$ rpki-client -vvf rpki.apnic.net/member_repository/A9198D20/3F7703C21CE911EA98897487C4F9AE02/Q8PPEXS9crQ0xpKLir6_BdYxP0A.mft File: Q8PPEXS9crQ0xpKLir6_BdYxP0A.mft (raw, json) Hash identifier: chqKeVzjCB+tidY3zBK5YCORowNb2XhXm15kHK3RMpM= Subject key identifier: 04:E5:42:D8:B8:96:7F:18:94:59:CC:53:36:29:82:F1:BB:81:A7:CF Authority key identifier: 43:C3:CF:11:74:BD:72:B4:34:C6:92:8B:8A:BE:BF:05:D6:31:3F:40 Certificate issuer: /CN=A9198D20/serialNumber=43C3CF1174BD72B434C6928B8ABEBF05D6313F40 Certificate serial: 0BC7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q8PPEXS9crQ0xpKLir6_BdYxP0A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198D20/3F7703C21CE911EA98897487C4F9AE02/Q8PPEXS9crQ0xpKLir6_BdYxP0A.mft Manifest number: 0BC0 Signing time: Fri 16 May 2025 19:06:40 +0000 Manifest this update: Fri 16 May 2025 19:06:39 +0000 Manifest next update: Fri 23 May 2025 19:06:39 +0000 Files and hashes: 1: Q8PPEXS9crQ0xpKLir6_BdYxP0A.crl (hash: oO20/5aVezElNwUBTCwu41MGsJ7egyeXeKnCv7F2MZ4=) 2: EE985C561CEA11EA8B382C0BC4F9AE02.roa (hash: /clDM2qDPD5uC0RxJEAiWWigew7J9uL+PN4x0Vi4eF0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198D20/3F7703C21CE911EA98897487C4F9AE02/Q8PPEXS9crQ0xpKLir6_BdYxP0A.crl rsync://rpki.apnic.net/member_repository/A9198D20/3F7703C21CE911EA98897487C4F9AE02/Q8PPEXS9crQ0xpKLir6_BdYxP0A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q8PPEXS9crQ0xpKLir6_BdYxP0A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 19:06:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3015 (0xbc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198D20, serialNumber=43C3CF1174BD72B434C6928B8ABEBF05D6313F40 Validity Not Before: May 16 19:06:39 2025 GMT Not After : May 23 19:06:39 2025 GMT Subject: CN=68278cc0-0633 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:88:4c:65:59:a1:e3:dd:46:34:9a:b4:b7:33: db:e2:eb:f5:2d:cb:f8:2f:0c:8d:55:66:06:a0:ea: 1e:f6:9f:02:62:5f:94:d3:ac:d1:c6:cc:99:e8:4c: 5f:6a:8e:e9:59:ab:ee:5e:bb:92:ca:74:d1:d4:44: 99:aa:90:7a:ab:98:c9:38:3a:c1:a9:16:49:0a:cb: b1:41:f7:8f:88:ca:a7:68:15:76:d8:56:e2:47:b5: 54:af:58:8c:15:c4:17:ad:e8:73:86:9c:1a:78:96: 06:06:c1:de:30:2a:c9:18:af:4b:54:58:2d:e7:89: a6:a6:fa:ef:f3:4f:f3:70:5d:c6:e4:a3:8a:31:d1: 3b:31:6c:b3:f3:06:24:7f:b0:52:7a:70:6c:c0:af: 0e:b5:81:ac:90:83:dd:70:83:1b:d7:8a:f4:31:21: 20:96:e6:96:f1:15:43:fb:7c:6c:e5:3e:4e:45:22: 66:b6:99:7f:cb:4e:c1:62:6f:2b:3b:1f:8f:54:93: fd:21:a0:3e:6c:53:06:df:f2:64:8a:46:fd:1b:48: 42:fb:2e:6b:92:66:c0:f1:c3:55:f3:54:05:b7:f6: d4:58:5f:4a:71:a9:8a:b5:6a:ac:f2:07:b8:0b:0c: 49:8e:6b:93:69:70:36:8a:b1:71:3b:60:68:86:ec: 8d:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:E5:42:D8:B8:96:7F:18:94:59:CC:53:36:29:82:F1:BB:81:A7:CF X509v3 Authority Key Identifier: keyid:43:C3:CF:11:74:BD:72:B4:34:C6:92:8B:8A:BE:BF:05:D6:31:3F:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198D20/3F7703C21CE911EA98897487C4F9AE02/Q8PPEXS9crQ0xpKLir6_BdYxP0A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q8PPEXS9crQ0xpKLir6_BdYxP0A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198D20/3F7703C21CE911EA98897487C4F9AE02/Q8PPEXS9crQ0xpKLir6_BdYxP0A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:45:31:85:dd:74:c6:a5:fc:39:21:ff:77:68:48:ca:24:70: 7c:b9:5f:bf:02:59:85:97:c1:dc:2f:dc:d7:f4:42:cc:e7:61: 72:1f:ad:55:9b:29:b3:c3:67:a2:9c:2e:f4:d5:64:9b:bc:0e: a4:7f:51:8b:d3:8e:f3:29:29:85:ba:7b:ce:90:01:55:b3:eb: 6f:d2:21:04:b6:d1:d6:65:20:c3:62:f5:1d:9b:41:3b:c2:9f: a3:ac:38:07:07:71:ef:31:15:de:11:02:e3:3e:3d:aa:40:ba: c5:d3:17:86:aa:3d:48:87:10:0f:6d:fc:af:61:9b:23:f4:7e: df:41:52:0b:cc:81:90:37:79:30:24:00:9a:5e:59:23:e9:72: b8:15:c1:fe:b3:ae:a2:55:fe:8d:b3:7c:6e:53:ab:cb:92:b7: 1d:66:0b:10:be:4d:b9:31:75:b7:ee:81:02:52:09:e3:8b:94: 03:1a:62:e5:a0:bf:21:35:1e:f2:78:a9:75:06:b1:07:74:34: 30:ad:76:53:12:cf:42:43:8a:7c:95:1f:90:8b:e4:34:6c:2d: 16:e7:d9:8a:37:c6:ee:d1:ae:dc:5e:63:dd:85:d1:b7:20:4c: 3e:89:70:9f:89:2f:0e:10:9e:fc:4d:26:e4:42:25:7d:e3:58: 8e:d8:a6:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC8cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThEMjAxMTAvBgNVBAUTKDQzQzNDRjExNzRCRDcyQjQzNEM2OTI4QjhBQkVCRjA1 RDYzMTNGNDAwHhcNMjUwNTE2MTkwNjM5WhcNMjUwNTIzMTkwNjM5WjAYMRYwFAYD VQQDEw02ODI3OGNjMC0wNjMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxIhMZVmh491GNJq0tzPb4uv1Lcv4LwyNVWYGoOoe9p8CYl+U06zRxsyZ6Exf ao7pWavuXruSynTR1ESZqpB6q5jJODrBqRZJCsuxQfePiMqnaBV22FbiR7VUr1iM FcQXrehzhpwaeJYGBsHeMCrJGK9LVFgt54mmpvrv80/zcF3G5KOKMdE7MWyz8wYk f7BSenBswK8OtYGskIPdcIMb14r0MSEgluaW8RVD+3xs5T5ORSJmtpl/y07BYm8r Ox+PVJP9IaA+bFMG3/Jkikb9G0hC+y5rkmbA8cNV81QFt/bUWF9KcamKtWqs8ge4 CwxJjmuTaXA2irFxO2BohuyNEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFATlQti4 ln8YlFnMUzYpgvG7gafPMB8GA1UdIwQYMBaAFEPDzxF0vXK0NMaSi4q+vwXWMT9A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEQyMC8zRjc3MDNDMjFD RTkxMUVBOTg4OTc0ODdDNEY5QUUwMi9ROFBQRVhTOWNyUTB4cEtMaXI2X0JkWXhQ MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1E4UFBFWFM5Y3JRMHhwS0xpcjZfQmRZeFAwQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEQyMC8zRjc3MDNDMjFDRTkxMUVBOTg4OTc0ODdDNEY5QUUwMi9ROFBQRVhTOWNy UTB4cEtMaXI2X0JkWXhQMEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCORTGF3XTGpfw5If93aEjKJHB8uV+/AlmFl8HcL9zX9ELM52FyH61V mymzw2einC701WSbvA6kf1GL047zKSmFunvOkAFVs+tv0iEEttHWZSDDYvUdm0E7 wp+jrDgHB3HvMRXeEQLjPj2qQLrF0xeGqj1IhxAPbfyvYZsj9H7fQVILzIGQN3kw JACaXlkj6XK4FcH+s66iVf6Ns3xuU6vLkrcdZgsQvk25MXW37oECUgnji5QDGmLl oL8hNR7yeKl1BrEHdDQwrXZTEs9CQ4p8lR+Qi+Q0bC0W59mKN8bu0a7cXmPdhdG3 IEw+iXCfiS8OEJ78TSbkQiV941iO2Kbf -----END CERTIFICATE-----Generated at Fri May 16 22:39:04 2025 by rpki-client