$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft File: -Q4hD858Z6Lysy3hTusFoEsNEOE.mft (raw, json) Hash identifier: iwhS/1YJLpnbLr5hie5EwXVYwuxmh3qF039idTbZP+s= Subject key identifier: 88:EF:52:4F:24:C8:DA:87:6F:34:39:8C:5B:39:94:4E:79:55:FF:9A Authority key identifier: F9:0E:21:0F:CE:7C:67:A2:F2:B3:2D:E1:4E:EB:05:A0:4B:0D:10:E1 Certificate issuer: /CN=A91A7369/serialNumber=F90E210FCE7C67A2F2B32DE14EEB05A04B0D10E1 Certificate serial: 0143 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft Manifest number: 0140 Signing time: Thu 15 May 2025 03:44:01 +0000 Manifest this update: Thu 15 May 2025 03:44:01 +0000 Manifest next update: Thu 22 May 2025 03:44:01 +0000 Files and hashes: 1: -Q4hD858Z6Lysy3hTusFoEsNEOE.crl (hash: DBcwsxgYqDLLfJ+VrBJ+Zrm5p21F+KVVOb7ikShaVEI=) 2: A99E5658488011EE8113A766C4F9AE02.roa (hash: E13lbyCe1pFntvaZ0/XCP2JTKYjD9ZQaJQDpf4OhMJA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.crl rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 03:44:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 323 (0x143) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7369, serialNumber=F90E210FCE7C67A2F2B32DE14EEB05A04B0D10E1 Validity Not Before: May 15 03:44:01 2025 GMT Not After : May 22 03:44:01 2025 GMT Subject: CN=68256301-b371 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:6c:50:af:07:57:8b:d2:7c:45:30:c0:3c:68: 93:44:27:8a:7a:82:12:fc:35:e0:80:64:a2:f1:98: 62:ae:38:5d:ed:b2:3b:50:80:bd:25:02:e0:ee:87: 80:db:63:d0:e4:2b:c8:32:9c:17:fe:fc:ad:b4:39: 1b:df:8f:90:b1:44:c6:e9:4d:4b:6e:8d:e2:8f:a7: ce:9d:2f:f5:1d:e1:7f:e6:1b:b8:4d:37:70:c8:3e: fb:f3:5a:67:df:f4:a5:30:a1:19:83:4f:93:33:0e: 19:1a:82:d6:ab:3d:71:b8:b2:41:de:27:69:f1:14: e6:7c:86:ca:af:72:23:97:ac:f1:11:75:b1:6e:f4: b5:44:64:36:69:90:7f:05:3a:62:a6:58:93:f3:bd: 00:c0:e4:86:66:cc:4a:bc:ed:38:d1:ff:38:58:ea: 41:30:13:1d:e3:02:8c:a2:01:40:a4:25:17:34:c3: 82:54:4d:7f:ef:6a:b3:62:db:0e:39:a3:f3:57:37: 44:b5:c8:51:ed:ca:c9:6e:73:c2:90:16:e2:71:4b: 45:a3:92:23:a4:d7:43:dc:fa:6a:1c:65:7c:38:fb: fe:00:ab:cd:e4:68:21:81:d4:11:d4:6e:d7:64:7c: 09:47:61:ec:06:a6:a2:40:c7:a5:b4:2e:8f:d3:0f: 7a:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:EF:52:4F:24:C8:DA:87:6F:34:39:8C:5B:39:94:4E:79:55:FF:9A X509v3 Authority Key Identifier: keyid:F9:0E:21:0F:CE:7C:67:A2:F2:B3:2D:E1:4E:EB:05:A0:4B:0D:10:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:08:a9:a3:36:dd:fd:93:41:8c:aa:a9:04:92:f1:57:6b:a0: 