$ rpki-client -vvf rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft File: Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft (raw, json) Hash identifier: BN61C3f+2pvqVwQIKKFvpKsPNDP9BDZtnZ8Pj3nUhDM= Subject key identifier: 7B:BE:E2:F7:14:25:83:27:ED:0E:53:2E:58:69:25:CF:4E:C5:A2:35 Authority key identifier: 43:6B:2C:5F:03:F9:1C:A7:41:C6:A2:49:DC:01:5A:6D:54:4A:62:A6 Certificate issuer: /CN=A911647C/serialNumber=436B2C5F03F91CA741C6A249DC015A6D544A62A6 Certificate serial: 0B02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft Manifest number: 0A52 Signing time: Thu 04 Sep 2025 20:10:18 +0000 Manifest this update: Thu 04 Sep 2025 20:10:18 +0000 Manifest next update: Thu 11 Sep 2025 20:10:18 +0000 Files and hashes: 1: Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl (hash: ejk83vQlWkHluUqy0eiRgZHzgH/57TuH5RSsgHKnPew=) 2: 61EFB2ACAC3611EDA5995F3FC4F9AE02.roa (hash: dOCznw/J4c94cUvosSW/kOC2oIL6jbmFAL2+O7rkhag=) 3: 0DE32D9C2B1E11F0AFEB852DC4F9AE02.roa (hash: UfxAxapspNfCULgapde2dhkYeQjgb9Bzqtz/tQtQdPw=) 4: C3E2252E205F11EE8117111CC4F9AE02.roa (hash: 5nE372F+0IwqYdLJZogWsDWbHc80At5gKYtw/eBlXZE=) 5: 8626FFC65AE511EBA452D33EC4F9AE02.roa (hash: 9X7I+brkK/zM7IstcmQqkt3f3WU83UlUm6djQdlHWFo=) 6: 84023C06D24611EABDDF5344C4F9AE02.roa (hash: ejIz9Yuuvy/Lj5GU8AUntC0tFJ+QHqAuBe5ozlZ4Gxw=) 7: 0EA44D4E5ADD11EBB9CEE568C4F9AE02.roa (hash: L+W6w2B2/2JqZHEEy+XRZ0tQqm2y+76IdcVbyBsuS1w=) 8: 553170245AC511EBA052F663C4F9AE02.roa (hash: 1WjAWoIgFya9zcz3aaAfAZPj3TaOx48UOEMbOt7aBvY=) 9: DCF88EAE5ED811EBAB677671C4F9AE02.roa (hash: HSmuGZlq2yjbC7oby/mLDwMQgWOMUuKo8bggRUwHe8s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 20:10:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2818 (0xb02) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911647C, serialNumber=436B2C5F03F91CA741C6A249DC015A6D544A62A6 Validity Not Before: Sep 4 20:10:18 2025 GMT Not After : Sep 11 20:10:18 2025 GMT Subject: CN=68b9f22a-b892 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:a2:c8:a7:f5:e2:be:a6:2f:cf:17:b0:74:97: e5:a7:eb:9a:dd:68:69:1f:3f:c5:dc:c1:2e:7c:a3: 81:92:c8:ac:9e:01:c1:13:cb:ba:47:42:33:a9:d3: 28:7b:ad:f6:8e:53:89:1e:4f:9a:b6:c6:dd:58:a8: 3d:cb:01:cd:27:87:60:a4:be:ff:b1:d4:26:9e:2b: 0e:0d:04:ce:b6:14:a8:0f:3a:46:53:6e:65:a5:cb: 02:f9:f4:8b:14:49:53:91:39:de:46:34:67:2e:58: bf:c8:10:f6:05:f6:b5:90:3b:93:c5:a7:84:fe:43: 0a:4f:e3:0a:7d:e4:83:c0:35:7a:b8:b3:20:c8:88: 79:f2:0a:5a:73:0d:c3:4a:d1:a9:3d:47:81:9e:e4: 6f:0d:d2:5a:04:6c:ae:85:a1:04:18:61:4a:e9:48: 9e:47:47:e2:ba:ea:6f:ca:e2:c2:5d:4e:f7:5d:79: d1:78:8b:72:4d:f0:cf:a9:d9:7c:2b:1a:8b:ac:9b: 2c:7c:43:e0:be:46:c7:7b:60:53:44:ae:e9:3f:f6: 1a:6b:c7:76:f8:82:9b:99:b1:71:56:95:08:34:9f: df:57:b9:43:59:d5:d8:5d:03:a1:6f:eb:c0:5c:f4: 