$ rpki-client -vvf rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft File: Q2XRedW3PoqX7eBQXynvAMLWPvk.mft (raw, json) Hash identifier: JiWYjXa3tV6I4LKpFsvLd8PLnucZSiyV4ZG5PAe8arM= Subject key identifier: 5C:B8:21:C5:99:AC:4F:F1:BD:0E:15:5B:22:64:F5:D8:00:9F:04:19 Authority key identifier: 43:65:D1:79:D5:B7:3E:8A:97:ED:E0:50:5F:29:EF:00:C2:D6:3E:F9 Certificate issuer: /CN=A9139555/serialNumber=4365D179D5B73E8A97EDE0505F29EF00C2D63EF9 Certificate serial: 02C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft Manifest number: 02B7 Signing time: Mon 21 Jul 2025 01:46:40 +0000 Manifest this update: Mon 21 Jul 2025 01:46:40 +0000 Manifest next update: Mon 28 Jul 2025 01:46:40 +0000 Files and hashes: 1: Q2XRedW3PoqX7eBQXynvAMLWPvk.crl (hash: D/uaj4KWqspB1oYh0OEFGnUwnmdMWNxgUe1oJ5fV6F4=) 2: E9A9531644D611F0ABB89277C4F9AE02.roa (hash: GeKHBnqKWQ5odcVSCSiPOuNHSoS5ENhlNwIJeq+zQ50=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.crl rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 01:46:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 704 (0x2c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139555, serialNumber=4365D179D5B73E8A97EDE0505F29EF00C2D63EF9 Validity Not Before: Jul 21 01:46:40 2025 GMT Not After : Jul 28 01:46:40 2025 GMT Subject: CN=687d9c00-a495 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:5e:11:e7:7f:da:7f:c0:8b:5b:3c:ef:6a:b1: 8f:78:75:61:fb:46:a2:cb:ba:49:ba:a8:13:0f:fa: 1d:cb:a9:d2:21:07:95:35:f2:41:c2:d8:6d:82:27: 58:16:61:47:e1:90:39:cb:8d:4c:a2:08:9c:df:cc: d8:1f:90:d6:97:12:4d:cc:7f:bf:ae:c4:9d:23:07: 73:34:98:b6:1d:40:3a:fc:4c:9d:d9:98:34:c0:cc: 3b:5c:60:2f:b9:53:4f:08:85:d5:fb:35:74:a3:3a: fe:d1:25:d2:66:68:4a:4c:26:22:10:2c:07:80:e8: 42:e9:3d:86:62:4a:e9:58:0e:ca:11:59:08:53:77: 73:06:c3:1b:02:02:b3:05:86:a0:84:31:86:67:c7: a6:90:ac:14:59:d7:c4:a4:7e:68:5c:8b:5c:ea:87: 34:45:61:5c:62:75:a1:99:6b:0f:c8:89:cc:ab:38: fb:1b:a3:cf:c7:d6:17:fb:29:f0:20:bc:be:f9:e4: 15:ae:94:a4:1c:ea:eb:3f:e8:b6:de:e2:75:bf:07: d9:06:0f:1a:c6:9d:7c:bf:d5:30:94:11:52:66:09: e4:e2:81:5e:9b:85:5d:a8:f2:ff:e6:bd:8f:c3:90: 47:c2:43:2e:60:e0:43:41:fb:87:ea:17:1e:e0:3e: 17:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:B8:21:C5:99:AC:4F:F1:BD:0E:15:5B:22:64:F5:D8:00:9F:04:19 X509v3 Authority Key Identifier: keyid:43:65:D1:79:D5:B7:3E:8A:97:ED:E0:50:5F:29:EF:00:C2:D6:3E:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:85:1b:d4:0a:4d:50:ca:cf:39:43:8e:b2:95:35:3a:c8:3e: 