$ rpki-client -vvf rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft File: QZ8npM_s9GHbgvb5BnZPttZfI88.mft (raw, json) Hash identifier: J14lD3p8bsB/YtDUHyFZpHgex9qT6YwM/Drh112+rmg= Subject key identifier: 58:06:8C:4F:6A:5D:70:51:2B:22:8A:B6:56:30:E1:68:D3:7D:35:45 Authority key identifier: 41:9F:27:A4:CF:EC:F4:61:DB:82:F6:F9:06:76:4F:B6:D6:5F:23:CF Certificate issuer: /CN=A9140BED/serialNumber=419F27A4CFECF461DB82F6F906764FB6D65F23CF Certificate serial: A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft Manifest number: A0 Signing time: Sat 29 Mar 2025 05:37:43 +0000 Manifest this update: Sat 29 Mar 2025 05:37:43 +0000 Manifest next update: Sat 05 Apr 2025 05:37:43 +0000 Files and hashes: 1: QZ8npM_s9GHbgvb5BnZPttZfI88.crl (hash: K4+EMTK8j1l7Lcrh5ADR6HXm9hJkrCrqAiIOjM3LDRI=) 2: ED7C0BCC287211EFA1483A2FC4F9AE02.roa (hash: TrqB+PZze3/PHsx+S+f9vvK9WuKsfRUtYIK0Ow1+dU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.crl rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 165 (0xa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140BED Validity Not Before: Mar 29 05:37:43 2025 GMT Not After : Apr 5 05:37:43 2025 GMT Subject: CN=67e78727-7ad5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:d0:26:95:25:20:42:e1:05:cf:10:3a:7c:d6: 05:21:95:7a:22:a5:4f:a8:34:c3:05:cd:24:6a:10: 82:fd:e6:42:08:7d:d7:38:91:a4:94:2f:e3:6b:3d: fa:ba:5f:30:39:4f:7c:b5:35:11:87:95:30:eb:ab: f6:4f:b1:f5:8e:a9:ec:ed:e4:b8:cc:ab:93:ed:7f: 13:d3:94:3f:fe:57:36:fb:07:47:b6:11:ab:43:05: 5b:52:19:f1:95:e1:cc:3f:b4:f9:54:bb:ff:59:21: 23:4e:12:dc:00:34:ce:a0:b0:19:fd:ab:1a:5e:10: 5a:89:d7:93:9b:16:df:5f:8c:78:64:32:5b:00:b5: bd:2a:b9:40:70:26:5c:09:88:c5:59:4e:26:ff:06: 13:5b:23:5d:a7:33:b2:b7:2f:92:a3:3e:67:48:ce: 19:72:8a:14:1a:ba:3b:3b:fb:2a:63:ab:d9:d4:39: 65:66:98:0e:39:04:db:9b:17:6a:a7:6b:82:aa:0e: 09:14:b5:18:5a:33:1d:81:78:a5:35:68:cf:5c:b9: f8:b5:6c:dc:5d:24:58:a9:e4:71:4e:6b:65:91:8b: 01:b9:6b:66:08:fa:f4:51:5c:88:fb:32:36:bf:5f: 1a:7c:42:a8:fb:de:83:5c:7b:cd:b1:33:73:ad:ce: 51:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:06:8C:4F:6A:5D:70:51:2B:22:8A:B6:56:30:E1:68:D3:7D:35:45 X509v3 Authority Key Identifier: keyid:41:9F:27:A4:CF:EC:F4:61:DB:82:F6:F9:06:76:4F:B6:D6:5F:23:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:85:71:ec:1e:b3:87:1a:de:c3:e2:37:87:14:18:56:f0:af: 