$ rpki-client -vvf rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/QbMaaMknik1EdI4t-MasqBV47LU.mft File: QbMaaMknik1EdI4t-MasqBV47LU.mft (raw, json) Hash identifier: wcIeBu6VTEoGxjDgLLCb1ACHgDfoZsbsnm0PTkgo1Ts= Subject key identifier: 50:84:89:DD:FC:56:CC:A2:15:ED:0C:C3:39:ED:AA:62:08:53:38:82 Authority key identifier: 41:B3:1A:68:C9:27:8A:4D:44:74:8E:2D:F8:C6:AC:A8:15:78:EC:B5 Certificate issuer: /CN=A9120A29/serialNumber=41B31A68C9278A4D44748E2DF8C6ACA81578ECB5 Certificate serial: 0ABD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbMaaMknik1EdI4t-MasqBV47LU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/QbMaaMknik1EdI4t-MasqBV47LU.mft Manifest number: 0AB6 Signing time: Tue 08 Apr 2025 19:22:37 +0000 Manifest this update: Tue 08 Apr 2025 19:22:36 +0000 Manifest next update: Tue 15 Apr 2025 19:22:36 +0000 Files and hashes: 1: QbMaaMknik1EdI4t-MasqBV47LU.crl (hash: BFOug0gHdvdhQ7bFIy/vviEfu+vbWn83eD3e/cTMOAs=) 2: 73A346A24D5D11EAA811C368C4F9AE02.roa (hash: AtiHUqqiSc5seLUNoB/SjIutv6okcY16FsBOaprHkwA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/QbMaaMknik1EdI4t-MasqBV47LU.crl rsync://rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/QbMaaMknik1EdI4t-MasqBV47LU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbMaaMknik1EdI4t-MasqBV47LU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 19:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2749 (0xabd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120A29 Validity Not Before: Apr 8 19:22:36 2025 GMT Not After : Apr 15 19:22:36 2025 GMT Subject: CN=67f5777d-d29a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:d5:30:5c:14:42:b5:07:a7:94:76:44:77:1e: ef:b9:0f:88:ef:ed:c5:55:88:a6:71:7d:32:94:cf: 50:74:f0:e6:d0:5b:51:18:50:65:6c:7b:52:0c:4c: ff:c8:3a:ce:1e:79:6b:ea:6a:8f:ac:09:93:99:32: 5f:2c:fb:9e:bf:fb:f6:9f:eb:81:6b:c9:c6:62:ba: dd:39:f3:8f:a4:83:95:e2:b4:7d:0b:51:96:1a:86: f7:f0:0b:88:f4:ce:ad:41:6c:9d:ae:1a:5e:97:a3: f3:b2:fc:06:f9:03:c6:2f:ec:d8:db:27:50:94:84: f4:cf:b6:98:f6:2a:22:c8:e6:26:5d:c5:10:65:b9: 06:58:77:9f:83:6f:b2:d2:cb:31:f8:42:26:36:a3: e4:e0:1e:5e:c3:a1:7e:d1:5a:45:bf:ba:c5:9e:1d: f6:3c:4e:b6:1a:da:77:23:a4:07:29:82:49:56:ae: 0e:8f:fe:15:9f:e1:ca:d6:45:c4:55:76:f0:17:29: 2b:fc:24:70:e5:8d:1d:d2:ca:72:1f:19:dc:68:f4: cf:80:63:28:c2:4c:89:47:8b:96:24:dd:f3:bb:a5: a3:08:7f:07:0b:e0:95:25:f1:a0:ed:06:3b:63:26: 80:36:fe:03:67:0e:fd:90:7e:51:ef:6d:e7:1b:79: 94:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:84:89:DD:FC:56:CC:A2:15:ED:0C:C3:39:ED:AA:62:08:53:38:82 X509v3 Authority Key Identifier: keyid:41:B3:1A:68:C9:27:8A:4D:44:74:8E:2D:F8:C6:AC:A8:15:78:EC:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/QbMaaMknik1EdI4t-MasqBV47LU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbMaaMknik1EdI4t-MasqBV47LU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/QbMaaMknik1EdI4t-MasqBV47LU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:cd:33:30:12:14:0c:82:70:7a:41:45:8b:9d:07:6e:a0:62: c4:4e:46:63:ab:5e:ee:d9:23:f3:7c:2f:82:b3:8a:df:19:85: 78:64:99:cb:3e:e0:33:cb:4c:c1:0e:a9:28:2b:ce:11:b4:22: 13:e2:a5:6b:44:4a:66:97:18:9e:44:6f:32:c2:60:19:68:da: 58:c3:6d:f7:19:3b:b2:2c:ea:b9:8b:9d:24:99:ac:b3:c3:0b: c5:35:86:fc:49:01:89:37:40:23:c3:89:20:a4:d2:21:61:9d: f2:c4:53:2c:03:e4:8b:d0:20:4d:49:75:29:0e:ac:d7:58:81: c1:9d:2b:1a:da:eb:96:77:4b:26:16:61:fa:3f:5e:86:b0:bf: e1:5e:28:ab:09:71:bd:5a:f2:50:40:41:2c:3f:22:f1:f7:4e: d3:f1:e6:66:76:07:e8:eb:4d:30:08:54:4a:dd:e0:71:8b:36: 63:99:f1:48:d8:cb:c0:01:d7:a6:7c:4a:3e:81:28:7a:87:e7: c6:27:fa:68:1e:c1:e9:78:c2:3b:63:06:1d:c7:21:12:ba:92: 2a:05:58:e9:31:45:9b:6c:62:a1:64:0e:56:83:3f:1b:04:e0: 43:70:41:8c:24:e5:c5:9e:e3:64:28:f0:90:c1:bf:ce:d1:16: 06:c6:cb:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCr0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBMjkxMTAvBgNVBAUTKDQxQjMxQTY4QzkyNzhBNEQ0NDc0OEUyREY4QzZBQ0E4 MTU3OEVDQjUwHhcNMjUwNDA4MTkyMjM2WhcNMjUwNDE1MTkyMjM2WjAYMRYwFAYD VQQDEw02N2Y1Nzc3ZC1kMjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6NUwXBRCtQenlHZEdx7vuQ+I7+3FVYimcX0ylM9QdPDm0FtRGFBlbHtSDEz/ yDrOHnlr6mqPrAmTmTJfLPuev/v2n+uBa8nGYrrdOfOPpIOV4rR9C1GWGob38AuI 9M6tQWydrhpel6PzsvwG+QPGL+zY2ydQlIT0z7aY9ioiyOYmXcUQZbkGWHefg2+y 0ssx+EImNqPk4B5ew6F+0VpFv7rFnh32PE62Gtp3I6QHKYJJVq4Oj/4Vn+HK1kXE VXbwFykr/CRw5Y0d0spyHxncaPTPgGMowkyJR4uWJN3zu6WjCH8HC+CVJfGg7QY7 YyaANv4DZw79kH5R723nG3mUFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFCEid38 VsyiFe0MwzntqmIIUziCMB8GA1UdIwQYMBaAFEGzGmjJJ4pNRHSOLfjGrKgVeOy1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEEyOS8wRTA2REJBMjRE NUMxMUVBQTgwODhBNjZDNEY5QUUwMi9RYk1hYU1rbmlrMUVkSTR0LU1hc3FCVjQ3 TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FiTWFhTWtuaWsxRWRJNHQtTWFzcUJWNDdMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEEyOS8wRTA2REJBMjRENUMxMUVBQTgwODhBNjZDNEY5QUUwMi9RYk1hYU1rbmlr MUVkSTR0LU1hc3FCVjQ3TFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJzTMwEhQMgnB6QUWLnQduoGLETkZjq17u2SPzfC+Cs4rfGYV4ZJnL PuAzy0zBDqkoK84RtCIT4qVrREpmlxieRG8ywmAZaNpYw233GTuyLOq5i50kmayz wwvFNYb8SQGJN0Ajw4kgpNIhYZ3yxFMsA+SL0CBNSXUpDqzXWIHBnSsa2uuWd0sm FmH6P16GsL/hXiirCXG9WvJQQEEsPyLx907T8eZmdgfo600wCFRK3eBxizZjmfFI 2MvAAdemfEo+gSh6h+fGJ/poHsHpeMI7YwYdxyESupIqBVjpMUWbbGKhZA5Wgz8b BOBDcEGMJOXFnuNkKPCQwb/O0RYGxsut -----END CERTIFICATE-----Generated at Fri Apr 11 03:43:56 2025 by rpki-client