$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft File: q2JivH0C7BrUi3HamLc9IqNi2vA.mft (raw, json) Hash identifier: cUQlh1bbb4Br3m2BAIZNFSihn/7QJSq20WsmuN/ST7g= Subject key identifier: 03:1D:66:88:E5:F1:FA:0A:F8:E3:0D:94:2F:D3:6B:7E:1A:B6:6C:9D Authority key identifier: AB:62:62:BC:7D:02:EC:1A:D4:8B:71:DA:98:B7:3D:22:A3:62:DA:F0 Certificate issuer: /CN=A91E2454/serialNumber=AB6262BC7D02EC1AD48B71DA98B73D22A362DAF0 Certificate serial: 362A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft Manifest number: 355F Signing time: Thu 04 Sep 2025 14:29:25 +0000 Manifest this update: Thu 04 Sep 2025 14:29:25 +0000 Manifest next update: Thu 11 Sep 2025 14:29:25 +0000 Files and hashes: 1: q2JivH0C7BrUi3HamLc9IqNi2vA.crl (hash: tphtb+3axcF9ThyX0lurGU9sJJOBv2kUC+QZ+WNLVDo=) 2: 4D5247EEA4C911E782854F50C4F9AE02.roa (hash: 0ae8AXI4ti/g7kjicz0FuqIQr5KuRMl+VwlLXivxPFk=) 3: 78123422B0CD11E58B55FC73C4F9AE02.roa (hash: ELjtbDvUJdRIE0OkklMq1ckQ7DJ/Pb2ipSH84CeiKCg=) 4: 7B938024B0CD11E58B55FC73C4F9AE02.roa (hash: 7ydpzn/QoSWEXvjnGZJ1ta2JwlGF9ANK2aScVlru+Tc=) 5: 7F4D30ACB0CD11E58B55FC73C4F9AE02.roa (hash: YwQuCfTd/qrlJSeamxwuUJ+BvQmXE+p3bNmQY1uUsFo=) 6: 4BF67550A4C911E782854F50C4F9AE02.roa (hash: nr6/7CG6oXudz0l6iz2yM+GZu8wisnZlSv+XVHe+5pE=) 7: 7D920C1AB0CD11E58B55FC73C4F9AE02.roa (hash: GEX+sNV+gjoBRlfbvjQXv3uXeYnL4cH1wK1KCC8jYpA=) 8: 9C193BAC08C511EDBC862E48C4F9AE02.roa (hash: 896PbO0EonUimzXSLkBsI3knk6hd3BAHtAyqYKCmbBE=) 9: 816FA9C0B07611EFA5773917C4F9AE02.roa (hash: Pe6tz3jNRPR6gXfsK8tx8lrjl8rvWTB+EFpcz7nsWc8=) 10: 4C9925F2A4C911E782854F50C4F9AE02.roa (hash: R2/SizcxlFy6GiKbWh9BC6IePjx7ZGaL4yUJEBHXwDg=) 11: 8207CCA0906C11EC86E8B711C4F9AE02.roa (hash: /ugniFpN/rGX8I1uxfmMZJryeFfYuWgB3WroPzoi6qU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.crl rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 14:29:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13866 (0x362a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2454, serialNumber=AB6262BC7D02EC1AD48B71DA98B73D22A362DAF0 Validity Not Before: Sep 4 14:29:25 2025 GMT Not After : Sep 11 14:29:25 2025 GMT Subject: CN=68b9a245-6f64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:58:2d:cd:24:12:40:d6:c0:ce:7f:ad:79:b3: 1a:f3:1c:02:34:7b:0c:6d:21:48:aa:e7:df:bc:94: 26:7f:96:6a:3e:a5:b0:cf:22:89:95:ca:c5:56:6b: 69:2c:45:a6:16:29:9f:b3:69:2a:25:fe:36:e6:87: d4:c9:22:c7:1e:08:5b:96:8e:60:02:23:5c:93:d3: b2:f1:19:e8:07:f0:76:6c:7e:1c:c3:d3:d2:7a:00: 74:6b:49:fd:24:c4:03:c7:3c:fe:4b:1d:ac:3d:16: ba:52:2a:9d:24:12:9f:ac:13:7e:4f:92:41:92:2d: e1:ac:70:1b:b9:e4:a6:4e:c7:8f:98:b6:5a:fc:cc: b3:9a:fd:3f:8c:b5:04:f6:6e:62:d5:2e:e3:89:4f: f2:d6:18:6c:32:5e:4f:75:a3:1d:6a:c6:e9:10:2e: 08:88:ce:f4:bd:a1:fc:42:69:6b:ab:6a:c9:71:2f: ff:7f:da:f4:d8:86:51:3d:4b:77:a7:03:af:9a:51: 2d:b8:6b:a9:c1:91:0e:7b:43:2e:d8:df:7f:32:8c: 