$ rpki-client -vvf rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft File: Q2XRedW3PoqX7eBQXynvAMLWPvk.mft (raw, json) Hash identifier: iMV8xvOPI8wzsWeS6zlAMUKhani3OQgTfwlwL8QvUWE= Subject key identifier: D0:7C:2F:1F:85:45:0C:89:BA:4A:99:9F:8F:64:8D:8F:A0:37:35:AF Authority key identifier: 43:65:D1:79:D5:B7:3E:8A:97:ED:E0:50:5F:29:EF:00:C2:D6:3E:F9 Certificate issuer: /CN=A9139555/serialNumber=4365D179D5B73E8A97EDE0505F29EF00C2D63EF9 Certificate serial: 02DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft Manifest number: 02D5 Signing time: Wed 17 Sep 2025 01:52:21 +0000 Manifest this update: Wed 17 Sep 2025 01:52:20 +0000 Manifest next update: Wed 24 Sep 2025 01:52:20 +0000 Files and hashes: 1: Q2XRedW3PoqX7eBQXynvAMLWPvk.crl (hash: 3/9wJPjKo7LSDvdsXr11PLmkIUiFbCULsvz3x60KJCQ=) 2: E9A9531644D611F0ABB89277C4F9AE02.roa (hash: GeKHBnqKWQ5odcVSCSiPOuNHSoS5ENhlNwIJeq+zQ50=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.crl rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 01:52:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 734 (0x2de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139555, serialNumber=4365D179D5B73E8A97EDE0505F29EF00C2D63EF9 Validity Not Before: Sep 17 01:52:20 2025 GMT Not After : Sep 24 01:52:20 2025 GMT Subject: CN=68ca1455-b34a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:14:c5:eb:99:b4:97:1d:22:c3:27:5a:ad:e0: f3:41:09:8c:0d:95:76:dd:62:41:4a:cc:60:bf:12: 2d:04:26:f0:8e:78:d1:be:69:77:53:59:42:43:1d: 3e:f6:3a:68:07:0f:ca:b7:65:00:2c:f6:a1:09:e6: a3:54:1f:25:6f:0d:17:9b:d6:46:90:31:08:2e:e6: 46:ac:93:ad:29:9b:4e:b4:be:e1:d5:a1:07:c2:3a: d2:ef:8a:7c:a9:7b:62:4b:8c:d3:27:f1:0e:46:29: a3:e7:1f:30:64:07:61:d8:93:0c:75:c2:bc:0d:a6: 6a:79:80:0b:03:d5:34:78:1d:35:38:2e:53:f6:98: 16:31:5a:de:34:1a:e4:67:91:18:8b:e9:fd:4e:ef: fc:29:dc:03:15:4b:97:68:35:d4:d0:5b:6a:e8:66: a9:04:14:a5:cb:8e:3a:7a:17:82:b9:e4:7b:85:b9: 7c:01:8d:5c:f8:31:a3:52:cf:9f:3b:a8:cf:eb:64: 2d:de:4a:5a:4e:a6:9d:5c:41:7d:a6:5a:c1:37:c4: 1f:1d:ab:a1:bc:79:2b:0d:97:97:6c:35:9d:4d:3a: c1:d8:6c:fc:60:cf:59:4f:3e:56:ba:bc:28:0b:8e: 00:9e:38:c8:74:2b:5a:79:50:2b:8c:33:42:65:e6: fe:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:7C:2F:1F:85:45:0C:89:BA:4A:99:9F:8F:64:8D:8F:A0:37:35:AF X509v3 Authority Key Identifier: keyid:43:65:D1:79:D5:B7:3E:8A:97:ED:E0:50:5F:29:EF:00:C2:D6:3E:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:2c:41:a8:56:3c:5f:1c:9c:e1:4f:18:a7:dc:ab:be:b7:47: f6:4f:d6:d7:f3:d0:c3:84:19:53:47:66:5a:6f:b2:03:1f:e2: c7:31:b9:bc:01:e3:dc:6e:4e:21:c1:ba:26:a0:d3:4e:dd:5e: 90:82:ca:6a:d3:e9:a1:d1:34:43:3f:89:f5:cf:63:9a:01:ae: 74:ca:ae:63:b2:9d:f0:1e:28:ba:14:41:6f:df:82:97:c2:d8: 42:8a:aa:ee:77:71:d3:87:66:47:9b:f6:cd:dc:02:37:75:02: c5:0e:8c:a0:1b:3b:73:c1:c6:d9:85:f4:33:f9:5e:68:80:4c: db:db:e1:2a:4f:6b:f7:2a:70:8f:88:c1:74:56:a0:aa:b4:7b: e6:08:51:89:52:a8:5c:cc:e3:5e:f8:98:7c:19:ec:89:16:a2: 2f:e0:f2:8a:15:07:55:ca:8f:bb:8e:cc:35:af:5b:de:4e:06: b9:f7:a5:ea:ec:05:5d:55:50:c6:7e:9a:ec:d0:1a:be:84:3f: c1:10:2c:07:2d:aa:b6:6c:71:ea:18:02:76:24:b2:4c:eb:54: f1:d2:dc:58:e2:50:57:90:3e:dc:c3:02:fd:7e:5b:12:e7:9b: e5:04:37:0c:7c:ad:16:57:84:b8:5d:b3:a1:64:39:a2:d3:33: d9:61:cc:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAt4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk1NTUxMTAvBgNVBAUTKDQzNjVEMTc5RDVCNzNFOEE5N0VERTA1MDVGMjlFRjAw QzJENjNFRjkwHhcNMjUwOTE3MDE1MjIwWhcNMjUwOTI0MDE1MjIwWjAYMRYwFAYD VQQDEw02OGNhMTQ1NS1iMzRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7RTF65m0lx0iwydareDzQQmMDZV23WJBSsxgvxItBCbwjnjRvml3U1lCQx0+ 9jpoBw/Kt2UALPahCeajVB8lbw0Xm9ZGkDEILuZGrJOtKZtOtL7h1aEHwjrS74p8 qXtiS4zTJ/EORimj5x8wZAdh2JMMdcK8DaZqeYALA9U0eB01OC5T9pgWMVreNBrk Z5EYi+n9Tu/8KdwDFUuXaDXU0Ftq6GapBBSly446eheCueR7hbl8AY1c+DGjUs+f O6jP62Qt3kpaTqadXEF9plrBN8QfHauhvHkrDZeXbDWdTTrB2Gz8YM9ZTz5Wurwo C44AnjjIdCtaeVArjDNCZeb+7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNB8Lx+F RQyJukqZn49kjY+gNzWvMB8GA1UdIwQYMBaAFENl0XnVtz6Kl+3gUF8p7wDC1j75 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTU1NS9EQzdEMTQ1QTAy MkQxMUVEOUQ2NDZCNTdDNEY5QUUwMi9RMlhSZWRXM1BvcVg3ZUJRWHludkFNTFdQ dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1EyWFJlZFczUG9xWDdlQlFYeW52QU1MV1B2ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTU1NS9EQzdEMTQ1QTAyMkQxMUVEOUQ2NDZCNTdDNEY5QUUwMi9RMlhSZWRXM1Bv cVg3ZUJRWHludkFNTFdQdmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArLEGoVjxfHJzhTxin3Ku+t0f2T9bX89DDhBlTR2Zab7IDH+LHMbm8 AePcbk4hwbomoNNO3V6Qgspq0+mh0TRDP4n1z2OaAa50yq5jsp3wHii6FEFv34KX wthCiqrud3HTh2ZHm/bN3AI3dQLFDoygGztzwcbZhfQz+V5ogEzb2+EqT2v3KnCP iMF0VqCqtHvmCFGJUqhczONe+Jh8GeyJFqIv4PKKFQdVyo+7jsw1r1veTga596Xq 7AVdVVDGfprs0Bq+hD/BECwHLaq2bHHqGAJ2JLJM61Tx0txY4lBXkD7cwwL9flsS 55vlBDcMfK0WV4S4XbOhZDmi0zPZYcwS -----END CERTIFICATE-----Generated at Thu Sep 18 23:27:19 2025 by rpki-client