$ rpki-client -vvf rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft File: QrsPPBhH5li75BQYSUzonOjjRIg.mft (raw, json) Hash identifier: cmw1L3VDbqL4ampDPAY9WJS+ftOxvD/Y/CjuOsltFdk= Subject key identifier: 13:CE:CE:4A:DD:82:EF:79:E5:57:A4:3F:A4:78:E1:79:D4:36:76:A0 Authority key identifier: 42:BB:0F:3C:18:47:E6:58:BB:E4:14:18:49:4C:E8:9C:E8:E3:44:88 Certificate issuer: /CN=A9172506/serialNumber=42BB0F3C1847E658BBE41418494CE89CE8E34488 Certificate serial: 7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft Manifest number: 79 Signing time: Fri 25 Apr 2025 05:46:23 +0000 Manifest this update: Fri 25 Apr 2025 05:46:22 +0000 Manifest next update: Fri 02 May 2025 05:46:22 +0000 Files and hashes: 1: QrsPPBhH5li75BQYSUzonOjjRIg.crl (hash: gQ5RPPjai/XK+RHd+qUsKzC9rbwz+znflJ/lxutDabs=) 2: DD75C9BC6EDF11EF90C49A5FC4F9AE02.roa (hash: ribPo1yuX+hIqHtl1PCEzGGO/yQznd+mDINBcQhxFF0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.crl rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:46:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 123 (0x7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172506, serialNumber=42BB0F3C1847E658BBE41418494CE89CE8E34488 Validity Not Before: Apr 25 05:46:22 2025 GMT Not After : May 2 05:46:22 2025 GMT Subject: CN=680b21ae-936d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:35:ef:b1:48:53:86:49:67:65:e5:5d:f5:99: 51:98:6c:9a:14:9b:8a:ae:2c:3e:82:f3:6d:1e:bd: e4:47:14:19:eb:a0:2d:08:15:2e:f8:69:1a:e2:e8: 7d:eb:10:10:f2:2e:fb:f8:34:e4:f8:f4:33:00:8f: 36:de:a6:8b:8a:49:4a:c4:30:5a:07:7f:49:94:54: 6d:1e:cd:96:52:f9:7c:11:f8:67:34:5d:6c:c9:f8: e7:91:26:03:14:a2:16:5e:ed:bd:54:7b:77:b8:c3: a0:15:c5:18:62:75:cf:51:a6:92:e3:f1:46:4a:bc: 9f:3c:72:87:9d:13:a4:ab:b8:12:b9:2d:ac:98:1b: 87:06:07:80:fe:d4:72:a7:c2:59:59:21:63:f6:82: 96:d7:63:ff:91:1e:a6:51:b1:c6:1b:3a:54:29:fa: f1:a0:b1:2c:63:a2:0d:9e:3a:e1:04:22:0e:9a:e6: fe:d1:47:b8:ac:c0:c3:27:5c:b5:dc:af:86:be:51: ee:71:61:20:9c:6a:4c:a9:1a:90:9b:0d:75:d5:55: bf:18:9c:d3:41:63:ca:08:e0:df:13:20:31:55:60: 31:ab:d4:e2:88:a9:f2:13:0c:66:14:fc:b2:01:6a: 06:5b:af:61:60:13:0e:f5:4c:da:90:a8:1f:10:79: 6e:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:CE:CE:4A:DD:82:EF:79:E5:57:A4:3F:A4:78:E1:79:D4:36:76:A0 X509v3 Authority Key Identifier: keyid:42:BB:0F:3C:18:47:E6:58:BB:E4:14:18:49:4C:E8:9C:E8:E3:44:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:a0:9f:ff:75:41:45:f6:7e:80:1a:91:7d:be:03:2a:b1:7f: