$ rpki-client -vvf rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.mft File: Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.mft (raw, json) Hash identifier: RAtW3vnwSoW7dHj5frnlvkEV4mPS89n2FwMQ8DJfOno= Subject key identifier: 65:93:2E:48:01:5A:B7:9F:E6:4C:F8:21:66:B9:23:20:73:0C:DF:7D Authority key identifier: 43:D2:50:D5:C1:F6:09:ED:17:4D:FF:26:43:01:DB:45:BE:25:B1:B4 Certificate issuer: /CN=A91978DD/serialNumber=43D250D5C1F609ED174DFF264301DB45BE25B1B4 Certificate serial: 172B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.mft Manifest number: 1722 Signing time: Wed 14 May 2025 16:42:24 +0000 Manifest this update: Wed 14 May 2025 16:42:23 +0000 Manifest next update: Wed 21 May 2025 16:42:23 +0000 Files and hashes: 1: Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.crl (hash: r2P0IhARwpJK+8BYY0pO+69fi7Y44f2ZzsP8ni9PJ9s=) 2: 16ABD910E0C111E7BA64DE22C4F9AE02.roa (hash: Ooak6D5iQ2fJ6FZTf7sU2wRFg0kTNy2Wu4Ysho3zOO0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.crl rsync://rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 16:42:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5931 (0x172b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91978DD, serialNumber=43D250D5C1F609ED174DFF264301DB45BE25B1B4 Validity Not Before: May 14 16:42:23 2025 GMT Not After : May 21 16:42:23 2025 GMT Subject: CN=6824c7f0-31c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:29:d4:1f:93:7a:94:ad:b7:da:79:04:af:54: b4:d3:26:54:62:ce:ae:95:90:4b:bf:44:2a:8a:d4: 9f:88:61:65:1b:0b:ad:1d:17:63:f0:a1:63:19:59: 4c:a0:ae:54:04:dc:91:53:6a:5a:98:22:d4:9a:30: 62:dd:1b:94:91:70:3c:ed:5f:b7:34:11:11:f9:ba: 5d:98:ea:51:33:f6:4c:5f:e9:2f:fb:69:e0:2c:72: bc:a3:22:db:25:99:7c:7e:45:b4:6b:ae:82:f6:3d: ff:17:2e:a8:ee:37:bd:9d:51:96:9f:b1:30:f6:86: 02:0a:eb:76:db:5a:71:b8:87:27:a5:c6:0e:54:36: 28:96:e6:c3:0f:7f:48:95:9f:f2:fc:e7:5c:a9:c0: 7d:2d:cd:de:86:1f:55:3b:61:44:0f:3d:06:e2:f4: f0:ac:ac:0e:d6:06:f7:92:d1:b1:33:2f:f8:25:a2: e3:80:21:54:87:15:f7:e4:78:24:9b:ea:0d:25:b9: da:71:a0:ad:3d:7e:72:4c:44:24:e7:1d:d6:a7:9e: e9:92:f3:e0:4d:0e:c5:4f:0a:83:fc:99:9a:b7:33: 1f:02:b3:0f:da:45:26:a5:23:9b:57:5b:f7:82:22: 66:7e:16:b0:e1:85:60:1a:ca:be:a9:cf:a0:52:47: 9a:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:93:2E:48:01:5A:B7:9F:E6:4C:F8:21:66:B9:23:20:73:0C:DF:7D X509v3 Authority Key Identifier: keyid:43:D2:50:D5:C1:F6:09:ED:17:4D:FF:26:43:01:DB:45:BE:25:B1:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:c9:f2:a2:3e:b1:98:de:13:a5:21:94:bf:35:e8:ac:69:35: 