$ rpki-client -vvf rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft File: Q2XRedW3PoqX7eBQXynvAMLWPvk.mft (raw, json) Hash identifier: Ts8c9QvfiVzTta9/0UlH/5BzOkL8rekQ5M4ECYV4fW8= Subject key identifier: A2:7C:AA:28:B7:50:B6:9B:A7:D4:2D:FD:BB:09:13:40:A3:BE:28:C4 Authority key identifier: 43:65:D1:79:D5:B7:3E:8A:97:ED:E0:50:5F:29:EF:00:C2:D6:3E:F9 Certificate issuer: /CN=A9139555/serialNumber=4365D179D5B73E8A97EDE0505F29EF00C2D63EF9 Certificate serial: 02A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft Manifest number: 029B Signing time: Sat 31 May 2025 01:48:15 +0000 Manifest this update: Sat 31 May 2025 01:48:15 +0000 Manifest next update: Sat 07 Jun 2025 01:48:15 +0000 Files and hashes: 1: Q2XRedW3PoqX7eBQXynvAMLWPvk.crl (hash: NV0TeSIJEEriK//vVu/hDkE+kKXkG/boqsl5njC0xdY=) 2: 3522CF4E168811EF8040817EC4F9AE02.roa (hash: J7TkACUcj3Ly24E9h88Gvem/P3zdNyyRlK+jzIfKCJU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.crl rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:48:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 675 (0x2a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139555, serialNumber=4365D179D5B73E8A97EDE0505F29EF00C2D63EF9 Validity Not Before: May 31 01:48:15 2025 GMT Not After : Jun 7 01:48:15 2025 GMT Subject: CN=683a5fdf-14e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:45:30:13:6e:54:81:c2:f2:5e:ba:a5:a2:fa: 6c:f3:55:77:60:01:17:d6:64:8b:83:21:e6:a6:ac: e1:2c:12:aa:f9:17:e9:22:0e:5a:78:7e:7d:f1:41: c7:39:25:30:1b:2b:f5:6a:a2:0f:28:60:16:76:04: 66:83:80:c4:17:27:c4:ff:18:c6:da:fd:a5:25:43: 50:cd:e8:9a:c1:d0:14:94:51:ea:c6:44:09:b6:5e: 8e:6f:dd:91:e5:04:4f:35:09:58:32:07:41:81:cf: a7:c1:0c:15:4a:e2:23:8a:48:46:b0:62:dd:e5:ec: d0:0d:6a:2f:65:5f:8c:19:7e:39:54:23:3c:49:36: d8:37:7b:b3:82:7b:ce:fe:10:7c:2e:dc:4e:c2:b2: 8e:b3:52:dd:0b:66:29:bc:77:cf:ef:22:a8:6c:2c: e3:df:dd:9e:5f:f3:27:d7:74:18:ac:02:11:e6:8e: d1:12:a0:6f:ff:6c:23:64:9f:35:ad:29:a6:ff:99: 10:de:35:e1:44:e8:e3:53:1c:4d:02:b6:de:2e:49: 90:40:1c:72:72:44:46:c4:68:01:5c:8f:f0:da:8e: 0d:c3:fe:3c:92:10:bd:88:8d:e4:1b:10:2c:25:cf: 2a:84:69:63:19:09:26:30:96:b3:cc:9f:1d:ed:15: 80:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:7C:AA:28:B7:50:B6:9B:A7:D4:2D:FD:BB:09:13:40:A3:BE:28:C4 X509v3 Authority Key Identifier: keyid:43:65:D1:79:D5:B7:3E:8A:97:ED:E0:50:5F:29:EF:00:C2:D6:3E:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:11:0b:23:1b:fa:73:fb:5d:3c:17:34:c7:d2:e7:d4:3c:54: 