$ rpki-client -vvf rpki.apnic.net/member_repository/A9111ED2/621E8610845011EA8047CE7DC4F9AE02/QMCQUT8kAYkgsVHapVRJwV3IS-s.mft File: QMCQUT8kAYkgsVHapVRJwV3IS-s.mft (raw, json) Hash identifier: CEvD4RhLxbmJ34QUKNDx/LGI8mV2eIpwtGzCf4uEkGE= Subject key identifier: B3:A0:E9:13:C8:8A:4B:AA:8C:61:E3:68:2E:08:A7:63:07:EC:03:9F Authority key identifier: 40:C0:90:51:3F:24:01:89:20:B1:51:DA:A5:54:49:C1:5D:C8:4B:EB Certificate issuer: /CN=A9111ED2/serialNumber=40C090513F24018920B151DAA55449C15DC84BEB Certificate serial: 09AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QMCQUT8kAYkgsVHapVRJwV3IS-s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111ED2/621E8610845011EA8047CE7DC4F9AE02/QMCQUT8kAYkgsVHapVRJwV3IS-s.mft Manifest number: 09A3 Signing time: Thu 24 Apr 2025 19:56:24 +0000 Manifest this update: Thu 24 Apr 2025 19:56:24 +0000 Manifest next update: Thu 01 May 2025 19:56:24 +0000 Files and hashes: 1: QMCQUT8kAYkgsVHapVRJwV3IS-s.crl (hash: b7eLaTKkS8XoM2XiYfHlAJ6YeJj/+2TjlxJFqHvuY20=) 2: 1E809CD0845111EAA961467EC4F9AE02.roa (hash: H/OVGlOkL0NhP3BGJyz6i1zChcNr+09N/UDEg/ELwo0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111ED2/621E8610845011EA8047CE7DC4F9AE02/QMCQUT8kAYkgsVHapVRJwV3IS-s.crl rsync://rpki.apnic.net/member_repository/A9111ED2/621E8610845011EA8047CE7DC4F9AE02/QMCQUT8kAYkgsVHapVRJwV3IS-s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QMCQUT8kAYkgsVHapVRJwV3IS-s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:56:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2474 (0x9aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111ED2, serialNumber=40C090513F24018920B151DAA55449C15DC84BEB Validity Not Before: Apr 24 19:56:24 2025 GMT Not After : May 1 19:56:24 2025 GMT Subject: CN=680a9768-4a29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:fc:1f:f3:1f:3a:64:28:d2:10:66:8c:4d:7d: 4c:34:ac:d7:aa:0e:30:3a:9d:e3:c7:43:c7:a0:d2: 29:f2:b0:17:f7:1b:24:25:75:a3:20:05:8b:44:f4: 40:1e:09:0d:7c:33:70:da:4a:2a:5d:6c:39:86:68: 77:0d:13:35:da:5b:0b:5e:21:70:2d:df:7f:71:17: b1:5e:01:13:ca:38:cc:cf:a9:07:ab:b6:10:f8:60: 8c:f8:f0:52:9c:60:d8:39:b3:f2:a3:b8:17:ae:77: 92:b8:e5:f3:84:e7:56:c3:ba:e8:c3:58:b0:fa:94: 9c:8a:fa:8d:e7:7d:c6:1e:11:be:83:7f:7e:87:ea: ad:e3:37:37:f7:6a:a2:d7:b5:05:47:45:c3:8c:4c: 06:ad:0b:77:d6:f5:d9:1a:49:78:31:24:65:09:f0: 70:14:5e:d5:76:1a:a8:3f:6f:97:a1:95:84:26:73: 8b:c4:68:a6:85:90:56:7e:2d:89:ee:a1:18:91:92: 1c:6f:05:90:d1:7c:ae:bf:ec:74:85:4d:7c:f9:ef: 28:53:5f:f4:ce:9c:4b:d4:8f:46:a2:0c:6f:28:d9: dc:f4:81:7b:ff:46:8d:2c:50:01:e1:8a:40:e8:54: 7d:b2:3c:1d:81:0d:c1:1f:47:3e:aa:32:a2:06:f6: e9:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:A0:E9:13:C8:8A:4B:AA:8C:61:E3:68:2E:08:A7:63:07:EC:03:9F X509v3 Authority Key Identifier: keyid:40:C0:90:51:3F:24:01:89:20:B1:51:DA:A5:54:49:C1:5D:C8:4B:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111ED2/621E8610845011EA8047CE7DC4F9AE02/QMCQUT8kAYkgsVHapVRJwV3IS-s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QMCQUT8kAYkgsVHapVRJwV3IS-s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111ED2/621E8610845011EA8047CE7DC4F9AE02/QMCQUT8kAYkgsVHapVRJwV3IS-s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:e3:0c:62:a8:58:26:cf:e5:50:f9:1d:15:39:95:f6:0c:f6: db:a4:14:ac:27:d8:0e:96:26:7c:53:a1:88:c0:47:58:65:10: 52:89:68:e5:70:50:52:69:08:f8:c7:ac:0c:90:f3:b0:d3:52: b7:69:e7:e2:b5:2e:f5:2c:80:d1:e7:58:8f:df:21:34:55:a6: 7a:2c:a6:de:81:a4:f0:11:29:70:f2:4e:d0:b6:0b:cb:93:63: fa:14:b5:fc:e1:b3:c3:7a:08:b2:ed:e8:2c:c9:5b:1f:7e:c9: 4f:09:66:08:d8:cf:0a:bf:8e:83:28:07:68:8c:64:b9:a1:cc: 3d:4e:46:29:09:6a:63:9c:26:6a:61:9b:52:21:d9:3c:e2:64: f3:2a:1d:1f:ba:47:4d:3b:18:30:3e:82:f6:d8:e1:95:79:02: 5f:28:d6:ad:0d:f4:86:a7:42:fa:74:e4:45:bd:75:5e:5c:27: 1b:89:d4:a7:24:51:9e:36:69:a4:fc:ed:40:ec:46:fd:7a:40: e9:c4:cb:9b:9c:81:29:73:1d:d2:4f:14:7c:34:75:1f:66:a0: c7:dc:d9:68:eb:e6:f1:a6:92:fd:f1:f8:50:61:40:de:0f:f6: 44:ac:df:dc:4a:13:e8:88:e4:0d:b3:a0:a4:90:7b:97:9c:e2: 03:61:1e:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCaowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTFFRDIxMTAvBgNVBAUTKDQwQzA5MDUxM0YyNDAxODkyMEIxNTFEQUE1NTQ0OUMx NURDODRCRUIwHhcNMjUwNDI0MTk1NjI0WhcNMjUwNTAxMTk1NjI0WjAYMRYwFAYD VQQDEw02ODBhOTc2OC00YTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl/wf8x86ZCjSEGaMTX1MNKzXqg4wOp3jx0PHoNIp8rAX9xskJXWjIAWLRPRA HgkNfDNw2koqXWw5hmh3DRM12lsLXiFwLd9/cRexXgETyjjMz6kHq7YQ+GCM+PBS nGDYObPyo7gXrneSuOXzhOdWw7row1iw+pScivqN533GHhG+g39+h+qt4zc392qi 17UFR0XDjEwGrQt31vXZGkl4MSRlCfBwFF7VdhqoP2+XoZWEJnOLxGimhZBWfi2J 7qEYkZIcbwWQ0Xyuv+x0hU18+e8oU1/0zpxL1I9GogxvKNnc9IF7/0aNLFAB4YpA 6FR9sjwdgQ3BH0c+qjKiBvbp5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLOg6RPI ikuqjGHjaC4Ip2MH7AOfMB8GA1UdIwQYMBaAFEDAkFE/JAGJILFR2qVUScFdyEvr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMUVEMi82MjFFODYxMDg0 NTAxMUVBODA0N0NFN0RDNEY5QUUwMi9RTUNRVVQ4a0FZa2dzVkhhcFZSSndWM0lT LXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FNQ1FVVDhrQVlrZ3NWSGFwVlJKd1YzSVMtcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MUVEMi82MjFFODYxMDg0NTAxMUVBODA0N0NFN0RDNEY5QUUwMi9RTUNRVVQ4a0FZ a2dzVkhhcFZSSndWM0lTLXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA44wxiqFgmz+VQ+R0VOZX2DPbbpBSsJ9gOliZ8U6GIwEdYZRBSiWjl cFBSaQj4x6wMkPOw01K3aefitS71LIDR51iP3yE0VaZ6LKbegaTwESlw8k7QtgvL k2P6FLX84bPDegiy7egsyVsffslPCWYI2M8Kv46DKAdojGS5ocw9TkYpCWpjnCZq YZtSIdk84mTzKh0fukdNOxgwPoL22OGVeQJfKNatDfSGp0L6dORFvXVeXCcbidSn JFGeNmmk/O1A7Eb9ekDpxMubnIEpcx3STxR8NHUfZqDH3Nlo6+bxppL98fhQYUDe D/ZErN/cShPoiOQNs6CkkHuXnOIDYR4r -----END CERTIFICATE-----Generated at Sat Apr 26 13:07:52 2025 by rpki-client