$ rpki-client -vvf rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/Q2NMcBuh8e_Oj1aqatHbKUWh258.mft File: Q2NMcBuh8e_Oj1aqatHbKUWh258.mft (raw, json) Hash identifier: +TQ+TzTPP7Kp66QQRcsrNNgN9ljuueVonA3aVGRZgfQ= Subject key identifier: 54:2C:43:2C:40:B2:57:56:A4:AC:51:FE:B9:26:52:0D:58:88:4D:5D Authority key identifier: 43:63:4C:70:1B:A1:F1:EF:CE:8F:56:AA:6A:D1:DB:29:45:A1:DB:9F Certificate issuer: /CN=A918549C/serialNumber=43634C701BA1F1EFCE8F56AA6AD1DB2945A1DB9F Certificate serial: 9C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q2NMcBuh8e_Oj1aqatHbKUWh258.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/Q2NMcBuh8e_Oj1aqatHbKUWh258.mft Manifest number: 9A Signing time: Thu 15 May 2025 05:38:33 +0000 Manifest this update: Thu 15 May 2025 05:38:33 +0000 Manifest next update: Thu 22 May 2025 05:38:33 +0000 Files and hashes: 1: Q2NMcBuh8e_Oj1aqatHbKUWh258.crl (hash: RRwbq23wv+mh52SrZVb/lx/KfNji6NxauwXpg3+2JgA=) 2: 9C6F77784A3211EFBDBCEB2FC4F9AE02.roa (hash: VtLgFQFuvZQFqc3/1iLIm4m/GkaEOorvnwwczfuLsfc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/Q2NMcBuh8e_Oj1aqatHbKUWh258.crl rsync://rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/Q2NMcBuh8e_Oj1aqatHbKUWh258.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q2NMcBuh8e_Oj1aqatHbKUWh258.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 05:38:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 156 (0x9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918549C, serialNumber=43634C701BA1F1EFCE8F56AA6AD1DB2945A1DB9F Validity Not Before: May 15 05:38:33 2025 GMT Not After : May 22 05:38:33 2025 GMT Subject: CN=68257dd9-e93a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:b4:b7:9d:ab:aa:b4:7c:00:ba:2b:16:44:f2: 8e:5b:7b:6b:f4:f9:ca:f7:1b:19:66:1a:6c:3e:94: 9c:c4:8b:9e:66:5e:70:e7:17:9d:20:bc:3e:3e:c2: de:1a:79:9a:33:f5:54:98:97:8e:0e:2f:a3:4c:9b: 2f:ec:ba:fa:e8:1b:14:b1:f2:f5:5b:d9:a3:2c:00: 2b:64:b3:4d:3d:8f:d9:e6:2c:4f:2e:c8:48:c4:cd: 63:9f:19:f5:e3:69:ea:42:0f:05:3d:42:e9:58:a6: 5b:74:c9:11:f9:be:34:9f:5a:b6:30:47:d3:a8:e3: 16:dd:e5:d6:c0:cc:b1:f3:66:52:8b:e4:da:40:85: f2:80:fe:54:e9:82:0e:34:c6:97:54:01:fd:af:ca: 67:f8:cd:d7:23:3d:c2:ae:50:87:16:f4:8b:43:3e: b4:34:2c:fe:2d:13:3b:e0:16:2f:9e:3d:1c:36:51: 86:f6:83:e7:93:11:1a:d6:b0:19:66:c5:8e:18:df: 57:b5:f9:61:5c:34:80:05:e0:3c:28:ab:75:e1:d9: 83:92:cd:00:61:55:0e:f2:04:c8:a6:7f:7c:eb:94: 29:65:ea:15:93:69:05:f4:31:cd:c6:ee:55:9b:b7: 0b:13:08:04:e4:93:af:bf:cc:16:0a:71:99:d1:81: 46:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:2C:43:2C:40:B2:57:56:A4:AC:51:FE:B9:26:52:0D:58:88:4D:5D X509v3 Authority Key Identifier: keyid:43:63:4C:70:1B:A1:F1:EF:CE:8F:56:AA:6A:D1:DB:29:45:A1:DB:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/Q2NMcBuh8e_Oj1aqatHbKUWh258.