$ rpki-client -vvf rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/Q2NMcBuh8e_Oj1aqatHbKUWh258.mft File: Q2NMcBuh8e_Oj1aqatHbKUWh258.mft (raw, json) Hash identifier: I5hxRIvpaXZWZaH1iRLDs5cDAQh67XZjEpmfYXTjwME= Subject key identifier: 9D:E9:E0:C0:FB:7B:24:20:4E:8A:81:19:F0:65:7C:B1:0E:2C:57:D2 Authority key identifier: 43:63:4C:70:1B:A1:F1:EF:CE:8F:56:AA:6A:D1:DB:29:45:A1:DB:9F Certificate issuer: /CN=A918549C/serialNumber=43634C701BA1F1EFCE8F56AA6AD1DB2945A1DB9F Certificate serial: B4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q2NMcBuh8e_Oj1aqatHbKUWh258.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/Q2NMcBuh8e_Oj1aqatHbKUWh258.mft Manifest number: B2 Signing time: Thu 03 Jul 2025 06:14:06 +0000 Manifest this update: Thu 03 Jul 2025 06:14:05 +0000 Manifest next update: Thu 10 Jul 2025 06:14:05 +0000 Files and hashes: 1: Q2NMcBuh8e_Oj1aqatHbKUWh258.crl (hash: xyuAAowUblJzC9jVBkjY7YPPLik1wfLhEyzEPmdSfk0=) 2: 9C6F77784A3211EFBDBCEB2FC4F9AE02.roa (hash: VtLgFQFuvZQFqc3/1iLIm4m/GkaEOorvnwwczfuLsfc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/Q2NMcBuh8e_Oj1aqatHbKUWh258.crl rsync://rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/Q2NMcBuh8e_Oj1aqatHbKUWh258.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q2NMcBuh8e_Oj1aqatHbKUWh258.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 180 (0xb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918549C, serialNumber=43634C701BA1F1EFCE8F56AA6AD1DB2945A1DB9F Validity Not Before: Jul 3 06:14:05 2025 GMT Not After : Jul 10 06:14:05 2025 GMT Subject: CN=68661fad-ffee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:1c:b9:d0:bb:79:e8:a7:f2:df:21:86:4f:79: a3:c7:1f:ff:7f:80:53:d5:22:09:2f:2f:48:8f:04: 7d:c0:2b:99:d4:e1:0f:6b:17:21:03:b4:32:db:4c: 5d:db:18:e0:71:89:c3:17:14:7a:2d:fa:88:33:06: e7:73:df:64:63:4e:44:32:27:f7:43:da:2d:cc:0d: fb:1c:a7:ba:1a:77:63:b7:18:d6:c3:db:b0:b4:e8: 35:05:9d:34:11:a4:bd:b6:c2:02:cf:1a:40:16:a3: 6a:8f:91:d7:75:51:80:ae:65:35:f0:31:22:1b:ea: aa:c7:7c:f0:24:89:f1:10:01:48:e4:aa:d9:67:ef: f0:76:fe:c0:11:2d:b7:0a:48:96:07:19:b2:a7:13: 90:b1:14:c8:09:6c:50:2f:5d:19:d5:f6:0c:a6:7a: 20:68:a9:2d:b3:f1:0f:4d:75:9b:c1:d1:d1:72:91: 0d:98:be:94:b6:e2:3b:54:3c:bb:71:84:6e:dd:a5: fe:39:7d:c8:fe:cd:58:1b:46:a9:50:ea:52:42:7e: 6c:30:31:c1:b7:d1:25:e3:6a:2c:6c:02:8d:b5:7e: f1:fc:75:4c:34:7f:b2:97:a0:dc:5a:46:b6:6b:ed: ff:32:f2:63:17:35:a1:0b:d7:2f:06:d7:ce:bb:7c: f9:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:E9:E0:C0:FB:7B:24:20:4E:8A:81:19:F0:65:7C:B1:0E:2C:57:D2 X509v3 Authority Key Identifier: keyid:43:63:4C:70:1B:A1:F1:EF:CE:8F:56:AA:6A:D1:DB:29:45:A1:DB:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/Q2NMcBuh8e_Oj1aqatHbKUWh258.