57:f5:19:14:55:0c:90:64:a6:d4:f8:07:89:6d:d0:ee:02:cf: 3b:09:ae:58:37:01:e5:5c:e8:68:ca:65:92:02:8a:ce:9d:31: 36:13:18:5c:81:80:4e:3b:ea:81:52:69:53:f3:96:47:23:82: 8f:2d:60:77:1a:3d:17:89:21:be:1e:ef:6a:62:5f:56:fd:4e: 14:a8:1c:91:e6:7e:99:58:4a:d8:67:a5:0f:9d:bb:fd:b7:d5: cd:8a:39:b6:38:74:4a:54:36:8e:93:76:c8:90:f1:6e:9e:9c: 13:a8:c0:88:6c:39:fe:16:49:50:24:9f:f3:03:53:f1:93:31: 76:a4:25:3a:08:ca:08:a0:2c:fe:9c:08:d0:3e:40:72:ec:29: 4c:bb:7a:4b:e0:a4:aa:a5:57:54:1b:0b:36:9d:0a:ab:a0:71: a9:81:51:a0:13:bf:04:cd:74:07:a3:a6:c9:e2:0c:11:fb:ce: bb:9f:ff:22:16:9c:7e:f5:bf:50:28:8f:1d:20:a3:bc:94:78: f6:fa:7d:a7:f3:20:62:00:62:b9:75:a5:6d:32:b7:e8:8c:8e: a2:99:89:c3:14:7a:b2:9f:50:ac:cb:06:40:18:6a:10:2b:20: 91:d7:19:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBCRUQxMTAvBgNVBAUTKDQxOUYyN0E0Q0ZFQ0Y0NjFEQjgyRjZGOTA2NzY0RkI2 RDY1RjIzQ0YwHhcNMjUwMzI5MDUzNzQzWhcNMjUwNDA1MDUzNzQzWjAYMRYwFAYD VQQDEw02N2U3ODcyNy03YWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxNAmlSUgQuEFzxA6fNYFIZV6IqVPqDTDBc0kahCC/eZCCH3XOJGklC/jaz36 ul8wOU98tTURh5Uw66v2T7H1jqns7eS4zKuT7X8T05Q//lc2+wdHthGrQwVbUhnx leHMP7T5VLv/WSEjThLcADTOoLAZ/asaXhBaideTmxbfX4x4ZDJbALW9KrlAcCZc CYjFWU4m/wYTWyNdpzOyty+Soz5nSM4ZcooUGro7O/sqY6vZ1DllZpgOOQTbmxdq p2uCqg4JFLUYWjMdgXilNWjPXLn4tWzcXSRYqeRxTmtlkYsBuWtmCPr0UVyI+zI2 v18afEKo+96DXHvNsTNzrc5RZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFgGjE9q XXBRKyKKtlYw4WjTfTVFMB8GA1UdIwQYMBaAFEGfJ6TP7PRh24L2+QZ2T7bWXyPP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEJFRC8wOEUwRTA2NjFG MzgxMUVGQjA1OUI2NjVDNEY5QUUwMi9RWjhucE1fczlHSGJndmI1Qm5aUHR0WmZJ ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FaOG5wTV9zOUdIYmd2YjVCblpQdHRaZkk4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEJFRC8wOEUwRTA2NjFGMzgxMUVGQjA1OUI2NjVDNEY5QUUwMi9RWjhucE1fczlH SGJndmI1Qm5aUHR0WmZJODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDChXHsHrOHGt7D4jeHFBhW8K9X9RkUVQyQZKbU+AeJbdDuAs87Ca5Y NwHlXOhoymWSAorOnTE2ExhcgYBOO+qBUmlT85ZHI4KPLWB3Gj0XiSG+Hu9qYl9W /U4UqByR5n6ZWErYZ6UPnbv9t9XNijm2OHRKVDaOk3bIkPFunpwTqMCIbDn+FklQ JJ/zA1PxkzF2pCU6CMoIoCz+nAjQPkBy7ClMu3pL4KSqpVdUGws2nQqroHGpgVGg E78EzXQHo6bJ4gwR+867n/8iFpx+9b9QKI8dIKO8lHj2+n2n8yBiAGK5daVtMrfo jI6imYnDFHqyn1CsywZAGGoQKyCR1xk4 -----END CERTIFICATE-----Generated at Fri Apr 4 22:40:05 2025 by rpki-client