$ rpki-client -vvf rpki.apnic.net/member_repository/A91F783D/31DF1DEEB9B111E9990C0852C4F9AE02/q47HWiojWU9vKtMnsOa7wLCrm-4.mft File: q47HWiojWU9vKtMnsOa7wLCrm-4.mft (raw, json) Hash identifier: wHeKI1ezoo5B6GGVBxvkR/uP6zfphkPQorZsyOdjv3o= Subject key identifier: 38:25:19:F4:7E:27:04:4B:43:F8:95:09:02:FC:CA:0D:0F:4E:7B:0D Authority key identifier: AB:8E:C7:5A:2A:23:59:4F:6F:2A:D3:27:B0:E6:BB:C0:B0:AB:9B:EE Certificate issuer: /CN=A91F783D/serialNumber=AB8EC75A2A23594F6F2AD327B0E6BBC0B0AB9BEE Certificate serial: 0DC8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q47HWiojWU9vKtMnsOa7wLCrm-4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F783D/31DF1DEEB9B111E9990C0852C4F9AE02/q47HWiojWU9vKtMnsOa7wLCrm-4.mft Manifest number: 0DBE Signing time: Sat 10 May 2025 17:46:50 +0000 Manifest this update: Sat 10 May 2025 17:46:49 +0000 Manifest next update: Sat 17 May 2025 17:46:49 +0000 Files and hashes: 1: q47HWiojWU9vKtMnsOa7wLCrm-4.crl (hash: fqiIKoscGLE6aEBJFLZgJKr/elQaAk7w4IVTmmJPC3w=) 2: E3ACB710B9B211E9A9A37254C4F9AE02.roa (hash: Jg5gZD0YmKb91aw5MXsxMT3mckkXVt61eCbJBF82oak=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F783D/31DF1DEEB9B111E9990C0852C4F9AE02/q47HWiojWU9vKtMnsOa7wLCrm-4.crl rsync://rpki.apnic.net/member_repository/A91F783D/31DF1DEEB9B111E9990C0852C4F9AE02/q47HWiojWU9vKtMnsOa7wLCrm-4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q47HWiojWU9vKtMnsOa7wLCrm-4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 17:46:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3528 (0xdc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F783D, serialNumber=AB8EC75A2A23594F6F2AD327B0E6BBC0B0AB9BEE Validity Not Before: May 10 17:46:49 2025 GMT Not After : May 17 17:46:49 2025 GMT Subject: CN=681f9109-1aeb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:9b:eb:d4:c3:cd:28:67:f1:55:16:9d:f8:13: 69:2f:c1:2e:02:70:01:aa:78:a3:c3:8c:d2:c9:ce: 44:b1:22:ea:88:0d:94:5e:30:2b:b5:41:4c:c9:d0: b6:3f:7d:82:a4:3a:bc:71:0a:2c:f1:00:5f:7c:03: 55:14:82:a4:05:0a:95:2a:20:a4:5d:0d:20:e7:8c: 79:8d:65:7f:c3:e4:0d:d8:9d:88:34:87:04:84:b6: 6d:57:65:c3:b4:46:ae:80:d6:d3:32:69:f0:55:38: e1:32:bb:46:e5:1f:c5:ef:b1:61:5a:fe:a6:e9:3a: c6:10:05:2c:db:05:c4:13:4e:19:f3:fe:bc:f5:6c: 0f:a9:0f:dc:f4:e4:bc:28:ff:df:7b:8c:68:b6:94: ea:2a:c2:ad:eb:6a:17:63:89:11:9f:99:a7:bf:91: 1a:54:47:da:40:d9:49:25:07:51:ff:a4:e7:60:14: aa:46:6a:3c:8c:d6:ec:ef:df:51:ea:d2:72:fc:66: b3:e7:59:fe:5d:c5:d4:38:4a:33:95:7d:d4:28:31: 60:d4:79:0b:8b:8a:8f:ba:38:79:92:0e:15:7e:60: 07:02:c3:14:b7:9e:02:ac:e3:f0:1b:59:b8:c0:85: c7:14:12:49:64:11:91:6b:9a:92:0b:7f:03:6e:74: 80:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:25:19:F4:7E:27:04:4B:43:F8:95:09:02:FC:CA:0D:0F:4E:7B:0D X509v3 Authority Key Identifier: keyid:AB:8E:C7:5A:2A:23:59:4F:6F:2A:D3:27:B0:E6:BB:C0:B0:AB:9B:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F783D/31DF1DEEB9B111E9990C0852C4F9AE02/q47HWiojWU9vKtMnsOa7wLCrm-4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q47HWiojWU9vKtMnsOa7wLCrm-4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F783D/31DF1DEEB9B111E9990C0852C4F9AE02/q47HWiojWU9vKtMnsOa7wLCrm-4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d4:c1:15:53:4e:f0:80:76:27:9f:b8:b6:b4:21:1b:df:05:0e: 44:2d:9a:12:40:a1:d3:dd:3d:da:b1:f8:16:c0:60:ff:92:8d: 7e:ca:e9:47:f7:5d:e1:1d:f1:54:83:28:ee:89:70:6a:17:8b: d0:4b:5c:4f:b3:b8:c0:23:cc:42:92:9c:83:a5:77:c7:c2:20: e2:79:d0:21:13:06:01:d6:5b:a0:be:cf:fc:6f:17:4c:3e:4e: 38:be:35:46:c8:7e:7d:73:8e:40:be:37:24:0d:4c:de:6e:92: 0c:fc:28:fc:ab:59:9c:8e:ed:06:12:e7:66:3f:05:52:34:bd: a0:b3:27:88:61:be:b3:49:84:9e:6a:bd:17:38:26:45:4d:68: 0f:15:f8:64:7e:da:28:9f:f6:62:0b:b6:55:fd:00:d3:5a:a2: 55:b7:9a:c5:21:15:b9:66:ba:dc:d8:88:36:6b:9f:d7:5d:f9: 71:1f:cc:12:34:d5:59:32:de:69:e0:9a:15:3f:81:d1:09:05: a7:23:c4:d4:f8:7a:d9:a8:16:f8:96:69:0d:9f:1e:0f:1a:4b: ec:e2:1b:3a:40:ed:45:3e:41:f7:ac:e5:d4:62:c7:55:07:5a: eb:31:04:89:41:02:1b:48:f9:84:6b:24:43:0c:7e:8a:47:4e: 26:5e:08:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjc4M0QxMTAvBgNVBAUTKEFCOEVDNzVBMkEyMzU5NEY2RjJBRDMyN0IwRTZCQkMw QjBBQjlCRUUwHhcNMjUwNTEwMTc0NjQ5WhcNMjUwNTE3MTc0NjQ5WjAYMRYwFAYD VQQDEw02ODFmOTEwOS0xYWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqJvr1MPNKGfxVRad+BNpL8EuAnABqnijw4zSyc5EsSLqiA2UXjArtUFMydC2 P32CpDq8cQos8QBffANVFIKkBQqVKiCkXQ0g54x5jWV/w+QN2J2INIcEhLZtV2XD tEaugNbTMmnwVTjhMrtG5R/F77FhWv6m6TrGEAUs2wXEE04Z8/689WwPqQ/c9OS8 KP/fe4xotpTqKsKt62oXY4kRn5mnv5EaVEfaQNlJJQdR/6TnYBSqRmo8jNbs799R 6tJy/Gaz51n+XcXUOEozlX3UKDFg1HkLi4qPujh5kg4VfmAHAsMUt54CrOPwG1m4 wIXHFBJJZBGRa5qSC38DbnSAQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDglGfR+ JwRLQ/iVCQL8yg0PTnsNMB8GA1UdIwQYMBaAFKuOx1oqI1lPbyrTJ7Dmu8Cwq5vu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzgzRC8zMURGMURFRUI5 QjExMUU5OTkwQzA4NTJDNEY5QUUwMi9xNDdIV2lvaldVOXZLdE1uc09hN3dMQ3Jt LTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3E0N0hXaW9qV1U5dkt0TW5zT2E3d0xDcm0tNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzgzRC8zMURGMURFRUI5QjExMUU5OTkwQzA4NTJDNEY5QUUwMi9xNDdIV2lvaldV OXZLdE1uc09hN3dMQ3JtLTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDUwRVTTvCAdiefuLa0IRvfBQ5ELZoSQKHT3T3asfgWwGD/ko1+yulH 913hHfFUgyjuiXBqF4vQS1xPs7jAI8xCkpyDpXfHwiDiedAhEwYB1lugvs/8bxdM Pk44vjVGyH59c45AvjckDUzebpIM/Cj8q1mcju0GEudmPwVSNL2gsyeIYb6zSYSe ar0XOCZFTWgPFfhkftoon/ZiC7ZV/QDTWqJVt5rFIRW5Zrrc2Ig2a5/XXflxH8wS NNVZMt5p4JoVP4HRCQWnI8TU+HrZqBb4lmkNnx4PGkvs4hs6QO1FPkH3rOXUYsdV B1rrMQSJQQIbSPmEayRDDH6KR04mXghT -----END CERTIFICATE-----Generated at Sun May 11 15:30:20 2025 by rpki-client