7a:48:a0:65:f0:05:c1:82:29:3e:82:c9:3d:35:19:80:29:1a: ee:a3:14:2c:e0:2e:6e:ad:f1:9e:73:d7:c0:f7:03:30:d0:f5: 22:c3:7c:2a:79:55:4f:69:88:a3:53:17:d1:59:5f:f0:b7:83: a0:d2:65:c6:2c:fa:39:b4:ad:23:5e:1f:cc:5c:26:f7:09:0c: a0:5f:48:36:7c:4b:4a:d8:14:34:1f:87:4e:1b:bc:e3:01:5e: 1f:07:ef:e5:d3:2f:9e:e9:f3:dc:cc:40:11:11:25:ff:e2:cd: 20:c9:45:60:da:94:55:b4:bc:50:d2:b3:68:22:39:6b:a3:90: 38:f8:41:d0:bb:c6:67:5d:be:6b:7c:70:1a:b9:f8:a5:35:14: 6f:b7:3e:8e:24:f2:9e:25:73:82:6b:8c:fe:78:97:2b:a3:82: 3b:8b:12:1b:d4:ec:a4:ec:ac:b8:59:27:40:0e:17:7f:3c:6d: 4d:44:84:e3:bc:09:30:86:96:ec:b5:77:ed:2b:6a:a8:34:13: 21:4d:44:fc:1b:33:9c:ff:23:e8:a6:27:c9:6a:dd:8e:b6:ec: a9:62:d5:f8:2d:26:1f:3b:55:75:ed:76:03:3f:eb:fe:17:47: f3:af:73:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk1NTUxMTAvBgNVBAUTKDQzNjVEMTc5RDVCNzNFOEE5N0VERTA1MDVGMjlFRjAw QzJENjNFRjkwHhcNMjUwNTMxMDE0ODE1WhcNMjUwNjA3MDE0ODE1WjAYMRYwFAYD VQQDEw02ODNhNWZkZi0xNGU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzkUwE25UgcLyXrqlovps81V3YAEX1mSLgyHmpqzhLBKq+RfpIg5aeH598UHH OSUwGyv1aqIPKGAWdgRmg4DEFyfE/xjG2v2lJUNQzeiawdAUlFHqxkQJtl6Ob92R 5QRPNQlYMgdBgc+nwQwVSuIjikhGsGLd5ezQDWovZV+MGX45VCM8STbYN3uzgnvO /hB8LtxOwrKOs1LdC2YpvHfP7yKobCzj392eX/Mn13QYrAIR5o7REqBv/2wjZJ81 rSmm/5kQ3jXhROjjUxxNArbeLkmQQBxyckRGxGgBXI/w2o4Nw/48khC9iI3kGxAs Jc8qhGljGQkmMJazzJ8d7RWAywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKJ8qii3 ULabp9Qt/bsJE0CjvijEMB8GA1UdIwQYMBaAFENl0XnVtz6Kl+3gUF8p7wDC1j75 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTU1NS9EQzdEMTQ1QTAy MkQxMUVEOUQ2NDZCNTdDNEY5QUUwMi9RMlhSZWRXM1BvcVg3ZUJRWHludkFNTFdQ dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1EyWFJlZFczUG9xWDdlQlFYeW52QU1MV1B2ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTU1NS9EQzdEMTQ1QTAyMkQxMUVEOUQ2NDZCNTdDNEY5QUUwMi9RMlhSZWRXM1Bv cVg3ZUJRWHludkFNTFdQdmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmEQsjG/pz+108FzTH0ufUPFR6SKBl8AXBgik+gsk9NRmAKRruoxQs 4C5urfGec9fA9wMw0PUiw3wqeVVPaYijUxfRWV/wt4Og0mXGLPo5tK0jXh/MXCb3 CQygX0g2fEtK2BQ0H4dOG7zjAV4fB+/l0y+e6fPczEARESX/4s0gyUVg2pRVtLxQ 0rNoIjlro5A4+EHQu8ZnXb5rfHAaufilNRRvtz6OJPKeJXOCa4z+eJcro4I7ixIb 1Oyk7Ky4WSdADhd/PG1NRITjvAkwhpbstXftK2qoNBMhTUT8GzOc/yPopifJat2O tuypYtX4LSYfO1V17XYDP+v+F0fzr3ND -----END CERTIFICATE-----Generated at Sat May 31 17:10:17 2025 by rpki-client