fa:1a:9c:87:61:6f:f4:52:84:8d:c5:39:cc:d5:f5:26:35:68: b3:9a:4e:27:64:19:69:ae:b3:c6:16:53:dd:0f:e9:15:7a:3e: b5:e8:d2:44:04:fa:6e:32:61:95:e8:62:6b:4f:a8:55:c7:2e: 08:5a:47:d9:3f:6c:6c:84:99:b8:db:69:de:e7:1f:eb:a5:f3: 7a:03:56:48:a8:61:7d:64:f5:a3:37:aa:5d:f1:74:eb:ff:b7: 58:3a:f6:f5:ee:d7:d7:f1:d1:29:d0:a4:90:6b:ae:1b:ca:2e: 95:b5:55:12:87:29:83:a6:9b:8d:20:44:2b:ea:99:07:ef:2c: a5:53:a5:bf:3a:b5:05:7c:f6:76:dd:5b:61:bf:f0:0a:86:6a: d0:b2:1e:99:64:3e:a4:eb:de:42:16:d8:90:ad:8d:d1:2e:3b: a4:99:ce:f4:43:4d:93:ff:f9:88:73:9d:a0:46:43:29:49:9b: ac:e9:5a:73:e2:4f:15:22:5a:76:dc:0a:03:d2:f4:9c:b9:d1: 63:b5:cd:8c:b3:e8:02:7b:d4:fc:ba:66:52:01:eb:73:7c:d0: 48:62:62:b2:3d:d3:0f:1c:58:ab:12:29:83:46:c0:f2:96:0b: 98:4d:aa:e1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBezANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MjUwNjExMC8GA1UEBRMoNDJCQjBGM0MxODQ3RTY1OEJCRTQxNDE4NDk0Q0U4OUNF OEUzNDQ4ODAeFw0yNTA0MjUwNTQ2MjJaFw0yNTA1MDIwNTQ2MjJaMBgxFjAUBgNV BAMTDTY4MGIyMWFlLTkzNmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5Ne+xSFOGSWdl5V31mVGYbJoUm4quLD6C820eveRHFBnroC0IFS74aRri6H3r EBDyLvv4NOT49DMAjzbepouKSUrEMFoHf0mUVG0ezZZS+XwR+Gc0XWzJ+OeRJgMU ohZe7b1Ue3e4w6AVxRhidc9RppLj8UZKvJ88coedE6SruBK5LayYG4cGB4D+1HKn wllZIWP2gpbXY/+RHqZRscYbOlQp+vGgsSxjog2eOuEEIg6a5v7RR7iswMMnXLXc r4a+Ue5xYSCcakypGpCbDXXVVb8YnNNBY8oI4N8TIDFVYDGr1OKIqfITDGYU/LIB agZbr2FgEw71TNqQqB8QeW4nAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUE87OSt2C 73nlV6Q/pHjhedQ2dqAwHwYDVR0jBBgwFoAUQrsPPBhH5li75BQYSUzonOjjRIgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcyNTA2L0IwNDkwOENFNkVE RTExRUZBQUMyQ0I1REM0RjlBRTAyL1Fyc1BQQmhINWxpNzVCUVlTVXpvbk9qalJJ Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUXJzUFBCaEg1bGk3NUJRWVNVem9uT2pqUklnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcy NTA2L0IwNDkwOENFNkVERTExRUZBQUMyQ0I1REM0RjlBRTAyL1Fyc1BQQmhINWxp NzVCUVlTVXpvbk9qalJJZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJ2gn/91QUX2foAakX2+Ayqxf/oanIdhb/RShI3FOczV9SY1aLOaTidk GWmus8YWU90P6RV6PrXo0kQE+m4yYZXoYmtPqFXHLghaR9k/bGyEmbjbad7nH+ul 83oDVkioYX1k9aM3ql3xdOv/t1g69vXu19fx0SnQpJBrrhvKLpW1VRKHKYOmm40g RCvqmQfvLKVTpb86tQV89nbdW2G/8AqGatCyHplkPqTr3kIW2JCtjdEuO6SZzvRD TZP/+YhznaBGQylJm6zpWnPiTxUiWnbcCgPS9Jy50WO1zYyz6AJ71Py6ZlIB63N8 0EhiYrI90w8cWKsSKYNGwPKWC5hNquE= -----END CERTIFICATE-----Generated at Sat Apr 26 04:24:39 2025 by rpki-client