$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft File: q2JivH0C7BrUi3HamLc9IqNi2vA.mft (raw, json) Hash identifier: GmuTnGuVcY7Pncm8hbbygHMu09+O6zmdlB6ymS9F3To= Subject key identifier: E0:B8:2C:73:25:F1:5F:FF:74:67:A9:65:5C:78:F5:BA:7E:73:56:15 Authority key identifier: AB:62:62:BC:7D:02:EC:1A:D4:8B:71:DA:98:B7:3D:22:A3:62:DA:F0 Certificate issuer: /CN=A91E2454/serialNumber=AB6262BC7D02EC1AD48B71DA98B73D22A362DAF0 Certificate serial: 3612 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft Manifest number: 3547 Signing time: Sun 20 Jul 2025 14:29:25 +0000 Manifest this update: Sun 20 Jul 2025 14:29:24 +0000 Manifest next update: Sun 27 Jul 2025 14:29:24 +0000 Files and hashes: 1: q2JivH0C7BrUi3HamLc9IqNi2vA.crl (hash: JmM/Zs5MgMqPXMdAE3wQ+5/uryWs4EltMOSTXdDso7w=) 2: 4D5247EEA4C911E782854F50C4F9AE02.roa (hash: 0ae8AXI4ti/g7kjicz0FuqIQr5KuRMl+VwlLXivxPFk=) 3: 78123422B0CD11E58B55FC73C4F9AE02.roa (hash: ELjtbDvUJdRIE0OkklMq1ckQ7DJ/Pb2ipSH84CeiKCg=) 4: 7B938024B0CD11E58B55FC73C4F9AE02.roa (hash: 7ydpzn/QoSWEXvjnGZJ1ta2JwlGF9ANK2aScVlru+Tc=) 5: 7F4D30ACB0CD11E58B55FC73C4F9AE02.roa (hash: YwQuCfTd/qrlJSeamxwuUJ+BvQmXE+p3bNmQY1uUsFo=) 6: 4BF67550A4C911E782854F50C4F9AE02.roa (hash: nr6/7CG6oXudz0l6iz2yM+GZu8wisnZlSv+XVHe+5pE=) 7: 7D920C1AB0CD11E58B55FC73C4F9AE02.roa (hash: GEX+sNV+gjoBRlfbvjQXv3uXeYnL4cH1wK1KCC8jYpA=) 8: 9C193BAC08C511EDBC862E48C4F9AE02.roa (hash: 896PbO0EonUimzXSLkBsI3knk6hd3BAHtAyqYKCmbBE=) 9: 816FA9C0B07611EFA5773917C4F9AE02.roa (hash: Pe6tz3jNRPR6gXfsK8tx8lrjl8rvWTB+EFpcz7nsWc8=) 10: 4C9925F2A4C911E782854F50C4F9AE02.roa (hash: R2/SizcxlFy6GiKbWh9BC6IePjx7ZGaL4yUJEBHXwDg=) 11: 8207CCA0906C11EC86E8B711C4F9AE02.roa (hash: /ugniFpN/rGX8I1uxfmMZJryeFfYuWgB3WroPzoi6qU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.crl rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:29:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13842 (0x3612) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2454, serialNumber=AB6262BC7D02EC1AD48B71DA98B73D22A362DAF0 Validity Not Before: Jul 20 14:29:24 2025 GMT Not After : Jul 27 14:29:24 2025 GMT Subject: CN=687cfd44-4432 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:73:8e:fc:05:16:db:bb:60:e8:7d:e5:28:b1: a1:3c:7f:70:27:10:81:f3:97:69:b3:09:ae:ec:a1: 62:8d:db:37:18:b6:ed:b2:fe:d2:f4:38:f1:b4:bb: 6e:9b:cf:2b:d3:4b:49:7d:67:39:94:28:04:5d:3e: 50:5c:2a:8e:77:72:78:9a:be:0f:fd:94:ad:a9:bf: 02:cb:ae:f2:76:b9:90:66:06:42:c6:9c:e6:9c:75: a9:a3:79:87:15:f2:c8:57:07:9c:65:0a:b2:d1:34: c7:a1:5c:50:5f:9e:61:c7:bc:0d:d0:bd:df:6a:1b: 92:25:5d:4b:ab:51:87:5a:8f:39:fb:f3:25:03:e2: 9c:bc:0c:55:ca:c7:85:c0:19:7d:16:fc:3f:60:14: d7:c9:6e:85:be:37:ae:5c:31:3f:8b:53:1f:41:4c: 73:df:e1:f9:81:c8:6d:38:69:83:e9:6c:fc:39:02: f3:e0:c3:34:85:16:c1:72:49:a2:0b:95:b8:0c:ad: 28:4c:98:a9:d6:23:90:d3:95:52:9a:aa:c5:7e:c5: