$ rpki-client -vvf rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft File: QrsPPBhH5li75BQYSUzonOjjRIg.mft (raw, json) Hash identifier: 9EU+bcSg4+CXKx8xW2KYFOZcNbosBmmgJL+wCS1KeVQ= Subject key identifier: 1A:6E:8E:09:3D:4A:28:73:44:12:A1:B2:E8:B2:3F:19:E4:92:1C:C9 Authority key identifier: 42:BB:0F:3C:18:47:E6:58:BB:E4:14:18:49:4C:E8:9C:E8:E3:44:88 Certificate issuer: /CN=A9172506/serialNumber=42BB0F3C1847E658BBE41418494CE89CE8E34488 Certificate serial: 70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft Manifest number: 6E Signing time: Thu 03 Apr 2025 06:09:48 +0000 Manifest this update: Thu 03 Apr 2025 06:09:48 +0000 Manifest next update: Thu 10 Apr 2025 06:09:48 +0000 Files and hashes: 1: QrsPPBhH5li75BQYSUzonOjjRIg.crl (hash: zRKaHB2TVd7VpjGQGKKxwa00is2e1MKz7qnyqHk3RVU=) 2: DD75C9BC6EDF11EF90C49A5FC4F9AE02.roa (hash: ribPo1yuX+hIqHtl1PCEzGGO/yQznd+mDINBcQhxFF0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.crl rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 06:09:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172506 Validity Not Before: Apr 3 06:09:48 2025 GMT Not After : Apr 10 06:09:48 2025 GMT Subject: CN=67ee262c-b32b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:15:23:b3:9e:b5:56:d4:9a:1b:a3:e6:f7:4b: e8:eb:f3:06:72:23:93:74:a6:77:41:3e:8d:c6:61: 33:6f:93:3b:c3:be:e9:67:7f:89:9a:41:80:5a:30: 0a:ff:e3:fd:eb:51:0f:92:0f:2b:3d:60:0a:3d:6b: ed:29:0e:94:92:2a:c3:f1:d7:12:74:e2:4c:4f:3a: 11:25:f6:d4:d9:3e:71:12:bf:df:52:05:8d:7e:9e: 11:d4:c9:ae:01:65:a8:b7:d1:ab:6d:7c:f5:60:75: 20:71:4c:9f:8f:22:03:f7:7a:60:44:94:9d:f0:f9: 1c:61:ba:aa:98:cd:4a:72:02:42:75:e7:d1:d1:35: e1:12:b5:c7:77:82:bc:96:4e:ef:fa:0f:ef:69:c5: a7:be:82:47:65:ce:d5:e0:12:70:6f:47:98:ec:f4: 67:98:2f:2a:b3:6d:d5:b3:b0:fc:63:64:fc:17:1e: 9d:8c:b7:e3:9b:e1:bd:67:b3:2d:3c:d3:78:94:48: e8:ce:a8:7d:7a:0d:13:7d:b6:c7:0e:8d:31:92:79: 47:00:6b:3e:b6:e4:55:7c:6f:45:5c:d1:82:28:f4: 1a:9c:a2:61:d1:38:35:4f:d4:f6:f6:cd:9c:6d:16: aa:fa:d1:42:6a:2a:55:2e:31:e5:77:68:9d:8f:5b: d3:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:6E:8E:09:3D:4A:28:73:44:12:A1:B2:E8:B2:3F:19:E4:92:1C:C9 X509v3 Authority Key Identifier: keyid:42:BB:0F:3C:18:47:E6:58:BB:E4:14:18:49:4C:E8:9C:E8:E3:44:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:c8:09:fb:9f:36:42:22:4b:d7:b1:c8:f0:3a:1d:a5:1b:53: ba:00:c2:4d:ac:a9:5c:b1:eb:6c:06:73:78:5b:04:ae:e6:bd: df:88:a6:46:bf:68:96:c4:ac:9e:e9:12:42:ea:f2:26:c4:59: 4d:c6:33:93:d7:9b:b3:1b:38:5e:88:0e:a8:19:39:73:c9:05: f2:16:16:6c:9f:32:b1:9b:0e:29:c3:23:98:97:ca:2d:9e:e4: dc:67:05:b9:a7:fb:a8:8a:2a:65:19:dd:d5:5d:72:80:35:24: 31:d5:63:33:61:93:72:87:5c:f0:d8:0d:71:0d:a1:7c:72:80: f3:c0:e0:20:74:20:6c:c4:ef:18:64:bf:52:20:9c:27:92:d2: 3a:eb:ea:a4:4f:28:61:f1:44:e7:cd:f3:7c:44:10:aa:d9:02: 88:4f:6a:d2:69:df:56:62:a0:72:a5:75:e9:09:c1:92:c7:57: 99:58:5e:78:41:0d:3e:55:c9:9b:26:7c:00:22:e7:aa:28:3e: c9:d0:43:c7:9d:5d:7a:f6:94:c0:84:6c:68:6c:ac:1d:16:49: 1e:fd:66:ac:57:f0:1d:aa:08:65:97:ec:55:17:9e:67:24:95: e0:c0:db:e2:6c:7b:52:1f:ef:13:6c:1d:c9:25:25:c7:c4:2d: fa:31:b8:72 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MjUwNjExMC8GA1UEBRMoNDJCQjBGM0MxODQ3RTY1OEJCRTQxNDE4NDk0Q0U4OUNF OEUzNDQ4ODAeFw0yNTA0MDMwNjA5NDhaFw0yNTA0MTAwNjA5NDhaMBgxFjAUBgNV BAMTDTY3ZWUyNjJjLWIzMmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDMFSOznrVW1Jobo+b3S+jr8wZyI5N0pndBPo3GYTNvkzvDvulnf4maQYBaMAr/ 4/3rUQ+SDys9YAo9a+0pDpSSKsPx1xJ04kxPOhEl9tTZPnESv99SBY1+nhHUya4B Zai30attfPVgdSBxTJ+PIgP3emBElJ3w+RxhuqqYzUpyAkJ159HRNeEStcd3gryW Tu/6D+9pxae+gkdlztXgEnBvR5js9GeYLyqzbdWzsPxjZPwXHp2Mt+Ob4b1nsy08 03iUSOjOqH16DRN9tscOjTGSeUcAaz625FV8b0Vc0YIo9BqcomHRODVP1Pb2zZxt Fqr60UJqKlUuMeV3aJ2PW9MnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUGm6OCT1K KHNEEqGy6LI/GeSSHMkwHwYDVR0jBBgwFoAUQrsPPBhH5li75BQYSUzonOjjRIgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcyNTA2L0IwNDkwOENFNkVE RTExRUZBQUMyQ0I1REM0RjlBRTAyL1Fyc1BQQmhINWxpNzVCUVlTVXpvbk9qalJJ Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUXJzUFBCaEg1bGk3NUJRWVNVem9uT2pqUklnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcy NTA2L0IwNDkwOENFNkVERTExRUZBQUMyQ0I1REM0RjlBRTAyL1Fyc1BQQmhINWxp NzVCUVlTVXpvbk9qalJJZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAfICfufNkIiS9exyPA6HaUbU7oAwk2sqVyx62wGc3hbBK7mvd+Ipka/ aJbErJ7pEkLq8ibEWU3GM5PXm7MbOF6IDqgZOXPJBfIWFmyfMrGbDinDI5iXyi2e 5NxnBbmn+6iKKmUZ3dVdcoA1JDHVYzNhk3KHXPDYDXENoXxygPPA4CB0IGzE7xhk v1IgnCeS0jrr6qRPKGHxROfN83xEEKrZAohPatJp31ZioHKldekJwZLHV5lYXnhB DT5VyZsmfAAi56ooPsnQQ8edXXr2lMCEbGhsrB0WSR79ZqxX8B2qCGWX7FUXnmck leDA2+Jse1If7xNsHcklJcfELfoxuHI= -----END CERTIFICATE-----Generated at Fri Apr 4 21:55:49 2025 by rpki-client