8a:f1:bd:4b:00:db:38:f3:3e:90:83:20:70:90:67:81:ad:c9: 6b:99:38:3d:ad:60:65:cf:c1:f6:fa:98:dc:9c:f6:0f:81:39: 6b:4e:e9:a1:ea:81:f1:61:cd:03:d8:b6:08:6d:b2:31:c5:93: c2:7f:7b:bf:a2:31:41:45:8d:0a:32:cc:02:ed:93:73:96:34: cd:eb:f7:98:d9:73:5a:73:31:a5:06:c0:ae:f8:8a:9a:5e:97: da:64:92:ca:db:f7:f2:58:13:b7:b4:0a:7c:0e:2d:80:8a:13: a1:44:ca:bc:ba:d6:b9:5d:fc:f3:2e:20:ee:ae:ea:f4:bf:37: d0:8b:2b:83:cb:0c:d0:37:82:44:c0:00:65:10:bb:14:d1:fc: d9:ff:52:eb:5d:53:26:08:b2:a5:1e:54:fc:84:c6:59:b4:fd: 73:ea:93:a7:3c:3a:65:17:d6:99:e6:b8:82:9a:61:cf:41:b1: 3d:7f:a4:0d:c7:d7:5c:70:d7:f6:94:bc:79:40:06:71:0d:2e: ed:9f:78:fc:15:14:72:95:01:78:ab:c4:23:1e:a1:12:ae:78: f5:a5:a3:d8:df:be:12:40:a9:e1:50:06:79:f1:6c:9a:22:c6: a0:cf:3f:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFyswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc4REQxMTAvBgNVBAUTKDQzRDI1MEQ1QzFGNjA5RUQxNzRERkYyNjQzMDFEQjQ1 QkUyNUIxQjQwHhcNMjUwNTE0MTY0MjIzWhcNMjUwNTIxMTY0MjIzWjAYMRYwFAYD VQQDEw02ODI0YzdmMC0zMWM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuSnUH5N6lK232nkEr1S00yZUYs6ulZBLv0QqitSfiGFlGwutHRdj8KFjGVlM oK5UBNyRU2pamCLUmjBi3RuUkXA87V+3NBER+bpdmOpRM/ZMX+kv+2ngLHK8oyLb JZl8fkW0a66C9j3/Fy6o7je9nVGWn7Ew9oYCCut221pxuIcnpcYOVDYolubDD39I lZ/y/OdcqcB9Lc3ehh9VO2FEDz0G4vTwrKwO1gb3ktGxMy/4JaLjgCFUhxX35Hgk m+oNJbnacaCtPX5yTEQk5x3Wp57pkvPgTQ7FTwqD/JmatzMfArMP2kUmpSObV1v3 giJmfhaw4YVgGsq+qc+gUkeaewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGWTLkgB Wref5kz4IWa5IyBzDN99MB8GA1UdIwQYMBaAFEPSUNXB9gntF03/JkMB20W+JbG0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzhERC9DQzE4RDlENEUw QjYxMUU3OTlBMkI2ODJDNEY5QUUwMi9ROUpRMWNIMkNlMFhUZjhtUXdIYlJiNGxz YlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1E5SlExY0gyQ2UwWFRmOG1Rd0hiUmI0bHNiUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzhERC9DQzE4RDlENEUwQjYxMUU3OTlBMkI2ODJDNEY5QUUwMi9ROUpRMWNIMkNl MFhUZjhtUXdIYlJiNGxzYlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPyfKiPrGY3hOlIZS/NeisaTWK8b1LANs48z6QgyBwkGeBrclrmTg9 rWBlz8H2+pjcnPYPgTlrTumh6oHxYc0D2LYIbbIxxZPCf3u/ojFBRY0KMswC7ZNz ljTN6/eY2XNaczGlBsCu+IqaXpfaZJLK2/fyWBO3tAp8Di2AihOhRMq8uta5Xfzz LiDurur0vzfQiyuDywzQN4JEwABlELsU0fzZ/1LrXVMmCLKlHlT8hMZZtP1z6pOn PDplF9aZ5riCmmHPQbE9f6QNx9dccNf2lLx5QAZxDS7tn3j8FRRylQF4q8QjHqES rnj1paPY374SQKnhUAZ58WyaIsagzz+s -----END CERTIFICATE-----Generated at Thu May 15 10:02:46 2025 by rpki-client