$ rpki-client -vvf rpki.apnic.net/member_repository/A917C909/07797FE4C0DC11EF9E871844C4F9AE02/qgt4LbmTLiL93vDD91WW7glF4S0.mft File: qgt4LbmTLiL93vDD91WW7glF4S0.mft (raw, json) Hash identifier: AzPZX4gCx+z+dt2v7uijgl4uCBRBrir3YqQkBSq/QRU= Subject key identifier: A7:70:33:5B:A2:18:4C:D2:6F:59:3C:C1:04:94:96:B5:40:2A:83:45 Authority key identifier: AA:0B:78:2D:B9:93:2E:22:FD:DE:F0:C3:F7:55:96:EE:09:45:E1:2D Certificate issuer: /CN=A917C909/serialNumber=AA0B782DB9932E22FDDEF0C3F75596EE0945E12D Certificate serial: 4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qgt4LbmTLiL93vDD91WW7glF4S0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C909/07797FE4C0DC11EF9E871844C4F9AE02/qgt4LbmTLiL93vDD91WW7glF4S0.mft Manifest number: 46 Signing time: Fri 25 Apr 2025 06:26:33 +0000 Manifest this update: Fri 25 Apr 2025 06:26:33 +0000 Manifest next update: Fri 02 May 2025 06:26:33 +0000 Files and hashes: 1: qgt4LbmTLiL93vDD91WW7glF4S0.crl (hash: kbH+Cayzz+l8M/1REGl5yt1x05fLGK9uInp5pFPNpiw=) 2: 3A0E0B1CD47511EF91EA0832C4F9AE02.roa (hash: pAj7NdDmToipkIAovmtOfynK/RP/8C5/+xzCsvCxUC8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C909/07797FE4C0DC11EF9E871844C4F9AE02/qgt4LbmTLiL93vDD91WW7glF4S0.crl rsync://rpki.apnic.net/member_repository/A917C909/07797FE4C0DC11EF9E871844C4F9AE02/qgt4LbmTLiL93vDD91WW7glF4S0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qgt4LbmTLiL93vDD91WW7glF4S0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:26:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74 (0x4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C909, serialNumber=AA0B782DB9932E22FDDEF0C3F75596EE0945E12D Validity Not Before: Apr 25 06:26:33 2025 GMT Not After : May 2 06:26:33 2025 GMT Subject: CN=680b2b19-93b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:03:25:d4:e9:d5:1d:52:40:c8:92:ae:38:ba: af:04:3e:80:f1:b6:43:89:47:d9:e8:9d:f1:5f:bf: 4e:fe:a9:14:25:32:59:3e:17:63:56:b5:8a:36:de: 83:06:76:17:b5:3e:56:24:1c:b6:d8:1e:da:85:23: ce:f7:01:42:9b:80:ed:04:5f:da:0e:b9:69:88:a8: 38:82:4f:6d:76:14:1f:1f:66:87:28:33:a6:68:3b: da:ae:20:5d:f8:f8:ad:16:b1:8f:d5:db:b9:69:2a: 91:45:1c:4a:a7:99:d8:09:14:a0:2f:d9:7e:9b:85: b6:56:8b:4e:98:7d:0e:27:47:c3:5b:c8:ff:c4:48: c0:db:b1:15:85:d3:e9:b2:6a:bb:7a:84:32:74:0d: dc:c2:dc:8b:75:d5:95:de:ac:7b:61:15:be:ee:76: 0d:07:d6:d9:41:76:7b:e3:d3:c2:86:15:1a:b4:8c: ab:f6:da:20:d7:d4:53:4c:be:5c:a8:84:1e:06:aa: c7:3d:9a:c7:f6:ae:c1:2b:0b:04:d9:50:e7:14:8e: ea:98:9c:15:13:c7:91:62:f4:21:fa:7f:f2:92:d8: 7d:ad:4d:6c:8f:47:0c:b7:87:66:cf:ed:25:14:b8: 2e:73:e8:7a:b6:51:b8:9f:f9:38:46:9f:b4:e7:4b: 4c:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:70:33:5B:A2:18:4C:D2:6F:59:3C:C1:04:94:96:B5:40:2A:83:45 X509v3 Authority Key Identifier: