$ rpki-client -vvf rpki.apnic.net/member_repository/A917C909/07797FE4C0DC11EF9E871844C4F9AE02/qgt4LbmTLiL93vDD91WW7glF4S0.mft File: qgt4LbmTLiL93vDD91WW7glF4S0.mft (raw, json) Hash identifier: FzJcdmmosbEkcbOFyW4AGUPYeDmzfIgwzh5vOEqmbeA= Subject key identifier: 51:77:D9:B7:E6:10:6B:65:87:49:81:17:EC:C2:E6:29:95:4C:C6:D2 Authority key identifier: AA:0B:78:2D:B9:93:2E:22:FD:DE:F0:C3:F7:55:96:EE:09:45:E1:2D Certificate issuer: /CN=A917C909/serialNumber=AA0B782DB9932E22FDDEF0C3F75596EE0945E12D Certificate serial: 22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qgt4LbmTLiL93vDD91WW7glF4S0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C909/07797FE4C0DC11EF9E871844C4F9AE02/qgt4LbmTLiL93vDD91WW7glF4S0.mft Manifest number: 1E Signing time: Wed 05 Feb 2025 06:21:57 +0000 Manifest this update: Wed 05 Feb 2025 06:21:56 +0000 Manifest next update: Wed 12 Feb 2025 06:21:56 +0000 Files and hashes: 1: qgt4LbmTLiL93vDD91WW7glF4S0.crl (hash: tmHuAQAUsefkeYkniRYiY0+5YEC/0S4fqyJza/ccO90=) 2: 3A0E0B1CD47511EF91EA0832C4F9AE02.roa (hash: pAj7NdDmToipkIAovmtOfynK/RP/8C5/+xzCsvCxUC8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C909/07797FE4C0DC11EF9E871844C4F9AE02/qgt4LbmTLiL93vDD91WW7glF4S0.crl rsync://rpki.apnic.net/member_repository/A917C909/07797FE4C0DC11EF9E871844C4F9AE02/qgt4LbmTLiL93vDD91WW7glF4S0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qgt4LbmTLiL93vDD91WW7glF4S0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:21:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C909 Validity Not Before: Feb 5 06:21:56 2025 GMT Not After : Feb 12 06:21:56 2025 GMT Subject: CN=67a30384-1156 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:f6:eb:7b:5c:7d:af:c6:d2:f5:fd:24:63:8a: 11:ad:fa:df:10:5c:f8:ee:d6:27:cf:9b:0b:b3:e5: e4:ca:8b:fc:c4:cc:89:cb:90:c8:20:58:b1:83:75: 5d:e4:08:41:2c:01:82:42:3b:6c:27:95:f2:07:6c: 52:9a:8d:5b:ac:98:5a:fb:98:34:28:72:38:0a:83: f4:b4:1d:f0:80:8c:f9:ec:66:b6:8a:b1:07:11:84: 6a:4e:3c:15:99:9e:cc:e5:85:28:1c:22:81:e5:34: 77:a3:2c:f1:92:eb:13:3d:9e:7a:a1:bc:52:25:6b: 36:85:5a:59:7e:58:4a:c8:83:3d:fe:30:55:8d:32: e2:33:68:35:aa:2a:52:31:ad:a8:de:49:63:8d:23: e1:e4:cd:9d:20:35:0d:33:64:22:3c:b0:a4:ea:d2: 89:ba:78:da:32:5f:82:e3:3a:12:79:42:57:1c:6b: 88:6f:57:f8:05:36:f5:66:f9:62:16:45:72:82:11: 8a:4b:10:75:99:27:13:11:a7:59:27:fe:2a:91:db: df:57:7e:ee:10:70:97:15:45:12:cb:95:93:e1:6f: 1f:a9:a1:d6:5d:0f:89:da:b4:2e:dc:b1:fa:f0:d1: 5e:cd:92:3d:14:11:14:d5:18:8e:8d:90:76:c0:64: 00:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:77:D9:B7:E6:10:6B:65:87:49:81:17:EC:C2:E6:29:95:4C:C6:D2 X509v3 Authority Key Identifier: