$ rpki-client -vvf rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft File: QZ8npM_s9GHbgvb5BnZPttZfI88.mft (raw, json) Hash identifier: 3IXwoah5suyDFvuZuMRQ/bQnV4oAQNPCVZMdaVn22w8= Subject key identifier: CD:A3:63:79:22:9B:B1:C1:06:23:FC:64:D4:B4:A3:1D:EC:61:CD:0A Authority key identifier: 41:9F:27:A4:CF:EC:F4:61:DB:82:F6:F9:06:76:4F:B6:D6:5F:23:CF Certificate issuer: /CN=A9140BED/serialNumber=419F27A4CFECF461DB82F6F906764FB6D65F23CF Certificate serial: BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft Manifest number: B9 Signing time: Sat 17 May 2025 05:29:57 +0000 Manifest this update: Sat 17 May 2025 05:29:56 +0000 Manifest next update: Sat 24 May 2025 05:29:56 +0000 Files and hashes: 1: QZ8npM_s9GHbgvb5BnZPttZfI88.crl (hash: ivkfk9nUckExKjmiJmobokCgyIksEN+KP+Anhv+4Iiw=) 2: ED7C0BCC287211EFA1483A2FC4F9AE02.roa (hash: TrqB+PZze3/PHsx+S+f9vvK9WuKsfRUtYIK0Ow1+dU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.crl rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 05:29:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 190 (0xbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140BED, serialNumber=419F27A4CFECF461DB82F6F906764FB6D65F23CF Validity Not Before: May 17 05:29:56 2025 GMT Not After : May 24 05:29:56 2025 GMT Subject: CN=68281ed4-cc90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a9:37:dd:dc:5f:17:55:43:87:69:49:82:36: 70:69:4a:95:6a:bf:19:a1:40:40:15:4a:3d:79:5c: 7c:ca:f1:4b:8e:fd:30:ed:4f:11:aa:2d:48:51:73: 0f:15:7b:48:dc:fd:ef:e0:02:66:3f:28:47:21:75: ba:1f:29:a5:6c:e7:c9:ef:16:ad:cf:76:92:e8:ce: de:74:b4:55:e4:88:84:e5:18:21:bc:c5:c1:7e:76: 1e:9c:f5:82:fc:27:a8:93:cf:b7:e4:e3:73:12:a1: dc:1c:b5:9e:2b:84:99:77:0f:b4:82:53:65:4a:27: 92:b3:31:d4:40:91:09:16:2d:e2:be:f9:33:4b:73: ed:39:8d:1d:16:40:ae:1d:31:ab:4a:74:ff:05:6f: 4f:c6:06:9e:8f:e1:18:cd:32:f0:cf:54:56:34:04: 58:01:13:5e:2b:6a:fc:a5:7e:c9:7c:a4:f9:7b:44: 74:73:78:b4:b1:68:26:f4:2f:a5:5b:d3:6a:9a:4b: 5a:9b:3d:60:92:58:f7:74:b5:93:d8:1c:33:4f:1f: 33:a2:e6:19:b5:a0:f3:ed:bc:cd:51:f5:8f:9d:72: 12:9f:b6:8a:e1:d1:f0:7d:29:67:eb:96:c8:54:b0: 9b:01:07:cb:8a:d3:61:34:f7:5c:8d:df:51:04:83: 2b:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:A3:63:79:22:9B:B1:C1:06:23:FC:64:D4:B4:A3:1D:EC:61:CD:0A X509v3 Authority Key Identifier: keyid:41:9F:27:A4:CF:EC:F4:61:DB:82:F6:F9:06:76:4F:B6:D6:5F:23:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:d5:03:54:71:86:f0:29:80:e4:06:af:11:ed:d3:97:02:df: 