8f:a4:06:88:2f:2d:02:8d:51:95:8f:12:11:f2:b1:31:b3:4e: d3:a2:1d:ce:8c:d7:6b:e2:a9:2b:ae:74:7b:13:2f:11:d8:03: 95:7d:a0:ea:6e:07:dc:77:3a:a5:7b:44:40:7d:79:a6:c0:33: d8:36:3d:2f:a5:69:66:4b:ef:47:91:e8:1e:c3:b8:08:a1:c0: fb:f0:0a:4b:67:dd:ea:64:05:e8:60:65:bc:d0:ea:07:ad:78: 6f:3f:89:04:77:ae:d2:27:d0:3a:77:f6:9b:d3:0a:6f:04:8d: bf:3c:a4:ee:2f:44:c9:7c:26:47:ba:a5:5b:1f:ba:e2:d4:d7: ab:53:a8:54:2a:df:1b:7b:7e:e5:2c:23:63:97:5e:d4:a7:b0: 38:9d:78:e5:f2:68:33:e8:ed:49:1e:78:7f:70:cc:bf:de:f6: 5d:df:cc:a9:13:5f:05:22:5e:78:06:68:e6:a0:aa:89:30:07: bc:6c:e3:fa:79:12:67:76:44:72:60:cc:09:55:4b:4c:3c:42: 8b:de:a8:88:f4:68:ff:1f:0e:3e:53:d0:c6:89:af:78:ab:fd: 1b:98:52:2d:19:e8:76:0f:64:78:eb:6f:44:02:13:e7:fb:d6: 95:b2:fc:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAsAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk1NTUxMTAvBgNVBAUTKDQzNjVEMTc5RDVCNzNFOEE5N0VERTA1MDVGMjlFRjAw QzJENjNFRjkwHhcNMjUwNzIxMDE0NjQwWhcNMjUwNzI4MDE0NjQwWjAYMRYwFAYD VQQDEw02ODdkOWMwMC1hNDk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2F4R53/af8CLWzzvarGPeHVh+0aiy7pJuqgTD/ody6nSIQeVNfJBwthtgidY FmFH4ZA5y41Mogic38zYH5DWlxJNzH+/rsSdIwdzNJi2HUA6/Eyd2Zg0wMw7XGAv uVNPCIXV+zV0ozr+0SXSZmhKTCYiECwHgOhC6T2GYkrpWA7KEVkIU3dzBsMbAgKz BYaghDGGZ8emkKwUWdfEpH5oXItc6oc0RWFcYnWhmWsPyInMqzj7G6PPx9YX+ynw ILy++eQVrpSkHOrrP+i23uJ1vwfZBg8axp18v9UwlBFSZgnk4oFem4VdqPL/5r2P w5BHwkMuYOBDQfuH6hce4D4X8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFy4IcWZ rE/xvQ4VWyJk9dgAnwQZMB8GA1UdIwQYMBaAFENl0XnVtz6Kl+3gUF8p7wDC1j75 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTU1NS9EQzdEMTQ1QTAy MkQxMUVEOUQ2NDZCNTdDNEY5QUUwMi9RMlhSZWRXM1BvcVg3ZUJRWHludkFNTFdQ dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1EyWFJlZFczUG9xWDdlQlFYeW52QU1MV1B2ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTU1NS9EQzdEMTQ1QTAyMkQxMUVEOUQ2NDZCNTdDNEY5QUUwMi9RMlhSZWRXM1Bv cVg3ZUJRWHludkFNTFdQdmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHhRvUCk1Qys85Q46ylTU6yD6PpAaILy0CjVGVjxIR8rExs07Toh3O jNdr4qkrrnR7Ey8R2AOVfaDqbgfcdzqle0RAfXmmwDPYNj0vpWlmS+9Hkegew7gI ocD78ApLZ93qZAXoYGW80OoHrXhvP4kEd67SJ9A6d/ab0wpvBI2/PKTuL0TJfCZH uqVbH7ri1NerU6hUKt8be37lLCNjl17Up7A4nXjl8mgz6O1JHnh/cMy/3vZd38yp E18FIl54BmjmoKqJMAe8bOP6eRJndkRyYMwJVUtMPEKL3qiI9Gj/Hw4+U9DGia94 q/0bmFItGeh2D2R4629EAhPn+9aVsvyX -----END CERTIFICATE-----Generated at Wed Jul 23 02:29:35 2025 by rpki-client