$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6353/3BFDED6486BA11EBBCC39875C4F9AE02/qq7HHKNN7wjYjud72RwVcXXMPAk.mft File: qq7HHKNN7wjYjud72RwVcXXMPAk.mft (raw, json) Hash identifier: F4LuQyr5x+8SNKkx1tB3zCltw541ks/CLLd4bjVX80U= Subject key identifier: 58:92:8E:DB:E9:26:29:F7:F6:31:F0:45:EE:90:9B:EC:73:30:3C:FB Authority key identifier: AA:AE:C7:1C:A3:4D:EF:08:D8:8E:E7:7B:D9:1C:15:71:75:CC:3C:09 Certificate issuer: /CN=A91A6353/serialNumber=AAAEC71CA34DEF08D88EE77BD91C157175CC3C09 Certificate serial: 069D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qq7HHKNN7wjYjud72RwVcXXMPAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6353/3BFDED6486BA11EBBCC39875C4F9AE02/qq7HHKNN7wjYjud72RwVcXXMPAk.mft Manifest number: 0675 Signing time: Mon 12 May 2025 22:19:37 +0000 Manifest this update: Mon 12 May 2025 22:19:36 +0000 Manifest next update: Mon 19 May 2025 22:19:36 +0000 Files and hashes: 1: qq7HHKNN7wjYjud72RwVcXXMPAk.crl (hash: 29/CZqcM7KoyD8VLbA5cXx7arUb8QdTUBAudIdta55I=) 2: A43A27DAFC0911EF99725548C4F9AE02.roa (hash: emr+zhY1TbaeDkC7dmXT1lGYaVo4KENev4IW3OP2K7Q=) 3: 17687AB8D18F11EF8C6F8687C4F9AE02.roa (hash: WWuXoRDgSFC35DFMV3idQp1hR/mdc4d4fur1hKvZ27k=) 4: 94D84328C2BE11EFA78A383CC4F9AE02.roa (hash: ILedb+K4luFgP1u+0Lt3UnlTE9tN7xoj1804tP59xoo=) 5: C7DF2FAEB31C11EF92C86228C4F9AE02.roa (hash: nedZ6CxgF0ng6a51eLIMspuxhTSJIeVR5Q+BtX9A36g=) 6: 7B34351E6C4011EFB07AFE4DC4F9AE02.roa (hash: a8hiZQY4feWw7cGzPQPoFMY0Vgh/L0UfvR1IyLlgJEI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6353/3BFDED6486BA11EBBCC39875C4F9AE02/qq7HHKNN7wjYjud72RwVcXXMPAk.crl rsync://rpki.apnic.net/member_repository/A91A6353/3BFDED6486BA11EBBCC39875C4F9AE02/qq7HHKNN7wjYjud72RwVcXXMPAk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qq7HHKNN7wjYjud72RwVcXXMPAk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 22:19:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1693 (0x69d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6353, serialNumber=AAAEC71CA34DEF08D88EE77BD91C157175CC3C09 Validity Not Before: May 12 22:19:36 2025 GMT Not After : May 19 22:19:36 2025 GMT Subject: CN=682273f8-115c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:c0:cf:48:39:87:b1:07:80:82:ec:8a:18:12: f4:55:1d:3c:50:92:ad:d0:4a:c3:e4:32:e7:cb:61: 23:c7:af:0b:b1:a3:c6:ab:1c:a0:40:db:03:98:94: 9a:d5:ef:08:27:f8:8a:45:9b:de:54:98:b3:e9:77: a9:76:48:63:00:ec:9c:ec:0b:e5:77:07:d8:d4:16: 07:3d:99:29:1d:4b:3f:80:35:0b:68:64:81:5e:c7: 4d:a8:e3:d8:79:7e:5a:f7:dd:2b:45:66:f1:06:b3: 3e:fb:ab:9d:51:60:79:01:1e:6f:13:4f:72:93:0c: 78:33:8c:1c:66:4b:72:64:b2:47:5c:71:92:5a:fc: e3:37:42:0e:2c:21:c0:64:fe:7f:24:e8:c8:9e:17: 3d:68:62:e4:3e:59:b3:e9:a5:6a:b6:ed:fd:db:4b: 48:e4:8b:38:4d:c3:df:06:ba:fb:6b:9e:bc:c5:31: 58:63:c6:8a:12:25:b4:91:e3:2c:b2:06:f5:3f:26: bd:02:2d:61:20:c7:64:4b:a7:1d:24:af:76:d3:fd: e9:a2:b8:34:0b:3c:6d:cc:7b:c3:5d:c1:c9:74:48: 80:2a:1c:21:2b:da:56:ea:2a:16:cc:aa:06:0c:e1: 19:38:84:d5:4e:9c:5a:ee:74:0a:65:f7:6b:e3:3f: 