$ rpki-client -vvf rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft File: QZ8npM_s9GHbgvb5BnZPttZfI88.mft (raw, json) Hash identifier: Fo9LC1bUe77/sG/WE9sxDkf09AWmNM0i/3K6hH8XTpA= Subject key identifier: 91:52:F1:94:05:EC:B2:A2:92:B7:C5:AE:ED:5C:DE:FE:3E:ED:80:95 Authority key identifier: 41:9F:27:A4:CF:EC:F4:61:DB:82:F6:F9:06:76:4F:B6:D6:5F:23:CF Certificate issuer: /CN=A9140BED/serialNumber=419F27A4CFECF461DB82F6F906764FB6D65F23CF Certificate serial: B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft Manifest number: AE Signing time: Fri 25 Apr 2025 05:07:39 +0000 Manifest this update: Fri 25 Apr 2025 05:07:38 +0000 Manifest next update: Fri 02 May 2025 05:07:38 +0000 Files and hashes: 1: QZ8npM_s9GHbgvb5BnZPttZfI88.crl (hash: MUnc75I7us0/p/kMvDepleUuYNWrNlIDhugKJD5K4z4=) 2: ED7C0BCC287211EFA1483A2FC4F9AE02.roa (hash: TrqB+PZze3/PHsx+S+f9vvK9WuKsfRUtYIK0Ow1+dU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.crl rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:07:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 179 (0xb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140BED, serialNumber=419F27A4CFECF461DB82F6F906764FB6D65F23CF Validity Not Before: Apr 25 05:07:38 2025 GMT Not After : May 2 05:07:38 2025 GMT Subject: CN=680b189a-413a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:70:ba:3f:9f:f9:21:5d:a4:09:0c:82:39:4c: c1:80:c6:3f:f3:77:7f:99:57:2f:56:e8:d1:fb:be: de:25:55:de:8a:48:73:79:a3:a4:63:88:68:93:fc: 39:a3:2f:af:e2:f7:a3:8b:b1:e4:02:7a:ab:cb:39: c5:fe:e2:92:b1:3a:05:73:0e:6b:4d:3f:65:21:0e: bd:81:28:1f:68:f5:e9:4d:5b:3e:6c:13:cc:4f:94: 24:5f:a0:b1:ae:f8:96:54:5e:0f:d8:4c:8a:18:a7: 99:0e:97:f6:56:cb:1a:85:9c:ee:11:55:bf:0e:dd: c9:41:54:c9:a6:7b:eb:2c:74:3c:be:4a:97:60:c4: 4e:c5:a5:ef:01:61:61:79:3a:c0:0d:13:64:d1:0c: 1b:ef:7d:e8:71:f2:54:dd:c9:4a:20:55:7d:8e:5b: 1a:bc:91:11:61:72:5f:dd:15:f4:bd:80:77:08:99: b5:0d:92:a0:b2:24:64:72:67:2a:56:16:f5:4b:18: b9:ba:81:06:e7:8a:91:8e:58:6a:12:6b:48:06:75: 79:20:5a:98:03:80:1b:64:41:b9:58:c4:dd:65:61: d9:27:99:0a:62:64:53:ed:5c:a5:4b:37:66:08:d5: 11:d3:85:39:71:b2:57:a1:72:e4:e7:16:33:2c:34: 27:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:52:F1:94:05:EC:B2:A2:92:B7:C5:AE:ED:5C:DE:FE:3E:ED:80:95 X509v3 Authority Key Identifier: keyid:41:9F:27:A4:CF:EC:F4:61:DB:82:F6:F9:06:76:4F:B6:D6:5F:23:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:e6:53:16:4a:e0:9d:ad:2a:0f:f6:47:81:8e:3f:ce:be:ed: cc:63:a3:70:50:1c:e8:36:00:28:17:b1:a6:be:1e:9f:34:86: b2:5c:6b:ac:20:d0:aa:f8:c7:ef:5a:c4:6e:3f:9d:2e:64:d7: 66:3b:b1:b5:da:8a:37:bf:ce:83:d6:3a:3f:b0:13:f5:1d:7e: 34:20:2d:40:2b:a7:ea:6f:05:71:55:09:3c:03:a9:51:c4:0b: e7:f8:12:89:b1:d4:50:5a:8d:7b:fb:24:9e:99:7f:79:0e:fc: 98:cb:63:2a:72:30:f9:28:c2:f7:3f:be:44:b9:84:a4:ed:53: f3:87:1c:ef:98:be:35:0d:c6:aa:fa:9d:ee:8b:23:86:e4:c2: 98:61:c8:a8:99:d9:c5:42:55:54:66:65:19:36:e9:01:e7:3f: 03:33:fe:e9:89:24:27:1a:df:0c:46:0b:31:b6:b2:5c:2f:84: 4f:5e:c0:09:2d:ce:05:ec:79:7c:55:22:1d:cc:44:44:31:f2: db:d4:cc:45:19:11:ae:6b:92:c3:3c:4e:78:8b:04:2b:2b:ea: 58:00:3c:91:5c:26:fc:a9:35:19:5b:46:6d:ab:ad:7d:1d:c4: 52:1a:bf:21:11:4e:ee:09:3a:4e:be:f8:f4:da:a7:9c:86:e7: 37:4c:25:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBCRUQxMTAvBgNVBAUTKDQxOUYyN0E0Q0ZFQ0Y0NjFEQjgyRjZGOTA2NzY0RkI2 RDY1RjIzQ0YwHhcNMjUwNDI1MDUwNzM4WhcNMjUwNTAyMDUwNzM4WjAYMRYwFAYD VQQDEw02ODBiMTg5YS00MTNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArXC6P5/5IV2kCQyCOUzBgMY/83d/mVcvVujR+77eJVXeikhzeaOkY4hok/w5 oy+v4veji7HkAnqryznF/uKSsToFcw5rTT9lIQ69gSgfaPXpTVs+bBPMT5QkX6Cx rviWVF4P2EyKGKeZDpf2VssahZzuEVW/Dt3JQVTJpnvrLHQ8vkqXYMROxaXvAWFh eTrADRNk0Qwb733ocfJU3clKIFV9jlsavJERYXJf3RX0vYB3CJm1DZKgsiRkcmcq Vhb1Sxi5uoEG54qRjlhqEmtIBnV5IFqYA4AbZEG5WMTdZWHZJ5kKYmRT7VylSzdm CNUR04U5cbJXoXLk5xYzLDQnUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJFS8ZQF 7LKikrfFru1c3v4+7YCVMB8GA1UdIwQYMBaAFEGfJ6TP7PRh24L2+QZ2T7bWXyPP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEJFRC8wOEUwRTA2NjFG MzgxMUVGQjA1OUI2NjVDNEY5QUUwMi9RWjhucE1fczlHSGJndmI1Qm5aUHR0WmZJ ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FaOG5wTV9zOUdIYmd2YjVCblpQdHRaZkk4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEJFRC8wOEUwRTA2NjFGMzgxMUVGQjA1OUI2NjVDNEY5QUUwMi9RWjhucE1fczlH SGJndmI1Qm5aUHR0WmZJODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCD5lMWSuCdrSoP9keBjj/Ovu3MY6NwUBzoNgAoF7Gmvh6fNIayXGus INCq+MfvWsRuP50uZNdmO7G12oo3v86D1jo/sBP1HX40IC1AK6fqbwVxVQk8A6lR xAvn+BKJsdRQWo17+ySemX95DvyYy2MqcjD5KML3P75EuYSk7VPzhxzvmL41Dcaq +p3uiyOG5MKYYciomdnFQlVUZmUZNukB5z8DM/7piSQnGt8MRgsxtrJcL4RPXsAJ Lc4F7Hl8VSIdzEREMfLb1MxFGRGua5LDPE54iwQrK+pYADyRXCb8qTUZW0Ztq619 HcRSGr8hEU7uCTpOvvj02qechuc3TCUs -----END CERTIFICATE-----Generated at Sat Apr 26 17:21:42 2025 by rpki-client