8d:0f:37:22:59:0e:5c:0c:4c:7c:45:48:e3:8a:46: 08:2a:a4:15:7c:ad:74:ba:15:97:a9:3d:c2:86:93: 14:86:b9:c7:ed:ba:fe:27:0c:fa:7d:59:4b:ee:81: c3:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:1D:66:88:E5:F1:FA:0A:F8:E3:0D:94:2F:D3:6B:7E:1A:B6:6C:9D X509v3 Authority Key Identifier: keyid:AB:62:62:BC:7D:02:EC:1A:D4:8B:71:DA:98:B7:3D:22:A3:62:DA:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:1d:54:a6:e3:53:93:97:86:55:bd:e3:32:20:76:10:77:9f: 81:b2:72:e6:3c:01:65:37:26:65:73:ac:55:05:9b:70:db:09: 08:b0:30:8f:90:5a:16:87:0e:fb:84:06:05:4d:8d:93:01:4e: 25:e4:1d:21:31:63:80:91:35:31:f2:25:46:ce:4a:85:66:2b: 73:b4:ad:cd:bc:2d:ad:a8:01:6c:ea:0d:87:88:b8:aa:60:ca: 95:09:09:2a:9b:96:52:d5:dd:9a:2e:32:d1:6e:5b:e3:f6:f7: 53:ec:b6:e7:11:f4:d1:51:d0:3d:2b:bb:6b:e9:57:0f:3c:90: 6d:b0:37:59:92:68:c1:61:18:56:96:09:3d:aa:7e:c3:6a:72: a0:82:7f:8c:83:d8:fb:66:29:f5:bd:25:b8:b1:30:bc:dd:ae: 04:f0:ea:f7:c9:9f:08:cb:f5:6e:e3:8f:b1:d9:a7:8f:c1:dc: 93:6c:0f:ad:27:7d:70:b1:a6:f6:bd:86:3a:20:f8:a7:18:23: 3a:fb:69:9c:3c:cb:03:d1:dc:90:fe:15:a0:e3:5b:07:8c:1a: 4b:ab:10:72:ef:36:b2:cc:b8:2e:f4:17:c8:3c:6d:43:51:2e: 62:8f:e6:60:24:15:0c:7c:d7:92:fa:4f:2b:19:22:8e:58:ed: 86:47:05:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNiowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI0NTQxMTAvBgNVBAUTKEFCNjI2MkJDN0QwMkVDMUFENDhCNzFEQTk4QjczRDIy QTM2MkRBRjAwHhcNMjUwOTA0MTQyOTI1WhcNMjUwOTExMTQyOTI1WjAYMRYwFAYD VQQDEw02OGI5YTI0NS02ZjY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyFgtzSQSQNbAzn+tebMa8xwCNHsMbSFIquffvJQmf5ZqPqWwzyKJlcrFVmtp LEWmFimfs2kqJf425ofUySLHHghblo5gAiNck9Oy8RnoB/B2bH4cw9PSegB0a0n9 JMQDxzz+Sx2sPRa6UiqdJBKfrBN+T5JBki3hrHAbueSmTsePmLZa/Myzmv0/jLUE 9m5i1S7jiU/y1hhsMl5PdaMdasbpEC4IiM70vaH8Qmlrq2rJcS//f9r02IZRPUt3 pwOvmlEtuGupwZEOe0Mu2N9/MoyNDzciWQ5cDEx8RUjjikYIKqQVfK10uhWXqT3C hpMUhrnH7br+Jwz6fVlL7oHD8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAMdZojl 8foK+OMNlC/Ta34atmydMB8GA1UdIwQYMBaAFKtiYrx9Auwa1Itx2pi3PSKjYtrw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjQ1NC9ENEMzMEI0MjFE ODcxMUUyQTE5ODIyRTAwOEIwMkNEMi9xMkppdkgwQzdCclVpM0hhbUxjOUlxTmky dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3EySml2SDBDN0JyVWkzSGFtTGM5SXFOaTJ2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjQ1NC9ENEMzMEI0MjFEODcxMUUyQTE5ODIyRTAwOEIwMkNEMi9xMkppdkgwQzdC clVpM0hhbUxjOUlxTmkydkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLHVSm41OTl4ZVveMyIHYQd5+BsnLmPAFlNyZlc6xVBZtw2wkIsDCP kFoWhw77hAYFTY2TAU4l5B0hMWOAkTUx8iVGzkqFZitztK3NvC2tqAFs6g2HiLiq YMqVCQkqm5ZS1d2aLjLRblvj9vdT7LbnEfTRUdA9K7tr6VcPPJBtsDdZkmjBYRhW lgk9qn7DanKggn+Mg9j7Zin1vSW4sTC83a4E8Or3yZ8Iy/Vu44+x2aePwdyTbA+t J31wsab2vYY6IPinGCM6+2mcPMsD0dyQ/hWg41sHjBpLqxBy7zayzLgu9BfIPG1D US5ij+ZgJBUMfNeS+k8rGSKOWO2GRwWH -----END CERTIFICATE-----Generated at Sat Sep 6 12:08:17 2025 by rpki-client