$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.mft File: 1QwK07StgdVVlFzH8_HuHB-t5hc.mft (raw, json) Hash identifier: 6ZDPSNL6DtAZjWp9YMXQWdYVSi2gB1OALBuueQucn98= Subject key identifier: 17:13:23:55:77:54:77:3A:4A:64:F2:93:D7:1B:DB:91:60:B0:4B:76 Authority key identifier: D5:0C:0A:D3:B4:AD:81:D5:55:94:5C:C7:F3:F1:EE:1C:1F:AD:E6:17 Certificate issuer: /CN=A91DB475/serialNumber=D50C0AD3B4AD81D555945CC7F3F1EE1C1FADE617 Certificate serial: 0B17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QwK07StgdVVlFzH8_HuHB-t5hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.mft Manifest number: 0B0B Signing time: Sat 10 May 2025 19:03:36 +0000 Manifest this update: Sat 10 May 2025 19:03:35 +0000 Manifest next update: Sat 17 May 2025 19:03:35 +0000 Files and hashes: 1: 1QwK07StgdVVlFzH8_HuHB-t5hc.crl (hash: /i5s5b/Q1U9XDNdah0fEns3yxIMuuk1k3WQ2cFtRgck=) 2: 1E6B12EC049F11F0AD5C7C33C4F9AE02.roa (hash: gD5Iq8akoAlTIS4ryMBL5JIYOH1ViK0S3xNtIRVVfYc=) 3: 74CA44AA049F11F087661234C4F9AE02.roa (hash: 2OIryrqTJwARaXm6rXTbRJKfK80d24FVCzeiupTYqAE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.crl rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QwK07StgdVVlFzH8_HuHB-t5hc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 18:24:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2839 (0xb17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB475, serialNumber=D50C0AD3B4AD81D555945CC7F3F1EE1C1FADE617 Validity Not Before: May 10 19:03:35 2025 GMT Not After : May 17 19:03:35 2025 GMT Subject: CN=681fa307-1614 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:32:92:ab:70:5f:d0:f2:83:a3:0c:0e:f9:29: da:c6:1d:93:cd:bf:06:6b:91:dc:b3:04:5a:74:7d: 47:14:ec:55:0d:10:29:1d:a3:7a:c0:73:6e:f8:37: c8:56:f9:b9:72:36:9c:31:0e:43:1a:e1:eb:97:45: df:3c:ae:7e:64:04:95:ef:5a:00:61:b5:06:53:89: 63:13:9e:f9:d6:8f:e4:23:72:76:dd:cb:e7:25:34: a2:28:d4:07:a4:ab:8f:65:62:f6:07:fb:95:60:24: 6b:0b:f7:52:76:99:9d:11:b8:d0:78:ce:21:78:f7: 3c:94:54:f8:75:db:95:2e:6e:a4:14:c9:77:1a:75: dd:a2:1c:7b:ff:ac:85:99:7c:30:15:92:bc:a6:cf: eb:a4:41:ed:08:91:67:f3:3a:0c:61:e7:ef:44:fe: 69:eb:bf:e9:26:15:4f:3b:f3:c3:3a:43:b6:8b:75: 18:66:85:1c:49:91:ce:7a:1e:4f:d8:e2:03:f4:2e: 4f:29:7a:93:3d:42:9b:0a:28:bb:b8:a9:02:89:d3: 43:2a:a2:16:71:70:12:7b:0c:f8:2d:2a:f5:00:b9: ef:e4:68:f6:89:30:05:ba:3a:da:5a:c6:d6:c1:4b: d0:10:57:88:84:a0:38:9f:a7:41:0f:3a:f2:f0:76: 7e:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:13:23:55:77:54:77:3A:4A:64:F2:93:D7:1B:DB:91:60:B0:4B:76 X509v3 Authority Key Identifier: