$ rpki-client -vvf rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft File: Q2XRedW3PoqX7eBQXynvAMLWPvk.mft (raw, json) Hash identifier: ym0MALGCXUEmJU1eb0jqW1qtHmBvYW4k1TZ7Lx33KMw= Subject key identifier: 38:A0:68:AF:DE:8D:C6:92:37:6C:87:D4:D5:BC:11:81:4D:81:86:01 Authority key identifier: 43:65:D1:79:D5:B7:3E:8A:97:ED:E0:50:5F:29:EF:00:C2:D6:3E:F9 Certificate issuer: /CN=A9139555/serialNumber=4365D179D5B73E8A97EDE0505F29EF00C2D63EF9 Certificate serial: 02CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft Manifest number: 02C1 Signing time: Sat 09 Aug 2025 01:59:19 +0000 Manifest this update: Sat 09 Aug 2025 01:59:19 +0000 Manifest next update: Sat 16 Aug 2025 01:59:19 +0000 Files and hashes: 1: Q2XRedW3PoqX7eBQXynvAMLWPvk.crl (hash: 6NV2RuvBr9IbgOVV2G+En94L7FBzoS4Fr2BpH/H7qIo=) 2: E9A9531644D611F0ABB89277C4F9AE02.roa (hash: GeKHBnqKWQ5odcVSCSiPOuNHSoS5ENhlNwIJeq+zQ50=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.crl rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 714 (0x2ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139555, serialNumber=4365D179D5B73E8A97EDE0505F29EF00C2D63EF9 Validity Not Before: Aug 9 01:59:19 2025 GMT Not After : Aug 16 01:59:19 2025 GMT Subject: CN=6896ab77-da7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:97:7e:fe:14:97:8c:08:6c:d9:b8:f6:36:23: 2b:1e:b8:90:b4:13:aa:5e:75:5b:e7:b2:74:a1:f3: 45:0c:28:2b:4c:e6:7a:bb:d8:b5:45:cc:98:86:ad: 67:8c:b4:d3:f1:aa:c2:fc:81:3a:7d:20:19:5e:ea: 56:7d:2b:8b:4e:bc:ea:86:64:2e:ae:5b:0d:f7:dd: 0b:e2:85:b1:ce:e0:73:28:3a:75:da:1a:f3:b0:dd: 7a:11:69:95:70:f9:82:f0:d8:40:84:37:20:00:e4: 4e:06:cd:80:13:28:c8:48:9c:91:1b:8d:58:29:15: 9d:88:10:10:2c:02:27:6e:38:fc:84:df:bd:db:b2: 04:25:4d:59:e4:92:a0:f0:82:a2:8f:ce:35:f7:33: 23:a6:3d:13:bc:c8:34:c2:5c:0f:5f:56:93:6d:85: 4c:45:3d:69:87:54:18:eb:bc:f8:d4:16:25:e4:92: 9a:11:0e:da:ab:37:11:e2:53:32:49:b1:d2:20:2d: 44:e7:cd:36:08:01:d3:97:de:f8:d1:fc:87:d4:c1: 36:e4:21:cc:ce:07:cb:fa:05:fa:ac:dc:b5:fe:94: 83:e9:1a:88:f7:7c:b2:a2:0b:aa:4c:15:25:68:78: 86:4b:47:37:6e:65:33:7f:15:68:54:42:96:02:4e: eb:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:A0:68:AF:DE:8D:C6:92:37:6C:87:D4:D5:BC:11:81:4D:81:86:01 X509v3 Authority Key Identifier: keyid:43:65:D1:79:D5:B7:3E:8A:97:ED:E0:50:5F:29:EF:00:C2:D6:3E:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:a1:3f:73:e4:a5:cc:ab:e5:09:e5:84:8d:ab:a3:7b:7d:76: 