$ rpki-client -vvf rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft File: Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft (raw, json) Hash identifier: EhoagxpAbWUVVipQqflmTvZ0UsIb0ayi77kY4G3UojM= Subject key identifier: A2:85:2F:42:0F:0C:4A:62:A2:C9:8B:22:BF:18:6F:AE:C5:F7:63:B8 Authority key identifier: 43:6B:2C:5F:03:F9:1C:A7:41:C6:A2:49:DC:01:5A:6D:54:4A:62:A6 Certificate issuer: /CN=A911647C/serialNumber=436B2C5F03F91CA741C6A249DC015A6D544A62A6 Certificate serial: 0ACD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft Manifest number: 0A25 Signing time: Thu 12 Jun 2025 19:48:11 +0000 Manifest this update: Thu 12 Jun 2025 19:48:11 +0000 Manifest next update: Thu 19 Jun 2025 19:48:11 +0000 Files and hashes: 1: Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl (hash: 3Vs7NFaPxoHD0/uKMSV0vTHLG2kNSVGGRPk50ixlgNI=) 2: 61EFB2ACAC3611EDA5995F3FC4F9AE02.roa (hash: 4F/pO+DMZTaTanjCd4dRpqI6rwchzZD2B/zrGpX4dy4=) 3: 0DE32D9C2B1E11F0AFEB852DC4F9AE02.roa (hash: kY7MigJyhY/TYPojhwcv7Meb5L/AyqJTPuPblE1eiuc=) 4: C3E2252E205F11EE8117111CC4F9AE02.roa (hash: b89a9XRc4AM1AMlF52w1xwkFcE20RCssOx3I+fNCh44=) 5: 8626FFC65AE511EBA452D33EC4F9AE02.roa (hash: p+jw9LTgVlA4Fas32lm4S+s3Nf7H/SOUto4eg7ZR3k4=) 6: 84023C06D24611EABDDF5344C4F9AE02.roa (hash: 1tQbOZGCpdjO+Y55KBqDyrU6PI7sCOp/TxXvN4NzOO0=) 7: 0EA44D4E5ADD11EBB9CEE568C4F9AE02.roa (hash: 544CGw77adzKZSVB6a/EsmcNRdkcJyyJICXTpEPCpPk=) 8: 553170245AC511EBA052F663C4F9AE02.roa (hash: zZIIEfeakO+43e0JDOBIzAkL5O9TeO1Bv2dEETveidg=) 9: DCF88EAE5ED811EBAB677671C4F9AE02.roa (hash: +xAAC0Q1keCic3iZwKSmyffjMCHYPPvNkq4JH4+m/zo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 19:48:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2765 (0xacd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911647C, serialNumber=436B2C5F03F91CA741C6A249DC015A6D544A62A6 Validity Not Before: Jun 12 19:48:11 2025 GMT Not After : Jun 19 19:48:11 2025 GMT Subject: CN=684b2efb-7991 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:c3:ee:d4:76:94:1f:07:87:50:a8:32:9a:f0: cf:67:cc:e1:1c:f1:3d:c8:2d:60:df:d8:f1:69:97: 97:77:b6:03:2a:3b:3b:b4:15:ff:5f:ea:8d:ac:9c: 2c:5e:e5:75:25:f8:a7:7c:de:54:4b:39:3f:fd:1d: 21:ab:13:0a:f5:40:81:05:72:77:b4:d7:a3:25:84: a6:f6:e9:c5:e7:81:ea:45:0e:1f:0a:c2:69:e5:e7: ba:dc:b5:a6:f2:a3:55:af:39:7a:49:37:99:26:11: ea:6b:31:a4:81:2c:ca:a4:ba:46:eb:31:eb:94:49: ac:13:a5:4c:4c:54:55:30:3e:a6:6e:aa:7d:4a:86: 6d:40:b9:0a:11:02:f3:88:7f:ab:f6:16:42:ec:8e: fb:48:6a:97:9e:ba:17:a7:73:a0:77:3b:e8:97:f2: a5:34:d5:b4:1a:30:44:1b:e2:2f:e5:96:5e:de:5b: ab:25:e7:09:ff:23:9a:92:e7:e8:fd:67:c9:8e:22: 19:cc:12:cb:f8:de:d9:ab:c8:a3:b3:38:68:7c:ad: 3c:f6:3a:02:9b:3d:d8:cb:76:41:32:65:01:7a:c5: 62:f0:2b:2f:91:80:27:03:4f:3b:9d:bb:a1:b6:17: 