keyid:D5:0C:0A:D3:B4:AD:81:D5:55:94:5C:C7:F3:F1:EE:1C:1F:AD:E6:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QwK07StgdVVlFzH8_HuHB-t5hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:56:3e:ae:c0:3b:3b:49:aa:8a:fd:64:0c:bd:25:c5:9a:f6: 83:1d:f4:7e:75:67:6b:34:a6:8a:4e:85:1d:a6:0b:0a:23:47: ab:90:f6:4f:31:06:74:00:14:ca:3c:df:21:95:4c:01:b0:9e: c3:da:e0:d4:29:9b:40:92:1d:80:b1:4e:26:36:4f:12:ad:6b: 2f:17:43:11:f3:81:1c:f3:8d:f4:73:48:df:30:00:1a:6e:69: f6:c0:48:c7:2c:99:8c:95:b0:2c:5b:c0:ac:db:11:2d:e0:42: 97:ee:cc:9a:c2:d7:32:5a:9b:66:d4:04:77:dc:54:4d:d5:bd: b2:37:c4:a1:5b:43:a2:3c:da:59:c2:f6:49:b4:a5:6a:91:79: 67:d0:1c:f4:dd:72:94:cb:4d:82:e8:68:99:aa:6d:ec:a3:a2: 2e:0b:99:18:66:c0:62:82:c3:b0:d3:95:bc:cc:05:48:15:69: 06:f8:34:36:2d:6b:64:8a:1f:df:fe:89:4a:1d:ee:6f:32:c6: 23:c1:f6:e6:b4:73:72:ec:33:25:bb:58:03:28:ab:fc:0b:68: 00:6b:3e:d9:ee:57:8c:9a:43:73:d5:8f:94:2a:4c:44:41:fc: 33:54:85:5f:3e:bd:c9:46:ee:b2:ed:25:52:b8:30:14:9f:7b: f2:4e:a9:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI0NzUxMTAvBgNVBAUTKEQ1MEMwQUQzQjRBRDgxRDU1NTk0NUNDN0YzRjFFRTFD MUZBREU2MTcwHhcNMjUwNTEwMTkwMzM1WhcNMjUwNTE3MTkwMzM1WjAYMRYwFAYD VQQDEw02ODFmYTMwNy0xNjE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoDKSq3Bf0PKDowwO+Snaxh2Tzb8Ga5HcswRadH1HFOxVDRApHaN6wHNu+DfI Vvm5cjacMQ5DGuHrl0XfPK5+ZASV71oAYbUGU4ljE5751o/kI3J23cvnJTSiKNQH pKuPZWL2B/uVYCRrC/dSdpmdEbjQeM4hePc8lFT4dduVLm6kFMl3GnXdohx7/6yF mXwwFZK8ps/rpEHtCJFn8zoMYefvRP5p67/pJhVPO/PDOkO2i3UYZoUcSZHOeh5P 2OID9C5PKXqTPUKbCii7uKkCidNDKqIWcXASewz4LSr1ALnv5Gj2iTAFujraWsbW wUvQEFeIhKA4n6dBDzry8HZ+zwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBcTI1V3 VHc6SmTyk9cb25FgsEt2MB8GA1UdIwQYMBaAFNUMCtO0rYHVVZRcx/Px7hwfreYX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjQ3NS8yMDhGQjczMDQx NzIxMUVBOThBMzY4NkRDNEY5QUUwMi8xUXdLMDdTdGdkVlZsRnpIOF9IdUhCLXQ1 aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFRd0swN1N0Z2RWVmxGekg4X0h1SEItdDVoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjQ3NS8yMDhGQjczMDQxNzIxMUVBOThBMzY4NkRDNEY5QUUwMi8xUXdLMDdTdGdk VlZsRnpIOF9IdUhCLXQ1aGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZVj6uwDs7SaqK/WQMvSXFmvaDHfR+dWdrNKaKToUdpgsKI0erkPZP MQZ0ABTKPN8hlUwBsJ7D2uDUKZtAkh2AsU4mNk8SrWsvF0MR84Ec8430c0jfMAAa bmn2wEjHLJmMlbAsW8Cs2xEt4EKX7syawtcyWptm1AR33FRN1b2yN8ShW0OiPNpZ wvZJtKVqkXln0Bz03XKUy02C6GiZqm3so6IuC5kYZsBigsOw05W8zAVIFWkG+DQ2 LWtkih/f/olKHe5vMsYjwfbmtHNy7DMlu1gDKKv8C2gAaz7Z7leMmkNz1Y+UKkxE QfwzVIVfPr3JRu6y7SVSuDAUn3vyTqnD -----END CERTIFICATE-----Generated at Sun May 11 00:39:55 2025 by rpki-client