$ rpki-client -vvf rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.mft File: Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.mft (raw, json) Hash identifier: xm/2nS/lIyKwHXnEQx7X1IKXeJp7NMyWV1j+4CGjNCQ= Subject key identifier: 4C:DE:22:21:40:F4:C7:FD:73:A7:C3:52:84:87:AD:6B:99:8D:30:88 Authority key identifier: 43:D2:50:D5:C1:F6:09:ED:17:4D:FF:26:43:01:DB:45:BE:25:B1:B4 Certificate issuer: /CN=A91978DD/serialNumber=43D250D5C1F609ED174DFF264301DB45BE25B1B4 Certificate serial: 174D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.mft Manifest number: 1744 Signing time: Sun 20 Jul 2025 16:38:16 +0000 Manifest this update: Sun 20 Jul 2025 16:38:15 +0000 Manifest next update: Sun 27 Jul 2025 16:38:15 +0000 Files and hashes: 1: Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.crl (hash: Wx0uQWfScD57ePFvhs/RMK4pzlkMlo9xeBA0RTMm5+8=) 2: 16ABD910E0C111E7BA64DE22C4F9AE02.roa (hash: Ooak6D5iQ2fJ6FZTf7sU2wRFg0kTNy2Wu4Ysho3zOO0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.crl rsync://rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 16:38:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5965 (0x174d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91978DD, serialNumber=43D250D5C1F609ED174DFF264301DB45BE25B1B4 Validity Not Before: Jul 20 16:38:15 2025 GMT Not After : Jul 27 16:38:15 2025 GMT Subject: CN=687d1b77-ab29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:5a:4c:68:33:4e:9b:26:96:c2:04:c9:0d:5e: b5:8e:09:51:f8:4e:f0:1c:53:72:94:45:81:b7:06: 5f:19:84:6c:87:68:bf:fa:ac:10:c8:06:e1:ed:fc: c2:7a:3c:74:2f:81:1d:9c:6b:36:85:e1:90:57:7e: c3:48:1d:be:2b:76:5b:2b:ed:b6:f7:73:03:d0:51: c7:c6:9d:3a:d2:c4:1b:3f:b8:4d:56:5e:25:9f:49: ab:07:34:7a:ec:49:9e:51:dc:3d:10:a7:b6:17:06: c9:79:33:53:e0:af:50:c9:5a:0f:87:3a:1d:c6:1f: f4:d9:73:50:3e:54:4c:59:3f:cc:af:f8:e5:e5:64: f9:8e:f5:df:03:6c:d5:d0:5c:0f:5d:7f:31:cf:54: d7:da:43:d0:fb:61:9d:7d:93:48:0c:f2:f5:81:f7: 50:7d:88:bc:2c:09:03:9b:05:f4:e2:e8:4b:22:90: 17:bb:6c:b3:62:1e:7b:d3:49:a3:35:14:be:f4:65: fd:46:de:82:12:a6:21:a6:ef:cd:c1:1c:46:eb:0e: 4e:93:1a:dd:6b:83:40:77:32:04:8e:fd:c3:b9:67: df:00:e3:87:7b:3d:7b:d5:ac:6d:0e:2f:61:aa:b6: 98:cb:cf:3d:a5:75:01:e7:67:96:31:63:5a:5b:07: f5:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:DE:22:21:40:F4:C7:FD:73:A7:C3:52:84:87:AD:6B:99:8D:30:88 X509v3 Authority Key Identifier: keyid:43:D2:50:D5:C1:F6:09:ED:17:4D:FF:26:43:01:DB:45:BE:25:B1:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:6a:23:df:df:07:fd:65:1d:3a:7c:03:15:a1:6f:0f:69:d5: f6:bf:e8:51:15:41:e9:54:7e:2d:f4:42:26:b8:f6:ff:4f:ff: 9a:08:72:e4:e2:31:46:71:52:8c:65:8e:50:12:e0:f4:df:55: 90:5a:51:4a:33:90:59:20:91:23:76:0b:7f:a6:f1:36:dd:71: cf:8a:89:d5:04:fa:38:14:06:74:b6:4c:10:e5:77:2f:42:f8: 25:8c:89:e0:ca:84:16:d4:05:b2:61:88:d0:a1:ad:08:69:00: 19:21:a1:a5:b6:aa:1a:87:04:30:a9:42:16:c3:db:1c:f2:fc: bf:3e:ae:ed:fc:6f:48:cb:27:7f:be:49:1f:66:18:cd:14:3d: 4c:6c:ab:cf:5f:0b:1a:c2:a1:fd:4e:8c:30:35:3b:69:c1:6b: b9:d2:68:8f:b2:97:8e:e9:f3:a3:39:9f:1e:d7:42:b2:16:b2: 31:a8:72:2d:3c:2c:fc:98:1c:74:8a:b7:10:d6:de:ef:76:ff: 84:45:ae:cb:1f:90:d8:f6:de:8c:56:ef:14:79:4f:26:b1:36: 1a:f5:58:b4:c9:07:ec:63:03:41:da:48:46:d8:bb:24:d2:71: f9:23:f7:62:d6:bb:6a:8f:62:85:35:bb:0d:1c:da:1a:7c:0c: 15:da:0b:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF00wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc4REQxMTAvBgNVBAUTKDQzRDI1MEQ1QzFGNjA5RUQxNzRERkYyNjQzMDFEQjQ1 QkUyNUIxQjQwHhcNMjUwNzIwMTYzODE1WhcNMjUwNzI3MTYzODE1WjAYMRYwFAYD VQQDEw02ODdkMWI3Ny1hYjI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv1pMaDNOmyaWwgTJDV61jglR+E7wHFNylEWBtwZfGYRsh2i/+qwQyAbh7fzC ejx0L4EdnGs2heGQV37DSB2+K3ZbK+2293MD0FHHxp060sQbP7hNVl4ln0mrBzR6 7EmeUdw9EKe2FwbJeTNT4K9QyVoPhzodxh/02XNQPlRMWT/Mr/jl5WT5jvXfA2zV 0FwPXX8xz1TX2kPQ+2GdfZNIDPL1gfdQfYi8LAkDmwX04uhLIpAXu2yzYh5700mj NRS+9GX9Rt6CEqYhpu/NwRxG6w5Okxrda4NAdzIEjv3DuWffAOOHez171axtDi9h qraYy889pXUB52eWMWNaWwf1XQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEzeIiFA 9Mf9c6fDUoSHrWuZjTCIMB8GA1UdIwQYMBaAFEPSUNXB9gntF03/JkMB20W+JbG0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzhERC9DQzE4RDlENEUw QjYxMUU3OTlBMkI2ODJDNEY5QUUwMi9ROUpRMWNIMkNlMFhUZjhtUXdIYlJiNGxz YlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1E5SlExY0gyQ2UwWFRmOG1Rd0hiUmI0bHNiUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzhERC9DQzE4RDlENEUwQjYxMUU3OTlBMkI2ODJDNEY5QUUwMi9ROUpRMWNIMkNl MFhUZjhtUXdIYlJiNGxzYlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQaiPf3wf9ZR06fAMVoW8PadX2v+hRFUHpVH4t9EImuPb/T/+aCHLk 4jFGcVKMZY5QEuD031WQWlFKM5BZIJEjdgt/pvE23XHPionVBPo4FAZ0tkwQ5Xcv QvgljIngyoQW1AWyYYjQoa0IaQAZIaGltqoahwQwqUIWw9sc8vy/Pq7t/G9Iyyd/ vkkfZhjNFD1MbKvPXwsawqH9TowwNTtpwWu50miPspeO6fOjOZ8e10KyFrIxqHIt PCz8mBx0ircQ1t7vdv+ERa7LH5DY9t6MVu8UeU8msTYa9Vi0yQfsYwNB2khG2Lsk 0nH5I/di1rtqj2KFNbsNHNoafAwV2gvz -----END CERTIFICATE-----Generated at Tue Jul 22 00:00:19 2025 by rpki-client