$ rpki-client -vvf rpki.apnic.net/member_repository/A919F55C/9F19F96E370F11ECBEB72A42C4F9AE02/rQbbzFM0xtdRNy-xeVT0qq3cnD8.mft File: rQbbzFM0xtdRNy-xeVT0qq3cnD8.mft (raw, json) Hash identifier: B1xd6X3u+/QL5KaUN7BYpcTRniV312wWcnFweg/0fjE= Subject key identifier: FE:3A:24:FA:1D:9D:71:7D:FC:D4:5C:18:FA:91:5A:43:4B:4B:21:4F Authority key identifier: AD:06:DB:CC:53:34:C6:D7:51:37:2F:B1:79:54:F4:AA:AD:DC:9C:3F Certificate issuer: /CN=A919F55C/serialNumber=AD06DBCC5334C6D751372FB17954F4AAADDC9C3F Certificate serial: 0496 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rQbbzFM0xtdRNy-xeVT0qq3cnD8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F55C/9F19F96E370F11ECBEB72A42C4F9AE02/rQbbzFM0xtdRNy-xeVT0qq3cnD8.mft Manifest number: 0491 Signing time: Sun 04 May 2025 23:38:19 +0000 Manifest this update: Sun 04 May 2025 23:38:19 +0000 Manifest next update: Sun 11 May 2025 23:38:19 +0000 Files and hashes: 1: rQbbzFM0xtdRNy-xeVT0qq3cnD8.crl (hash: zHVBR3Mq8wfhdXIh0qRt83XAra1xoHxo5cNsRANNH74=) 2: 0EC6A7E0372D11ECA616091EC4F9AE02.roa (hash: xRvy8+EZ4EWMUGqE/C33LsDCdW9x6WHrip13g/dJz5k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F55C/9F19F96E370F11ECBEB72A42C4F9AE02/rQbbzFM0xtdRNy-xeVT0qq3cnD8.crl rsync://rpki.apnic.net/member_repository/A919F55C/9F19F96E370F11ECBEB72A42C4F9AE02/rQbbzFM0xtdRNy-xeVT0qq3cnD8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rQbbzFM0xtdRNy-xeVT0qq3cnD8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 23:38:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1174 (0x496) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F55C, serialNumber=AD06DBCC5334C6D751372FB17954F4AAADDC9C3F Validity Not Before: May 4 23:38:19 2025 GMT Not After : May 11 23:38:19 2025 GMT Subject: CN=6817fa6b-5acd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:c0:96:d1:8a:67:9f:eb:3a:52:fe:f0:62:12: 3b:13:5a:ea:ca:fd:cc:47:f3:08:0a:87:41:a0:62: f6:b1:a6:bf:9a:85:94:b6:19:f6:7b:23:e8:c4:72: f0:5e:49:d7:0c:27:27:01:ff:ad:41:0d:cb:59:98: ca:33:7d:26:01:b8:46:d6:a2:93:30:00:f2:4f:57: 07:a7:2a:69:8d:63:f9:4d:3f:35:9f:e7:84:c7:c5: 5a:f9:23:28:55:02:9c:2d:e8:01:c5:bf:dd:00:74: 45:f4:a5:6d:4f:ea:5e:c5:57:5e:2e:8b:c9:2d:f5: 32:6e:4c:24:28:3c:6d:dc:e3:c7:6e:d6:6f:a3:30: a9:9e:b6:8f:ce:94:17:b1:6a:a5:ea:c6:71:a5:ea: 9b:53:ef:29:ff:35:69:be:63:0c:93:b8:78:92:87: 4e:9a:6f:ed:d0:c2:89:cf:95:e6:b1:25:02:49:29: 24:8e:7a:9c:5b:79:8f:fa:67:21:20:ba:dd:0e:ff: 76:37:d6:a0:fb:b9:47:0a:d5:04:f2:be:f1:d4:65: 62:88:75:ca:b8:85:5a:dc:2a:28:ce:c6:dd:45:44: ce:a2:1a:87:c6:bf:79:db:eb:07:5f:c4:86:47:be: d7:59:5b:8e:4d:a9:f3:fd:b5:ae:05:f7:b9:7d:38: b4:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:3A:24:FA:1D:9D:71:7D:FC:D4:5C:18:FA:91:5A:43:4B:4B:21:4F X509v3 Authority Key Identifier: keyid:AD:06:DB:CC:53:34:C6:D7:51:37:2F:B1:79:54:F4:AA:AD:DC:9C:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F55C/9F19F96E370F11ECBEB72A42C4F9AE02/rQbbzFM0xtdRNy-xeVT0qq3cnD8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rQbbzFM0xtdRNy-xeVT0qq3cnD8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F55C/9F19F96E370F11ECBEB72A42C4F9AE02/rQbbzFM0xtdRNy-xeVT0qq3cnD8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:af:ea:97:08:de:c8:8a:85:98:a6:0f:f2:87:d6:3a:06:11: f0:72:7e:48:94:fc:a7:8b:87:54:fe:be:a1:18:d8:69:57:d9: b9:44:ce:e1:55:67:b7:c8:e6:f2:f9:13:07:0b:57:c7:7e:6f: 1e:e5:a6:f8:21:cd:17:2b:5a:ac:58:59:0a:ba:78:b2:5a:b7: 08:3b:9e:cb:6f:a1:4f:b4:c8:bc:cf:7b:7a:9e:65:79:49:3d: b3:f9:7d:fa:74:51:18:b1:d0:fa:12:cd:1e:bc:0b:5c:aa:8f: c7:6b:98:31:87:2b:b5:af:a1:ef:73:5a:69:a0:69:a7:c0:f9: 03:b6:b3:25:d5:29:f9:c2:a6:1d:15:9e:90:df:20:b9:7c:cb: d1:fc:b4:70:35:27:f7:7d:29:26:45:d8:49:43:d5:a2:fe:04: 6a:4b:0d:65:49:e3:e2:1b:c1:21:24:17:29:d2:fa:35:52:f5: 15:a0:41:b6:ec:38:0a:14:ac:db:16:38:72:1b:49:67:09:35: 91:ff:0c:f2:e9:d7:da:c7:3c:8f:20:67:7f:01:5c:e9:2b:c8: db:af:71:34:ee:87:24:3d:8a:4a:39:35:17:bc:1f:43:5f:a0: 36:e4:fc:c1:ee:bf:9e:04:4d:cc:9e:c8:ba:33:2c:06:63:f7: 32:dc:5a:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUY1NUMxMTAvBgNVBAUTKEFEMDZEQkNDNTMzNEM2RDc1MTM3MkZCMTc5NTRGNEFB QUREQzlDM0YwHhcNMjUwNTA0MjMzODE5WhcNMjUwNTExMjMzODE5WjAYMRYwFAYD VQQDEw02ODE3ZmE2Yi01YWNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAncCW0Ypnn+s6Uv7wYhI7E1rqyv3MR/MICodBoGL2saa/moWUthn2eyPoxHLw XknXDCcnAf+tQQ3LWZjKM30mAbhG1qKTMADyT1cHpyppjWP5TT81n+eEx8Va+SMo VQKcLegBxb/dAHRF9KVtT+pexVdeLovJLfUybkwkKDxt3OPHbtZvozCpnraPzpQX sWql6sZxpeqbU+8p/zVpvmMMk7h4kodOmm/t0MKJz5XmsSUCSSkkjnqcW3mP+mch ILrdDv92N9ag+7lHCtUE8r7x1GViiHXKuIVa3CoozsbdRUTOohqHxr952+sHX8SG R77XWVuOTanz/bWuBfe5fTi0mQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP46JPod nXF9/NRcGPqRWkNLSyFPMB8GA1UdIwQYMBaAFK0G28xTNMbXUTcvsXlU9Kqt3Jw/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjU1Qy85RjE5Rjk2RTM3 MEYxMUVDQkVCNzJBNDJDNEY5QUUwMi9yUWJiekZNMHh0ZFJOeS14ZVZUMHFxM2Nu RDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JRYmJ6Rk0weHRkUk55LXhlVlQwcXEzY25EOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RjU1Qy85RjE5Rjk2RTM3MEYxMUVDQkVCNzJBNDJDNEY5QUUwMi9yUWJiekZNMHh0 ZFJOeS14ZVZUMHFxM2NuRDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGr+qXCN7IioWYpg/yh9Y6BhHwcn5IlPyni4dU/r6hGNhpV9m5RM7h VWe3yOby+RMHC1fHfm8e5ab4Ic0XK1qsWFkKuniyWrcIO57Lb6FPtMi8z3t6nmV5 ST2z+X36dFEYsdD6Es0evAtcqo/Ha5gxhyu1r6Hvc1ppoGmnwPkDtrMl1Sn5wqYd FZ6Q3yC5fMvR/LRwNSf3fSkmRdhJQ9Wi/gRqSw1lSePiG8EhJBcp0vo1UvUVoEG2 7DgKFKzbFjhyG0lnCTWR/wzy6dfaxzyPIGd/AVzpK8jbr3E07ockPYpKOTUXvB9D X6A25PzB7r+eBE3Mnsi6MywGY/cy3Fqm -----END CERTIFICATE-----Generated at Mon May 5 07:28:14 2025 by rpki-client