$ rpki-client -vvf rpki.apnic.net/member_repository/A917E7C7/1A59F78E16B311EF89CFE30EC4F9AE02/sq1Q81cb2h7sB8xI2gHT83VFjSQ.mft File: sq1Q81cb2h7sB8xI2gHT83VFjSQ.mft (raw, json) Hash identifier: NkRUzY42v5s6XQVkJpC+0Qj7gnTQO7TqlIuEDquRWRc= Subject key identifier: 31:28:88:9D:8F:F6:CC:C3:4A:6A:64:B9:80:0B:E3:C4:AD:1E:33:23 Authority key identifier: B2:AD:50:F3:57:1B:DA:1E:EC:07:CC:48:DA:01:D3:F3:75:45:8D:24 Certificate issuer: /CN=A917E7C7/serialNumber=B2AD50F3571BDA1EEC07CC48DA01D3F375458D24 Certificate serial: CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sq1Q81cb2h7sB8xI2gHT83VFjSQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E7C7/1A59F78E16B311EF89CFE30EC4F9AE02/sq1Q81cb2h7sB8xI2gHT83VFjSQ.mft Manifest number: CA Signing time: Fri 13 Jun 2025 04:41:21 +0000 Manifest this update: Fri 13 Jun 2025 04:41:21 +0000 Manifest next update: Fri 20 Jun 2025 04:41:21 +0000 Files and hashes: 1: sq1Q81cb2h7sB8xI2gHT83VFjSQ.crl (hash: arfN9An3fHs36e/i9iBVV5KBRgM2Vzvwb0RCxxmsJig=) 2: 55291FA016B511EFA244974BC4F9AE02.roa (hash: 4G05qDBih2f7QXu4EvcFu/Hi3cjZoiJAPBz1/2wvj2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E7C7/1A59F78E16B311EF89CFE30EC4F9AE02/sq1Q81cb2h7sB8xI2gHT83VFjSQ.crl rsync://rpki.apnic.net/member_repository/A917E7C7/1A59F78E16B311EF89CFE30EC4F9AE02/sq1Q81cb2h7sB8xI2gHT83VFjSQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sq1Q81cb2h7sB8xI2gHT83VFjSQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 04:41:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E7C7, serialNumber=B2AD50F3571BDA1EEC07CC48DA01D3F375458D24 Validity Not Before: Jun 13 04:41:21 2025 GMT Not After : Jun 20 04:41:21 2025 GMT Subject: CN=684babf1-5cf0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:2c:15:0a:fd:56:2f:64:39:82:12:b0:ef:a5: ee:99:68:4b:16:9c:e2:0f:13:63:33:7a:16:3a:9c: 21:93:6a:17:24:af:65:a3:88:3c:21:ac:3a:88:a6: e3:12:6a:6b:39:e4:4e:58:54:e0:e5:c4:ac:02:cf: 97:43:18:97:71:94:64:f5:c5:3e:43:72:0d:b9:02: b6:35:59:c8:58:65:f0:f5:1e:74:a3:83:24:ad:ff: 1f:03:99:8b:cd:d5:ec:e7:14:ff:e9:eb:ee:9f:40: fe:8c:64:4d:02:88:bf:dc:e4:5f:aa:4c:18:f8:25: 85:2a:89:98:db:d8:df:0f:0d:0d:ae:b9:f6:47:e8: a5:85:04:0f:8c:65:b4:77:ff:a8:1d:e1:b1:cb:15: a1:53:3c:e7:68:ae:e6:76:7b:e1:ea:a8:f0:a2:59: 0c:49:05:cf:5b:da:df:0f:92:be:69:32:c5:95:fa: ca:b7:f0:e9:a4:e1:42:c6:87:90:1a:53:cc:58:96: 3a:2d:8a:44:ff:e3:9f:49:bc:74:d2:4b:ed:e0:cf: 31:1b:85:ba:0b:2e:93:02:55:64:6c:69:60:14:b8: 2f:c7:18:65:f6:c3:aa:6c:50:5a:83:1d:4c:eb:9b: 79:96:16:05:8b:96:94:ff:f0:93:80:7b:b3:b6:95: 05:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:28:88:9D:8F:F6:CC:C3:4A:6A:64:B9:80:0B:E3:C4:AD:1E:33:23 X509v3 Authority Key Identifier: keyid:B2:AD:50:F3:57:1B:DA:1E:EC:07:CC:48:DA:01:D3:F3:75:45:8D:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E7C7/1A59F78E16B311EF89CFE30EC4F9AE02/sq1Q81cb2h7sB8xI2gHT83VFjSQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sq1Q81cb2h7sB8xI2gHT83VFjSQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E7C7/1A59F78E16B311EF89CFE30EC4F9AE02/sq1Q81cb2h7sB8xI2gHT83VFjSQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:52:9e:0e:a3:f7:ec:df:d0:70:63:27:87:a2:6a:a0:61:a3: 2d:08:17:0f:43:44:b3:4b:d0:3e:36:02:15:ae:19:6e:c2:c3: 80:65:ea:7a:e3:88:d2:17:cc:66:f3:5e:77:48:6d:48:b9:41: 96:53:25:b0:4d:40:ab:04:ca:83:bf:e7:e0:32:a0:fa:b8:5b: b4:90:af:ec:18:9e:4d:88:80:86:0b:65:16:8c:9a:46:41:1a: 38:eb:fd:80:6e:91:0e:c0:78:3e:cd:74:5b:b2:37:b6:e6:14: 11:bc:60:97:c1:e1:9c:17:22:43:64:3e:c8:b1:ba:22:a4:56: 2d:cf:b9:03:96:36:b3:18:59:3b:0b:8a:8c:5a:a6:3f:6d:17: bf:56:e6:09:af:83:78:cd:1a:26:0c:04:6b:85:03:3a:e4:c5: a1:25:9e:c7:73:94:96:20:c0:e2:f9:a8:1d:0b:1a:15:6f:c2: ff:f7:0b:f8:fb:77:6c:9d:d8:99:d3:00:0f:15:d9:50:de:4b: cd:dc:ec:fb:b5:44:c1:1f:f1:de:9c:c1:3a:79:dc:9a:1a:48: 1c:2f:af:91:b0:4d:6e:2a:19:6d:37:db:fd:56:94:aa:91:7b: 71:cc:86:f6:84:14:1d:85:5f:21:c6:3a:02:4d:5d:71:c0:c3: 6f:57:0a:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U3QzcxMTAvBgNVBAUTKEIyQUQ1MEYzNTcxQkRBMUVFQzA3Q0M0OERBMDFEM0Yz NzU0NThEMjQwHhcNMjUwNjEzMDQ0MTIxWhcNMjUwNjIwMDQ0MTIxWjAYMRYwFAYD VQQDEw02ODRiYWJmMS01Y2YwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoywVCv1WL2Q5ghKw76XumWhLFpziDxNjM3oWOpwhk2oXJK9lo4g8Iaw6iKbj EmprOeROWFTg5cSsAs+XQxiXcZRk9cU+Q3INuQK2NVnIWGXw9R50o4Mkrf8fA5mL zdXs5xT/6evun0D+jGRNAoi/3ORfqkwY+CWFKomY29jfDw0Nrrn2R+ilhQQPjGW0 d/+oHeGxyxWhUzznaK7mdnvh6qjwolkMSQXPW9rfD5K+aTLFlfrKt/DppOFCxoeQ GlPMWJY6LYpE/+OfSbx00kvt4M8xG4W6Cy6TAlVkbGlgFLgvxxhl9sOqbFBagx1M 65t5lhYFi5aU//CTgHuztpUFZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDEoiJ2P 9szDSmpkuYAL48StHjMjMB8GA1UdIwQYMBaAFLKtUPNXG9oe7AfMSNoB0/N1RY0k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTdDNy8xQTU5Rjc4RTE2 QjMxMUVGODlDRkUzMEVDNEY5QUUwMi9zcTFRODFjYjJoN3NCOHhJMmdIVDgzVkZq U1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NxMVE4MWNiMmg3c0I4eEkyZ0hUODNWRmpTUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTdDNy8xQTU5Rjc4RTE2QjMxMUVGODlDRkUzMEVDNEY5QUUwMi9zcTFRODFjYjJo N3NCOHhJMmdIVDgzVkZqU1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJUp4Oo/fs39BwYyeHomqgYaMtCBcPQ0SzS9A+NgIVrhluwsOAZep6 44jSF8xm8153SG1IuUGWUyWwTUCrBMqDv+fgMqD6uFu0kK/sGJ5NiICGC2UWjJpG QRo46/2AbpEOwHg+zXRbsje25hQRvGCXweGcFyJDZD7IsboipFYtz7kDljazGFk7 C4qMWqY/bRe/VuYJr4N4zRomDARrhQM65MWhJZ7Hc5SWIMDi+agdCxoVb8L/9wv4 +3dsndiZ0wAPFdlQ3kvN3Oz7tUTBH/HenME6edyaGkgcL6+RsE1uKhltN9v9VpSq kXtxzIb2hBQdhV8hxjoCTV1xwMNvVwpq -----END CERTIFICATE-----Generated at Sat Jun 14 19:07:21 2025 by rpki-client