$ rpki-client -vvf rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft File: QgBM9ryh-lZCT17qJPYqkrJc3s8.mft (raw, json) Hash identifier: m16ezkTK3Hr5PmxqpClf9NudhnvSZQGGNjKHfGHIsVo= Subject key identifier: BA:45:84:3B:B0:9E:85:2B:0B:75:0E:DE:5E:3C:32:AE:26:36:47:FA Authority key identifier: 42:00:4C:F6:BC:A1:FA:56:42:4F:5E:EA:24:F6:2A:92:B2:5C:DE:CF Certificate issuer: /CN=A919960D/serialNumber=42004CF6BCA1FA56424F5EEA24F62A92B25CDECF Certificate serial: 01B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgBM9ryh-lZCT17qJPYqkrJc3s8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft Manifest number: 01B2 Signing time: Sun 27 Apr 2025 02:13:14 +0000 Manifest this update: Sun 27 Apr 2025 02:13:13 +0000 Manifest next update: Sun 04 May 2025 02:13:13 +0000 Files and hashes: 1: QgBM9ryh-lZCT17qJPYqkrJc3s8.crl (hash: xBuLAT22sMeyIyYzPF3tMKvQl9PJwUpxSk5nLFnYtYk=) 2: BE9174768DDE11ED97AFDA82C4F9AE02.roa (hash: fFAFWp3SGDiligAO05H4p9el//2m+rPWPKenlyAVezU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.crl rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgBM9ryh-lZCT17qJPYqkrJc3s8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:13:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 438 (0x1b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919960D, serialNumber=42004CF6BCA1FA56424F5EEA24F62A92B25CDECF Validity Not Before: Apr 27 02:13:13 2025 GMT Not After : May 4 02:13:13 2025 GMT Subject: CN=680d92ba-53dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:7e:35:bb:15:8d:e1:00:18:c4:31:e2:1a:2e: 75:f3:05:09:c2:43:4a:99:c2:a4:07:f5:bf:e1:35: da:65:e4:47:75:43:2c:21:8b:69:2a:bc:90:e5:a2: 0c:37:64:9d:fb:c0:f0:d6:9f:b5:3c:df:ca:f1:8c: b6:ee:5f:38:67:52:1c:2f:26:52:a3:e7:a8:59:56: f5:6f:b3:1a:e2:9c:53:04:48:10:70:c7:99:b2:45: 59:9e:a2:cd:db:18:ae:73:6a:dd:a3:34:3a:13:a3: 37:e5:aa:14:2b:aa:5c:65:67:44:48:ca:c1:c4:b5: d1:9d:fb:84:e8:b8:32:b2:3c:d9:d4:73:c0:36:f5: 49:25:f6:73:7c:63:28:7b:8b:b9:ee:db:6a:fe:73: 32:d3:5b:b2:88:81:5a:0b:7e:5c:9e:2f:71:6a:83: 78:c0:e0:96:a0:a5:cb:38:9d:e2:b4:e8:b3:96:f5: bd:fb:91:58:85:3e:3c:7c:1b:c5:9c:db:48:0e:c6: ed:61:c5:a4:d3:81:3a:2f:c4:f2:21:3f:68:c6:9d: 71:d4:37:81:a5:ed:d7:aa:6a:9b:9e:89:ee:74:da: 89:ae:a4:70:0f:8b:0d:5f:bc:67:0a:33:ae:d3:41: 86:09:67:ee:d4:f3:8e:e8:f1:24:bc:ee:31:a9:6f: ef:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:45:84:3B:B0:9E:85:2B:0B:75:0E:DE:5E:3C:32:AE:26:36:47:FA X509v3 Authority Key Identifier: keyid:42:00:4C:F6:BC:A1:FA:56:42:4F:5E:EA:24:F6:2A:92:B2:5C:DE:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgBM9ryh-lZCT17qJPYqkrJc3s8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:8b:6e:e7:d5:9c:96:7b:1f:8b:50:9e:0e:0e:67:13:b1:03: 73:b2:d1:d9:f3:c3:96:8a:24:16:8f:36:8b:4a:af:da:fe:39: 50:93:80:e1:85:c2:d1:0c:9f:80:0b:8a:45:6a:39:c4:2d:04: ab:fd:82:14:65:0e:5d:16:84:8a:50:3d:98:44:47:e0:53:03: de:89:5a:0f:d9:e0:15:9e:71:36:bd:e0:27:f3:30:47:4c:59: 94:fc:ba:a2:7e:4a:1a:3f:ab:14:3a:a2:1e:ac:08:1b:9f:b7: 69:b4:d7:1d:58:6e:c8:3f:0c:02:ab:b5:28:67:c6:82:bd:d1: b5:d1:68:d2:1c:a6:72:3c:cf:0c:14:cd:0e:9d:90:2a:bc:c5: 7f:77:62:ff:a6:5a:f0:d3:66:ea:d3:74:dd:93:06:b0:52:80: b7:1b:09:b4:69:21:69:c8:d0:d2:15:bb:2f:1c:a1:e9:5a:42: 35:71:e8:c1:01:37:6c:09:4b:82:4e:38:b4:c7:ef:50:3f:8e: eb:41:18:d9:c0:2a:e5:5f:c7:c0:27:c3:f6:e8:a4:51:15:38: 5e:56:6b:45:5a:f5:d2:1d:1b:58:ab:cd:cd:8b:17:c4:4b:b5: 2e:3d:23:bd:8b:0f:aa:17:1c:56:f1:1d:10:e7:4d:ef:e3:27: f2:c8:87:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk2MEQxMTAvBgNVBAUTKDQyMDA0Q0Y2QkNBMUZBNTY0MjRGNUVFQTI0RjYyQTky QjI1Q0RFQ0YwHhcNMjUwNDI3MDIxMzEzWhcNMjUwNTA0MDIxMzEzWjAYMRYwFAYD VQQDEw02ODBkOTJiYS01M2RjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsX41uxWN4QAYxDHiGi518wUJwkNKmcKkB/W/4TXaZeRHdUMsIYtpKryQ5aIM N2Sd+8Dw1p+1PN/K8Yy27l84Z1IcLyZSo+eoWVb1b7Ma4pxTBEgQcMeZskVZnqLN 2xiuc2rdozQ6E6M35aoUK6pcZWdESMrBxLXRnfuE6LgysjzZ1HPANvVJJfZzfGMo e4u57ttq/nMy01uyiIFaC35cni9xaoN4wOCWoKXLOJ3itOizlvW9+5FYhT48fBvF nNtIDsbtYcWk04E6L8TyIT9oxp1x1DeBpe3XqmqbnonudNqJrqRwD4sNX7xnCjOu 00GGCWfu1POO6PEkvO4xqW/vewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLpFhDuw noUrC3UO3l48Mq4mNkf6MB8GA1UdIwQYMBaAFEIATPa8ofpWQk9e6iT2KpKyXN7P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTYwRC9CRDBCNjRDNjhE REExMUVEODczQTc0ODdDNEY5QUUwMi9RZ0JNOXJ5aC1sWkNUMTdxSlBZcWtySmMz czguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FnQk05cnloLWxaQ1QxN3FKUFlxa3JKYzNzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTYwRC9CRDBCNjRDNjhEREExMUVEODczQTc0ODdDNEY5QUUwMi9RZ0JNOXJ5aC1s WkNUMTdxSlBZcWtySmMzczgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0i27n1ZyWex+LUJ4ODmcTsQNzstHZ88OWiiQWjzaLSq/a/jlQk4Dh hcLRDJ+AC4pFajnELQSr/YIUZQ5dFoSKUD2YREfgUwPeiVoP2eAVnnE2veAn8zBH TFmU/LqifkoaP6sUOqIerAgbn7dptNcdWG7IPwwCq7UoZ8aCvdG10WjSHKZyPM8M FM0OnZAqvMV/d2L/plrw02bq03TdkwawUoC3Gwm0aSFpyNDSFbsvHKHpWkI1cejB ATdsCUuCTji0x+9QP47rQRjZwCrlX8fAJ8P26KRRFTheVmtFWvXSHRtYq83NixfE S7UuPSO9iw+qFxxW8R0Q503v4yfyyIdm -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:01 2025 by rpki-client on console.sobornost.net