$ rpki-client -vvf rpki.apnic.net/member_repository/A9132F27/84098F5CBB6C11EEA680AE6DC4F9AE02/QgxcRJT5_6t6haNwv8Pklcz6S6M.mft File: QgxcRJT5_6t6haNwv8Pklcz6S6M.mft (raw, json) Hash identifier: 6E5JRKh8j1zyq4s6R6Xlf3Cm5A+RxkHoa6+M5tsqaOg= Subject key identifier: 2F:BB:8D:BE:47:0B:7B:AB:87:0A:8C:41:8C:78:F0:ED:F3:E5:26:22 Authority key identifier: 42:0C:5C:44:94:F9:FF:AB:7A:85:A3:70:BF:C3:E4:95:CC:FA:4B:A3 Certificate issuer: /CN=A9132F27/serialNumber=420C5C4494F9FFAB7A85A370BFC3E495CCFA4BA3 Certificate serial: DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgxcRJT5_6t6haNwv8Pklcz6S6M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132F27/84098F5CBB6C11EEA680AE6DC4F9AE02/QgxcRJT5_6t6haNwv8Pklcz6S6M.mft Manifest number: DB Signing time: Sat 29 Mar 2025 04:54:40 +0000 Manifest this update: Sat 29 Mar 2025 04:54:40 +0000 Manifest next update: Sat 05 Apr 2025 04:54:40 +0000 Files and hashes: 1: QgxcRJT5_6t6haNwv8Pklcz6S6M.crl (hash: XrkjyGfzAKoLGlPKnaw0uPY9H2ij99RtiMOtjgTX4K8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132F27/84098F5CBB6C11EEA680AE6DC4F9AE02/QgxcRJT5_6t6haNwv8Pklcz6S6M.crl rsync://rpki.apnic.net/member_repository/A9132F27/84098F5CBB6C11EEA680AE6DC4F9AE02/QgxcRJT5_6t6haNwv8Pklcz6S6M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgxcRJT5_6t6haNwv8Pklcz6S6M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 04:54:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 219 (0xdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132F27 Validity Not Before: Mar 29 04:54:40 2025 GMT Not After : Apr 5 04:54:40 2025 GMT Subject: CN=67e77d10-c2e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c5:08:d0:e9:7f:ec:2d:d3:a9:cd:2a:23:76: 18:83:26:2c:89:30:ee:b8:51:7c:d2:e1:1b:af:e7: ba:67:cb:01:87:ac:c7:6c:07:00:29:64:50:78:0d: 09:60:19:75:6f:13:1e:3d:88:2c:85:4f:b0:8e:da: 95:94:b6:98:2c:68:cc:74:27:72:38:87:8a:1e:70: 57:4f:df:15:41:d5:c0:13:9f:7b:4d:56:5e:38:9b: 45:67:57:ff:4e:1a:60:a1:ce:ac:36:0a:c9:b4:fb: 74:db:76:b8:a4:50:77:43:ef:a0:bb:38:5e:b9:6e: 83:cb:13:73:2b:75:01:ca:31:1b:0b:f1:b0:56:28: 7e:9b:56:e9:87:a4:e0:36:f5:f3:c6:9d:f1:31:98: 48:1f:f5:64:69:ab:58:07:37:90:72:79:74:cd:90: e3:26:7a:97:ea:63:4f:ed:a3:0c:20:57:7f:2c:2e: 4c:9d:55:d9:bc:3f:a5:11:51:32:fc:16:6e:7b:ca: 9b:9c:0a:40:e3:57:b6:8b:94:60:d2:df:3c:5a:b2: 22:d9:5e:16:fe:99:d5:03:ea:f9:97:85:58:93:0f: 6b:52:e5:fc:c3:2e:8c:1e:51:a3:69:77:95:8d:a4: 2e:af:4b:ee:2c:bc:a4:96:d0:53:f7:06:fc:dd:48: a2:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:BB:8D:BE:47:0B:7B:AB:87:0A:8C:41:8C:78:F0:ED:F3:E5:26:22 X509v3 Authority Key Identifier: keyid:42:0C:5C:44:94:F9:FF:AB:7A:85:A3:70:BF:C3:E4:95:CC:FA:4B:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132F27/84098F5CBB6C11EEA680AE6DC4F9AE02/QgxcRJT5_6t6haNwv8Pklcz6S6M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgxcRJT5_6t6haNwv8Pklcz6S6M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132F27/84098F5CBB6C11EEA680AE6DC4F9AE02/QgxcRJT5_6t6haNwv8Pklcz6S6M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:43:c4:e8:73:e4:4f:63:b8:46:15:e5:9c:43:e4:dd:e4:0e: 4d:1b:91:42:39:ca:ca:8d:5a:ba:d7:39:2a:64:c5:16:f1:a7: 3f:50:5a:21:fa:d6:d3:1e:c5:02:9e:49:80:37:32:c5:5c:2f: bd:24:e0:43:a9:12:d6:1c:07:03:b0:13:5b:40:fc:91:c5:aa: 8a:3a:64:65:18:4d:bd:f1:dc:73:c7:fd:69:9b:bf:b8:99:43: 0e:1c:f9:96:f7:47:cf:10:5c:8d:8f:ef:e8:48:85:34:0c:c6: c8:a8:c3:bc:eb:c5:d3:5f:30:f8:84:37:1f:4c:c8:4e:d4:02: cd:c6:34:7e:91:8d:6c:c0:f5:7e:8e:9d:cf:6e:4a:8d:16:c2: 01:ae:a9:43:33:48:7a:38:e8:54:df:0a:ba:c5:ef:fc:b7:78: fd:5e:64:42:dc:b5:32:46:97:3f:3b:79:6b:27:21:0e:f3:df: c5:35:ec:3f:32:5a:c3:34:84:ff:20:ec:2a:97:ae:21:be:c2: b8:cd:6a:4d:79:0f:ab:c0:68:de:b1:26:e2:49:3f:6b:9b:91: 97:ed:69:d2:75:77:c8:93:56:d9:21:29:54:a4:bf:c5:73:6e: ee:14:a7:f4:6b:a0:3f:dc:f5:e9:a5:73:1c:19:81:4e:32:ac: 2a:72:4b:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJGMjcxMTAvBgNVBAUTKDQyMEM1QzQ0OTRGOUZGQUI3QTg1QTM3MEJGQzNFNDk1 Q0NGQTRCQTMwHhcNMjUwMzI5MDQ1NDQwWhcNMjUwNDA1MDQ1NDQwWjAYMRYwFAYD VQQDEw02N2U3N2QxMC1jMmU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArsUI0Ol/7C3Tqc0qI3YYgyYsiTDuuFF80uEbr+e6Z8sBh6zHbAcAKWRQeA0J YBl1bxMePYgshU+wjtqVlLaYLGjMdCdyOIeKHnBXT98VQdXAE597TVZeOJtFZ1f/ Thpgoc6sNgrJtPt023a4pFB3Q++guzheuW6DyxNzK3UByjEbC/GwVih+m1bph6Tg NvXzxp3xMZhIH/VkaatYBzeQcnl0zZDjJnqX6mNP7aMMIFd/LC5MnVXZvD+lEVEy /BZue8qbnApA41e2i5Rg0t88WrIi2V4W/pnVA+r5l4VYkw9rUuX8wy6MHlGjaXeV jaQur0vuLLykltBT9wb83UiiLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC+7jb5H C3urhwqMQYx48O3z5SYiMB8GA1UdIwQYMBaAFEIMXESU+f+reoWjcL/D5JXM+kuj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkYyNy84NDA5OEY1Q0JC NkMxMUVFQTY4MEFFNkRDNEY5QUUwMi9RZ3hjUkpUNV82dDZoYU53djhQa2xjejZT Nk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FneGNSSlQ1XzZ0NmhhTnd2OFBrbGN6NlM2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkYyNy84NDA5OEY1Q0JCNkMxMUVFQTY4MEFFNkRDNEY5QUUwMi9RZ3hjUkpUNV82 dDZoYU53djhQa2xjejZTNk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuQ8Toc+RPY7hGFeWcQ+Td5A5NG5FCOcrKjVq61zkqZMUW8ac/UFoh +tbTHsUCnkmANzLFXC+9JOBDqRLWHAcDsBNbQPyRxaqKOmRlGE298dxzx/1pm7+4 mUMOHPmW90fPEFyNj+/oSIU0DMbIqMO868XTXzD4hDcfTMhO1ALNxjR+kY1swPV+ jp3PbkqNFsIBrqlDM0h6OOhU3wq6xe/8t3j9XmRC3LUyRpc/O3lrJyEO89/FNew/ MlrDNIT/IOwql64hvsK4zWpNeQ+rwGjesSbiST9rm5GX7WnSdXfIk1bZISlUpL/F c27uFKf0a6A/3PXppXMcGYFOMqwqcks1 -----END CERTIFICATE-----Generated at Fri Apr 4 22:22:08 2025 by rpki-client