$ rpki-client -vvf rpki.apnic.net/member_repository/A9127733/ADDC3B3E458D11EBA39AC740C4F9AE02/QnVRUgCwOWcq-g6Fh31OP-cNidc.mft File: QnVRUgCwOWcq-g6Fh31OP-cNidc.mft (raw, json) Hash identifier: Q8CuTV7C0SpFPdD9kuRfN2N7SMITlfEBIDleFaCkGgY= Subject key identifier: 38:15:1A:CA:1C:A6:C9:06:6B:0D:7A:3F:A3:76:E0:D8:88:F7:E1:A6 Authority key identifier: 42:75:51:52:00:B0:39:67:2A:FA:0E:85:87:7D:4E:3F:E7:0D:89:D7 Certificate issuer: /CN=A9127733/serialNumber=4275515200B039672AFA0E85877D4E3FE70D89D7 Certificate serial: 0705 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QnVRUgCwOWcq-g6Fh31OP-cNidc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127733/ADDC3B3E458D11EBA39AC740C4F9AE02/QnVRUgCwOWcq-g6Fh31OP-cNidc.mft Manifest number: 06EF Signing time: Fri 04 Apr 2025 22:10:24 +0000 Manifest this update: Fri 04 Apr 2025 22:10:23 +0000 Manifest next update: Fri 11 Apr 2025 22:10:23 +0000 Files and hashes: 1: QnVRUgCwOWcq-g6Fh31OP-cNidc.crl (hash: 9BZvNRO76rKE8C9rkvwICQTv5y476SqL2meKQatz0qQ=) 2: E91BDAD0D6DE11ED88F30263C4F9AE02.roa (hash: iIfOWh1uqVhAcXqeHkNjA4YHqNreyuB3xizBAQVozys=) 3: 683CDAD0B4C411EE8F1E5D85C4F9AE02.roa (hash: jpOm+AzzM4Yjd+hxm5Xa0uKGQEaJYO441Q/17W+FFzA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127733/ADDC3B3E458D11EBA39AC740C4F9AE02/QnVRUgCwOWcq-g6Fh31OP-cNidc.crl rsync://rpki.apnic.net/member_repository/A9127733/ADDC3B3E458D11EBA39AC740C4F9AE02/QnVRUgCwOWcq-g6Fh31OP-cNidc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QnVRUgCwOWcq-g6Fh31OP-cNidc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 22:10:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1797 (0x705) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127733 Validity Not Before: Apr 4 22:10:23 2025 GMT Not After : Apr 11 22:10:23 2025 GMT Subject: CN=67f058cf-9fe9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:70:b4:10:08:80:f4:f5:b4:23:6c:09:3a:27: 56:3a:6f:36:e6:a3:f3:80:e8:fe:33:c7:9d:9a:df: 62:89:73:b0:96:f2:ff:74:59:75:76:c4:23:e3:66: 1d:8a:03:72:53:45:ec:5a:0e:84:b4:52:da:c5:26: 88:d4:05:7e:b1:6a:65:6f:e8:0b:9f:52:3b:72:01: 2e:d8:e4:2e:ce:c4:f4:cc:ec:5c:e9:44:85:ce:7d: cc:72:45:b2:dd:3b:dc:4a:98:47:8e:3e:0e:76:b8: ef:41:83:2a:8a:ca:0c:fc:9e:62:09:1e:c1:2c:e1: be:b0:f9:aa:de:b1:f8:c1:68:29:9a:04:b7:a7:47: 68:35:bf:57:16:d7:1b:3f:ca:28:e5:44:2f:86:ce: c5:05:0f:4c:0f:01:a9:d3:17:87:c9:52:a5:ea:c5: ca:31:85:f1:57:eb:4d:aa:5f:19:19:0d:98:52:d1: 1e:36:23:a0:b3:f4:8d:f7:d6:6e:44:95:0b:46:f7: 6b:f3:da:ba:8d:75:1c:46:9c:8b:cf:e2:85:0b:58: b1:6a:0b:2f:3c:f0:95:fe:20:f5:63:b2:e8:0a:82: 9e:40:1c:57:c6:3b:80:83:dc:42:d4:72:ab:5b:0e: 42:3e:73:a6:e7:b8:50:25:5b:cb:65:d9:13:74:46: 11:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:15:1A:CA:1C:A6:C9:06:6B:0D:7A:3F:A3:76:E0:D8:88:F7:E1:A6 X509v3 Authority Key Identifier: keyid:42:75:51:52:00:B0:39:67:2A:FA:0E:85:87:7D:4E:3F:E7:0D:89:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127733/ADDC3B3E458D11EBA39AC740C4F9AE02/QnVRUgCwOWcq-g6Fh31OP-cNidc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QnVRUgCwOWcq-g6Fh31OP-cNidc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127733/ADDC3B3E458D11EBA39AC740C4F9AE02/QnVRUgCwOWcq-g6Fh31OP-cNidc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:69:fc:63:6f:18:0f:41:f2:f4:7f:26:d8:2a:08:25:01:84: 81:b8:9a:90:5a:25:13:7a:a2:55:c6:e4:6d:01:62:65:d4:d3: 5a:a3:84:a7:4d:2f:8a:15:8e:3f:f7:77:00:10:a1:2d:6a:e6: cc:76:0b:29:f1:6f:1c:f9:82:27:53:40:15:66:25:8d:37:38: f9:3d:a0:f5:ed:e2:13:53:e3:13:ed:93:2c:f7:a9:8f:2d:50: 9c:45:f9:83:5e:64:57:c3:0a:a4:cc:92:40:6a:8a:5c:c0:ca: ff:57:c9:f7:d4:02:5d:40:bf:5d:2a:9e:ae:ba:86:40:31:b5: 47:68:73:ec:36:44:82:ae:d6:a4:45:16:29:c7:8f:15:cd:14: eb:71:7d:e2:77:c7:1b:e3:b1:27:89:cc:df:b4:8c:02:70:db: 87:23:8e:b6:98:ea:4e:29:b3:01:eb:46:aa:3a:7e:62:ef:ce: 54:4c:1b:25:62:42:6f:15:44:6d:5b:f0:a0:99:24:21:0e:ff: 28:35:88:2c:3c:2c:3e:03:74:74:f8:4d:ec:4c:2a:eb:1f:6a: be:5e:17:bf:52:b7:d2:e6:fd:13:77:8a:48:e1:f0:1f:ba:0a: 0a:72:a1:4f:5a:1f:f0:82:db:0b:db:e0:31:f7:c1:3b:03:6d: d7:4c:6e:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc3MzMxMTAvBgNVBAUTKDQyNzU1MTUyMDBCMDM5NjcyQUZBMEU4NTg3N0Q0RTNG RTcwRDg5RDcwHhcNMjUwNDA0MjIxMDIzWhcNMjUwNDExMjIxMDIzWjAYMRYwFAYD VQQDEw02N2YwNThjZi05ZmU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA33C0EAiA9PW0I2wJOidWOm825qPzgOj+M8edmt9iiXOwlvL/dFl1dsQj42Yd igNyU0XsWg6EtFLaxSaI1AV+sWplb+gLn1I7cgEu2OQuzsT0zOxc6USFzn3MckWy 3TvcSphHjj4OdrjvQYMqisoM/J5iCR7BLOG+sPmq3rH4wWgpmgS3p0doNb9XFtcb P8oo5UQvhs7FBQ9MDwGp0xeHyVKl6sXKMYXxV+tNql8ZGQ2YUtEeNiOgs/SN99Zu RJULRvdr89q6jXUcRpyLz+KFC1ixagsvPPCV/iD1Y7LoCoKeQBxXxjuAg9xC1HKr Ww5CPnOm57hQJVvLZdkTdEYRKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDgVGsoc pskGaw16P6N24NiI9+GmMB8GA1UdIwQYMBaAFEJ1UVIAsDlnKvoOhYd9Tj/nDYnX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzczMy9BRERDM0IzRTQ1 OEQxMUVCQTM5QUM3NDBDNEY5QUUwMi9RblZSVWdDd09XY3EtZzZGaDMxT1AtY05p ZGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FuVlJVZ0N3T1djcS1nNkZoMzFPUC1jTmlkYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzczMy9BRERDM0IzRTQ1OEQxMUVCQTM5QUM3NDBDNEY5QUUwMi9RblZSVWdDd09X Y3EtZzZGaDMxT1AtY05pZGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbafxjbxgPQfL0fybYKgglAYSBuJqQWiUTeqJVxuRtAWJl1NNao4Sn TS+KFY4/93cAEKEtaubMdgsp8W8c+YInU0AVZiWNNzj5PaD17eITU+MT7ZMs96mP LVCcRfmDXmRXwwqkzJJAaopcwMr/V8n31AJdQL9dKp6uuoZAMbVHaHPsNkSCrtak RRYpx48VzRTrcX3id8cb47EniczftIwCcNuHI462mOpOKbMB60aqOn5i785UTBsl YkJvFURtW/CgmSQhDv8oNYgsPCw+A3R0+E3sTCrrH2q+Xhe/UrfS5v0Td4pI4fAf ugoKcqFPWh/wgtsL2+Ax98E7A23XTG65 -----END CERTIFICATE-----Generated at Sat Apr 5 05:34:47 2025 by rpki-client