5d:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:92:8E:DB:E9:26:29:F7:F6:31:F0:45:EE:90:9B:EC:73:30:3C:FB X509v3 Authority Key Identifier: keyid:AA:AE:C7:1C:A3:4D:EF:08:D8:8E:E7:7B:D9:1C:15:71:75:CC:3C:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6353/3BFDED6486BA11EBBCC39875C4F9AE02/qq7HHKNN7wjYjud72RwVcXXMPAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qq7HHKNN7wjYjud72RwVcXXMPAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6353/3BFDED6486BA11EBBCC39875C4F9AE02/qq7HHKNN7wjYjud72RwVcXXMPAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cf:1c:22:d5:56:c9:4c:46:8e:7c:7c:f7:0d:e0:dd:88:ea:c0: 02:99:8a:18:d8:f4:84:10:ee:7b:27:99:05:80:31:9f:ed:be: 50:b1:31:b2:1f:cb:fc:10:40:d9:fc:73:52:00:c4:55:29:a1: 53:5e:ed:da:3a:24:04:67:33:24:bb:c7:b7:84:e5:d0:48:91: 53:a7:a1:b0:b3:86:b7:e4:25:52:32:97:48:ea:c0:cf:63:d2: b2:36:57:ff:87:da:55:48:72:f0:1c:e0:d0:2c:76:58:22:61: 85:ea:39:b5:c1:39:22:e6:55:f3:3d:f0:96:cd:50:13:df:11: 0e:48:0f:74:4e:2c:47:82:16:46:c6:47:2b:01:8d:e8:1f:44: 4f:e8:7b:b6:a8:a5:0d:a4:88:62:10:d1:0b:f5:07:3e:0d:23: 4f:69:c9:ec:7f:d0:2c:0d:19:d5:13:76:e3:d6:93:35:cb:6f: 77:f0:b0:fc:f0:4b:fc:15:7c:2b:f5:7c:e0:db:3b:0f:c4:e3: 71:bb:7e:6e:b6:e9:7d:f1:7d:37:ff:e6:a6:ef:55:78:d7:bf: b3:a5:3f:c7:88:d3:4a:f0:33:f3:82:93:85:fe:fd:6d:04:9f: 94:84:11:6a:54:50:c0:94:d4:11:5f:7c:6e:4d:fd:8b:fe:97: b3:af:a1:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBp0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTYzNTMxMTAvBgNVBAUTKEFBQUVDNzFDQTM0REVGMDhEODhFRTc3QkQ5MUMxNTcx NzVDQzNDMDkwHhcNMjUwNTEyMjIxOTM2WhcNMjUwNTE5MjIxOTM2WjAYMRYwFAYD VQQDEw02ODIyNzNmOC0xMTVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqMDPSDmHsQeAguyKGBL0VR08UJKt0ErD5DLny2Ejx68LsaPGqxygQNsDmJSa 1e8IJ/iKRZveVJiz6XepdkhjAOyc7AvldwfY1BYHPZkpHUs/gDULaGSBXsdNqOPY eX5a990rRWbxBrM++6udUWB5AR5vE09ykwx4M4wcZktyZLJHXHGSWvzjN0IOLCHA ZP5/JOjInhc9aGLkPlmz6aVqtu3920tI5Is4TcPfBrr7a568xTFYY8aKEiW0keMs sgb1Pya9Ai1hIMdkS6cdJK920/3porg0CzxtzHvDXcHJdEiAKhwhK9pW6ioWzKoG DOEZOITVTpxa7nQKZfdr4z9dcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFiSjtvp Jin39jHwRe6Qm+xzMDz7MB8GA1UdIwQYMBaAFKquxxyjTe8I2I7ne9kcFXF1zDwJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjM1My8zQkZERUQ2NDg2 QkExMUVCQkNDMzk4NzVDNEY5QUUwMi9xcTdISEtOTjd3allqdWQ3MlJ3VmNYWE1Q QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FxN0hIS05ON3dqWWp1ZDcyUndWY1hYTVBBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NjM1My8zQkZERUQ2NDg2QkExMUVCQkNDMzk4NzVDNEY5QUUwMi9xcTdISEtOTjd3 allqdWQ3MlJ3VmNYWE1QQWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDPHCLVVslMRo58fPcN4N2I6sACmYoY2PSEEO57J5kFgDGf7b5QsTGy H8v8EEDZ/HNSAMRVKaFTXu3aOiQEZzMku8e3hOXQSJFTp6Gws4a35CVSMpdI6sDP Y9KyNlf/h9pVSHLwHODQLHZYImGF6jm1wTki5lXzPfCWzVAT3xEOSA90TixHghZG xkcrAY3oH0RP6Hu2qKUNpIhiENEL9Qc+DSNPacnsf9AsDRnVE3bj1pM1y2938LD8 8Ev8FXwr9Xzg2zsPxONxu35utul98X03/+am71V417+zpT/HiNNK8DPzgpOF/v1t BJ+UhBFqVFDAlNQRX3xuTf2L/pezr6FE -----END CERTIFICATE-----Generated at Wed May 14 10:46:04 2025 by rpki-client