$ rpki-client -vvf rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.mft File: Q_dCP5PWuglpQFn7I974Uo0mSZ0.mft (raw, json) Hash identifier: A6cc7ognmVQSpLKC9I4Prg2EWXdodCqcOHzRCQpf8aI= Subject key identifier: 65:E8:97:E7:92:F9:88:14:38:77:AB:14:5E:F9:56:5C:C7:B8:1C:2F Authority key identifier: 43:F7:42:3F:93:D6:BA:09:69:40:59:FB:23:DE:F8:52:8D:26:49:9D Certificate issuer: /CN=A9186D9F/serialNumber=43F7423F93D6BA09694059FB23DEF8528D26499D Certificate serial: C5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q_dCP5PWuglpQFn7I974Uo0mSZ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.mft Manifest number: C3 Signing time: Thu 03 Jul 2025 05:57:57 +0000 Manifest this update: Thu 03 Jul 2025 05:57:56 +0000 Manifest next update: Thu 10 Jul 2025 05:57:56 +0000 Files and hashes: 1: Q_dCP5PWuglpQFn7I974Uo0mSZ0.crl (hash: QZwPap5cQdL+0kYNjfq9UocEXiLZGG+vktKwD6TMMAE=) 2: 17EA0C7A38DF11EF8EEDB25EC4F9AE02.roa (hash: sflqoJJiQSUE3/D/FoYHXfA8MjGPanF4iuCvuWOV/9c=) 3: A63A2DFA2F5411EF9A12027FC4F9AE02.roa (hash: 3L8GR/TKBQutwByYr9Yt28Y5Yf6Lgn2PEAhMb4FmV9A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.crl rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q_dCP5PWuglpQFn7I974Uo0mSZ0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 197 (0xc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186D9F, serialNumber=43F7423F93D6BA09694059FB23DEF8528D26499D Validity Not Before: Jul 3 05:57:56 2025 GMT Not After : Jul 10 05:57:56 2025 GMT Subject: CN=68661be4-9891 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:36:94:04:c2:ad:85:68:68:21:33:a4:27:70: 32:ef:1a:a6:e7:0d:a1:f0:ff:43:2d:7b:98:dd:bd: 55:e6:b7:40:00:c8:47:fc:37:4f:1f:46:ef:18:72: a0:8c:7e:99:1e:b8:df:65:6d:b3:3c:f3:7f:26:70: e7:62:c4:9a:b4:26:ad:ae:3c:f1:87:b4:ff:a7:b5: ea:48:02:a8:81:69:9e:b0:d5:17:58:ed:ba:ab:89: 19:28:43:1b:c7:f8:8e:4e:58:7a:a3:a2:6f:5e:27: 03:5c:77:a6:7e:4f:a9:93:07:0a:6f:29:25:b9:78: c3:4c:75:3b:6a:8e:25:61:33:aa:b8:ab:cb:dd:d2: 41:b7:31:30:0a:7c:37:4f:50:11:74:54:c8:1c:24: f8:19:fc:70:21:0a:24:b8:43:3d:19:a7:6f:2b:c5: bf:cd:ef:5c:cc:95:9a:2c:c2:87:b6:d9:f0:50:d4: d8:24:84:00:ac:d2:4a:08:7b:7e:f7:7a:2f:2e:13: 62:7e:e4:ab:ce:d9:3f:40:58:15:cc:b3:bc:1a:b1: db:3d:56:d4:2e:2b:83:c8:7e:af:34:16:0c:7e:4a: 4c:e9:a5:74:61:92:3b:0e:a0:cd:f5:84:bf:22:c5: 05:bb:6a:33:63:cd:67:c1:39:cb:9d:63:9f:08:73: bd:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:E8:97:E7:92:F9:88:14:38:77:AB:14:5E:F9:56:5C:C7:B8:1C:2F X509v3 Authority Key Identifier: keyid:43:F7:42:3F:93:D6:BA:09:69:40:59:FB:23:DE:F8:52:8D:26:49:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q_dCP5PWuglpQFn7I974Uo0mSZ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:8a:c9:9e:4d:da:d9:48:8b:28:12:08:6d:8e:90:10:7d:70: 9b:38:96:1d:20:70:dd:c1:46:b6:85:59:65:6b:99:99:51:f6: 0d:8c:f6:a6:54:96:28:e9:83:88:eb:2a:83:7b:50:4b:36:5f: 70:97:14:26:fa:4e:44:02:fa:56:7c:c6:4f:cd:a3:80:14:5e: c8:d0:89:a1:dc:dc:95:d4:69:33:95:e2:f8:a2:05:02:04:9a: 00:16:85:96:d2:59:d6:19:6b:81:c7:47:55:9c:c1:3b:c2:e3: c3:df:86:4d:ea:37:cc:cd:1a:95:87:bf:4f:83:af:25:4e:5f: ec:06:74:6f:e0:20:c3:aa:9a:ac:20:a6:13:08:35:58:ab:75: 83:76:0e:7d:a4:a5:87:10:3d:ca:c8:63:0b:52:50:47:d4:27: ef:99:17:a1:88:7e:f3:78:1a:d8:d5:e8:cc:ae:c0:34:da:d3: 8b:cf:6f:b5:70:14:6a:75:df:5f:8c:a1:01:fb:7d:04:e3:9d: b1:04:ef:49:06:c2:18:91:8e:b2:37:3a:ba:71:58:94:e4:92: 1c:e7:1f:60:f8:3b:56:75:e8:b3:76:a6:20:1a:12:1c:14:e6: c6:40:43:28:ce:25:2f:22:54:d9:be:bb:a3:00:37:d7:6f:e7: d2:06:8a:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODZEOUYxMTAvBgNVBAUTKDQzRjc0MjNGOTNENkJBMDk2OTQwNTlGQjIzREVGODUy OEQyNjQ5OUQwHhcNMjUwNzAzMDU1NzU2WhcNMjUwNzEwMDU1NzU2WjAYMRYwFAYD VQQDEw02ODY2MWJlNC05ODkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1TaUBMKthWhoITOkJ3Ay7xqm5w2h8P9DLXuY3b1V5rdAAMhH/DdPH0bvGHKg jH6ZHrjfZW2zPPN/JnDnYsSatCatrjzxh7T/p7XqSAKogWmesNUXWO26q4kZKEMb x/iOTlh6o6JvXicDXHemfk+pkwcKbykluXjDTHU7ao4lYTOquKvL3dJBtzEwCnw3 T1ARdFTIHCT4GfxwIQokuEM9GadvK8W/ze9czJWaLMKHttnwUNTYJIQArNJKCHt+ 93ovLhNifuSrztk/QFgVzLO8GrHbPVbULiuDyH6vNBYMfkpM6aV0YZI7DqDN9YS/ IsUFu2ozY81nwTnLnWOfCHO9fwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGXol+eS +YgUOHerFF75VlzHuBwvMB8GA1UdIwQYMBaAFEP3Qj+T1roJaUBZ+yPe+FKNJkmd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NkQ5Ri9BOTM2RTQ0MDJF MDQxMUVGODZGMjlENzlDNEY5QUUwMi9RX2RDUDVQV3VnbHBRRm43STk3NFVvMG1T WjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FfZENQNVBXdWdscFFGbjdJOTc0VW8wbVNaMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NkQ5Ri9BOTM2RTQ0MDJFMDQxMUVGODZGMjlENzlDNEY5QUUwMi9RX2RDUDVQV3Vn bHBRRm43STk3NFVvMG1TWjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgismeTdrZSIsoEghtjpAQfXCbOJYdIHDdwUa2hVlla5mZUfYNjPam VJYo6YOI6yqDe1BLNl9wlxQm+k5EAvpWfMZPzaOAFF7I0Imh3NyV1GkzleL4ogUC BJoAFoWW0lnWGWuBx0dVnME7wuPD34ZN6jfMzRqVh79Pg68lTl/sBnRv4CDDqpqs IKYTCDVYq3WDdg59pKWHED3KyGMLUlBH1CfvmRehiH7zeBrY1ejMrsA02tOLz2+1 cBRqdd9fjKEB+30E452xBO9JBsIYkY6yNzq6cViU5JIc5x9g+DtWdeizdqYgGhIc FObGQEMoziUvIlTZvrujADfXb+fSBoog -----END CERTIFICATE-----Generated at Fri Jul 4 00:41:48 2025 by rpki-client