$ rpki-client -vvf rpki.apnic.net/member_repository/A917E7C7/1A59F78E16B311EF89CFE30EC4F9AE02/sq1Q81cb2h7sB8xI2gHT83VFjSQ.mft File: sq1Q81cb2h7sB8xI2gHT83VFjSQ.mft (raw, json) Hash identifier: 9tjCwqOiOejaKwVgPzMms18/9WDlBlz63eqe9INpvTU= Subject key identifier: DB:04:5D:01:F4:2C:CB:59:4A:D0:41:5B:B6:4C:F1:37:16:69:E9:B4 Authority key identifier: B2:AD:50:F3:57:1B:DA:1E:EC:07:CC:48:DA:01:D3:F3:75:45:8D:24 Certificate issuer: /CN=A917E7C7/serialNumber=B2AD50F3571BDA1EEC07CC48DA01D3F375458D24 Certificate serial: EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sq1Q81cb2h7sB8xI2gHT83VFjSQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E7C7/1A59F78E16B311EF89CFE30EC4F9AE02/sq1Q81cb2h7sB8xI2gHT83VFjSQ.mft Manifest number: EB Signing time: Sat 09 Aug 2025 05:48:14 +0000 Manifest this update: Sat 09 Aug 2025 05:48:14 +0000 Manifest next update: Sat 16 Aug 2025 05:48:14 +0000 Files and hashes: 1: sq1Q81cb2h7sB8xI2gHT83VFjSQ.crl (hash: 7IhC0HeN+BS8vkGyZKxNc4nxvcvqw7vGzeXe4lazGzI=) 2: 031A090A5C2C11F0A1180E20C4F9AE02.roa (hash: 1KiFLWub5BHrSO0tUJ2uOHpJ+a6PoNSbEd3Z8qezbIg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E7C7/1A59F78E16B311EF89CFE30EC4F9AE02/sq1Q81cb2h7sB8xI2gHT83VFjSQ.crl rsync://rpki.apnic.net/member_repository/A917E7C7/1A59F78E16B311EF89CFE30EC4F9AE02/sq1Q81cb2h7sB8xI2gHT83VFjSQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sq1Q81cb2h7sB8xI2gHT83VFjSQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 239 (0xef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E7C7, serialNumber=B2AD50F3571BDA1EEC07CC48DA01D3F375458D24 Validity Not Before: Aug 9 05:48:14 2025 GMT Not After : Aug 16 05:48:14 2025 GMT Subject: CN=6896e11e-2ed7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:5c:95:aa:04:4a:3b:dc:a3:07:06:34:2c:56: e7:7e:36:91:a8:38:05:5a:a3:42:4e:2b:e3:9a:81: 27:f4:09:24:c5:eb:35:21:99:ba:c4:a9:e4:d5:15: ac:c0:9d:d7:c5:59:cd:22:52:73:bb:71:48:94:f2: a6:56:5c:77:de:03:4d:1e:68:f9:2b:21:3d:58:99: 62:2b:24:83:a8:09:99:6e:89:08:04:6b:e9:ed:38: 99:4f:e6:ef:f8:d3:96:b8:dc:e6:f8:fb:4e:cc:08: b3:70:95:29:91:6a:e6:ce:47:e5:06:b8:23:56:92: db:73:42:33:22:c4:fc:19:93:77:ff:bf:d8:e8:d9: 3a:78:e8:5d:9b:86:d8:6d:2c:8d:eb:a1:b5:2d:fd: 2d:98:0f:9a:e5:45:0b:cd:ec:26:8b:99:b6:c2:bb: d2:95:9e:0b:4c:24:ef:f9:10:27:0d:42:c2:fe:3c: 40:83:c4:3a:5a:00:0d:d3:dd:1d:84:d4:e2:a0:44: bd:79:4a:e3:12:23:b4:f6:be:00:e6:a8:c4:33:6c: ee:db:78:bb:b4:58:e5:be:4a:d9:63:44:e6:39:68: ee:0a:6b:b4:c4:77:9a:f6:f1:df:7d:04:d9:a1:82: 28:0f:07:e4:bb:ce:3c:8a:6e:f8:fa:27:31:2c:02: 04:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:04:5D:01:F4:2C:CB:59:4A:D0:41:5B:B6:4C:F1:37:16:69:E9:B4 X509v3 Authority Key Identifier: keyid:B2:AD:50:F3:57:1B:DA:1E:EC:07:CC:48:DA:01:D3:F3:75:45:8D:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E7C7/1A59F78E16B311EF89CFE30EC4F9AE02/sq1Q81cb2h7sB8xI2gHT83VFjSQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sq1Q81cb2h7sB8xI2gHT83VFjSQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E7C7/1A59F78E16B311EF89CFE30EC4F9AE02/sq1Q81cb2h7sB8xI2gHT83VFjSQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:00:cc:33:ff:a1:f4:31:5e:b0:ab:1b:59:c9:c1:f7:5c:7b: b1:ae:f1:1e:59:dd:d5:d8:c1:9d:b3:84:4e:81:f9:06:fd:27: 03:b2:b9:41:d1:ac:c9:4b:e9:77:f6:d9:c5:8a:29:e5:ad:c8: a7:0a:19:30:46:68:89:18:2d:9f:9f:3f:e0:52:ea:90:62:31: 4d:84:b9:99:e0:0a:9c:c5:8e:b1:38:5f:ff:c6:f3:2d:3b:ed: ca:dc:21:14:67:17:fd:eb:21:d8:43:d3:e3:88:3f:3c:ec:b2: 78:a5:6a:31:2f:ac:0a:aa:26:40:a2:1a:b1:cf:6b:4c:5a:a9: 7f:ab:6c:39:ae:45:32:99:20:13:83:16:9d:58:56:0e:e2:a5: 72:75:ae:3d:02:cf:a3:03:02:ac:dd:4d:d6:f0:66:f8:eb:7e: b7:2d:7f:c9:b1:56:21:db:b4:da:67:77:f8:89:5a:1d:8b:36: 4e:d2:95:6c:3d:69:79:9b:4b:50:07:7c:98:81:c2:9b:e6:c9: c4:64:08:76:0d:be:9d:e9:07:df:1e:7f:00:60:b9:a7:b7:b7: 32:ee:10:92:19:5b:6b:48:eb:00:98:84:3e:b1:32:45:0c:e9: 94:1d:77:bc:f7:fb:cf:2e:95:4c:80:8d:7c:bb:f6:fc:e5:82: 0d:19:d0:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U3QzcxMTAvBgNVBAUTKEIyQUQ1MEYzNTcxQkRBMUVFQzA3Q0M0OERBMDFEM0Yz NzU0NThEMjQwHhcNMjUwODA5MDU0ODE0WhcNMjUwODE2MDU0ODE0WjAYMRYwFAYD VQQDEw02ODk2ZTExZS0yZWQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApVyVqgRKO9yjBwY0LFbnfjaRqDgFWqNCTivjmoEn9Akkxes1IZm6xKnk1RWs wJ3XxVnNIlJzu3FIlPKmVlx33gNNHmj5KyE9WJliKySDqAmZbokIBGvp7TiZT+bv +NOWuNzm+PtOzAizcJUpkWrmzkflBrgjVpLbc0IzIsT8GZN3/7/Y6Nk6eOhdm4bY bSyN66G1Lf0tmA+a5UULzewmi5m2wrvSlZ4LTCTv+RAnDULC/jxAg8Q6WgAN090d hNTioES9eUrjEiO09r4A5qjEM2zu23i7tFjlvkrZY0TmOWjuCmu0xHea9vHffQTZ oYIoDwfku848im74+icxLAIEbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNsEXQH0 LMtZStBBW7ZM8TcWaem0MB8GA1UdIwQYMBaAFLKtUPNXG9oe7AfMSNoB0/N1RY0k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTdDNy8xQTU5Rjc4RTE2 QjMxMUVGODlDRkUzMEVDNEY5QUUwMi9zcTFRODFjYjJoN3NCOHhJMmdIVDgzVkZq U1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NxMVE4MWNiMmg3c0I4eEkyZ0hUODNWRmpTUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTdDNy8xQTU5Rjc4RTE2QjMxMUVGODlDRkUzMEVDNEY5QUUwMi9zcTFRODFjYjJo N3NCOHhJMmdIVDgzVkZqU1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANAMwz/6H0MV6wqxtZycH3XHuxrvEeWd3V2MGds4ROgfkG/ScDsrlB 0azJS+l39tnFiinlrcinChkwRmiJGC2fnz/gUuqQYjFNhLmZ4AqcxY6xOF//xvMt O+3K3CEUZxf96yHYQ9PjiD887LJ4pWoxL6wKqiZAohqxz2tMWql/q2w5rkUymSAT gxadWFYO4qVyda49As+jAwKs3U3W8Gb46363LX/JsVYh27TaZ3f4iVodizZO0pVs PWl5m0tQB3yYgcKb5snEZAh2Db6d6QffHn8AYLmnt7cy7hCSGVtrSOsAmIQ+sTJF DOmUHXe89/vPLpVMgI18u/b85YINGdAc -----END CERTIFICATE-----Generated at Sat Aug 9 22:43:43 2025 by rpki-client