$ rpki-client -vvf rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft File: Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft (raw, json) Hash identifier: WjZI/SKfbi80RFD9QWRfriZmpwl/mrZsJrOiiyRez5I= Subject key identifier: 0E:2D:03:5B:32:F6:5C:32:C0:08:60:0C:80:5A:23:D3:86:CB:86:7A Authority key identifier: 43:6B:2C:5F:03:F9:1C:A7:41:C6:A2:49:DC:01:5A:6D:54:4A:62:A6 Certificate issuer: /CN=A911647C/serialNumber=436B2C5F03F91CA741C6A249DC015A6D544A62A6 Certificate serial: 0B19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft Manifest number: 0A69 Signing time: Mon 20 Oct 2025 20:41:05 +0000 Manifest this update: Mon 20 Oct 2025 20:41:05 +0000 Manifest next update: Mon 27 Oct 2025 20:41:05 +0000 Files and hashes: 1: Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl (hash: PFNq4rcvr1fhjuHnPCciceJ4swfYug+ogGmUOrLE5L8=) 2: 61EFB2ACAC3611EDA5995F3FC4F9AE02.roa (hash: dOCznw/J4c94cUvosSW/kOC2oIL6jbmFAL2+O7rkhag=) 3: 0DE32D9C2B1E11F0AFEB852DC4F9AE02.roa (hash: UfxAxapspNfCULgapde2dhkYeQjgb9Bzqtz/tQtQdPw=) 4: C3E2252E205F11EE8117111CC4F9AE02.roa (hash: 5nE372F+0IwqYdLJZogWsDWbHc80At5gKYtw/eBlXZE=) 5: 8626FFC65AE511EBA452D33EC4F9AE02.roa (hash: 9X7I+brkK/zM7IstcmQqkt3f3WU83UlUm6djQdlHWFo=) 6: 84023C06D24611EABDDF5344C4F9AE02.roa (hash: ejIz9Yuuvy/Lj5GU8AUntC0tFJ+QHqAuBe5ozlZ4Gxw=) 7: 0EA44D4E5ADD11EBB9CEE568C4F9AE02.roa (hash: L+W6w2B2/2JqZHEEy+XRZ0tQqm2y+76IdcVbyBsuS1w=) 8: 553170245AC511EBA052F663C4F9AE02.roa (hash: 1WjAWoIgFya9zcz3aaAfAZPj3TaOx48UOEMbOt7aBvY=) 9: DCF88EAE5ED811EBAB677671C4F9AE02.roa (hash: HSmuGZlq2yjbC7oby/mLDwMQgWOMUuKo8bggRUwHe8s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 20:41:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2841 (0xb19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911647C, serialNumber=436B2C5F03F91CA741C6A249DC015A6D544A62A6 Validity Not Before: Oct 20 20:41:05 2025 GMT Not After : Oct 27 20:41:05 2025 GMT Subject: CN=68f69e61-412a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:d2:3f:f4:02:b9:b6:75:c4:b5:a3:ea:17:6f: 02:73:ce:d1:d9:1e:aa:27:5b:28:37:1d:00:5e:14: 11:42:14:b3:4f:c7:c6:bc:97:33:fa:ed:59:3a:5f: b4:a5:19:71:3c:69:eb:6f:1e:a9:55:4f:07:a4:4b: 0d:c7:a3:c2:9f:fa:52:a2:1a:5e:51:14:1c:0c:57: b4:3f:88:2d:d6:b4:ef:db:ca:f2:fd:61:58:93:ec: 57:0d:99:29:75:a4:bf:28:e3:40:50:40:15:04:6d: 13:13:53:06:7f:09:81:5a:1b:4d:b6:e5:1f:52:30: f8:0f:69:10:60:55:71:6e:f5:8f:c4:74:90:db:06: 6c:ff:59:c2:4c:0b:77:e2:5a:9f:bc:dd:4b:6a:5f: 33:3e:94:8a:b1:89:b3:eb:68:3c:0f:44:06:ab:66: b4:ef:d3:88:4a:9b:63:3c:c7:be:8c:71:4f:e7:a6: 60:d1:37:38:77:25:5b:0e:4d:91:52:d7:36:92:17: da:54:4e:40:64:17:60:a4:6a:00:ab:44:32:4b:19: 6b:52:5a:ca:fe:d3:64:c4:a8:36:90:e5:21:46:57: 0d:39:21:75:0b:2a:c3:61:8e:ac:41:60:85:18:dc: 