$ rpki-client -vvf rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft File: Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft (raw, json) Hash identifier: FlO0LG5vJykRhqAq8cEkcZEZ+9KnemJi7l8lpFFQWm0= Subject key identifier: 8A:46:22:47:22:1D:05:D3:18:C8:7F:1A:82:10:40:D7:81:5E:A9:BB Authority key identifier: 43:8D:82:3E:C3:34:4B:4B:F1:C9:9E:11:DE:0F:56:F8:42:EF:D9:8E Certificate issuer: /CN=A9199885/serialNumber=438D823EC3344B4BF1C99E11DE0F56F842EFD98E Certificate serial: 20B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft Manifest number: 552C Signing time: Sat 31 May 2025 14:53:41 +0000 Manifest this update: Sat 31 May 2025 14:53:41 +0000 Manifest next update: Sat 07 Jun 2025 14:53:41 +0000 Files and hashes: 1: Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.crl (hash: 1c7FNgDeCtD02WTEq4rUMiC/R8Uevh/+xNvA7iZEKnU=) 2: 01804686B48E11EF81F55F3CC4F9AE02.roa (hash: DZexhviKSVjUz0wtVaAtdHsphj1mTjOP+0tLYZS1w4g=) 3: 0211478AB48E11EF81F55F3CC4F9AE02.roa (hash: wW6HtygaJuqa+MnCVL4XlwdsV1VvmruGQrlj4oWNX84=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.crl rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 14:53:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8376 (0x20b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199885, serialNumber=438D823EC3344B4BF1C99E11DE0F56F842EFD98E Validity Not Before: May 31 14:53:41 2025 GMT Not After : Jun 7 14:53:41 2025 GMT Subject: CN=683b17f5-a016 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a1:2b:7f:49:58:97:f2:5e:fc:bf:e7:a5:13: b4:24:86:a4:d6:bd:71:f5:5c:ef:88:8f:7d:56:08: b4:17:1e:51:53:25:84:18:34:b2:35:fa:3d:e5:32: d7:ac:58:d8:f6:e0:f3:47:4a:2f:e4:c8:db:ef:38: 88:3d:00:aa:1d:50:8f:83:b5:2a:d9:ac:bd:a6:fd: 8a:ae:ba:4d:b8:8f:a0:54:57:dc:af:e6:81:8e:91: ff:7c:31:21:ae:8d:df:67:27:e7:2b:16:af:da:13: 3d:cb:8c:7e:5f:72:22:cf:e4:dd:5c:fc:66:09:2f: 4c:20:a4:93:42:04:3d:5f:88:13:08:d0:03:08:b0: 19:0e:22:f8:73:7a:5a:a0:2e:24:dd:a0:28:e4:c8: 27:42:0b:07:03:3b:15:f1:15:6f:24:b1:18:36:0d: d4:d8:ff:80:87:67:2e:52:f1:69:bf:4b:2a:80:8c: 25:4c:c1:61:2b:fa:ec:b8:cf:10:71:27:43:ae:b2: bd:07:f2:22:2e:f0:5e:c0:fd:1b:24:d5:17:ac:3a: db:7c:b8:3f:c3:26:34:a5:03:ea:22:90:81:92:f4: b2:2d:8b:f0:c4:31:de:a7:c1:c1:ff:60:11:7b:b8: c6:42:89:c1:3b:60:6c:cd:4f:b8:3a:4e:82:b5:c0: 16:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:46:22:47:22:1D:05:D3:18:C8:7F:1A:82:10:40:D7:81:5E:A9:BB X509v3 Authority Key Identifier: keyid:43:8D:82:3E:C3:34:4B:4B:F1:C9:9E:11:DE:0F:56:F8:42:EF:D9:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:15:21:fd:f3:9c:bc:3a:c0:1c:ac:86:68:7a:d5:e6:89:7f: 47:c5:e6:d5:5c:3e:34:2c:97:ff:38:14:77:14:f0:9b:cb:1c: e5:5c:9d:24:e6:bc:de:a2:f9:bd:fd:8b:a2:92:44:5d:5a:c5: 2b:93:14:09:7e:ad:fa:a0:b1:c4:12:82:1f:31:47:d6:01:85: 90:39:3e:05:6f:6d:57:12:71:ec:e5:28:58:b2:4b:b9:be:c5: b6:ca:7a:90:68:54:6d:99:c5:e8:17:9a:d5:5f:b0:bb:39:37: 1e:4d:f9:fd:65:00:3a:d9:d7:33:ea:e2:97:be:52:8f:d4:60: 71:6e:a5:f9:46:f4:da:e2:ac:4d:a7:28:76:2e:b7:50:20:41: ae:a2:7b:be:29:43:a7:e0:9b:b1:97:a0:a1:c8:e7:ae:2f:16: cf:79:38:46:9b:ea:e9:75:85:80:7d:bc:fa:3d:d9:cb:79:c8: f7:fe:dc:63:64:83:77:58:a6:e7:2a:25:f9:a4:ab:d3:64:c7: 3b:58:29:67:17:65:be:a8:08:bf:87:5f:39:51:31:50:d0:01: 39:eb:53:37:14:f6:10:31:26:85:9d:31:9c:d4:ab:08:21:cd: 8d:cb:f3:d0:66:de:27:b6:7b:54:78:f4:47:3e:99:66:68:f7: 9f:dd:b5:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICILgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk4ODUxMTAvBgNVBAUTKDQzOEQ4MjNFQzMzNDRCNEJGMUM5OUUxMURFMEY1NkY4 NDJFRkQ5OEUwHhcNMjUwNTMxMTQ1MzQxWhcNMjUwNjA3MTQ1MzQxWjAYMRYwFAYD VQQDEw02ODNiMTdmNS1hMDE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvKErf0lYl/Je/L/npRO0JIak1r1x9VzviI99Vgi0Fx5RUyWEGDSyNfo95TLX rFjY9uDzR0ov5Mjb7ziIPQCqHVCPg7Uq2ay9pv2KrrpNuI+gVFfcr+aBjpH/fDEh ro3fZyfnKxav2hM9y4x+X3Iiz+TdXPxmCS9MIKSTQgQ9X4gTCNADCLAZDiL4c3pa oC4k3aAo5MgnQgsHAzsV8RVvJLEYNg3U2P+Ah2cuUvFpv0sqgIwlTMFhK/rsuM8Q cSdDrrK9B/IiLvBewP0bJNUXrDrbfLg/wyY0pQPqIpCBkvSyLYvwxDHep8HB/2AR e7jGQonBO2BszU+4Ok6CtcAW/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIpGIkci HQXTGMh/GoIQQNeBXqm7MB8GA1UdIwQYMBaAFEONgj7DNEtL8cmeEd4PVvhC79mO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTg4NS9EMDUwNjg1QTFE OTgxMUUyQUU2QjFGODMwOEIwMkNEMi9RNDJDUHNNMFMwdnh5WjRSM2c5Vy1FTHYy WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1E0MkNQc00wUzB2eHlaNFIzZzlXLUVMdjJZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTg4NS9EMDUwNjg1QTFEOTgxMUUyQUU2QjFGODMwOEIwMkNEMi9RNDJDUHNNMFMw dnh5WjRSM2c5Vy1FTHYyWTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbFSH985y8OsAcrIZoetXmiX9HxebVXD40LJf/OBR3FPCbyxzlXJ0k 5rzeovm9/YuikkRdWsUrkxQJfq36oLHEEoIfMUfWAYWQOT4Fb21XEnHs5ShYsku5 vsW2ynqQaFRtmcXoF5rVX7C7OTceTfn9ZQA62dcz6uKXvlKP1GBxbqX5RvTa4qxN pyh2LrdQIEGuonu+KUOn4Juxl6ChyOeuLxbPeThGm+rpdYWAfbz6PdnLecj3/txj ZIN3WKbnKiX5pKvTZMc7WClnF2W+qAi/h185UTFQ0AE561M3FPYQMSaFnTGc1KsI Ic2Ny/PQZt4ntntUePRHPplmaPef3bXI -----END CERTIFICATE-----Generated at Sat May 31 17:48:43 2025 by rpki-client