$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft File: q2JivH0C7BrUi3HamLc9IqNi2vA.mft (raw, json) Hash identifier: C6RA3gN1ruOlwbAwM0gM9QlyI9USnoQaOBYkPOyTS6o= Subject key identifier: 5E:38:7D:47:07:AF:75:A6:AF:C4:27:A1:4C:E5:C8:3F:E4:0C:52:F1 Authority key identifier: AB:62:62:BC:7D:02:EC:1A:D4:8B:71:DA:98:B7:3D:22:A3:62:DA:F0 Certificate issuer: /CN=A91E2454/serialNumber=AB6262BC7D02EC1AD48B71DA98B73D22A362DAF0 Certificate serial: 35EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft Manifest number: 3524 Signing time: Mon 12 May 2025 14:28:37 +0000 Manifest this update: Mon 12 May 2025 14:28:37 +0000 Manifest next update: Mon 19 May 2025 14:28:37 +0000 Files and hashes: 1: q2JivH0C7BrUi3HamLc9IqNi2vA.crl (hash: qPjhxswc/gEyHhXm5SKnKuuYpZR1x5eGad4BkCCEOGg=) 2: 4D5247EEA4C911E782854F50C4F9AE02.roa (hash: 0ae8AXI4ti/g7kjicz0FuqIQr5KuRMl+VwlLXivxPFk=) 3: 78123422B0CD11E58B55FC73C4F9AE02.roa (hash: ELjtbDvUJdRIE0OkklMq1ckQ7DJ/Pb2ipSH84CeiKCg=) 4: 7B938024B0CD11E58B55FC73C4F9AE02.roa (hash: 7ydpzn/QoSWEXvjnGZJ1ta2JwlGF9ANK2aScVlru+Tc=) 5: 7F4D30ACB0CD11E58B55FC73C4F9AE02.roa (hash: YwQuCfTd/qrlJSeamxwuUJ+BvQmXE+p3bNmQY1uUsFo=) 6: 4BF67550A4C911E782854F50C4F9AE02.roa (hash: nr6/7CG6oXudz0l6iz2yM+GZu8wisnZlSv+XVHe+5pE=) 7: 7D920C1AB0CD11E58B55FC73C4F9AE02.roa (hash: GEX+sNV+gjoBRlfbvjQXv3uXeYnL4cH1wK1KCC8jYpA=) 8: 9C193BAC08C511EDBC862E48C4F9AE02.roa (hash: 896PbO0EonUimzXSLkBsI3knk6hd3BAHtAyqYKCmbBE=) 9: 816FA9C0B07611EFA5773917C4F9AE02.roa (hash: Pe6tz3jNRPR6gXfsK8tx8lrjl8rvWTB+EFpcz7nsWc8=) 10: 4C9925F2A4C911E782854F50C4F9AE02.roa (hash: R2/SizcxlFy6GiKbWh9BC6IePjx7ZGaL4yUJEBHXwDg=) 11: 8207CCA0906C11EC86E8B711C4F9AE02.roa (hash: /ugniFpN/rGX8I1uxfmMZJryeFfYuWgB3WroPzoi6qU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.crl rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 14:28:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13807 (0x35ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2454, serialNumber=AB6262BC7D02EC1AD48B71DA98B73D22A362DAF0 Validity Not Before: May 12 14:28:37 2025 GMT Not After : May 19 14:28:37 2025 GMT Subject: CN=68220595-32ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:76:4b:91:c0:e2:27:37:3e:dc:15:c6:18:b9: c4:fa:02:84:27:16:06:64:8c:55:df:ef:9e:67:83: 64:89:a6:ef:40:40:50:fe:f2:a0:cf:c3:e8:6f:59: 84:fb:98:51:ce:f8:af:df:29:25:92:aa:4f:58:4c: 3a:2f:ff:e7:d7:71:ca:54:b9:d7:60:2a:f6:65:6c: d5:c3:50:9c:a2:0e:87:6e:50:7e:5e:85:0a:a5:96: 5a:f4:82:13:d0:b2:3f:fe:c4:a0:17:c6:a3:3c:47: 61:a1:af:99:f1:ca:3f:89:cc:5e:45:23:eb:ed:49: 0e:c8:fc:a3:3b:09:45:0f:ae:14:3d:26:d9:d9:e1: 0e:30:30:0a:de:b0:87:40:a2:7a:27:7b:93:4c:57: e5:68:fb:2c:c4:b7:38:63:d3:64:9d:20:e2:bc:84: 48:b1:5a:56:78:05:2d:2f:da:9c:5c:dc:6e:60:ab: 03:e5:b5:45:f2:e4:ea:b7:0b:d3:51:1b:7e:78:ac: 