31:cd:c6:10:ec:9a:57:10:b8:3b:2e:9c:3a:02:f3: 89:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:2D:03:5B:32:F6:5C:32:C0:08:60:0C:80:5A:23:D3:86:CB:86:7A X509v3 Authority Key Identifier: keyid:43:6B:2C:5F:03:F9:1C:A7:41:C6:A2:49:DC:01:5A:6D:54:4A:62:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e0:cb:3b:63:24:4b:f9:33:f1:89:d3:bb:cc:f1:59:26:db:69: e6:fe:47:6d:ca:32:07:06:2f:c6:7e:a9:b3:51:3e:57:b9:9f: 9d:37:ac:cd:06:1b:4c:28:e4:4c:b6:03:42:7f:88:bb:7b:ff: 13:e6:5f:91:87:05:65:c9:62:4b:4b:16:be:5c:fe:87:18:cb: d1:84:99:37:53:3c:49:e0:68:a5:f7:b3:99:6a:bc:b7:66:07: a7:5f:d1:c8:28:1c:71:c5:a8:36:85:5c:61:54:91:90:7b:9c: dd:d1:01:0e:f6:26:85:b6:d5:cb:73:7e:9c:49:b8:e7:ca:da: 1a:82:34:01:64:54:ba:10:56:ab:dc:f6:20:c5:81:f2:6b:d8: 9f:57:df:0b:56:c1:13:3e:fa:6e:54:06:1c:23:0d:b3:18:9d: e7:28:cc:74:54:ac:f6:9e:6b:12:8a:d2:fe:1a:5d:89:40:66: 50:df:f9:f1:f3:a5:33:2e:81:58:45:2d:cc:5a:45:43:45:23: 73:c7:a6:31:61:14:61:a0:d1:94:ec:3a:2a:8a:e5:2b:ef:41: 8d:da:51:35:02:1b:74:30:6c:24:99:c4:e8:86:53:cd:62:cb: 46:44:08:13:fa:8f:90:e6:6d:da:71:65:33:fd:0b:41:92:b6: 8b:25:8b:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY0N0MxMTAvBgNVBAUTKDQzNkIyQzVGMDNGOTFDQTc0MUM2QTI0OURDMDE1QTZE NTQ0QTYyQTYwHhcNMjUxMDIwMjA0MTA1WhcNMjUxMDI3MjA0MTA1WjAYMRYwFAYD VQQDEw02OGY2OWU2MS00MTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0dI/9AK5tnXEtaPqF28Cc87R2R6qJ1soNx0AXhQRQhSzT8fGvJcz+u1ZOl+0 pRlxPGnrbx6pVU8HpEsNx6PCn/pSohpeURQcDFe0P4gt1rTv28ry/WFYk+xXDZkp daS/KONAUEAVBG0TE1MGfwmBWhtNtuUfUjD4D2kQYFVxbvWPxHSQ2wZs/1nCTAt3 4lqfvN1Lal8zPpSKsYmz62g8D0QGq2a079OISptjPMe+jHFP56Zg0Tc4dyVbDk2R Utc2khfaVE5AZBdgpGoAq0QySxlrUlrK/tNkxKg2kOUhRlcNOSF1CyrDYY6sQWCF GNwxzcYQ7JpXELg7Lpw6AvOJpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA4tA1sy 9lwywAhgDIBaI9OGy4Z6MB8GA1UdIwQYMBaAFENrLF8D+RynQcaiSdwBWm1USmKm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjQ3Qy80MzdDQzQwNjg1 MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9RMnNzWHdQNUhLZEJ4cUpKM0FGYWJWUktZ cVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Eyc3NYd1A1SEtkQnhxSkozQUZhYlZSS1lxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjQ3Qy80MzdDQzQwNjg1MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9RMnNzWHdQNUhL ZEJ4cUpKM0FGYWJWUktZcVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDgyztjJEv5M/GJ07vM8Vkm22nm/kdtyjIHBi/GfqmzUT5XuZ+dN6zN BhtMKORMtgNCf4i7e/8T5l+RhwVlyWJLSxa+XP6HGMvRhJk3UzxJ4Gil97OZary3 ZgenX9HIKBxxxag2hVxhVJGQe5zd0QEO9iaFttXLc36cSbjnytoagjQBZFS6EFar 3PYgxYHya9ifV98LVsETPvpuVAYcIw2zGJ3nKMx0VKz2nmsSitL+Gl2JQGZQ3/nx 86UzLoFYRS3MWkVDRSNzx6YxYRRhoNGU7DoqiuUr70GN2lE1Aht0MGwkmcTohlPN YstGRAgT+o+Q5m3acWUz/QtBkraLJYv/ -----END CERTIFICATE-----Generated at Tue Oct 21 09:44:01 2025 by rpki-client