$ rpki-client -vvf rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/QbMaaMknik1EdI4t-MasqBV47LU.mft File: QbMaaMknik1EdI4t-MasqBV47LU.mft (raw, json) Hash identifier: XJneFBbU4twWFE2jwVLjVJ30EDV7Z3ZgO086xt5L82Y= Subject key identifier: 88:E2:27:52:AE:31:7D:41:F8:53:57:58:22:C8:16:27:96:2F:D3:36 Authority key identifier: 41:B3:1A:68:C9:27:8A:4D:44:74:8E:2D:F8:C6:AC:A8:15:78:EC:B5 Certificate issuer: /CN=A9120A29/serialNumber=41B31A68C9278A4D44748E2DF8C6ACA81578ECB5 Certificate serial: 0ACD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbMaaMknik1EdI4t-MasqBV47LU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/QbMaaMknik1EdI4t-MasqBV47LU.mft Manifest number: 0AC6 Signing time: Sat 10 May 2025 19:12:48 +0000 Manifest this update: Sat 10 May 2025 19:12:47 +0000 Manifest next update: Sat 17 May 2025 19:12:47 +0000 Files and hashes: 1: QbMaaMknik1EdI4t-MasqBV47LU.crl (hash: 5yklUmUXDRptnJ4VldPMv4IkpKTliXxdB2Q8oIfLMjQ=) 2: 73A346A24D5D11EAA811C368C4F9AE02.roa (hash: AtiHUqqiSc5seLUNoB/SjIutv6okcY16FsBOaprHkwA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/QbMaaMknik1EdI4t-MasqBV47LU.crl rsync://rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/QbMaaMknik1EdI4t-MasqBV47LU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbMaaMknik1EdI4t-MasqBV47LU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 19:12:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2765 (0xacd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120A29, serialNumber=41B31A68C9278A4D44748E2DF8C6ACA81578ECB5 Validity Not Before: May 10 19:12:47 2025 GMT Not After : May 17 19:12:47 2025 GMT Subject: CN=681fa52f-4d61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:26:99:cf:0a:4d:5a:75:88:9d:d8:d9:a1:5b: ba:1d:5b:31:b3:72:d0:6d:de:b6:f8:7d:e4:61:68: 22:b2:75:01:90:8e:ff:c8:65:8f:7f:a7:42:75:93: f5:27:6c:0f:9e:61:6c:d1:1a:dc:7e:dc:4b:b4:30: 1d:b5:db:48:ed:d1:31:f5:69:a7:f2:77:f2:e9:33: d6:39:a0:2e:21:fd:63:10:f8:04:74:fe:31:f2:29: 0c:e3:8f:90:63:10:6c:52:2d:00:9c:e8:fb:7f:5b: 78:20:10:03:81:0c:36:0b:02:ca:3b:ff:ed:1e:eb: 41:40:e6:0d:81:ad:f7:77:a0:15:0b:c4:04:97:dd: c8:9f:2f:a7:13:59:28:c4:3b:82:db:03:ab:d3:92: 3b:84:49:89:18:26:ec:86:61:9f:19:f3:97:7c:22: a9:97:20:c6:e8:6d:f9:10:7f:89:c0:5c:e3:5a:00: 22:30:64:91:7f:b9:cd:05:de:0c:40:6e:e4:e8:e9: 53:bb:76:df:c6:f7:c1:cf:87:de:26:2c:ed:90:b3: d1:bf:af:82:80:9b:4c:89:d5:b8:65:04:cc:73:4d: 29:87:fd:88:3e:67:f6:0b:a6:aa:98:d8:21:5c:bd: 85:29:75:79:c7:4c:f2:f8:4c:79:9c:94:16:10:55: 48:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:E2:27:52:AE:31:7D:41:F8:53:57:58:22:C8:16:27:96:2F:D3:36 X509v3 Authority Key Identifier: keyid:41:B3:1A:68:C9:27:8A:4D:44:74:8E:2D:F8:C6:AC:A8:15:78:EC:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/QbMaaMknik1EdI4t-MasqBV47LU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbMaaMknik1EdI4t-MasqBV47LU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/QbMaaMknik1EdI4t-MasqBV47LU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:eb:89:87:f1:70:77:f1:b2:44:85:33:2a:a4:42:6f:23:e8: 95:78:da:8a:5d:a2:2f:d9:ae:f1:9d:da:e7:36:d4:bf:de:2e: f4:dc:37:a3:9e:9d:9b:e3:50:31:7b:56:e2:11:cb:ce:89:e4: d7:37:2f:58:2a:03:b3:af:03:00:f6:56:3c:c8:bf:e8:2d:bc: c1:fe:d3:98:bb:16:28:92:55:71:93:70:f8:78:a5:38:90:0f: e5:d0:58:c6:f0:fb:5c:4c:7f:5c:6f:a7:97:f2:f3:5e:e3:e3: 7e:1c:73:e4:c0:66:68:bf:b9:00:60:26:d3:88:a0:3f:46:e3: 5b:dc:53:70:53:11:0b:da:ec:73:37:e5:50:36:05:ac:ab:c0: 50:0d:f5:0c:7e:4f:be:26:7a:49:c6:11:19:56:74:70:4b:0a: c1:4b:1b:e6:e4:7d:6d:30:06:18:ae:cd:24:0a:56:bb:9f:a5: f2:01:a3:1d:40:3f:34:e1:45:63:5a:f6:7a:23:19:18:0f:8d: 3b:e9:ee:23:db:c9:15:60:45:2a:5a:15:44:e5:b4:c1:f7:be: 78:75:08:1e:3d:86:6c:e5:86:a0:57:e3:1a:d9:96:2d:ee:5b: 35:55:42:8b:92:05:c4:14:bc:5e:0e:83:d1:a6:bb:71:0b:93: 9b:3c:3c:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCs0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBMjkxMTAvBgNVBAUTKDQxQjMxQTY4QzkyNzhBNEQ0NDc0OEUyREY4QzZBQ0E4 MTU3OEVDQjUwHhcNMjUwNTEwMTkxMjQ3WhcNMjUwNTE3MTkxMjQ3WjAYMRYwFAYD VQQDEw02ODFmYTUyZi00ZDYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7SaZzwpNWnWIndjZoVu6HVsxs3LQbd62+H3kYWgisnUBkI7/yGWPf6dCdZP1 J2wPnmFs0RrcftxLtDAdtdtI7dEx9Wmn8nfy6TPWOaAuIf1jEPgEdP4x8ikM44+Q YxBsUi0AnOj7f1t4IBADgQw2CwLKO//tHutBQOYNga33d6AVC8QEl93Iny+nE1ko xDuC2wOr05I7hEmJGCbshmGfGfOXfCKplyDG6G35EH+JwFzjWgAiMGSRf7nNBd4M QG7k6OlTu3bfxvfBz4feJiztkLPRv6+CgJtMidW4ZQTMc00ph/2IPmf2C6aqmNgh XL2FKXV5x0zy+Ex5nJQWEFVIqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIjiJ1Ku MX1B+FNXWCLIFieWL9M2MB8GA1UdIwQYMBaAFEGzGmjJJ4pNRHSOLfjGrKgVeOy1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEEyOS8wRTA2REJBMjRE NUMxMUVBQTgwODhBNjZDNEY5QUUwMi9RYk1hYU1rbmlrMUVkSTR0LU1hc3FCVjQ3 TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FiTWFhTWtuaWsxRWRJNHQtTWFzcUJWNDdMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEEyOS8wRTA2REJBMjRENUMxMUVBQTgwODhBNjZDNEY5QUUwMi9RYk1hYU1rbmlr MUVkSTR0LU1hc3FCVjQ3TFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBs64mH8XB38bJEhTMqpEJvI+iVeNqKXaIv2a7xndrnNtS/3i703Dej np2b41Axe1biEcvOieTXNy9YKgOzrwMA9lY8yL/oLbzB/tOYuxYoklVxk3D4eKU4 kA/l0FjG8PtcTH9cb6eX8vNe4+N+HHPkwGZov7kAYCbTiKA/RuNb3FNwUxEL2uxz N+VQNgWsq8BQDfUMfk++JnpJxhEZVnRwSwrBSxvm5H1tMAYYrs0kCla7n6XyAaMd QD804UVjWvZ6IxkYD4076e4j28kVYEUqWhVE5bTB9754dQgePYZs5YagV+Ma2ZYt 7ls1VUKLkgXEFLxeDoPRprtxC5ObPDzO -----END CERTIFICATE-----Generated at Sun May 11 23:03:47 2025 by rpki-client