$ rpki-client -vvf rpki.apnic.net/member_repository/A91B15DC/4FEC1C04CEED11EFBD655511C4F9AE02/024QQmH4GdaND3C7Ka3-jvRjsu0.mft File: 024QQmH4GdaND3C7Ka3-jvRjsu0.mft (raw, json) Hash identifier: chiX7dcIx9A8VrLT0FaR8LnIHV58oBv5pf2bjaZAkNg= Subject key identifier: AE:08:AB:84:A6:CC:8C:6F:DC:D0:1A:B9:C7:FE:09:2C:06:8B:76:94 Authority key identifier: D3:6E:10:42:61:F8:19:D6:8D:0F:70:BB:29:AD:FE:8E:F4:63:B2:ED Certificate issuer: /CN=A91B15DC/serialNumber=D36E104261F819D68D0F70BB29ADFE8EF463B2ED Certificate serial: 40 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/024QQmH4GdaND3C7Ka3-jvRjsu0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B15DC/4FEC1C04CEED11EFBD655511C4F9AE02/024QQmH4GdaND3C7Ka3-jvRjsu0.mft Manifest number: 3F Signing time: Fri 09 May 2025 06:29:47 +0000 Manifest this update: Fri 09 May 2025 06:29:46 +0000 Manifest next update: Fri 16 May 2025 06:29:46 +0000 Files and hashes: 1: 024QQmH4GdaND3C7Ka3-jvRjsu0.crl (hash: 1BVwuFn7+cLfwjqVQekBusRRPpd69m7xC+iQkrWO+a0=) 2: 0A65ADB6CEEE11EFAA2CA812C4F9AE02.roa (hash: BnzgVRQY1lWGd2cFrP1xnxB6cOmKQA86fc66ckx28mQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B15DC/4FEC1C04CEED11EFBD655511C4F9AE02/024QQmH4GdaND3C7Ka3-jvRjsu0.crl rsync://rpki.apnic.net/member_repository/A91B15DC/4FEC1C04CEED11EFBD655511C4F9AE02/024QQmH4GdaND3C7Ka3-jvRjsu0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/024QQmH4GdaND3C7Ka3-jvRjsu0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64 (0x40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B15DC, serialNumber=D36E104261F819D68D0F70BB29ADFE8EF463B2ED Validity Not Before: May 9 06:29:46 2025 GMT Not After : May 16 06:29:46 2025 GMT Subject: CN=681da0da-8c67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:a2:ca:ff:63:a4:1f:c2:b7:3e:0a:86:71:58: 29:1a:cb:10:40:2a:31:7a:07:e6:ac:25:cb:df:01: 42:6c:6f:ff:13:37:0c:10:f4:bc:47:77:01:63:b5: 64:c8:4f:ea:43:a4:c4:bc:97:ed:e3:6d:01:d8:e8: 23:1f:f4:c5:16:c9:52:50:ad:55:77:9f:47:a3:dd: ab:dc:89:ca:65:43:a2:3e:fe:0e:32:30:20:51:a0: 37:75:f2:9a:50:e7:9d:46:a8:92:d4:1f:6b:00:0c: 2e:c4:bd:26:6c:2b:16:35:d9:25:d7:dd:2a:f7:d8: 55:f7:8d:aa:9c:5f:34:be:ff:af:4a:64:f5:02:7e: e5:28:20:db:e0:73:02:6d:29:da:89:e9:b0:31:c9: 06:01:27:3e:f7:41:cb:98:53:2d:3e:b1:11:c3:13: 90:9a:db:56:f5:15:ea:f9:ac:a8:e1:7f:78:52:87: 9d:00:4c:50:93:f1:47:ab:9a:85:89:14:88:91:fb: 79:13:77:05:6e:a7:8c:74:dc:2a:5e:1c:70:86:e4: 37:1f:ec:fb:f7:df:6c:0c:15:c8:81:42:4a:bc:de: 81:46:2e:c6:4a:7f:3c:cf:1c:39:cc:27:92:37:53: 2f:b5:4d:9d:42:9b:aa:cd:d3:fc:cc:94:1b:6a:bb: a9:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:08:AB:84:A6:CC:8C:6F:DC:D0:1A:B9:C7:FE:09:2C:06:8B:76:94 X509v3 Authority Key Identifier: keyid:D3:6E:10:42:61:F8:19:D6:8D:0F:70:BB:29:AD:FE:8E:F4:63:B2:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B15DC/4FEC1C04CEED11EFBD655511C4F9AE02/024QQmH4GdaND3C7Ka3-jvRjsu0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/024QQmH4GdaND3C7Ka3-jvRjsu0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B15DC/4FEC1C04CEED11EFBD655511C4F9AE02/024QQmH4GdaND3C7Ka3-jvRjsu0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:42:40:7b:05:89:4a:de:cd:72:fd:0e:0f:08:7b:77:c3:97: 0f:e4:85:77:3d:59:fc:97:72:df:fe:e8:b3:ae:19:98:b0:53: 94:e0:21:ab:26:e3:e0:f9:66:f3:f4:3a:61:a0:c7:7a:be:22: 2e:b9:65:6d:3f:9f:5b:b7:54:80:31:da:d2:96:a8:01:ee:0c: 46:89:f6:cc:68:98:16:b3:bf:52:df:e7:b7:22:cb:e7:78:1b: 0c:b1:b3:f9:b9:b8:1b:e7:a7:02:96:65:47:c1:2a:59:27:37: 41:c5:a2:9f:4c:33:e4:2b:3c:14:44:e7:52:fb:f3:a9:58:c0: 94:e5:fb:8b:98:cf:98:76:8d:e7:bc:3e:55:71:1a:59:74:73: 88:3e:c3:9c:a3:7a:47:7e:82:08:f7:9c:d6:a2:d6:9c:ce:5e: 42:2e:e5:3a:d8:c7:15:c8:13:c1:ad:09:0e:39:2b:92:bd:1b: 65:4e:3f:ea:b5:d2:cc:c5:c0:cf:56:39:a1:66:30:c6:ab:82: e1:f3:6c:30:29:d3:4a:b5:aa:6d:55:79:2f:e3:4e:84:ce:3b: 18:57:19:68:45:01:e2:88:92:c2:a0:38:ce:56:79:a9:59:da: c6:19:7e:b6:43:f9:4c:6f:09:83:7e:67:20:45:aa:1a:e1:fa: 7b:65:34:68 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MTVEQzExMC8GA1UEBRMoRDM2RTEwNDI2MUY4MTlENjhEMEY3MEJCMjlBREZFOEVG NDYzQjJFRDAeFw0yNTA1MDkwNjI5NDZaFw0yNTA1MTYwNjI5NDZaMBgxFjAUBgNV BAMTDTY4MWRhMGRhLThjNjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvosr/Y6Qfwrc+CoZxWCkayxBAKjF6B+asJcvfAUJsb/8TNwwQ9LxHdwFjtWTI T+pDpMS8l+3jbQHY6CMf9MUWyVJQrVV3n0ej3avcicplQ6I+/g4yMCBRoDd18ppQ 551GqJLUH2sADC7EvSZsKxY12SXX3Sr32FX3jaqcXzS+/69KZPUCfuUoINvgcwJt KdqJ6bAxyQYBJz73QcuYUy0+sRHDE5Ca21b1Fer5rKjhf3hSh50ATFCT8UermoWJ FIiR+3kTdwVup4x03CpeHHCG5Dcf7Pv332wMFciBQkq83oFGLsZKfzzPHDnMJ5I3 Uy+1TZ1Cm6rN0/zMlBtqu6kPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUrgirhKbM jG/c0Bq5x/4JLAaLdpQwHwYDVR0jBBgwFoAU024QQmH4GdaND3C7Ka3+jvRjsu0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIxNURDLzRGRUMxQzA0Q0VF RDExRUZCRDY1NTUxMUM0RjlBRTAyLzAyNFFRbUg0R2RhTkQzQzdLYTMtanZSanN1 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMDI0UVFtSDRHZGFORDNDN0thMy1qdlJqc3UwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIx NURDLzRGRUMxQzA0Q0VFRDExRUZCRDY1NTUxMUM0RjlBRTAyLzAyNFFRbUg0R2Rh TkQzQzdLYTMtanZSanN1MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJlCQHsFiUrezXL9Dg8Ie3fDlw/khXc9WfyXct/+6LOuGZiwU5TgIasm 4+D5ZvP0OmGgx3q+Ii65ZW0/n1u3VIAx2tKWqAHuDEaJ9sxomBazv1Lf57ciy+d4 Gwyxs/m5uBvnpwKWZUfBKlknN0HFop9MM+QrPBRE51L786lYwJTl+4uYz5h2jee8 PlVxGll0c4g+w5yjekd+ggj3nNai1pzOXkIu5TrYxxXIE8GtCQ45K5K9G2VOP+q1 0szFwM9WOaFmMMarguHzbDAp00q1qm1VeS/jToTOOxhXGWhFAeKIksKgOM5WealZ 2sYZfrZD+UxvCYN+ZyBFqhrh+ntlNGg= -----END CERTIFICATE-----Generated at Fri May 9 10:07:11 2025 by rpki-client