$ rpki-client -vvf rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/QbMaaMknik1EdI4t-MasqBV47LU.mft File: QbMaaMknik1EdI4t-MasqBV47LU.mft (raw, json) Hash identifier: gn1EFUec//kgG7XQ5SW6sircHgEvRhOaLKcus/OO82w= Subject key identifier: F8:6F:B4:7D:49:DA:4A:20:9F:A6:F4:3B:91:18:DD:27:2C:6D:19:6A Authority key identifier: 41:B3:1A:68:C9:27:8A:4D:44:74:8E:2D:F8:C6:AC:A8:15:78:EC:B5 Certificate issuer: /CN=A9120A29/serialNumber=41B31A68C9278A4D44748E2DF8C6ACA81578ECB5 Certificate serial: 0AE6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbMaaMknik1EdI4t-MasqBV47LU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/QbMaaMknik1EdI4t-MasqBV47LU.mft Manifest number: 0ADF Signing time: Mon 30 Jun 2025 19:33:34 +0000 Manifest this update: Mon 30 Jun 2025 19:33:34 +0000 Manifest next update: Mon 07 Jul 2025 19:33:34 +0000 Files and hashes: 1: QbMaaMknik1EdI4t-MasqBV47LU.crl (hash: 3I08hXU6ZpcnBIuKGoSfAcQ/93uP9+McIm9mm+Rkc8M=) 2: 73A346A24D5D11EAA811C368C4F9AE02.roa (hash: AtiHUqqiSc5seLUNoB/SjIutv6okcY16FsBOaprHkwA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/QbMaaMknik1EdI4t-MasqBV47LU.crl rsync://rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/QbMaaMknik1EdI4t-MasqBV47LU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbMaaMknik1EdI4t-MasqBV47LU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 19:33:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2790 (0xae6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120A29, serialNumber=41B31A68C9278A4D44748E2DF8C6ACA81578ECB5 Validity Not Before: Jun 30 19:33:34 2025 GMT Not After : Jul 7 19:33:34 2025 GMT Subject: CN=6862e68e-255b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:1c:59:61:a9:c6:57:08:a5:7b:92:f8:db:ea: e6:a0:40:9a:8d:6f:d8:36:df:f4:18:7e:60:93:6e: 6a:0f:40:0e:13:5d:89:38:8f:cf:d5:8d:4d:f2:20: eb:8d:5e:14:5a:ad:91:59:27:c2:eb:1f:f3:8d:8b: ed:eb:40:3b:b5:06:11:e2:11:64:86:72:3b:5c:40: 8e:d8:80:36:7d:68:2e:cb:d5:dd:80:86:f8:51:a3: 26:bd:46:14:85:c7:fd:19:b5:26:50:c5:58:d5:f9: 1a:f6:6c:a1:28:b2:dd:e3:f1:61:37:75:d7:8b:07: 54:e7:a8:87:9f:0e:d2:7e:3e:a0:63:f8:0d:73:b1: 35:55:af:e7:d5:91:43:67:82:ca:a0:ae:4d:5c:16: c9:f7:71:6f:b4:7b:bb:81:13:6f:be:bd:cc:55:a9: c7:32:2f:af:7f:4f:e4:1b:3b:fb:fe:9d:8d:41:95: 17:37:c3:a9:e5:80:91:02:6f:e5:7d:5b:99:9f:97: 83:53:32:36:88:26:ed:6f:c7:47:51:49:bb:35:26: 72:1d:cd:3f:79:d7:18:39:77:67:16:a7:19:37:ea: c9:d3:0c:5a:d0:f3:34:5c:d4:b9:a0:79:57:a5:e3: ee:e1:b9:ce:38:74:38:36:4e:26:96:92:ef:84:be: a9:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:6F:B4:7D:49:DA:4A:20:9F:A6:F4:3B:91:18:DD:27:2C:6D:19:6A X509v3 Authority Key Identifier: keyid:41:B3:1A:68:C9:27:8A:4D:44:74:8E:2D:F8:C6:AC:A8:15:78:EC:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/QbMaaMknik1EdI4t-MasqBV47LU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbMaaMknik1EdI4t-MasqBV47LU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/QbMaaMknik1EdI4t-MasqBV47LU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:ed:69:c7:7f:21:f5:b2:d9:e5:1e:3b:59:e8:67:98:44:14: 34:59:64:28:22:67:c7:ca:c9:e5:dd:3a:d0:32:27:05:79:39: f1:e0:a5:9a:9a:b8:e9:da:50:9c:e2:a9:b7:1a:7b:8f:24:a3: 80:f4:7c:45:d4:35:77:5d:44:81:38:54:15:f3:0d:0d:2a:7b: eb:55:63:77:70:16:d9:5c:b1:a1:2d:24:f7:db:47:de:eb:6d: d4:9b:da:2a:cc:30:60:8e:18:ea:f5:c5:b7:84:7c:7e:b3:c1: cb:e4:88:76:82:bb:4f:bf:df:6c:8f:8f:26:c6:fa:ec:63:e4: 0f:40:4a:99:54:56:58:34:71:db:9a:a1:64:3b:a2:38:6b:ed: f3:47:dc:99:97:ef:c6:a5:d1:6d:69:d9:ea:56:76:a6:3d:0c: 99:45:eb:9a:8e:80:f1:69:cd:bf:51:8b:30:25:26:09:66:d8: e6:4f:26:59:bd:bd:bf:00:2d:64:a9:30:cd:57:7d:db:08:30: 28:52:d3:ac:c1:4e:8c:17:23:62:79:99:4d:4e:e9:68:69:d2: 15:9a:70:40:03:53:51:c5:10:c4:b5:36:16:61:4b:f1:3a:62: 25:b4:35:9d:b3:55:e5:21:c0:2f:0e:c6:c3:91:6e:24:c6:d6: 25:ed:d7:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCuYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBMjkxMTAvBgNVBAUTKDQxQjMxQTY4QzkyNzhBNEQ0NDc0OEUyREY4QzZBQ0E4 MTU3OEVDQjUwHhcNMjUwNjMwMTkzMzM0WhcNMjUwNzA3MTkzMzM0WjAYMRYwFAYD VQQDEw02ODYyZTY4ZS0yNTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzxxZYanGVwile5L42+rmoECajW/YNt/0GH5gk25qD0AOE12JOI/P1Y1N8iDr jV4UWq2RWSfC6x/zjYvt60A7tQYR4hFkhnI7XECO2IA2fWguy9XdgIb4UaMmvUYU hcf9GbUmUMVY1fka9myhKLLd4/FhN3XXiwdU56iHnw7Sfj6gY/gNc7E1Va/n1ZFD Z4LKoK5NXBbJ93FvtHu7gRNvvr3MVanHMi+vf0/kGzv7/p2NQZUXN8Op5YCRAm/l fVuZn5eDUzI2iCbtb8dHUUm7NSZyHc0/edcYOXdnFqcZN+rJ0wxa0PM0XNS5oHlX pePu4bnOOHQ4Nk4mlpLvhL6powIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPhvtH1J 2kogn6b0O5EY3ScsbRlqMB8GA1UdIwQYMBaAFEGzGmjJJ4pNRHSOLfjGrKgVeOy1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEEyOS8wRTA2REJBMjRE NUMxMUVBQTgwODhBNjZDNEY5QUUwMi9RYk1hYU1rbmlrMUVkSTR0LU1hc3FCVjQ3 TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FiTWFhTWtuaWsxRWRJNHQtTWFzcUJWNDdMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEEyOS8wRTA2REJBMjRENUMxMUVBQTgwODhBNjZDNEY5QUUwMi9RYk1hYU1rbmlr MUVkSTR0LU1hc3FCVjQ3TFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAk7WnHfyH1stnlHjtZ6GeYRBQ0WWQoImfHysnl3TrQMicFeTnx4KWa mrjp2lCc4qm3GnuPJKOA9HxF1DV3XUSBOFQV8w0NKnvrVWN3cBbZXLGhLST320fe 623Um9oqzDBgjhjq9cW3hHx+s8HL5Ih2grtPv99sj48mxvrsY+QPQEqZVFZYNHHb mqFkO6I4a+3zR9yZl+/GpdFtadnqVnamPQyZReuajoDxac2/UYswJSYJZtjmTyZZ vb2/AC1kqTDNV33bCDAoUtOswU6MFyNieZlNTuloadIVmnBAA1NRxRDEtTYWYUvx OmIltDWds1XlIcAvDsbDkW4kxtYl7ddA -----END CERTIFICATE-----Generated at Wed Jul 2 15:46:06 2025 by rpki-client