25:c0:ba:74:33:60:82:2d:28:5a:9d:a5:43:c6:ec:c4:a6:0f: 9c:9e:b8:31:a5:d6:60:56:6f:bb:df:9a:a8:7b:5f:78:3d:1f: 39:33:75:de:05:2a:38:9b:46:10:10:73:42:5c:90:c6:55:9b: 6c:6a:f7:81:7a:b3:d4:bd:8f:c1:2b:fc:15:96:b0:34:96:d7: ea:af:f6:c6:4c:b9:27:f6:6e:4f:2a:2e:c8:4d:fc:a7:67:41: 53:76:f2:6f:9a:1e:3f:1b:2a:3d:b1:4b:91:1f:6f:f6:d3:15: f8:a6:0a:85:c1:98:0a:6a:2c:b6:89:38:b4:72:f9:d8:98:8b: a2:08:48:4e:ba:33:04:88:e9:4a:b2:4e:de:51:1b:d2:1b:39: 04:9e:27:c4:9a:e7:3a:be:48:ad:16:37:c3:d9:70:6e:7e:e1: 20:13:e7:83:8f:b0:e2:f5:40:8d:34:aa:80:5b:90:9c:2c:13: f4:c4:3a:1c:b0:e3:c6:12:f4:a6:af:89:ad:3e:d6:3a:f2:04: 2c:9d:c5:fe:13:cb:ee:8a:93:cb:77:0b:36:27:26:b4:cb:f8: d2:a7:9c:ca:e1:1d:e5:29:64:46:97:0d:ce:69:83:46:4c:f6: 90:82:08:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAsowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk1NTUxMTAvBgNVBAUTKDQzNjVEMTc5RDVCNzNFOEE5N0VERTA1MDVGMjlFRjAw QzJENjNFRjkwHhcNMjUwODA5MDE1OTE5WhcNMjUwODE2MDE1OTE5WjAYMRYwFAYD VQQDEw02ODk2YWI3Ny1kYTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtZd+/hSXjAhs2bj2NiMrHriQtBOqXnVb57J0ofNFDCgrTOZ6u9i1RcyYhq1n jLTT8arC/IE6fSAZXupWfSuLTrzqhmQurlsN990L4oWxzuBzKDp12hrzsN16EWmV cPmC8NhAhDcgAOROBs2AEyjISJyRG41YKRWdiBAQLAInbjj8hN+927IEJU1Z5JKg 8IKij8419zMjpj0TvMg0wlwPX1aTbYVMRT1ph1QY67z41BYl5JKaEQ7aqzcR4lMy SbHSIC1E5802CAHTl9740fyH1ME25CHMzgfL+gX6rNy1/pSD6RqI93yyoguqTBUl aHiGS0c3bmUzfxVoVEKWAk7raQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDigaK/e jcaSN2yH1NW8EYFNgYYBMB8GA1UdIwQYMBaAFENl0XnVtz6Kl+3gUF8p7wDC1j75 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTU1NS9EQzdEMTQ1QTAy MkQxMUVEOUQ2NDZCNTdDNEY5QUUwMi9RMlhSZWRXM1BvcVg3ZUJRWHludkFNTFdQ dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1EyWFJlZFczUG9xWDdlQlFYeW52QU1MV1B2ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTU1NS9EQzdEMTQ1QTAyMkQxMUVEOUQ2NDZCNTdDNEY5QUUwMi9RMlhSZWRXM1Bv cVg3ZUJRWHludkFNTFdQdmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmoT9z5KXMq+UJ5YSNq6N7fXYlwLp0M2CCLShanaVDxuzEpg+cnrgx pdZgVm+735qoe194PR85M3XeBSo4m0YQEHNCXJDGVZtsaveBerPUvY/BK/wVlrA0 ltfqr/bGTLkn9m5PKi7ITfynZ0FTdvJvmh4/Gyo9sUuRH2/20xX4pgqFwZgKaiy2 iTi0cvnYmIuiCEhOujMEiOlKsk7eURvSGzkEnifEmuc6vkitFjfD2XBufuEgE+eD j7Di9UCNNKqAW5CcLBP0xDocsOPGEvSmr4mtPtY68gQsncX+E8vuipPLdws2Jya0 y/jSp5zK4R3lKWRGlw3OaYNGTPaQggji -----END CERTIFICATE-----Generated at Sun Aug 10 03:52:45 2025 by rpki-client