$ rpki-client -vvf rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.mft File: Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.mft (raw, json) Hash identifier: 7GhSuzevUqdRfL9M91ngwu6NIfSOnupTzdGVVGvDQCs= Subject key identifier: 5A:7F:E4:CE:E8:FC:E1:98:4D:07:96:9A:FE:D7:A8:69:76:7D:A1:8F Authority key identifier: 43:D2:50:D5:C1:F6:09:ED:17:4D:FF:26:43:01:DB:45:BE:25:B1:B4 Certificate issuer: /CN=A91978DD/serialNumber=43D250D5C1F609ED174DFF264301DB45BE25B1B4 Certificate serial: 1744 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.mft Manifest number: 173B Signing time: Wed 02 Jul 2025 16:44:41 +0000 Manifest this update: Wed 02 Jul 2025 16:44:40 +0000 Manifest next update: Wed 09 Jul 2025 16:44:40 +0000 Files and hashes: 1: Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.crl (hash: d5LYtFbtjwrCRL142+ydAcl4T57h3nx6sVK5wKVst6M=) 2: 16ABD910E0C111E7BA64DE22C4F9AE02.roa (hash: Ooak6D5iQ2fJ6FZTf7sU2wRFg0kTNy2Wu4Ysho3zOO0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.crl rsync://rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 16:44:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5956 (0x1744) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91978DD, serialNumber=43D250D5C1F609ED174DFF264301DB45BE25B1B4 Validity Not Before: Jul 2 16:44:40 2025 GMT Not After : Jul 9 16:44:40 2025 GMT Subject: CN=686561f9-8dad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:54:e6:47:1e:b2:14:90:de:97:29:ef:55:f4: 35:00:f9:52:e0:46:af:bd:9a:f6:78:1d:33:cf:86: 3e:74:ad:91:74:63:4b:5b:af:49:49:bb:a9:a0:c3: 98:ba:d2:0b:89:8c:d7:cb:d4:cf:49:7e:26:3e:cc: f7:a0:27:3d:f6:8d:9a:2d:6e:70:2d:5c:fa:87:1c: 39:d6:7c:bb:b3:f9:ba:aa:16:c3:ae:c5:d1:a7:56: 49:ef:ec:0f:d4:2f:7b:cc:a7:35:25:bb:47:2f:11: af:96:ed:66:5b:1d:c8:d1:90:2a:6c:3a:22:1b:f8: 77:bf:89:89:48:78:8a:9b:82:5d:62:4f:8a:c2:d3: 18:c6:9d:c7:5c:99:bc:14:25:d4:b0:e4:ad:81:be: 3d:20:87:71:b2:f6:31:7e:cb:91:bb:dd:aa:e9:3a: 00:fb:69:0e:2e:81:e1:70:98:da:49:13:81:b9:8d: 2d:35:dc:05:57:0e:61:17:b5:cd:18:59:ba:7d:01: 42:ad:fc:84:bb:da:19:e0:2a:2c:33:a8:60:10:4a: 70:db:6f:0b:81:87:47:24:df:c7:fe:b0:b7:8f:c4: 5e:c8:25:9c:52:31:db:89:93:50:df:93:4c:31:27: cc:ff:4d:95:4d:61:5c:27:bf:5b:b6:c8:45:2a:70: 05:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:7F:E4:CE:E8:FC:E1:98:4D:07:96:9A:FE:D7:A8:69:76:7D:A1:8F X509v3 Authority Key Identifier: keyid:43:D2:50:D5:C1:F6:09:ED:17:4D:FF:26:43:01:DB:45:BE:25:B1:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:ae:0b:06:d0:9b:92:d3:72:fe:a7:42:cf:4f:92:91:ac:15: 