46:fb:e5:ef:62:7c:d0:60:06:15:79:16:8e:d3:7f: da:5e:59:62:b7:dc:fa:57:11:25:db:da:da:91:41: 93:ad:7c:4c:dc:2a:71:14:96:28:f0:05:ee:89:f8: eb:88:d5:aa:6c:06:3d:86:b0:57:74:1a:b9:34:cf: 7c:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:38:7D:47:07:AF:75:A6:AF:C4:27:A1:4C:E5:C8:3F:E4:0C:52:F1 X509v3 Authority Key Identifier: keyid:AB:62:62:BC:7D:02:EC:1A:D4:8B:71:DA:98:B7:3D:22:A3:62:DA:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:06:74:c8:03:c1:f5:f1:27:9c:6c:fa:32:5f:df:37:1e:00: 6c:09:ad:b9:ee:89:f6:01:c6:2b:28:b7:c2:33:ce:88:0d:0d: ba:b0:5c:e7:6f:28:99:66:ef:08:99:89:e2:d0:62:ee:48:71: ba:2b:76:2b:4b:e0:33:a6:ed:98:e9:1d:a8:d2:12:e8:fe:1e: 24:fd:15:e1:12:ca:3d:9c:99:b4:66:5d:7d:a4:2a:cc:9d:50: b1:a0:40:c4:17:46:74:40:8a:07:f1:0c:38:c3:63:0d:09:48: 2e:02:d5:10:ce:ec:24:4a:9b:12:2a:d9:ae:5b:b8:39:10:c7: 70:39:55:2f:5d:5a:c3:95:00:a7:96:22:18:15:73:43:54:41: e5:f6:2e:50:03:5f:c4:bc:dc:bb:d8:08:fb:4a:d8:84:d1:bf: e4:84:17:3c:a2:45:ec:0f:1b:b4:bf:fb:d9:92:52:d8:e2:9b: 41:64:4d:2c:22:8f:ac:20:e5:7b:56:83:6a:36:1d:e5:88:fc: 81:5c:9a:96:f1:bf:36:69:79:76:fb:f0:11:cf:59:e1:8f:06: 02:3f:df:c0:48:fd:f1:4d:12:f7:e5:51:0f:46:3b:38:32:ab: 6a:cd:9d:e1:81:a2:05:f4:03:37:e3:c6:dc:be:69:cd:74:54: 4b:be:eb:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI0NTQxMTAvBgNVBAUTKEFCNjI2MkJDN0QwMkVDMUFENDhCNzFEQTk4QjczRDIy QTM2MkRBRjAwHhcNMjUwNTEyMTQyODM3WhcNMjUwNTE5MTQyODM3WjAYMRYwFAYD VQQDEw02ODIyMDU5NS0zMmFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvnZLkcDiJzc+3BXGGLnE+gKEJxYGZIxV3++eZ4NkiabvQEBQ/vKgz8Pob1mE +5hRzviv3yklkqpPWEw6L//n13HKVLnXYCr2ZWzVw1Ccog6HblB+XoUKpZZa9IIT 0LI//sSgF8ajPEdhoa+Z8co/icxeRSPr7UkOyPyjOwlFD64UPSbZ2eEOMDAK3rCH QKJ6J3uTTFflaPssxLc4Y9NknSDivIRIsVpWeAUtL9qcXNxuYKsD5bVF8uTqtwvT URt+eKxG++XvYnzQYAYVeRaO03/aXllit9z6VxEl29rakUGTrXxM3CpxFJYo8AXu ifjriNWqbAY9hrBXdBq5NM98YwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF44fUcH r3Wmr8QnoUzlyD/kDFLxMB8GA1UdIwQYMBaAFKtiYrx9Auwa1Itx2pi3PSKjYtrw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjQ1NC9ENEMzMEI0MjFE ODcxMUUyQTE5ODIyRTAwOEIwMkNEMi9xMkppdkgwQzdCclVpM0hhbUxjOUlxTmky dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3EySml2SDBDN0JyVWkzSGFtTGM5SXFOaTJ2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjQ1NC9ENEMzMEI0MjFEODcxMUUyQTE5ODIyRTAwOEIwMkNEMi9xMkppdkgwQzdC clVpM0hhbUxjOUlxTmkydkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqBnTIA8H18SecbPoyX983HgBsCa257on2AcYrKLfCM86IDQ26sFzn byiZZu8ImYni0GLuSHG6K3YrS+Azpu2Y6R2o0hLo/h4k/RXhEso9nJm0Zl19pCrM nVCxoEDEF0Z0QIoH8Qw4w2MNCUguAtUQzuwkSpsSKtmuW7g5EMdwOVUvXVrDlQCn liIYFXNDVEHl9i5QA1/EvNy72Aj7StiE0b/khBc8okXsDxu0v/vZklLY4ptBZE0s Io+sIOV7VoNqNh3liPyBXJqW8b82aXl2+/ARz1nhjwYCP9/ASP3xTRL35VEPRjs4 MqtqzZ3hgaIF9AM348bcvmnNdFRLvute -----END CERTIFICATE-----Generated at Wed May 14 16:19:31 2025 by rpki-client