keyid:AA:0B:78:2D:B9:93:2E:22:FD:DE:F0:C3:F7:55:96:EE:09:45:E1:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C909/07797FE4C0DC11EF9E871844C4F9AE02/qgt4LbmTLiL93vDD91WW7glF4S0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qgt4LbmTLiL93vDD91WW7glF4S0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C909/07797FE4C0DC11EF9E871844C4F9AE02/qgt4LbmTLiL93vDD91WW7glF4S0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:b0:17:4d:28:28:4e:9f:c0:83:cd:24:4a:54:bb:ae:3e:23: 69:28:58:22:51:3e:38:29:7c:56:fd:88:85:4b:78:c0:4c:a3: 4c:d1:b9:5b:c3:87:1a:3c:82:13:c4:a6:c7:ac:75:a1:07:2c: 4e:45:69:d2:62:09:fa:e8:7b:f1:81:71:7a:88:8f:5e:d3:57: 79:02:cb:2f:ef:c3:b6:66:6e:54:15:41:2a:2e:5f:aa:58:49: 01:0c:dc:2c:b5:45:df:c9:07:3d:49:2d:a4:19:ca:07:bc:9a: 10:e3:cd:6d:99:28:55:03:1f:3f:22:ed:4a:7f:47:ed:8f:29: e4:d0:f4:29:b8:c2:40:bd:93:44:64:60:22:33:ea:71:3e:5c: 4f:a2:25:bd:21:e0:1d:48:74:b4:87:d4:80:a2:3a:01:3a:a3: ff:09:64:67:e5:59:14:cd:7e:c7:37:55:b7:91:1d:b4:af:84: e1:70:40:77:f1:34:7d:87:56:02:1b:49:03:7b:2f:03:5b:9b: fa:18:e5:7f:c7:f9:34:a9:98:13:d9:da:d6:fb:b2:e6:0e:66: 98:fb:d2:4f:97:3f:77:52:f1:5c:70:9a:f5:87:78:9f:67:8b: 91:c1:da:89:d3:56:fe:67:19:38:7f:d3:f4:54:23:ff:db:56: 00:e3:94:58 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QzkwOTExMC8GA1UEBRMoQUEwQjc4MkRCOTkzMkUyMkZEREVGMEMzRjc1NTk2RUUw OTQ1RTEyRDAeFw0yNTA0MjUwNjI2MzNaFw0yNTA1MDIwNjI2MzNaMBgxFjAUBgNV BAMTDTY4MGIyYjE5LTkzYjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQAyXU6dUdUkDIkq44uq8EPoDxtkOJR9nonfFfv07+qRQlMlk+F2NWtYo23oMG dhe1PlYkHLbYHtqFI873AUKbgO0EX9oOuWmIqDiCT212FB8fZocoM6ZoO9quIF34 +K0WsY/V27lpKpFFHEqnmdgJFKAv2X6bhbZWi06YfQ4nR8NbyP/ESMDbsRWF0+my art6hDJ0DdzC3It11ZXerHthFb7udg0H1tlBdnvj08KGFRq0jKv22iDX1FNMvlyo hB4Gqsc9msf2rsErCwTZUOcUjuqYnBUTx5Fi9CH6f/KS2H2tTWyPRwy3h2bP7SUU uC5z6Hq2Ubif+ThGn7TnS0ytAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUp3AzW6IY TNJvWTzBBJSWtUAqg0UwHwYDVR0jBBgwFoAUqgt4LbmTLiL93vDD91WW7glF4S0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdDOTA5LzA3Nzk3RkU0QzBE QzExRUY5RTg3MTg0NEM0RjlBRTAyL3FndDRMYm1UTGlMOTN2REQ5MVdXN2dsRjRT MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcWd0NExibVRMaUw5M3ZERDkxV1c3Z2xGNFMwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdD OTA5LzA3Nzk3RkU0QzBEQzExRUY5RTg3MTg0NEM0RjlBRTAyL3FndDRMYm1UTGlM OTN2REQ5MVdXN2dsRjRTMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABKwF00oKE6fwIPNJEpUu64+I2koWCJRPjgpfFb9iIVLeMBMo0zRuVvD hxo8ghPEpsesdaEHLE5FadJiCfroe/GBcXqIj17TV3kCyy/vw7ZmblQVQSouX6pY SQEM3Cy1Rd/JBz1JLaQZyge8mhDjzW2ZKFUDHz8i7Up/R+2PKeTQ9Cm4wkC9k0Rk YCIz6nE+XE+iJb0h4B1IdLSH1ICiOgE6o/8JZGflWRTNfsc3VbeRHbSvhOFwQHfx NH2HVgIbSQN7LwNbm/oY5X/H+TSpmBPZ2tb7suYOZpj70k+XP3dS8VxwmvWHeJ9n i5HB2onTVv5nGTh/0/RUI//bVgDjlFg= -----END CERTIFICATE-----Generated at Sat Apr 26 12:59:26 2025 by rpki-client