$ rpki-client -vvf rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/Q2NMcBuh8e_Oj1aqatHbKUWh258.mft File: Q2NMcBuh8e_Oj1aqatHbKUWh258.mft (raw, json) Hash identifier: pcjmcgvMFqjUkar91C/WAMtZYKdTlsk8ryKfMpftcSk= Subject key identifier: 6E:FD:AF:02:E5:F1:8C:20:BE:82:B7:FD:FF:B6:51:3B:9C:00:FA:0E Authority key identifier: 43:63:4C:70:1B:A1:F1:EF:CE:8F:56:AA:6A:D1:DB:29:45:A1:DB:9F Certificate issuer: /CN=A918549C/serialNumber=43634C701BA1F1EFCE8F56AA6AD1DB2945A1DB9F Certificate serial: D0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q2NMcBuh8e_Oj1aqatHbKUWh258.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/Q2NMcBuh8e_Oj1aqatHbKUWh258.mft Manifest number: CD Signing time: Sat 23 Aug 2025 05:53:52 +0000 Manifest this update: Sat 23 Aug 2025 05:53:52 +0000 Manifest next update: Sat 30 Aug 2025 05:53:52 +0000 Files and hashes: 1: Q2NMcBuh8e_Oj1aqatHbKUWh258.crl (hash: 35CML0tZCgFuTP5fn3+tTMbta6yGJBiI8TX6tghffrc=) 2: ABA45B1A740611F0B304387CC4F9AE02.roa (hash: 6m3OrJ+Nr9fWhODWggrIoilybpGVkuQ4teq6GCx+Hw0=) 3: 9C6F77784A3211EFBDBCEB2FC4F9AE02.roa (hash: VtLgFQFuvZQFqc3/1iLIm4m/GkaEOorvnwwczfuLsfc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/Q2NMcBuh8e_Oj1aqatHbKUWh258.crl rsync://rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/Q2NMcBuh8e_Oj1aqatHbKUWh258.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q2NMcBuh8e_Oj1aqatHbKUWh258.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:53:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 208 (0xd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918549C, serialNumber=43634C701BA1F1EFCE8F56AA6AD1DB2945A1DB9F Validity Not Before: Aug 23 05:53:52 2025 GMT Not After : Aug 30 05:53:52 2025 GMT Subject: CN=68a95770-a5c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:e8:4e:74:1b:72:0a:7a:aa:bf:55:a3:13:97: 56:dc:c0:4b:a6:c0:6e:32:51:3c:26:97:6c:a2:0b: ec:2d:c8:70:a7:04:cf:0d:29:08:9d:c0:0e:c6:13: 34:b8:55:31:cd:37:0d:44:cd:35:8a:e3:72:9b:c5: bd:35:5c:60:70:77:8a:2a:9d:76:35:b9:d0:80:32: c9:bd:8d:70:94:61:c4:e6:1d:80:9f:e0:63:c8:36: 0c:cf:d9:ef:62:1a:57:91:16:e2:8c:11:88:af:0e: 60:1c:58:db:af:1c:35:75:a5:e3:77:38:b3:a8:f1: 15:5d:82:f4:86:da:8b:13:2c:b5:73:3e:bd:40:cc: 14:ee:dc:94:8b:63:5d:1d:85:f2:4a:ad:15:d7:89: e9:de:83:95:47:d8:bd:63:43:5b:36:30:93:6a:a7: 96:79:e4:51:ed:15:a0:cd:2b:c8:6b:bf:57:bb:bf: ac:00:05:39:96:d1:4d:3c:71:fe:e0:14:f2:aa:40: 9b:13:9c:91:ae:36:2f:a1:0e:4d:78:85:83:89:ed: e8:f2:b7:65:6e:81:5a:47:de:04:94:30:37:bf:af: 96:bc:e1:e7:de:61:71:3c:92:c3:55:54:4b:ef:98: 96:77:28:9c:31:b4:b1:75:d9:8f:fb:78:4b:dd:a4: 13:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:FD:AF:02:E5:F1:8C:20:BE:82:B7:FD:FF:B6:51:3B:9C:00:FA:0E X509v3 Authority Key Identifier: keyid:43:63:4C:70:1B:A1:F1:EF:CE:8F:56:AA:6A:D1:DB:29:45:A1:DB:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/Q2NMcBuh8e_Oj1aqatHbKUWh258.