65:85:96:fb:45:b2:08:c2:c9:ee:86:1b:8d:af:49: 6b:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:BE:E2:F7:14:25:83:27:ED:0E:53:2E:58:69:25:CF:4E:C5:A2:35 X509v3 Authority Key Identifier: keyid:43:6B:2C:5F:03:F9:1C:A7:41:C6:A2:49:DC:01:5A:6D:54:4A:62:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:79:28:6c:ec:84:0a:83:ec:9b:1c:48:66:a7:72:cd:dc:ea: fc:66:37:92:d2:68:0f:43:78:91:2f:d8:60:e2:ed:59:bf:5c: 7f:80:38:2a:ff:15:c8:01:5a:40:0b:33:00:ed:93:1c:d4:3b: d0:b9:f8:35:bc:12:21:56:9b:36:34:7d:c6:b4:56:a1:d0:f4: 96:9f:a1:80:55:3f:a1:0f:c3:23:40:92:1a:2f:97:95:ee:cb: bd:0d:2f:82:df:ab:3a:e4:a4:f1:68:64:4b:ad:9c:70:85:2b: 3b:21:86:26:0b:ae:78:5b:86:4b:ad:71:b3:ad:eb:67:48:04: 6a:c4:f6:d9:27:22:0e:93:b1:8e:b1:14:0b:79:84:64:fe:51: 05:d8:96:4e:3d:1a:eb:cb:e3:a0:4d:4e:c4:be:61:9e:26:1f: c4:a1:e2:a0:c5:71:b1:ce:f8:b2:5c:f4:25:25:39:99:43:e5: 3d:fd:0e:1a:5a:e8:02:c9:c9:e5:79:b4:19:3c:25:02:96:d9: 8d:5c:5e:2f:78:68:77:36:72:7f:7f:c4:e7:d6:b0:06:2e:c2: 46:50:33:38:4a:40:45:9d:3d:6c:1a:29:0a:c3:56:dd:12:d4: a3:76:a2:fb:b4:e3:47:9b:d1:60:8a:e2:53:f8:1f:b4:11:81: 80:b1:60:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY0N0MxMTAvBgNVBAUTKDQzNkIyQzVGMDNGOTFDQTc0MUM2QTI0OURDMDE1QTZE NTQ0QTYyQTYwHhcNMjUwOTA0MjAxMDE4WhcNMjUwOTExMjAxMDE4WjAYMRYwFAYD VQQDEw02OGI5ZjIyYS1iODkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5KLIp/XivqYvzxewdJflp+ua3WhpHz/F3MEufKOBksisngHBE8u6R0IzqdMo e632jlOJHk+atsbdWKg9ywHNJ4dgpL7/sdQmnisODQTOthSoDzpGU25lpcsC+fSL FElTkTneRjRnLli/yBD2Bfa1kDuTxaeE/kMKT+MKfeSDwDV6uLMgyIh58gpacw3D StGpPUeBnuRvDdJaBGyuhaEEGGFK6UieR0fiuupvyuLCXU73XXnReItyTfDPqdl8 KxqLrJssfEPgvkbHe2BTRK7pP/Yaa8d2+IKbmbFxVpUINJ/fV7lDWdXYXQOhb+vA XPRlhZb7RbIIwsnuhhuNr0lrxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHu+4vcU JYMn7Q5TLlhpJc9OxaI1MB8GA1UdIwQYMBaAFENrLF8D+RynQcaiSdwBWm1USmKm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjQ3Qy80MzdDQzQwNjg1 MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9RMnNzWHdQNUhLZEJ4cUpKM0FGYWJWUktZ cVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Eyc3NYd1A1SEtkQnhxSkozQUZhYlZSS1lxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjQ3Qy80MzdDQzQwNjg1MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9RMnNzWHdQNUhL ZEJ4cUpKM0FGYWJWUktZcVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXeShs7IQKg+ybHEhmp3LN3Or8ZjeS0mgPQ3iRL9hg4u1Zv1x/gDgq /xXIAVpACzMA7ZMc1DvQufg1vBIhVps2NH3GtFah0PSWn6GAVT+hD8MjQJIaL5eV 7su9DS+C36s65KTxaGRLrZxwhSs7IYYmC654W4ZLrXGzretnSARqxPbZJyIOk7GO sRQLeYRk/lEF2JZOPRrry+OgTU7EvmGeJh/EoeKgxXGxzviyXPQlJTmZQ+U9/Q4a WugCycnlebQZPCUCltmNXF4veGh3NnJ/f8Tn1rAGLsJGUDM4SkBFnT1sGikKw1bd EtSjdqL7tONHm9FgiuJT+B+0EYGAsWDJ -----END CERTIFICATE-----Generated at Fri Sep 5 18:50:26 2025 by rpki-client