keyid:AA:0B:78:2D:B9:93:2E:22:FD:DE:F0:C3:F7:55:96:EE:09:45:E1:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C909/07797FE4C0DC11EF9E871844C4F9AE02/qgt4LbmTLiL93vDD91WW7glF4S0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qgt4LbmTLiL93vDD91WW7glF4S0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C909/07797FE4C0DC11EF9E871844C4F9AE02/qgt4LbmTLiL93vDD91WW7glF4S0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:fb:1b:67:2f:a8:6f:50:57:c7:ce:b0:88:57:fc:d3:29:77: fb:2b:79:b6:64:d9:98:a1:53:7a:f8:8b:9f:f3:4d:94:28:29: 28:61:a7:e8:d8:05:65:92:50:81:0a:11:9b:88:3b:a4:42:66: 56:76:4f:09:82:74:aa:01:fd:da:d4:4a:6b:92:54:65:40:0b: e1:d9:65:42:ea:5e:76:a7:47:49:b0:f3:65:d1:c4:9e:95:00: fd:be:d8:08:ed:83:93:78:3b:c8:78:1e:fb:ad:2a:8e:8e:cb: a4:81:8b:44:c2:db:28:7c:62:0d:70:ed:0d:2a:90:23:5f:a4: d2:1a:12:d7:1c:18:e8:e6:e0:97:fe:8f:98:d3:aa:c3:80:20: 44:ba:4c:4d:50:f4:70:7e:67:1e:c6:49:8a:9c:f7:bb:50:16: 98:64:ab:83:4d:89:d5:4a:af:f9:be:98:c4:db:5c:b1:ec:93: 04:61:52:e7:91:71:67:0b:18:3a:af:55:eb:89:0b:d7:39:88: 67:cc:73:0b:4e:8f:ee:fe:be:16:59:ea:20:e7:bd:f5:38:27: 31:36:0d:39:a5:8c:af:a4:bb:99:ed:2b:43:4a:0b:bb:fd:fa: 5a:8c:b1:92:ea:68:9d:7f:f0:4f:f6:19:10:d2:42:5e:5d:7a: c6:c6:55:ed -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QzkwOTExMC8GA1UEBRMoQUEwQjc4MkRCOTkzMkUyMkZEREVGMEMzRjc1NTk2RUUw OTQ1RTEyRDAeFw0yNTAyMDUwNjIxNTZaFw0yNTAyMTIwNjIxNTZaMBgxFjAUBgNV BAMTDTY3YTMwMzg0LTExNTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCq9ut7XH2vxtL1/SRjihGt+t8QXPju1ifPmwuz5eTKi/zEzInLkMggWLGDdV3k CEEsAYJCO2wnlfIHbFKajVusmFr7mDQocjgKg/S0HfCAjPnsZraKsQcRhGpOPBWZ nszlhSgcIoHlNHejLPGS6xM9nnqhvFIlazaFWll+WErIgz3+MFWNMuIzaDWqKlIx rajeSWONI+HkzZ0gNQ0zZCI8sKTq0om6eNoyX4LjOhJ5Qlcca4hvV/gFNvVm+WIW RXKCEYpLEHWZJxMRp1kn/iqR299Xfu4QcJcVRRLLlZPhbx+podZdD4natC7csfrw 0V7Nkj0UERTVGI6NkHbAZAAhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUUXfZt+YQ a2WHSYEX7MLmKZVMxtIwHwYDVR0jBBgwFoAUqgt4LbmTLiL93vDD91WW7glF4S0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdDOTA5LzA3Nzk3RkU0QzBE QzExRUY5RTg3MTg0NEM0RjlBRTAyL3FndDRMYm1UTGlMOTN2REQ5MVdXN2dsRjRT MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcWd0NExibVRMaUw5M3ZERDkxV1c3Z2xGNFMwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdD OTA5LzA3Nzk3RkU0QzBEQzExRUY5RTg3MTg0NEM0RjlBRTAyL3FndDRMYm1UTGlM OTN2REQ5MVdXN2dsRjRTMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGb7G2cvqG9QV8fOsIhX/NMpd/srebZk2ZihU3r4i5/zTZQoKShhp+jY BWWSUIEKEZuIO6RCZlZ2TwmCdKoB/drUSmuSVGVAC+HZZULqXnanR0mw82XRxJ6V AP2+2Ajtg5N4O8h4HvutKo6Oy6SBi0TC2yh8Yg1w7Q0qkCNfpNIaEtccGOjm4Jf+ j5jTqsOAIES6TE1Q9HB+Zx7GSYqc97tQFphkq4NNidVKr/m+mMTbXLHskwRhUueR cWcLGDqvVeuJC9c5iGfMcwtOj+7+vhZZ6iDnvfU4JzE2DTmljK+ku5ntK0NKC7v9 +lqMsZLqaJ1/8E/2GRDSQl5desbGVe0= -----END CERTIFICATE-----Generated at Thu Feb 6 08:05:28 2025 by rpki-client