22:cc:87:a8:e6:89:b2:95:88:42:7a:09:da:51:62:aa:ee:40: d2:09:93:a3:d0:d5:1d:f8:d9:bc:df:4c:63:5c:01:78:86:3b: 7b:1f:eb:96:25:0a:d1:38:1d:18:3d:26:58:f0:31:8d:22:e6: a9:e8:90:e6:c1:42:33:e3:70:0f:dc:19:50:ff:ff:cf:da:7d: 70:0b:6e:e5:8e:ad:db:12:9d:f4:2d:74:48:81:a0:dd:17:b4: bf:12:4a:d9:37:d1:ba:de:cd:a3:dc:9f:31:50:c3:b4:82:18: b5:37:f2:92:ee:1a:e9:3a:9d:21:dd:c8:c1:2c:79:1c:4f:d1: 27:5b:3d:96:57:29:f7:d1:9b:ef:35:4f:93:c2:9d:7e:b6:35: 5e:d3:aa:a3:4d:28:bd:0c:20:43:7a:7f:46:81:a0:5d:d4:f3: 5c:57:bf:a9:17:a3:28:96:5c:b3:d1:14:c7:3b:e5:45:4d:8c: ac:3a:49:2a:e9:74:c6:5e:ca:bd:a3:6c:0e:1d:ce:59:ad:88: d3:cc:99:b8:44:81:cb:75:6e:5b:19:db:7b:53:1a:53:e2:97: 2c:c6:31:de:2b:c4:ce:6c:8f:b0:b8:6f:7e:94:c2:55:b4:3a: 87:57:c4:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTczNjkxMTAvBgNVBAUTKEY5MEUyMTBGQ0U3QzY3QTJGMkIzMkRFMTRFRUIwNUEw NEIwRDEwRTEwHhcNMjUwNTE1MDM0NDAxWhcNMjUwNTIyMDM0NDAxWjAYMRYwFAYD VQQDEw02ODI1NjMwMS1iMzcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw2xQrwdXi9J8RTDAPGiTRCeKeoIS/DXggGSi8Zhirjhd7bI7UIC9JQLg7oeA 22PQ5CvIMpwX/vyttDkb34+QsUTG6U1Lbo3ij6fOnS/1HeF/5hu4TTdwyD7781pn 3/SlMKEZg0+TMw4ZGoLWqz1xuLJB3idp8RTmfIbKr3Ijl6zxEXWxbvS1RGQ2aZB/ BTpipliT870AwOSGZsxKvO040f84WOpBMBMd4wKMogFApCUXNMOCVE1/72qzYtsO OaPzVzdEtchR7crJbnPCkBbicUtFo5IjpNdD3PpqHGV8OPv+AKvN5GghgdQR1G7X ZHwJR2HsBqaiQMeltC6P0w96MwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIjvUk8k yNqHbzQ5jFs5lE55Vf+aMB8GA1UdIwQYMBaAFPkOIQ/OfGei8rMt4U7rBaBLDRDh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzM2OS9CMUQ2MTk0MjQ4 N0YxMUVFQTgwQTAyNENDNEY5QUUwMi8tUTRoRDg1OFo2THlzeTNoVHVzRm9Fc05F T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1RNGhEODU4WjZMeXN5M2hUdXNGb0VzTkVPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzM2OS9CMUQ2MTk0MjQ4N0YxMUVFQTgwQTAyNENDNEY5QUUwMi8tUTRoRDg1OFo2 THlzeTNoVHVzRm9Fc05FT0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwCKmjNt39k0GMqqkEkvFXa6AizIeo5omylYhCegnaUWKq7kDSCZOj 0NUd+Nm830xjXAF4hjt7H+uWJQrROB0YPSZY8DGNIuap6JDmwUIz43AP3BlQ///P 2n1wC27ljq3bEp30LXRIgaDdF7S/EkrZN9G63s2j3J8xUMO0ghi1N/KS7hrpOp0h 3cjBLHkcT9EnWz2WVyn30ZvvNU+Twp1+tjVe06qjTSi9DCBDen9GgaBd1PNcV7+p F6Mollyz0RTHO+VFTYysOkkq6XTGXsq9o2wOHc5ZrYjTzJm4RIHLdW5bGdt7UxpT 4pcsxjHeK8TObI+wuG9+lMJVtDqHV8TO -----END CERTIFICATE-----Generated at Sat May 17 00:55:01 2025 by rpki-client