0RcIL3Bh1ccDvqWvk6zUeyXu0vudqKBq3fhEbs3JyUkeymwQFmuN tiC5GMSvt3QUUqdVob7wwwJCnnD6yb96d+PSTIMkDQbChGGD5p2bysc9bGYqxnmd NVks7+TIwUhHYJw/QIk8SNye6DH7gz8E3qia3i3QWlcrXMFXClYMZEqvLeJzOL3u 9lU1Fzu8QglAQ9bVFSs7sQI2YQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNKIdqHL YR2w2iruk3FWX2e+Zth4MB8GA1UdIwQYMBaAFEKsGIffLJ/0aMAOvAZVmuF5C31B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUEzQi84OUQwMDYwQTI2 MTYxMUVFQkU3NjEwNUNDNEY5QUUwMi9RcXdZaDk4c25fUm93QTY4QmxXYTRYa0xm VUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Fxd1loOThzbl9Sb3dBNjhCbFdhNFhrTGZVRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUEzQi84OUQwMDYwQTI2MTYxMUVFQkU3NjEwNUNDNEY5QUUwMi9RcXdZaDk4c25f Um93QTY4QmxXYTRYa0xmVUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBORLSihM5GyecBcSYud4ZtoBeehZoURGIbhS42KumsD5raxiyLFYHs HYc7242LH/hu3AVP3sIJax/ShvHLVmILN9AhP7iFvJFg/lrNxEPTH0JDZejfLnLm AWR+UqUO39yuLS1AAaxwwaoRMZ2ZUB1GBH3+l366yragZN2t7O72Xvss5iOxNy7Z XsJRNrD8tCTMWuimpwLi4X306q263T6tjo3kdSNXVRTnq47IJth0BchUW/LhpPMp 0EcfZ99D+42VOI0DKp+KtVtzoYywoISgbz8wSSfYp/1jAMXFS/0HTyR6K2uNbQIW L+st5icyo/zvIb5GsRfDoh+2s18RpoBx -----END CERTIFICATE-----Generated at Sun May 11 16:14:28 2025 by rpki-client