4b:1a:70:2b:1b:97:fb:d6:cb:7a:eb:5f:ac:60:0c:70:97:b0: 48:6c:60:3a:c8:68:c9:ab:28:5f:68:4f:6c:03:55:59:e5:e2: d1:40:5d:98:c6:64:ef:d7:ba:54:de:15:09:6e:29:65:dc:b5: 58:3c:11:42:70:76:07:ed:d9:73:d3:11:db:0b:25:b9:71:2d: a3:1d:55:f4:b6:5e:7c:12:60:0d:0e:8d:6e:64:96:10:b8:51: a3:f7:56:b9:6d:94:d8:78:7a:35:b5:0a:0f:37:00:56:b7:89: 14:b5:9a:93:2e:b1:8c:99:f8:a2:5a:a1:b4:76:27:5a:e9:5b: a8:0a:e6:f1:4a:ed:dd:dc:b3:26:21:03:5b:30:57:70:aa:13: b6:60:1c:c9:d8:d0:34:4e:a4:be:11:47:80:c3:9f:b1:b2:8e: 08:43:57:75:ab:9d:4d:70:e9:c1:7f:5e:aa:98:1f:76:da:cf: a6:66:6a:a0:ef:91:26:8e:53:f8:4e:a9:04:a7:21:58:4f:38: 1a:27:89:24:69:0a:e7:8e:01:51:84:a9:e9:0a:a2:2b:4d:f9: fb:a1:79:55:d3:d6:88:8b:94:80:99:77:18:a3:37:d9:01:18: 8d:43:da:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBCRUQxMTAvBgNVBAUTKDQxOUYyN0E0Q0ZFQ0Y0NjFEQjgyRjZGOTA2NzY0RkI2 RDY1RjIzQ0YwHhcNMjUwNTE3MDUyOTU2WhcNMjUwNTI0MDUyOTU2WjAYMRYwFAYD VQQDEw02ODI4MWVkNC1jYzkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt6k33dxfF1VDh2lJgjZwaUqVar8ZoUBAFUo9eVx8yvFLjv0w7U8Rqi1IUXMP FXtI3P3v4AJmPyhHIXW6HymlbOfJ7xatz3aS6M7edLRV5IiE5RghvMXBfnYenPWC /Ceok8+35ONzEqHcHLWeK4SZdw+0glNlSieSszHUQJEJFi3ivvkzS3PtOY0dFkCu HTGrSnT/BW9Pxgaej+EYzTLwz1RWNARYARNeK2r8pX7JfKT5e0R0c3i0sWgm9C+l W9Nqmktamz1gklj3dLWT2BwzTx8zouYZtaDz7bzNUfWPnXISn7aK4dHwfSln65bI VLCbAQfLitNhNPdcjd9RBIMrfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM2jY3ki m7HBBiP8ZNS0ox3sYc0KMB8GA1UdIwQYMBaAFEGfJ6TP7PRh24L2+QZ2T7bWXyPP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEJFRC8wOEUwRTA2NjFG MzgxMUVGQjA1OUI2NjVDNEY5QUUwMi9RWjhucE1fczlHSGJndmI1Qm5aUHR0WmZJ ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FaOG5wTV9zOUdIYmd2YjVCblpQdHRaZkk4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEJFRC8wOEUwRTA2NjFGMzgxMUVGQjA1OUI2NjVDNEY5QUUwMi9RWjhucE1fczlH SGJndmI1Qm5aUHR0WmZJODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCL1QNUcYbwKYDkBq8R7dOXAt9LGnArG5f71st661+sYAxwl7BIbGA6 yGjJqyhfaE9sA1VZ5eLRQF2YxmTv17pU3hUJbill3LVYPBFCcHYH7dlz0xHbCyW5 cS2jHVX0tl58EmANDo1uZJYQuFGj91a5bZTYeHo1tQoPNwBWt4kUtZqTLrGMmfii WqG0dida6VuoCubxSu3d3LMmIQNbMFdwqhO2YBzJ2NA0TqS+EUeAw5+xso4IQ1d1 q51NcOnBf16qmB922s+mZmqg75EmjlP4TqkEpyFYTzgaJ4kkaQrnjgFRhKnpCqIr Tfn7oXlV09aIi5SAmXcYozfZARiNQ9p+ -----END CERTIFICATE-----Generated at Sun May 18 00:50:07 2025 by rpki-client