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q2NMcBuh8e_Oj1aqatHbKUWh258.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/Q2NMcBuh8e_Oj1aqatHbKUWh258.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:c1:5b:ee:cf:f9:dc:e5:b3:bc:fb:2b:a0:b3:8a:0c:74:ba: 17:5b:07:db:4b:54:a3:9f:e6:72:6c:38:bd:13:7e:82:63:7c: a2:aa:69:54:c5:fe:d3:31:9d:09:b1:4a:35:0a:ba:f9:c0:0c: 1c:9d:19:49:4b:93:d8:71:c2:d2:ac:da:fe:40:f3:c7:ad:1f: e0:33:fc:08:90:49:57:a9:6b:af:eb:bd:d8:22:28:17:f1:cf: 97:6e:b6:ea:37:18:5f:62:0f:b1:76:86:38:8b:b3:23:5a:2e: d1:48:b2:88:16:4c:f9:e1:e1:d6:12:ab:1e:ad:ed:f5:a8:ca: 09:88:51:0c:43:f4:22:94:00:26:b2:93:78:1b:8f:c1:8f:c9: 0a:fc:17:90:5f:f8:22:05:a8:a1:95:3f:17:2e:57:f8:22:cf: e7:21:3e:c4:76:09:ce:63:1d:5e:82:0f:52:c6:39:03:1e:04: c5:a8:b9:0d:32:78:ca:0d:51:17:9a:01:b1:e7:31:b3:de:2a: c5:22:96:8c:49:65:e6:02:b6:20:be:05:4c:0b:74:c1:2e:26: 6d:8a:58:e9:9e:29:87:3b:48:58:1a:5f:85:68:8f:f4:70:d5: a0:99:f4:a2:1e:f4:6f:00:f4:39:cd:8b:67:42:50:1f:0c:f6: 62:72:d9:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU0OUMxMTAvBgNVBAUTKDQzNjM0QzcwMUJBMUYxRUZDRThGNTZBQTZBRDFEQjI5 NDVBMURCOUYwHhcNMjUwNTE1MDUzODMzWhcNMjUwNTIyMDUzODMzWjAYMRYwFAYD VQQDEw02ODI1N2RkOS1lOTNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5bS3nauqtHwAuisWRPKOW3tr9PnK9xsZZhpsPpScxIueZl5w5xedILw+PsLe GnmaM/VUmJeODi+jTJsv7Lr66BsUsfL1W9mjLAArZLNNPY/Z5ixPLshIxM1jnxn1 42nqQg8FPULpWKZbdMkR+b40n1q2MEfTqOMW3eXWwMyx82ZSi+TaQIXygP5U6YIO NMaXVAH9r8pn+M3XIz3CrlCHFvSLQz60NCz+LRM74BYvnj0cNlGG9oPnkxEa1rAZ ZsWOGN9XtflhXDSABeA8KKt14dmDks0AYVUO8gTIpn9865QpZeoVk2kF9DHNxu5V m7cLEwgE5JOvv8wWCnGZ0YFG5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFQsQyxA sldWpKxR/rkmUg1YiE1dMB8GA1UdIwQYMBaAFENjTHAbofHvzo9WqmrR2ylFoduf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTQ5Qy9ERTg3MThDNDRB MzExMUVGQjdCQkQ1MUNDNEY5QUUwMi9RMk5NY0J1aDhlX09qMWFxYXRIYktVV2gy NTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1EyTk1jQnVoOGVfT2oxYXFhdEhiS1VXaDI1OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTQ5Qy9ERTg3MThDNDRBMzExMUVGQjdCQkQ1MUNDNEY5QUUwMi9RMk5NY0J1aDhl X09qMWFxYXRIYktVV2gyNTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEwVvuz/nc5bO8+yugs4oMdLoXWwfbS1Sjn+ZybDi9E36CY3yiqmlU xf7TMZ0JsUo1Crr5wAwcnRlJS5PYccLSrNr+QPPHrR/gM/wIkElXqWuv673YIigX 8c+XbrbqNxhfYg+xdoY4i7MjWi7RSLKIFkz54eHWEqsere31qMoJiFEMQ/QilAAm spN4G4/Bj8kK/BeQX/giBaihlT8XLlf4Is/nIT7EdgnOYx1egg9SxjkDHgTFqLkN MnjKDVEXmgGx5zGz3irFIpaMSWXmArYgvgVMC3TBLiZtiljpnimHO0hYGl+FaI/0 cNWgmfSiHvRvAPQ5zYtnQlAfDPZictli -----END CERTIFICATE-----Generated at Sat May 17 01:51:50 2025 by rpki-client