38:d7:a5:ae:03:6b:6b:14:a4:3b:01:01:a9:39:09: 08:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:85:2F:42:0F:0C:4A:62:A2:C9:8B:22:BF:18:6F:AE:C5:F7:63:B8 X509v3 Authority Key Identifier: keyid:43:6B:2C:5F:03:F9:1C:A7:41:C6:A2:49:DC:01:5A:6D:54:4A:62:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:5b:0e:79:bf:47:e0:13:8e:b4:64:e0:f2:81:cf:56:4c:4f: 18:98:10:d3:66:02:73:1b:9b:82:96:a3:c0:96:33:9a:ac:63: 6e:c6:26:14:76:4c:62:00:63:32:78:c7:fa:e0:37:c4:fa:88: 7a:56:1f:43:14:96:d0:c4:bc:0a:73:35:cc:69:4e:1d:8f:1f: 9d:51:23:f8:cc:ab:63:0d:2e:61:e9:ab:9c:0d:47:fd:ef:d2: 3d:29:38:3d:d7:69:30:69:af:52:ec:8e:11:ac:85:6a:35:f5: 97:0f:20:59:1b:17:07:10:b9:67:bc:79:e9:65:a2:3f:6a:61: e1:90:b9:04:4d:04:70:97:b1:25:21:61:54:b4:60:7d:22:c4: a7:bc:c3:22:2b:be:b4:1e:83:83:8a:b9:6e:a2:89:89:53:7b: f2:80:8e:11:ea:94:f3:b4:2b:fb:e1:17:66:16:1c:95:46:da: c3:38:57:62:b7:e2:32:0a:55:ad:83:a6:7d:aa:ba:9d:8c:5a: 8d:07:51:7d:82:7e:ef:8b:cf:15:19:28:3f:3e:e1:04:6d:e6: e3:9a:29:e0:74:e8:13:02:b8:85:8f:a3:5c:a0:fd:00:8f:7b: 06:5c:97:08:5c:e7:04:8f:bb:b1:ae:35:5b:93:cb:6d:d5:7c: 85:32:e0:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCs0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY0N0MxMTAvBgNVBAUTKDQzNkIyQzVGMDNGOTFDQTc0MUM2QTI0OURDMDE1QTZE NTQ0QTYyQTYwHhcNMjUwNjEyMTk0ODExWhcNMjUwNjE5MTk0ODExWjAYMRYwFAYD VQQDEw02ODRiMmVmYi03OTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn8Pu1HaUHweHUKgymvDPZ8zhHPE9yC1g39jxaZeXd7YDKjs7tBX/X+qNrJws XuV1JfinfN5USzk//R0hqxMK9UCBBXJ3tNejJYSm9unF54HqRQ4fCsJp5ee63LWm 8qNVrzl6STeZJhHqazGkgSzKpLpG6zHrlEmsE6VMTFRVMD6mbqp9SoZtQLkKEQLz iH+r9hZC7I77SGqXnroXp3Ogdzvol/KlNNW0GjBEG+Iv5ZZe3lurJecJ/yOakufo /WfJjiIZzBLL+N7Zq8ijszhofK089joCmz3Yy3ZBMmUBesVi8CsvkYAnA087nbuh thc416WuA2trFKQ7AQGpOQkIiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKKFL0IP DEpiosmLIr8Yb67F92O4MB8GA1UdIwQYMBaAFENrLF8D+RynQcaiSdwBWm1USmKm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjQ3Qy80MzdDQzQwNjg1 MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9RMnNzWHdQNUhLZEJ4cUpKM0FGYWJWUktZ cVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Eyc3NYd1A1SEtkQnhxSkozQUZhYlZSS1lxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjQ3Qy80MzdDQzQwNjg1MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9RMnNzWHdQNUhL ZEJ4cUpKM0FGYWJWUktZcVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCWw55v0fgE460ZODygc9WTE8YmBDTZgJzG5uClqPAljOarGNuxiYU dkxiAGMyeMf64DfE+oh6Vh9DFJbQxLwKczXMaU4djx+dUSP4zKtjDS5h6aucDUf9 79I9KTg912kwaa9S7I4RrIVqNfWXDyBZGxcHELlnvHnpZaI/amHhkLkETQRwl7El IWFUtGB9IsSnvMMiK760HoODirluoomJU3vygI4R6pTztCv74RdmFhyVRtrDOFdi t+IyClWtg6Z9qrqdjFqNB1F9gn7vi88VGSg/PuEEbebjmingdOgTAriFj6NcoP0A j3sGXJcIXOcEj7uxrjVbk8tt1XyFMuBJ -----END CERTIFICATE-----Generated at Sat Jun 14 19:34:43 2025 by rpki-client