$ rpki-client -vvf rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft File: Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft (raw, json) Hash identifier: qzdNGVrELxrkbpqKvMDEUKUoVYWQeLjrGYyXBaFW/v4= Subject key identifier: 72:12:A3:F9:05:30:2A:62:83:07:CB:E0:8F:03:AB:84:32:87:F9:0C Authority key identifier: 43:8D:82:3E:C3:34:4B:4B:F1:C9:9E:11:DE:0F:56:F8:42:EF:D9:8E Certificate issuer: /CN=A9199885/serialNumber=438D823EC3344B4BF1C99E11DE0F56F842EFD98E Certificate serial: 20DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft Manifest number: 5574 Signing time: Sun 10 Aug 2025 14:52:25 +0000 Manifest this update: Sun 10 Aug 2025 14:52:25 +0000 Manifest next update: Sun 17 Aug 2025 14:52:25 +0000 Files and hashes: 1: Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.crl (hash: +Un2h/++cyG2l1OqyFUZzZ9AFMOeqTKGJoUOBE9YKtk=) 2: 01804686B48E11EF81F55F3CC4F9AE02.roa (hash: DZexhviKSVjUz0wtVaAtdHsphj1mTjOP+0tLYZS1w4g=) 3: 0211478AB48E11EF81F55F3CC4F9AE02.roa (hash: wW6HtygaJuqa+MnCVL4XlwdsV1VvmruGQrlj4oWNX84=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.crl rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8412 (0x20dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199885, serialNumber=438D823EC3344B4BF1C99E11DE0F56F842EFD98E Validity Not Before: Aug 10 14:52:25 2025 GMT Not After : Aug 17 14:52:25 2025 GMT Subject: CN=6898b229-06fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:26:31:5b:36:80:aa:20:9b:e3:19:42:9a:8b: 80:a7:66:51:0b:6d:9b:48:c5:5a:86:da:d5:f1:b1: 43:d7:39:1c:10:d0:3c:8f:22:d2:40:8c:9f:d4:17: 93:80:6e:01:5e:47:b6:0e:52:5b:c1:84:c9:f7:41: 0c:47:a4:0f:c9:da:47:f8:33:0b:22:b0:3c:0f:43: b3:f5:f0:b9:6f:7d:80:e2:a6:bc:9b:24:06:b9:eb: 53:a1:93:69:94:9a:4a:6d:8e:9d:b2:33:dc:38:c6: d1:c6:02:0f:43:65:4c:0d:1b:31:cf:b0:4f:96:10: 33:00:21:a1:e0:c9:47:94:f4:79:d8:63:67:c4:59: f5:22:18:74:4e:95:f5:c5:ec:ce:df:cd:9d:df:cc: da:b1:4d:5f:a9:7b:ca:f8:57:cc:78:48:0e:76:76: bd:d0:b4:67:c8:25:68:56:13:c2:6b:07:7e:c5:a7: 5b:71:59:e0:ee:06:22:17:15:1b:30:55:de:0d:0d: 1b:85:f2:7f:c7:7c:ca:de:10:d7:01:40:96:cd:f2: 83:bc:c3:fc:20:45:03:35:00:8a:76:7f:18:bc:6d: 81:42:65:6a:26:74:7f:ef:70:10:a4:6a:e1:0a:73: 97:e2:3b:6b:31:35:9c:3a:0d:e1:56:f8:2a:ab:29: 79:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:12:A3:F9:05:30:2A:62:83:07:CB:E0:8F:03:AB:84:32:87:F9:0C X509v3 Authority Key Identifier: keyid:43:8D:82:3E:C3:34:4B:4B:F1:C9:9E:11:DE:0F:56:F8:42:EF:D9:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:69:ec:8b:bb:b9:94:16:f5:d2:e3:7e:c6:58:c2:ea:aa:99: 53:15:38:71:19:cb:c2:4f:f1:77:c1:c0:c2:bf:78:68:55:f7: 50:07:9a:0f:00:d5:6e:4a:fb:c5:8c:73:8b:c5:26:fe:a3:2b: 90:01:35:d5:9a:de:c7:36:82:5f:26:3d:f9:ec:83:4c:09:0e: 06:06:78:50:aa:a1:6b:f4:64:8b:b5:7b:5c:82:96:ac:e6:b8: 06:58:b6:cc:4d:4d:ad:87:82:f8:14:97:3f:5e:c9:0a:0e:4d: de:8c:51:cc:79:b2:0e:42:14:52:27:7f:9b:41:bf:67:f4:d0: a1:93:45:91:c8:b2:91:27:18:e0:47:6a:26:95:ce:c9:50:57: 35:57:81:3e:03:76:92:88:c5:b1:48:4c:65:9b:18:cd:bd:9d: 1f:28:4f:fd:77:17:33:b3:e8:77:02:22:11:1c:92:ee:96:23: 86:97:02:b0:76:2e:6b:5f:c4:cc:77:37:77:27:c4:da:1b:28: b1:e2:40:32:3b:1d:03:a8:ef:df:d4:b4:04:fa:45:58:19:4f: 43:c3:2c:9b:3c:66:8d:37:27:c6:2e:4f:aa:31:2c:f4:d0:ea: b1:bb:39:4f:22:d5:6e:c7:ac:74:ba:d6:9c:93:87:bb:21:95: 03:d4:bd:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICINwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk4ODUxMTAvBgNVBAUTKDQzOEQ4MjNFQzMzNDRCNEJGMUM5OUUxMURFMEY1NkY4 NDJFRkQ5OEUwHhcNMjUwODEwMTQ1MjI1WhcNMjUwODE3MTQ1MjI1WjAYMRYwFAYD VQQDEw02ODk4YjIyOS0wNmZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxiYxWzaAqiCb4xlCmouAp2ZRC22bSMVahtrV8bFD1zkcENA8jyLSQIyf1BeT gG4BXke2DlJbwYTJ90EMR6QPydpH+DMLIrA8D0Oz9fC5b32A4qa8myQGuetToZNp lJpKbY6dsjPcOMbRxgIPQ2VMDRsxz7BPlhAzACGh4MlHlPR52GNnxFn1Ihh0TpX1 xezO382d38zasU1fqXvK+FfMeEgOdna90LRnyCVoVhPCawd+xadbcVng7gYiFxUb MFXeDQ0bhfJ/x3zK3hDXAUCWzfKDvMP8IEUDNQCKdn8YvG2BQmVqJnR/73AQpGrh CnOX4jtrMTWcOg3hVvgqqyl56wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHISo/kF MCpigwfL4I8Dq4Qyh/kMMB8GA1UdIwQYMBaAFEONgj7DNEtL8cmeEd4PVvhC79mO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTg4NS9EMDUwNjg1QTFE OTgxMUUyQUU2QjFGODMwOEIwMkNEMi9RNDJDUHNNMFMwdnh5WjRSM2c5Vy1FTHYy WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1E0MkNQc00wUzB2eHlaNFIzZzlXLUVMdjJZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTg4NS9EMDUwNjg1QTFEOTgxMUUyQUU2QjFGODMwOEIwMkNEMi9RNDJDUHNNMFMw dnh5WjRSM2c5Vy1FTHYyWTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZaeyLu7mUFvXS437GWMLqqplTFThxGcvCT/F3wcDCv3hoVfdQB5oP ANVuSvvFjHOLxSb+oyuQATXVmt7HNoJfJj357INMCQ4GBnhQqqFr9GSLtXtcgpas 5rgGWLbMTU2th4L4FJc/XskKDk3ejFHMebIOQhRSJ3+bQb9n9NChk0WRyLKRJxjg R2omlc7JUFc1V4E+A3aSiMWxSExlmxjNvZ0fKE/9dxczs+h3AiIRHJLuliOGlwKw di5rX8TMdzd3J8TaGyix4kAyOx0DqO/f1LQE+kVYGU9DwyybPGaNNyfGLk+qMSz0 0OqxuzlPItVux6x0utack4e7IZUD1L1Q -----END CERTIFICATE-----Generated at Mon Aug 11 01:54:25 2025 by rpki-client