$ rpki-client -vvf rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft File: Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft (raw, json) Hash identifier: d48xNjMyJkIch8pSmpeuPRrNc93xtHzFuh7dNPlEgzQ= Subject key identifier: A0:16:B9:41:74:2A:B4:85:A8:3A:F0:7B:E2:33:6F:AE:0D:F2:5D:61 Authority key identifier: 43:8D:82:3E:C3:34:4B:4B:F1:C9:9E:11:DE:0F:56:F8:42:EF:D9:8E Certificate issuer: /CN=A9199885/serialNumber=438D823EC3344B4BF1C99E11DE0F56F842EFD98E Certificate serial: 20E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft Manifest number: 557C Signing time: Mon 18 Aug 2025 14:56:52 +0000 Manifest this update: Mon 18 Aug 2025 14:56:51 +0000 Manifest next update: Mon 25 Aug 2025 14:56:51 +0000 Files and hashes: 1: Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.crl (hash: CXrwkAeteLy5vODZC4yh/AmlLRAjo2nMIP+GPLnC65w=) 2: 01804686B48E11EF81F55F3CC4F9AE02.roa (hash: DZexhviKSVjUz0wtVaAtdHsphj1mTjOP+0tLYZS1w4g=) 3: 0211478AB48E11EF81F55F3CC4F9AE02.roa (hash: wW6HtygaJuqa+MnCVL4XlwdsV1VvmruGQrlj4oWNX84=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.crl rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 14:56:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8416 (0x20e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199885, serialNumber=438D823EC3344B4BF1C99E11DE0F56F842EFD98E Validity Not Before: Aug 18 14:56:51 2025 GMT Not After : Aug 25 14:56:51 2025 GMT Subject: CN=68a33f33-2150 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:fc:7e:1c:7c:68:fd:f3:a8:79:83:cc:01:38: 0c:5a:c7:b4:3b:b4:58:66:2a:18:a8:f5:79:61:76: d7:bc:dc:c2:9a:51:d6:b0:f8:a8:3b:1b:82:64:d7: f2:48:ac:3f:07:ca:ef:1f:34:ac:f7:0e:f8:e8:c6: 9d:55:a1:87:83:69:5e:90:8c:fd:4c:87:8f:45:89: b7:3d:f3:aa:2f:01:07:eb:3b:a8:fe:1e:49:f9:81: 69:dc:54:f4:43:3b:64:09:74:40:4b:2c:ee:15:6e: 3d:b2:7e:fc:4f:f3:1b:76:ef:53:bd:ac:3d:eb:ef: 35:33:ee:09:fb:eb:ec:9c:f2:70:cf:90:f3:6d:3d: 73:a3:a2:22:a4:6a:8e:5f:9a:07:ac:6b:d7:97:9a: 6f:d3:9c:a9:cb:9a:6d:b2:94:be:2a:d6:a7:b4:44: 06:d4:58:a5:4c:00:a4:71:41:02:ec:a9:a7:ff:38: 2f:c4:ba:42:2b:6e:42:f6:c6:66:8e:bc:b6:e3:60: 2f:38:11:ca:70:12:aa:6f:92:c8:61:20:27:d2:ee: df:51:38:4a:f5:b9:a6:87:e0:3c:7a:a5:d4:fe:ad: 85:33:0d:5e:19:57:c2:5e:21:e6:17:73:90:da:5d: db:d5:44:d0:a0:72:90:28:b6:3b:65:e7:5f:4d:b2: c6:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:16:B9:41:74:2A:B4:85:A8:3A:F0:7B:E2:33:6F:AE:0D:F2:5D:61 X509v3 Authority Key Identifier: keyid:43:8D:82:3E:C3:34:4B:4B:F1:C9:9E:11:DE:0F:56:F8:42:EF:D9:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:1f:a0:67:47:e0:25:1d:62:18:94:04:d1:c5:ea:85:69:b1: 35:3c:3f:56:90:be:2c:44:e5:19:3f:53:55:99:04:07:40:3e: 60:ad:43:94:07:7b:0b:4b:36:bc:7a:a5:6f:7e:42:05:99:d2: e4:ff:67:7f:9a:a3:6d:43:99:de:96:89:ba:ac:64:67:62:94: 7c:ed:cf:e6:a5:47:d0:6c:8a:02:d3:20:0e:96:b9:d9:09:07: b2:c6:1b:78:3a:59:dc:70:c5:21:28:0f:6f:95:8b:86:35:0b: 1f:e0:23:bc:15:a6:d8:c9:4a:55:57:09:b5:5b:03:d8:74:2d: 6f:44:6c:e5:a8:26:ed:b6:88:9a:2f:42:82:b3:39:37:ed:49: ae:b6:7c:8d:77:47:b9:e8:a8:a3:b9:15:85:b7:e1:19:dc:39: 6e:84:14:4f:d6:98:45:85:c8:4e:6c:d6:0b:49:09:01:50:4e: 69:6a:a0:62:5f:88:d0:fe:36:7e:70:bf:9f:30:3f:e8:f6:96: b2:31:5f:57:05:0e:3c:f7:fb:97:c3:bc:59:68:ae:34:64:5c: f0:89:42:e7:3e:32:33:b8:2e:a2:ed:8e:6e:6f:ce:2f:64:96: 2d:f0:1a:ca:04:28:5c:68:80:72:7b:da:ad:37:d2:28:99:64: 22:bc:e2:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk4ODUxMTAvBgNVBAUTKDQzOEQ4MjNFQzMzNDRCNEJGMUM5OUUxMURFMEY1NkY4 NDJFRkQ5OEUwHhcNMjUwODE4MTQ1NjUxWhcNMjUwODI1MTQ1NjUxWjAYMRYwFAYD VQQDEw02OGEzM2YzMy0yMTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq/x+HHxo/fOoeYPMATgMWse0O7RYZioYqPV5YXbXvNzCmlHWsPioOxuCZNfy SKw/B8rvHzSs9w746MadVaGHg2lekIz9TIePRYm3PfOqLwEH6zuo/h5J+YFp3FT0 QztkCXRASyzuFW49sn78T/Mbdu9Tvaw96+81M+4J++vsnPJwz5DzbT1zo6IipGqO X5oHrGvXl5pv05ypy5ptspS+KtantEQG1FilTACkcUEC7Kmn/zgvxLpCK25C9sZm jry242AvOBHKcBKqb5LIYSAn0u7fUThK9bmmh+A8eqXU/q2FMw1eGVfCXiHmF3OQ 2l3b1UTQoHKQKLY7ZedfTbLGDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKAWuUF0 KrSFqDrwe+Izb64N8l1hMB8GA1UdIwQYMBaAFEONgj7DNEtL8cmeEd4PVvhC79mO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTg4NS9EMDUwNjg1QTFE OTgxMUUyQUU2QjFGODMwOEIwMkNEMi9RNDJDUHNNMFMwdnh5WjRSM2c5Vy1FTHYy WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1E0MkNQc00wUzB2eHlaNFIzZzlXLUVMdjJZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTg4NS9EMDUwNjg1QTFEOTgxMUUyQUU2QjFGODMwOEIwMkNEMi9RNDJDUHNNMFMw dnh5WjRSM2c5Vy1FTHYyWTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOH6BnR+AlHWIYlATRxeqFabE1PD9WkL4sROUZP1NVmQQHQD5grUOU B3sLSza8eqVvfkIFmdLk/2d/mqNtQ5nelom6rGRnYpR87c/mpUfQbIoC0yAOlrnZ CQeyxht4OlnccMUhKA9vlYuGNQsf4CO8FabYyUpVVwm1WwPYdC1vRGzlqCbttoia L0KCszk37UmutnyNd0e56KijuRWFt+EZ3DluhBRP1phFhchObNYLSQkBUE5paqBi X4jQ/jZ+cL+fMD/o9payMV9XBQ489/uXw7xZaK40ZFzwiULnPjIzuC6i7Y5ub84v ZJYt8BrKBChcaIBye9qtN9IomWQivOLv -----END CERTIFICATE-----Generated at Wed Aug 20 15:38:58 2025 by rpki-client