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q2NMcBuh8e_Oj1aqatHbKUWh258.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/Q2NMcBuh8e_Oj1aqatHbKUWh258.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:98:57:f6:ca:30:e6:df:b0:4e:f9:0a:1c:32:ee:ae:b3:71: d4:1a:c5:4e:88:1d:4f:56:78:4c:3d:5c:1e:78:89:2b:8c:f4: 40:35:f2:18:0e:48:7b:02:d4:f7:d8:a9:76:af:9d:7a:62:3e: 41:23:b7:3d:62:1c:c5:a9:e7:71:8e:c8:63:42:c0:a1:dc:c2: ba:7e:8a:45:4a:ae:7d:fa:52:f5:e8:b3:c9:12:e4:92:a6:ca: 37:69:e9:73:f2:d2:f7:04:0a:2b:e1:ca:f1:c9:35:ea:25:7e: 51:1b:ac:ff:08:52:58:1d:42:d0:db:1a:81:89:ae:7f:5e:b1: db:e1:82:f4:63:5a:94:ae:2f:b1:66:73:f1:cd:40:ba:92:c3: 55:5d:0b:25:35:0b:f5:7b:04:2f:61:f3:c1:dc:eb:e8:79:f4: b4:4d:3c:97:07:70:6d:e9:72:64:b7:3d:25:3b:0a:61:8b:45: e1:5f:0d:90:11:4f:88:7e:69:9f:39:15:67:57:fe:4f:e7:a1: ba:2b:84:45:48:c7:54:89:bd:4a:a9:c6:4f:d3:52:e8:72:a6: 0d:0b:d0:58:35:0f:dc:36:a8:f2:8a:76:35:99:c5:25:bb:c7: 91:20:93:fe:3c:5c:ad:63:df:49:db:fa:8d:5c:a9:aa:52:7e: 70:53:a0:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU0OUMxMTAvBgNVBAUTKDQzNjM0QzcwMUJBMUYxRUZDRThGNTZBQTZBRDFEQjI5 NDVBMURCOUYwHhcNMjUwODIzMDU1MzUyWhcNMjUwODMwMDU1MzUyWjAYMRYwFAYD VQQDEw02OGE5NTc3MC1hNWMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6ehOdBtyCnqqv1WjE5dW3MBLpsBuMlE8JpdsogvsLchwpwTPDSkIncAOxhM0 uFUxzTcNRM01iuNym8W9NVxgcHeKKp12NbnQgDLJvY1wlGHE5h2An+BjyDYMz9nv YhpXkRbijBGIrw5gHFjbrxw1daXjdzizqPEVXYL0htqLEyy1cz69QMwU7tyUi2Nd HYXySq0V14np3oOVR9i9Y0NbNjCTaqeWeeRR7RWgzSvIa79Xu7+sAAU5ltFNPHH+ 4BTyqkCbE5yRrjYvoQ5NeIWDie3o8rdlboFaR94ElDA3v6+WvOHn3mFxPJLDVVRL 75iWdyicMbSxddmP+3hL3aQTVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG79rwLl 8YwgvoK3/f+2UTucAPoOMB8GA1UdIwQYMBaAFENjTHAbofHvzo9WqmrR2ylFoduf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTQ5Qy9ERTg3MThDNDRB MzExMUVGQjdCQkQ1MUNDNEY5QUUwMi9RMk5NY0J1aDhlX09qMWFxYXRIYktVV2gy NTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1EyTk1jQnVoOGVfT2oxYXFhdEhiS1VXaDI1OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTQ5Qy9ERTg3MThDNDRBMzExMUVGQjdCQkQ1MUNDNEY5QUUwMi9RMk5NY0J1aDhl X09qMWFxYXRIYktVV2gyNTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/mFf2yjDm37BO+QocMu6us3HUGsVOiB1PVnhMPVweeIkrjPRANfIY Dkh7AtT32Kl2r516Yj5BI7c9YhzFqedxjshjQsCh3MK6fopFSq59+lL16LPJEuSS pso3aelz8tL3BAor4crxyTXqJX5RG6z/CFJYHULQ2xqBia5/XrHb4YL0Y1qUri+x ZnPxzUC6ksNVXQslNQv1ewQvYfPB3OvoefS0TTyXB3Bt6XJktz0lOwphi0XhXw2Q EU+IfmmfORVnV/5P56G6K4RFSMdUib1KqcZP01LocqYNC9BYNQ/cNqjyinY1mcUl u8eRIJP+PFytY99J2/qNXKmqUn5wU6AG -----END CERTIFICATE-----Generated at Sat Aug 23 10:54:29 2025 by rpki-client