9f:6f:4b:77:73:08:7a:1a:0b:4b:ea:0e:ae:45:f3:04:4d:c5: 74:cd:84:02:0a:eb:eb:10:26:ae:49:09:4b:74:78:01:76:b1: c2:9d:f2:0f:cb:c4:e4:c5:78:50:95:61:4a:15:c3:8d:cc:35: 43:ed:a7:97:01:67:65:cc:53:3c:f1:d6:a1:ce:53:80:67:ae: 5e:0c:c2:ae:1f:fa:7b:4f:b4:13:48:83:84:fa:2c:63:72:a9: 2e:96:0d:14:9a:92:70:fa:95:89:a5:e3:16:d1:52:91:2e:a1: 9c:19:37:d6:87:79:04:53:49:e0:e3:ed:d7:a9:19:09:a7:a5: 92:2b:b3:91:b3:e8:7b:49:98:5e:80:de:65:39:b0:a4:c9:24: b0:34:0a:01:b3:4a:8e:ec:be:e6:8f:48:e4:be:d9:4f:41:f1: 88:78:2b:33:56:c4:49:07:b6:8d:3f:d3:f8:56:07:6e:8d:f7: 26:a4:f5:cd:19:15:85:55:b9:26:91:38:1f:2c:d1:ad:5b:a0: b8:ff:b1:d9:fc:f2:f5:89:bc:89:db:c9:d7:33:02:72:8e:6d: 76:36:a1:4f:83:cb:d2:07:a6:1a:cb:b3:69:1e:0d:54:48:ad: 64:c9:17:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF0QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc4REQxMTAvBgNVBAUTKDQzRDI1MEQ1QzFGNjA5RUQxNzRERkYyNjQzMDFEQjQ1 QkUyNUIxQjQwHhcNMjUwNzAyMTY0NDQwWhcNMjUwNzA5MTY0NDQwWjAYMRYwFAYD VQQDEw02ODY1NjFmOS04ZGFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA71TmRx6yFJDelynvVfQ1APlS4EavvZr2eB0zz4Y+dK2RdGNLW69JSbupoMOY utILiYzXy9TPSX4mPsz3oCc99o2aLW5wLVz6hxw51ny7s/m6qhbDrsXRp1ZJ7+wP 1C97zKc1JbtHLxGvlu1mWx3I0ZAqbDoiG/h3v4mJSHiKm4JdYk+KwtMYxp3HXJm8 FCXUsOStgb49IIdxsvYxfsuRu92q6ToA+2kOLoHhcJjaSROBuY0tNdwFVw5hF7XN GFm6fQFCrfyEu9oZ4CosM6hgEEpw228LgYdHJN/H/rC3j8ReyCWcUjHbiZNQ35NM MSfM/02VTWFcJ79btshFKnAFtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFp/5M7o /OGYTQeWmv7XqGl2faGPMB8GA1UdIwQYMBaAFEPSUNXB9gntF03/JkMB20W+JbG0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzhERC9DQzE4RDlENEUw QjYxMUU3OTlBMkI2ODJDNEY5QUUwMi9ROUpRMWNIMkNlMFhUZjhtUXdIYlJiNGxz YlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1E5SlExY0gyQ2UwWFRmOG1Rd0hiUmI0bHNiUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzhERC9DQzE4RDlENEUwQjYxMUU3OTlBMkI2ODJDNEY5QUUwMi9ROUpRMWNIMkNl MFhUZjhtUXdIYlJiNGxzYlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyrgsG0JuS03L+p0LPT5KRrBWfb0t3cwh6GgtL6g6uRfMETcV0zYQC CuvrECauSQlLdHgBdrHCnfIPy8TkxXhQlWFKFcONzDVD7aeXAWdlzFM88dahzlOA Z65eDMKuH/p7T7QTSIOE+ixjcqkulg0UmpJw+pWJpeMW0VKRLqGcGTfWh3kEU0ng 4+3XqRkJp6WSK7ORs+h7SZhegN5lObCkySSwNAoBs0qO7L7mj0jkvtlPQfGIeCsz VsRJB7aNP9P4VgdujfcmpPXNGRWFVbkmkTgfLNGtW6C4/7HZ/PL1ibyJ28nXMwJy jm12NqFPg8vSB6Yay7NpHg1USK1kyRcd -----END CERTIFICATE-----Generated at Thu Jul 3 06:09:00 2025 by rpki-client