$ rpki-client -vvf rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft File: Q2XRedW3PoqX7eBQXynvAMLWPvk.mft (raw, json) Hash identifier: VKzeW5VWB0KHl132kXqdwLDyGHmBVAZskEqUoxUXDLU= Subject key identifier: EC:CB:41:5C:EF:81:DC:28:68:41:A5:0D:99:B4:99:40:B0:81:0C:6B Authority key identifier: 43:65:D1:79:D5:B7:3E:8A:97:ED:E0:50:5F:29:EF:00:C2:D6:3E:F9 Certificate issuer: /CN=A9139555/serialNumber=4365D179D5B73E8A97EDE0505F29EF00C2D63EF9 Certificate serial: 02AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft Manifest number: 02A5 Signing time: Sun 15 Jun 2025 01:14:15 +0000 Manifest this update: Sun 15 Jun 2025 01:14:15 +0000 Manifest next update: Sun 22 Jun 2025 01:14:15 +0000 Files and hashes: 1: Q2XRedW3PoqX7eBQXynvAMLWPvk.crl (hash: CPzW53Zhrc5x0PPJJZhJJOq9Erq0BMcydxxphGq1/9I=) 2: E9A9531644D611F0ABB89277C4F9AE02.roa (hash: GeKHBnqKWQ5odcVSCSiPOuNHSoS5ENhlNwIJeq+zQ50=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.crl rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 01:14:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 686 (0x2ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139555, serialNumber=4365D179D5B73E8A97EDE0505F29EF00C2D63EF9 Validity Not Before: Jun 15 01:14:15 2025 GMT Not After : Jun 22 01:14:15 2025 GMT Subject: CN=684e1e67-3791 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:6d:e5:1a:f5:7c:1d:42:3b:d2:0f:d0:6a:03: c2:c3:b4:ae:a8:02:4a:37:9e:fd:6d:f9:9e:c7:4b: 1e:a9:fb:af:e4:85:d8:2b:43:01:5d:44:4f:19:9c: ee:4e:a2:10:8d:25:12:f0:71:92:82:03:d6:d0:ba: ad:d7:32:39:7d:4d:ef:9b:e6:02:05:4f:7a:98:f3: 67:3d:37:5f:92:18:3f:ae:6b:40:73:a9:76:72:a0: 83:85:b8:f1:eb:9e:46:b7:bf:21:60:7d:88:ee:95: 2c:8b:3a:ff:33:62:ab:89:62:d2:1f:35:32:0d:7b: ea:c5:90:a6:4c:02:7b:3a:4e:b7:5b:bc:6c:4f:6b: c6:3f:f3:57:f0:da:08:ed:85:eb:aa:cf:16:68:1b: 7c:7b:3c:5f:a8:6b:9c:b7:41:f5:33:83:02:f3:7b: ae:0d:00:a6:72:06:3a:2c:b3:7f:45:11:29:65:46: e2:5f:bd:8b:4a:64:03:e6:d0:95:27:6b:7b:32:a6: 9e:59:7c:32:6d:3c:b3:0c:bb:02:15:00:ea:60:77: d8:f6:38:cd:eb:9f:a6:ed:ed:1c:7f:c8:ce:df:db: ca:ab:bb:0c:33:b5:15:54:42:32:f4:82:49:7a:cb: d7:3e:7a:0f:b1:3d:2a:b9:80:f3:1a:ab:a3:6d:76: 61:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:CB:41:5C:EF:81:DC:28:68:41:A5:0D:99:B4:99:40:B0:81:0C:6B X509v3 Authority Key Identifier: keyid:43:65:D1:79:D5:B7:3E:8A:97:ED:E0:50:5F:29:EF:00:C2:D6:3E:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:8c:ce:7d:17:c9:c9:87:26:31:40:6e:7d:b7:b3:b5:67:93: 