a2:2e:32:06:fc:e9:71:d9:7c:dd:e9:44:b8:de:3b: 85:49:6c:af:9b:ee:74:a1:e0:6d:b8:e3:0f:64:20: 46:0a:a8:51:7f:4f:94:2a:95:7f:ab:24:e2:cc:9c: 6f:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:B8:2C:73:25:F1:5F:FF:74:67:A9:65:5C:78:F5:BA:7E:73:56:15 X509v3 Authority Key Identifier: keyid:AB:62:62:BC:7D:02:EC:1A:D4:8B:71:DA:98:B7:3D:22:A3:62:DA:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:c5:80:dc:0a:e3:1b:7c:c8:26:56:82:15:0f:92:4f:6d:de: eb:cd:af:94:0f:9c:48:25:65:21:47:ac:57:10:03:8e:d0:dd: 0e:8c:fb:cb:73:91:c7:64:ea:51:fc:85:1b:d3:5f:84:41:e6: 9b:ab:42:86:e8:43:c0:99:a3:62:7d:f4:57:5b:7c:69:3f:c7: 09:eb:63:fe:0d:37:76:fc:f5:79:db:ba:fe:f5:b7:30:b9:06: f5:b3:2e:f3:ef:ea:03:f6:14:4d:84:cc:03:24:63:34:02:ef: f8:26:3e:62:eb:a9:f0:91:64:2b:f1:fd:fc:ef:35:d8:39:38: a2:24:e8:da:37:2b:aa:77:f9:5e:ab:48:01:53:40:8b:d5:87: 00:a3:b0:97:5a:95:cc:a6:11:d8:02:99:9b:83:29:c8:cd:c4: 02:36:e3:8d:41:0c:31:00:75:b3:03:14:2e:a5:53:16:88:01: cd:4c:c0:0f:21:06:19:b2:32:1a:b3:82:3f:36:4a:6b:35:99: 78:2b:18:93:3d:21:f0:8d:c4:f4:3f:96:2c:cc:0b:1c:7b:51: a8:cf:85:ab:a1:97:3e:53:bb:83:5e:fa:c2:46:26:89:49:6e: 94:8f:9b:89:84:cf:e8:ae:39:19:f5:c4:e9:a6:e0:a6:a0:ed: 4a:56:90:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNhIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI0NTQxMTAvBgNVBAUTKEFCNjI2MkJDN0QwMkVDMUFENDhCNzFEQTk4QjczRDIy QTM2MkRBRjAwHhcNMjUwNzIwMTQyOTI0WhcNMjUwNzI3MTQyOTI0WjAYMRYwFAYD VQQDEw02ODdjZmQ0NC00NDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuXOO/AUW27tg6H3lKLGhPH9wJxCB85dpswmu7KFijds3GLbtsv7S9DjxtLtu m88r00tJfWc5lCgEXT5QXCqOd3J4mr4P/ZStqb8Cy67ydrmQZgZCxpzmnHWpo3mH FfLIVwecZQqy0TTHoVxQX55hx7wN0L3fahuSJV1Lq1GHWo85+/MlA+KcvAxVyseF wBl9Fvw/YBTXyW6FvjeuXDE/i1MfQUxz3+H5gchtOGmD6Wz8OQLz4MM0hRbBckmi C5W4DK0oTJip1iOQ05VSmqrFfsWiLjIG/Olx2Xzd6US43juFSWyvm+50oeBtuOMP ZCBGCqhRf0+UKpV/qyTizJxvIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOC4LHMl 8V//dGepZVx49bp+c1YVMB8GA1UdIwQYMBaAFKtiYrx9Auwa1Itx2pi3PSKjYtrw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjQ1NC9ENEMzMEI0MjFE ODcxMUUyQTE5ODIyRTAwOEIwMkNEMi9xMkppdkgwQzdCclVpM0hhbUxjOUlxTmky dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3EySml2SDBDN0JyVWkzSGFtTGM5SXFOaTJ2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjQ1NC9ENEMzMEI0MjFEODcxMUUyQTE5ODIyRTAwOEIwMkNEMi9xMkppdkgwQzdC clVpM0hhbUxjOUlxTmkydkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHxYDcCuMbfMgmVoIVD5JPbd7rza+UD5xIJWUhR6xXEAOO0N0OjPvL c5HHZOpR/IUb01+EQeabq0KG6EPAmaNiffRXW3xpP8cJ62P+DTd2/PV527r+9bcw uQb1sy7z7+oD9hRNhMwDJGM0Au/4Jj5i66nwkWQr8f387zXYOTiiJOjaNyuqd/le q0gBU0CL1YcAo7CXWpXMphHYApmbgynIzcQCNuONQQwxAHWzAxQupVMWiAHNTMAP IQYZsjIas4I/NkprNZl4KxiTPSHwjcT0P5YszAsce1Goz4WroZc+U7uDXvrCRiaJ SW6Uj5uJhM/orjkZ9cTppuCmoO1KVpBM -----END CERTIFICATE-----Generated at Sun Jul 20 22:48:42 2025 by rpki-client