$ rpki-client -vvf rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft File: Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft (raw, json) Hash identifier: Lfb0a5NEgmHJv2g1frihlyX3hVXnQyX+d9+U3+p3rBM= Subject key identifier: 08:47:FD:60:CF:0F:15:F9:2D:0F:C3:27:F0:41:C8:CD:EA:3E:AE:BB Authority key identifier: 43:8D:82:3E:C3:34:4B:4B:F1:C9:9E:11:DE:0F:56:F8:42:EF:D9:8E Certificate issuer: /CN=A9199885/serialNumber=438D823EC3344B4BF1C99E11DE0F56F842EFD98E Certificate serial: 20BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft Manifest number: 553A Signing time: Sat 14 Jun 2025 14:52:50 +0000 Manifest this update: Sat 14 Jun 2025 14:52:49 +0000 Manifest next update: Sat 21 Jun 2025 14:52:49 +0000 Files and hashes: 1: Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.crl (hash: gjF8UwKu1FqBNFDW+S0naf7B9P30OYgyvx6kt53RGTg=) 2: 01804686B48E11EF81F55F3CC4F9AE02.roa (hash: DZexhviKSVjUz0wtVaAtdHsphj1mTjOP+0tLYZS1w4g=) 3: 0211478AB48E11EF81F55F3CC4F9AE02.roa (hash: wW6HtygaJuqa+MnCVL4XlwdsV1VvmruGQrlj4oWNX84=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.crl rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 14:52:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8383 (0x20bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199885, serialNumber=438D823EC3344B4BF1C99E11DE0F56F842EFD98E Validity Not Before: Jun 14 14:52:49 2025 GMT Not After : Jun 21 14:52:49 2025 GMT Subject: CN=684d8cc1-9dbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ea:77:2d:2e:b7:78:8d:a9:c1:e9:b7:4e:37: 0e:07:bd:db:ca:11:2c:e3:c8:20:1b:29:59:89:43: 74:73:a2:2b:72:7a:d5:2a:af:27:47:02:91:9c:17: 0b:71:23:96:45:b5:d8:a1:e8:10:22:95:88:75:6e: bf:62:a0:2a:e7:fe:04:ff:1f:a1:c4:61:0d:ec:06: 41:14:ae:d7:71:ab:9e:65:96:68:0d:85:20:0b:9c: b3:6d:5e:25:e3:00:e1:14:c5:2b:fd:fd:e9:16:17: f7:a9:1d:4e:c1:77:aa:73:06:93:2e:e8:f3:22:f4: 9e:f5:77:6c:72:c1:91:ad:a2:c7:c0:44:34:3f:20: a2:77:2d:9c:f2:40:9a:e0:bd:85:ed:71:28:c3:88: 19:8e:ba:8d:31:27:7d:d5:4b:b5:e8:1c:07:42:94: 3d:12:a0:58:29:24:57:3e:4d:26:2d:5b:c0:5f:37: a7:a8:29:42:e2:15:f0:d8:c2:d7:55:b0:36:54:6e: 01:c6:f3:18:c9:df:d8:2f:7c:99:c6:de:46:24:75: 58:1f:cb:bd:7f:7b:12:1f:ce:e7:c2:c9:db:46:0a: 2e:cd:a1:0c:a9:f0:3b:94:01:50:2d:e9:cf:07:7e: f3:4e:9b:a9:6f:c2:7c:9b:25:7f:82:28:24:ba:1e: f6:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:47:FD:60:CF:0F:15:F9:2D:0F:C3:27:F0:41:C8:CD:EA:3E:AE:BB X509v3 Authority Key Identifier: keyid:43:8D:82:3E:C3:34:4B:4B:F1:C9:9E:11:DE:0F:56:F8:42:EF:D9:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:9c:7c:44:33:2d:8c:a5:07:05:e4:27:07:40:0f:4e:4e:0a: c1:1f:ca:5e:c0:ea:43:43:a6:a0:dc:a7:ec:83:9d:f9:f5:bf: ff:1e:a4:b1:3b:0e:4c:24:f0:98:58:76:1b:54:42:ae:3e:1a: 18:21:30:1a:d4:73:9e:e5:e5:a7:2d:96:6e:93:e2:10:fe:23: 46:4f:78:de:8a:42:f3:7e:e9:d6:80:cb:07:bc:f7:09:36:18: 3c:81:98:77:86:3f:b0:74:1a:49:41:86:ca:a6:89:c6:66:db: b8:8b:8b:df:95:e0:4f:42:89:d0:6c:f2:c0:0c:cb:d3:05:3e: e2:d2:6d:a4:7f:52:95:94:82:0e:b8:1d:fc:0e:98:b9:00:fd: 58:02:c7:18:90:00:d3:c7:be:5f:3e:fd:9f:4e:53:f0:ef:be: 9f:5f:24:2f:32:87:b7:6b:55:fb:22:5e:23:59:68:3a:a3:06: 35:d4:e8:a8:45:d5:f6:11:c5:1c:84:9a:cb:72:23:12:2a:77: 36:28:2c:52:50:7b:56:37:96:d9:4b:3e:db:c1:37:d6:04:a2: 13:49:50:1b:99:a0:f8:b2:d1:f2:f7:7c:cd:34:c8:03:00:93: 59:0c:4e:94:5c:97:28:93:51:df:50:96:ce:29:37:4c:da:cc: 2b:6b:19:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk4ODUxMTAvBgNVBAUTKDQzOEQ4MjNFQzMzNDRCNEJGMUM5OUUxMURFMEY1NkY4 NDJFRkQ5OEUwHhcNMjUwNjE0MTQ1MjQ5WhcNMjUwNjIxMTQ1MjQ5WjAYMRYwFAYD VQQDEw02ODRkOGNjMS05ZGJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr+p3LS63eI2pwem3TjcOB73byhEs48ggGylZiUN0c6IrcnrVKq8nRwKRnBcL cSOWRbXYoegQIpWIdW6/YqAq5/4E/x+hxGEN7AZBFK7XcaueZZZoDYUgC5yzbV4l 4wDhFMUr/f3pFhf3qR1OwXeqcwaTLujzIvSe9XdscsGRraLHwEQ0PyCidy2c8kCa 4L2F7XEow4gZjrqNMSd91Uu16BwHQpQ9EqBYKSRXPk0mLVvAXzenqClC4hXw2MLX VbA2VG4BxvMYyd/YL3yZxt5GJHVYH8u9f3sSH87nwsnbRgouzaEMqfA7lAFQLenP B37zTpupb8J8myV/gigkuh721wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAhH/WDP DxX5LQ/DJ/BByM3qPq67MB8GA1UdIwQYMBaAFEONgj7DNEtL8cmeEd4PVvhC79mO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTg4NS9EMDUwNjg1QTFE OTgxMUUyQUU2QjFGODMwOEIwMkNEMi9RNDJDUHNNMFMwdnh5WjRSM2c5Vy1FTHYy WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1E0MkNQc00wUzB2eHlaNFIzZzlXLUVMdjJZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTg4NS9EMDUwNjg1QTFEOTgxMUUyQUU2QjFGODMwOEIwMkNEMi9RNDJDUHNNMFMw dnh5WjRSM2c5Vy1FTHYyWTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBnHxEMy2MpQcF5CcHQA9OTgrBH8pewOpDQ6ag3Kfsg5359b//HqSx Ow5MJPCYWHYbVEKuPhoYITAa1HOe5eWnLZZuk+IQ/iNGT3jeikLzfunWgMsHvPcJ Nhg8gZh3hj+wdBpJQYbKponGZtu4i4vfleBPQonQbPLADMvTBT7i0m2kf1KVlIIO uB38Dpi5AP1YAscYkADTx75fPv2fTlPw776fXyQvMoe3a1X7Il4jWWg6owY11Oio RdX2EcUchJrLciMSKnc2KCxSUHtWN5bZSz7bwTfWBKITSVAbmaD4stHy93zNNMgD AJNZDE6UXJcok1HfUJbOKTdM2swraxlU -----END CERTIFICATE-----Generated at Sat Jun 14 19:35:18 2025 by rpki-client