02:cd:f3:c0:2d:a0:6a:c4:46:3a:20:39:43:93:91:30:2e:54: 8b:c6:2f:35:d9:de:86:07:15:b5:c3:1c:9c:86:25:f1:2b:ba: 83:ec:82:96:88:ba:98:83:3c:d1:cb:02:9b:5f:ad:27:87:a4: c0:85:cf:20:30:4b:39:37:b7:85:5c:96:62:4c:c1:26:0a:8f: 4c:8c:6a:23:f4:ad:f7:61:f5:47:7e:12:2f:c8:2e:1d:66:b8: 2a:7f:7b:24:d5:56:43:97:86:b5:1b:da:94:6d:33:1b:b0:7b: c5:44:f2:43:19:8d:2f:73:17:4d:74:ab:5c:7a:bb:ac:6e:e2: 55:1e:4d:ef:d3:05:4b:04:76:3a:c7:ed:53:02:af:c2:44:73: 42:ec:60:21:2b:15:42:ac:49:b9:d9:6d:cc:42:87:9f:15:3f: 6a:de:93:08:4d:90:7d:3b:72:0c:e7:35:0c:9e:af:4d:77:06: df:41:db:b8:c0:5a:ca:68:77:75:5f:f2:49:06:da:f4:c9:61: 66:aa:eb:0a:5f:d8:bd:51:67:8b:04:d6:b5:43:d6:ca:29:2b: 90:d6:9a:07:f9:9a:55:cb:d8:c2:a9:f8:89:7c:9f:97:70:29: e3:13:3c:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAq4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk1NTUxMTAvBgNVBAUTKDQzNjVEMTc5RDVCNzNFOEE5N0VERTA1MDVGMjlFRjAw QzJENjNFRjkwHhcNMjUwNjE1MDExNDE1WhcNMjUwNjIyMDExNDE1WjAYMRYwFAYD VQQDEw02ODRlMWU2Ny0zNzkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/W3lGvV8HUI70g/QagPCw7SuqAJKN579bfmex0seqfuv5IXYK0MBXURPGZzu TqIQjSUS8HGSggPW0Lqt1zI5fU3vm+YCBU96mPNnPTdfkhg/rmtAc6l2cqCDhbjx 655Gt78hYH2I7pUsizr/M2KriWLSHzUyDXvqxZCmTAJ7Ok63W7xsT2vGP/NX8NoI 7YXrqs8WaBt8ezxfqGuct0H1M4MC83uuDQCmcgY6LLN/RREpZUbiX72LSmQD5tCV J2t7MqaeWXwybTyzDLsCFQDqYHfY9jjN65+m7e0cf8jO39vKq7sMM7UVVEIy9IJJ esvXPnoPsT0quYDzGqujbXZhXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOzLQVzv gdwoaEGlDZm0mUCwgQxrMB8GA1UdIwQYMBaAFENl0XnVtz6Kl+3gUF8p7wDC1j75 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTU1NS9EQzdEMTQ1QTAy MkQxMUVEOUQ2NDZCNTdDNEY5QUUwMi9RMlhSZWRXM1BvcVg3ZUJRWHludkFNTFdQ dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1EyWFJlZFczUG9xWDdlQlFYeW52QU1MV1B2ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTU1NS9EQzdEMTQ1QTAyMkQxMUVEOUQ2NDZCNTdDNEY5QUUwMi9RMlhSZWRXM1Bv cVg3ZUJRWHludkFNTFdQdmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrjM59F8nJhyYxQG59t7O1Z5MCzfPALaBqxEY6IDlDk5EwLlSLxi81 2d6GBxW1wxychiXxK7qD7IKWiLqYgzzRywKbX60nh6TAhc8gMEs5N7eFXJZiTMEm Co9MjGoj9K33YfVHfhIvyC4dZrgqf3sk1VZDl4a1G9qUbTMbsHvFRPJDGY0vcxdN dKtcerusbuJVHk3v0wVLBHY6x+1TAq/CRHNC7GAhKxVCrEm52W3MQoefFT9q3pMI TZB9O3IM5zUMnq9NdwbfQdu4wFrKaHd1X/JJBtr0yWFmqusKX9i9UWeLBNa1Q9bK KSuQ1poH+ZpVy9jCqfiJfJ+XcCnjEzz7 -----END CERTIFICATE-----Generated at Sun Jun 15 08:48:21 2025 by rpki-client