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q2NMcBuh8e_Oj1aqatHbKUWh258.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/Q2NMcBuh8e_Oj1aqatHbKUWh258.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:dd:18:31:bc:ad:4c:c2:04:8b:3f:43:65:90:a1:35:69:d2: 9b:87:11:60:49:7b:b2:0f:e0:b6:a1:d1:8f:86:73:33:8f:58: 6b:f0:3e:07:5f:78:3f:5c:50:d0:25:07:3f:e5:52:8d:5a:3e: 39:d9:70:c0:11:ad:2f:bb:f3:27:e8:f8:24:85:68:70:3e:d2: 16:ce:ff:ec:dc:8b:41:5b:94:5c:a0:41:d9:5a:ea:0c:57:c7: da:e6:70:ef:50:be:f6:da:f2:bd:45:e5:3e:ff:0b:e5:58:2f: e2:57:78:94:05:22:d0:db:8a:52:32:fe:36:47:c0:5a:b1:ea: c4:fc:7c:b1:48:16:de:d7:05:79:6f:8f:bb:0f:41:0d:c2:48: 9c:e2:fc:c2:69:5b:b1:4e:f5:91:d7:db:d5:1d:2a:32:b5:21: 97:af:a9:b5:2e:ef:ae:9b:38:f5:de:0f:94:ab:54:6e:c7:41: 9f:e5:a0:84:8d:bd:1d:fe:71:71:3b:7d:33:2c:b4:75:11:76: 84:79:87:72:57:c8:c9:9c:fc:13:af:ca:6b:64:2d:ac:7c:56: a1:36:f9:83:6a:bf:94:cc:85:a0:6c:6a:dd:ec:38:6d:c5:36: e4:5a:01:97:b4:f9:d2:7f:f3:7f:d1:70:53:33:16:41:c8:e1: cf:81:fe:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU0OUMxMTAvBgNVBAUTKDQzNjM0QzcwMUJBMUYxRUZDRThGNTZBQTZBRDFEQjI5 NDVBMURCOUYwHhcNMjUwNzAzMDYxNDA1WhcNMjUwNzEwMDYxNDA1WjAYMRYwFAYD VQQDEw02ODY2MWZhZC1mZmVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Ry50Lt56Kfy3yGGT3mjxx//f4BT1SIJLy9IjwR9wCuZ1OEPaxchA7Qy20xd 2xjgcYnDFxR6LfqIMwbnc99kY05EMif3Q9otzA37HKe6GndjtxjWw9uwtOg1BZ00 EaS9tsICzxpAFqNqj5HXdVGArmU18DEiG+qqx3zwJInxEAFI5KrZZ+/wdv7AES23 CkiWBxmypxOQsRTICWxQL10Z1fYMpnogaKkts/EPTXWbwdHRcpENmL6UtuI7VDy7 cYRu3aX+OX3I/s1YG0apUOpSQn5sMDHBt9El42osbAKNtX7x/HVMNH+yl6DcWka2 a+3/MvJjFzWhC9cvBtfOu3z5RwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ3p4MD7 eyQgToqBGfBlfLEOLFfSMB8GA1UdIwQYMBaAFENjTHAbofHvzo9WqmrR2ylFoduf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTQ5Qy9ERTg3MThDNDRB MzExMUVGQjdCQkQ1MUNDNEY5QUUwMi9RMk5NY0J1aDhlX09qMWFxYXRIYktVV2gy NTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1EyTk1jQnVoOGVfT2oxYXFhdEhiS1VXaDI1OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTQ5Qy9ERTg3MThDNDRBMzExMUVGQjdCQkQ1MUNDNEY5QUUwMi9RMk5NY0J1aDhl X09qMWFxYXRIYktVV2gyNTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAI3RgxvK1MwgSLP0NlkKE1adKbhxFgSXuyD+C2odGPhnMzj1hr8D4H X3g/XFDQJQc/5VKNWj452XDAEa0vu/Mn6PgkhWhwPtIWzv/s3ItBW5RcoEHZWuoM V8fa5nDvUL722vK9ReU+/wvlWC/iV3iUBSLQ24pSMv42R8BaserE/HyxSBbe1wV5 b4+7D0ENwkic4vzCaVuxTvWR19vVHSoytSGXr6m1Lu+umzj13g+Uq1Rux0Gf5aCE jb0d/nFxO30zLLR1EXaEeYdyV8jJnPwTr8prZC2sfFahNvmDar+UzIWgbGrd7Dht xTbkWgGXtPnSf/N/0XBTMxZByOHPgf7f -----END CERTIFICATE-----Generated at Thu Jul 3 11:27:51 2025 by rpki-client