$ rpki-client -vvf rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft File: Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft (raw, json) Hash identifier: Rr1HZLa34cQgJnJV445HjEdxwRAsJYERmFpuI7j7sq8= Subject key identifier: 19:19:0E:C2:F5:A4:B2:7A:2A:28:AB:F1:B4:A1:59:6C:A6:B4:EE:00 Authority key identifier: 43:8D:82:3E:C3:34:4B:4B:F1:C9:9E:11:DE:0F:56:F8:42:EF:D9:8E Certificate issuer: /CN=A9199885/serialNumber=438D823EC3344B4BF1C99E11DE0F56F842EFD98E Certificate serial: 20A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft Manifest number: 5508 Signing time: Sat 26 Apr 2025 14:53:23 +0000 Manifest this update: Sat 26 Apr 2025 14:53:23 +0000 Manifest next update: Sat 03 May 2025 14:53:23 +0000 Files and hashes: 1: Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.crl (hash: v8d2ygAKH16OwzFcOiwWGnd0MQ8lMyNOSGK4hpvzt3c=) 2: 01804686B48E11EF81F55F3CC4F9AE02.roa (hash: DZexhviKSVjUz0wtVaAtdHsphj1mTjOP+0tLYZS1w4g=) 3: 0211478AB48E11EF81F55F3CC4F9AE02.roa (hash: wW6HtygaJuqa+MnCVL4XlwdsV1VvmruGQrlj4oWNX84=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.crl rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 14:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8358 (0x20a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199885, serialNumber=438D823EC3344B4BF1C99E11DE0F56F842EFD98E Validity Not Before: Apr 26 14:53:23 2025 GMT Not After : May 3 14:53:23 2025 GMT Subject: CN=680cf363-ff11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ae:eb:60:6d:46:f4:c6:de:ae:73:1a:4c:d8: 9a:28:5b:f2:fd:f8:a5:54:1c:00:49:b1:e2:fb:d0: da:3e:22:20:7c:b0:55:9d:6f:8f:bf:48:5f:89:0a: e3:07:1e:07:12:1b:3c:03:0e:fb:c9:64:e6:bc:39: 93:45:32:74:1e:c4:dc:ba:b0:02:4c:19:fa:c4:32: 81:d0:6f:69:31:b9:70:2b:db:8a:1a:03:42:d8:b6: df:22:2d:d6:5b:10:e9:70:75:19:9b:bc:b6:03:89: c1:1a:1d:86:0d:a7:f9:8b:56:ab:e8:f2:b3:13:42: ae:bf:bc:64:af:98:4f:74:6e:00:8c:bc:a9:9a:e9: 24:77:1f:0e:d1:86:be:ee:4c:e7:05:76:77:66:d3: 76:b8:f4:92:ce:83:d4:01:09:97:43:d3:17:36:74: dd:16:27:be:03:d0:fb:cf:ef:31:f3:55:9b:e8:40: 44:0a:d9:88:6b:76:92:9b:c6:7a:9b:f8:23:f6:f1: 9a:04:f7:6b:d1:f9:8e:a5:f8:4d:65:04:ac:69:1e: ed:46:3b:b3:a0:27:25:3f:24:66:95:1e:8a:23:6d: 25:92:b3:cd:58:2e:d7:9f:84:23:ea:a8:aa:bd:54: ca:09:bd:7e:13:51:8d:20:db:fb:32:3d:95:56:19: 00:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:19:0E:C2:F5:A4:B2:7A:2A:28:AB:F1:B4:A1:59:6C:A6:B4:EE:00 X509v3 Authority Key Identifier: keyid:43:8D:82:3E:C3:34:4B:4B:F1:C9:9E:11:DE:0F:56:F8:42:EF:D9:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:58:7b:ed:ca:70:f6:e6:ba:37:1a:77:3c:09:e0:c7:89:4b: f1:77:07:85:df:4b:b0:e6:2c:be:7a:03:70:39:84:b8:c6:d6: 0d:58:e6:12:01:6b:37:a3:11:e4:75:25:41:fe:ac:8d:85:4a: 11:09:a1:d8:2e:54:c4:58:ef:d6:88:ab:eb:d3:7d:ad:20:73: 4a:2b:3e:79:db:61:5f:09:af:fb:c5:54:3d:98:84:c2:9f:4e: 77:de:de:14:be:12:36:6f:09:de:ce:a8:36:d4:fb:98:b3:9b: f3:26:42:c5:d5:ec:ce:01:c0:90:64:fc:1e:ba:97:78:01:bd: f6:c5:bd:71:34:1d:e0:07:01:c5:a9:42:d6:fe:3b:fc:a4:c8: c2:64:b0:61:9e:b8:52:9a:94:08:66:a6:35:c8:68:1d:f9:6b: 82:4b:f6:e7:ce:ff:6e:66:5d:44:b6:5e:13:e0:cd:95:4b:0f: d1:07:89:ab:01:7a:30:11:6a:92:d4:65:7a:82:72:13:78:20: e8:47:0d:49:06:6a:cb:8b:9e:e1:3c:0d:07:fa:0c:1e:6c:3d: 77:b5:ea:e4:6e:1e:97:0b:a4:77:fe:44:20:2f:c0:74:2b:e9: be:f8:31:3b:77:46:f8:57:65:c5:a8:b6:f7:d1:0c:b8:4f:f0: c4:2d:1f:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk4ODUxMTAvBgNVBAUTKDQzOEQ4MjNFQzMzNDRCNEJGMUM5OUUxMURFMEY1NkY4 NDJFRkQ5OEUwHhcNMjUwNDI2MTQ1MzIzWhcNMjUwNTAzMTQ1MzIzWjAYMRYwFAYD VQQDEw02ODBjZjM2My1mZjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxq7rYG1G9MbernMaTNiaKFvy/filVBwASbHi+9DaPiIgfLBVnW+Pv0hfiQrj Bx4HEhs8Aw77yWTmvDmTRTJ0HsTcurACTBn6xDKB0G9pMblwK9uKGgNC2LbfIi3W WxDpcHUZm7y2A4nBGh2GDaf5i1ar6PKzE0Kuv7xkr5hPdG4AjLypmukkdx8O0Ya+ 7kznBXZ3ZtN2uPSSzoPUAQmXQ9MXNnTdFie+A9D7z+8x81Wb6EBECtmIa3aSm8Z6 m/gj9vGaBPdr0fmOpfhNZQSsaR7tRjuzoCclPyRmlR6KI20lkrPNWC7Xn4Qj6qiq vVTKCb1+E1GNINv7Mj2VVhkAYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBkZDsL1 pLJ6Kiir8bShWWymtO4AMB8GA1UdIwQYMBaAFEONgj7DNEtL8cmeEd4PVvhC79mO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTg4NS9EMDUwNjg1QTFE OTgxMUUyQUU2QjFGODMwOEIwMkNEMi9RNDJDUHNNMFMwdnh5WjRSM2c5Vy1FTHYy WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1E0MkNQc00wUzB2eHlaNFIzZzlXLUVMdjJZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTg4NS9EMDUwNjg1QTFEOTgxMUUyQUU2QjFGODMwOEIwMkNEMi9RNDJDUHNNMFMw dnh5WjRSM2c5Vy1FTHYyWTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkWHvtynD25ro3Gnc8CeDHiUvxdweF30uw5iy+egNwOYS4xtYNWOYS AWs3oxHkdSVB/qyNhUoRCaHYLlTEWO/WiKvr032tIHNKKz5522FfCa/7xVQ9mITC n0533t4UvhI2bwnezqg21PuYs5vzJkLF1ezOAcCQZPweupd4Ab32xb1xNB3gBwHF qULW/jv8pMjCZLBhnrhSmpQIZqY1yGgd+WuCS/bnzv9uZl1Etl4T4M2VSw/RB4mr AXowEWqS1GV6gnITeCDoRw1JBmrLi57hPA0H+gwebD13terkbh6XC6R3/kQgL8B0 K+m++DE7d0b4V2XFqLb30Qy4T/DELR83 -----END CERTIFICATE-----Generated at Sat Apr 26 17:13:49 2025 by rpki-client