$ rpki-client -vvf rpki.apnic.net/member_repository/A919E8DB/B48E25F4B76311EF82DD8F33C4F9AE02/QGGGPd9D57OxiePJwyF7wSuzXyE.mft File: QGGGPd9D57OxiePJwyF7wSuzXyE.mft (raw, json) Hash identifier: AEggq+5uxm8CtocH1P8eDPZHqVM+rePBqsVXq6/RuTo= Subject key identifier: E0:4E:72:FA:06:2B:42:BF:18:58:00:52:75:52:7E:C9:03:D8:93:01 Authority key identifier: 40:61:86:3D:DF:43:E7:B3:B1:89:E3:C9:C3:21:7B:C1:2B:B3:5F:21 Certificate issuer: /CN=A919E8DB/serialNumber=4061863DDF43E7B3B189E3C9C3217BC12BB35F21 Certificate serial: 53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QGGGPd9D57OxiePJwyF7wSuzXyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E8DB/B48E25F4B76311EF82DD8F33C4F9AE02/QGGGPd9D57OxiePJwyF7wSuzXyE.mft Manifest number: 49 Signing time: Thu 03 Apr 2025 06:47:27 +0000 Manifest this update: Thu 03 Apr 2025 06:47:27 +0000 Manifest next update: Thu 10 Apr 2025 06:47:27 +0000 Files and hashes: 1: QGGGPd9D57OxiePJwyF7wSuzXyE.crl (hash: VuKnAzgTOtf/6rlE7hJ7XJ+U+091iiFoQnEF0YeRV0g=) 2: DCAA44D6BF2A11EFBAAF1F16C4F9AE02.roa (hash: fSJH1SOLPO4NysKX51na/qXDmlPOAQyyNuZ41eZmd8c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E8DB/B48E25F4B76311EF82DD8F33C4F9AE02/QGGGPd9D57OxiePJwyF7wSuzXyE.crl rsync://rpki.apnic.net/member_repository/A919E8DB/B48E25F4B76311EF82DD8F33C4F9AE02/QGGGPd9D57OxiePJwyF7wSuzXyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QGGGPd9D57OxiePJwyF7wSuzXyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 06:47:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E8DB Validity Not Before: Apr 3 06:47:27 2025 GMT Not After : Apr 10 06:47:27 2025 GMT Subject: CN=67ee2eff-869d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:8a:e2:58:9d:40:d8:da:b2:cd:fd:6f:77:f2: f1:66:4b:81:fb:4f:83:86:2e:16:f4:a6:a3:0d:ab: cd:2d:59:ed:3f:4f:23:0d:6f:22:e9:15:84:e3:a9: a4:be:d8:2f:41:e3:3e:fa:37:6d:c0:dc:ad:0b:17: 5f:e3:05:66:1f:5f:48:2f:00:64:01:c4:7b:57:12: 0d:19:94:96:96:0e:d8:11:6d:ce:29:8e:ca:e7:89: 1e:7c:6d:02:57:28:4b:cb:1a:68:7a:cf:5f:a8:5c: bb:47:43:78:66:6e:72:1b:69:3f:43:1d:71:fc:55: ff:17:16:e2:c6:94:03:2e:c4:90:1e:10:60:c3:88: 52:dc:c7:b8:b7:91:64:56:c5:29:b9:55:0d:03:31: ae:d5:3c:e6:a9:0c:ad:82:36:a6:4c:a0:9a:9a:19: 1c:5d:20:a6:17:b6:5d:2e:16:d0:2d:50:fd:a6:18: 01:a2:2c:62:7c:82:95:7c:17:de:58:53:bb:d9:4c: a2:21:80:10:16:25:a6:48:27:5c:fc:f4:f8:49:b7: 1a:20:cf:c2:87:a2:f4:43:42:16:4d:35:e1:e4:08: 7e:58:ef:41:97:bb:16:43:1c:59:c6:58:5a:b5:6e: 14:25:77:20:f1:d9:e3:75:96:5c:a6:a1:6e:f7:59: 9c:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:4E:72:FA:06:2B:42:BF:18:58:00:52:75:52:7E:C9:03:D8:93:01 X509v3 Authority Key Identifier: keyid:40:61:86:3D:DF:43:E7:B3:B1:89:E3:C9:C3:21:7B:C1:2B:B3:5F:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E8DB/B48E25F4B76311EF82DD8F33C4F9AE02/QGGGPd9D57OxiePJwyF7wSuzXyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QGGGPd9D57OxiePJwyF7wSuzXyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E8DB/B48E25F4B76311EF82DD8F33C4F9AE02/QGGGPd9D57OxiePJwyF7wSuzXyE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:ec:59:ef:1c:98:30:32:bd:51:9f:50:1b:11:cb:d7:c5:ab: b4:1e:84:9e:68:85:f4:c1:e8:55:c2:99:c8:87:23:0d:8b:a4: 4d:c2:83:75:ad:cb:d3:b8:8b:af:55:45:0d:c3:e3:02:a2:9a: da:2f:de:e4:0f:69:57:25:94:e1:c2:ab:e4:cb:65:28:51:20: 8c:ce:91:ab:67:b9:04:72:d8:49:c3:f0:d0:90:fc:ae:34:17: 46:58:1b:d7:ad:43:8b:2f:b7:7c:ff:38:b0:51:c1:b1:3f:28: fd:3e:4e:ed:a2:7c:d3:94:d9:0a:c1:1a:b9:45:03:eb:d4:e9: 32:13:a1:e0:55:23:88:26:75:ab:08:c1:88:b6:f1:fc:b0:68: 74:7b:ce:b5:99:4d:1d:34:f2:5f:dc:d3:3f:28:e1:ad:4f:e2: 1b:96:2e:ae:69:6d:14:e4:69:3e:c3:1a:4d:4c:0b:6f:4d:db: d1:29:33:cc:44:ad:c7:28:6a:15:c1:6b:0e:36:fe:97:1d:65: f9:14:d2:b6:ba:4a:fb:f7:63:50:75:f8:0f:e2:ed:54:ec:fa: ae:bc:1c:1a:25:8f:c2:f1:11:a9:29:bc:75:c2:94:2c:9c:1d: ed:42:c4:2e:d8:52:fe:83:ef:95:f4:f5:8d:1b:09:fa:ea:43: c8:93:ca:0e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RThEQjExMC8GA1UEBRMoNDA2MTg2M0RERjQzRTdCM0IxODlFM0M5QzMyMTdCQzEy QkIzNUYyMTAeFw0yNTA0MDMwNjQ3MjdaFw0yNTA0MTAwNjQ3MjdaMBgxFjAUBgNV BAMTDTY3ZWUyZWZmLTg2OWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSiuJYnUDY2rLN/W938vFmS4H7T4OGLhb0pqMNq80tWe0/TyMNbyLpFYTjqaS+ 2C9B4z76N23A3K0LF1/jBWYfX0gvAGQBxHtXEg0ZlJaWDtgRbc4pjsrniR58bQJX KEvLGmh6z1+oXLtHQ3hmbnIbaT9DHXH8Vf8XFuLGlAMuxJAeEGDDiFLcx7i3kWRW xSm5VQ0DMa7VPOapDK2CNqZMoJqaGRxdIKYXtl0uFtAtUP2mGAGiLGJ8gpV8F95Y U7vZTKIhgBAWJaZIJ1z89PhJtxogz8KHovRDQhZNNeHkCH5Y70GXuxZDHFnGWFq1 bhQldyDx2eN1llymoW73WZyRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU4E5y+gYr Qr8YWABSdVJ+yQPYkwEwHwYDVR0jBBgwFoAUQGGGPd9D57OxiePJwyF7wSuzXyEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlFOERCL0I0OEUyNUY0Qjc2 MzExRUY4MkREOEYzM0M0RjlBRTAyL1FHR0dQZDlENTdPeGllUEp3eUY3d1N1elh5 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUUdHR1BkOUQ1N094aWVQSnd5Rjd3U3V6WHlFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlF OERCL0I0OEUyNUY0Qjc2MzExRUY4MkREOEYzM0M0RjlBRTAyL1FHR0dQZDlENTdP eGllUEp3eUY3d1N1elh5RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAATsWe8cmDAyvVGfUBsRy9fFq7QehJ5ohfTB6FXCmciHIw2LpE3Cg3Wt y9O4i69VRQ3D4wKimtov3uQPaVcllOHCq+TLZShRIIzOkatnuQRy2EnD8NCQ/K40 F0ZYG9etQ4svt3z/OLBRwbE/KP0+Tu2ifNOU2QrBGrlFA+vU6TIToeBVI4gmdasI wYi28fywaHR7zrWZTR008l/c0z8o4a1P4huWLq5pbRTkaT7DGk1MC29N29EpM8xE rccoahXBaw42/pcdZfkU0ra6Svv3Y1B1+A/i7VTs+q68HBolj8LxEakpvHXClCyc He1CxC7YUv6D75X09Y0bCfrqQ8iTyg4= -----END CERTIFICATE-----Generated at Fri Apr 4 18:37:25 2025 by rpki-client