$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft File: q2JivH0C7BrUi3HamLc9IqNi2vA.mft (raw, json) Hash identifier: KxB8GPzuZEvGx/oJmQOtwqzeXztcEKv9oUghU7scvZ4= Subject key identifier: 4D:0A:4E:C8:BB:59:7E:91:F5:AA:81:36:1B:41:BA:8F:46:AA:DA:1E Authority key identifier: AB:62:62:BC:7D:02:EC:1A:D4:8B:71:DA:98:B7:3D:22:A3:62:DA:F0 Certificate issuer: /CN=A91E2454/serialNumber=AB6262BC7D02EC1AD48B71DA98B73D22A362DAF0 Certificate serial: 3646 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft Manifest number: 3579 Signing time: Wed 22 Oct 2025 14:30:31 +0000 Manifest this update: Wed 22 Oct 2025 14:30:31 +0000 Manifest next update: Wed 29 Oct 2025 14:30:31 +0000 Files and hashes: 1: q2JivH0C7BrUi3HamLc9IqNi2vA.crl (hash: HZaSk91XlX6MfKts7rLhdZyoJtYPR0tbgOOxMrzo3Nw=) 2: 4D5247EEA4C911E782854F50C4F9AE02.roa (hash: 0ae8AXI4ti/g7kjicz0FuqIQr5KuRMl+VwlLXivxPFk=) 3: 78123422B0CD11E58B55FC73C4F9AE02.roa (hash: ELjtbDvUJdRIE0OkklMq1ckQ7DJ/Pb2ipSH84CeiKCg=) 4: F1F087928C6B11F0B1A50E82C4F9AE02.roa (hash: 7tfXuCQjw9T0qFosF2h5F8UNVF4qyYhcz32Eciv+YZo=) 5: 7B938024B0CD11E58B55FC73C4F9AE02.roa (hash: 7ydpzn/QoSWEXvjnGZJ1ta2JwlGF9ANK2aScVlru+Tc=) 6: 7F4D30ACB0CD11E58B55FC73C4F9AE02.roa (hash: YwQuCfTd/qrlJSeamxwuUJ+BvQmXE+p3bNmQY1uUsFo=) 7: D4B25B928C6B11F09545B981C4F9AE02.roa (hash: pR1yc8aEmPb2Q8qUdycAP8NbLrXlxbLvJ23POTBrAso=) 8: 4BF67550A4C911E782854F50C4F9AE02.roa (hash: nr6/7CG6oXudz0l6iz2yM+GZu8wisnZlSv+XVHe+5pE=) 9: 7D920C1AB0CD11E58B55FC73C4F9AE02.roa (hash: GEX+sNV+gjoBRlfbvjQXv3uXeYnL4cH1wK1KCC8jYpA=) 10: 9C193BAC08C511EDBC862E48C4F9AE02.roa (hash: 896PbO0EonUimzXSLkBsI3knk6hd3BAHtAyqYKCmbBE=) 11: 4C9925F2A4C911E782854F50C4F9AE02.roa (hash: R2/SizcxlFy6GiKbWh9BC6IePjx7ZGaL4yUJEBHXwDg=) 12: 8207CCA0906C11EC86E8B711C4F9AE02.roa (hash: /ugniFpN/rGX8I1uxfmMZJryeFfYuWgB3WroPzoi6qU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.crl rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 14:30:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13894 (0x3646) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2454, serialNumber=AB6262BC7D02EC1AD48B71DA98B73D22A362DAF0 Validity Not Before: Oct 22 14:30:31 2025 GMT Not After : Oct 29 14:30:31 2025 GMT Subject: CN=68f8ea87-549a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:99:f8:36:16:95:f2:a0:ba:2d:48:ee:2c:f3: 80:0f:cd:3d:2e:bb:1d:3c:d2:76:12:e7:a0:8c:55: 19:a0:57:e1:ea:60:0a:0e:3f:3e:72:5c:6f:f0:c5: 9f:e6:e7:82:86:05:ca:6a:c0:ab:f4:26:de:c6:70: 0e:aa:f2:d5:42:e9:ef:8b:45:ca:cf:a7:94:c9:57: 41:7a:11:38:82:73:85:47:d8:9b:b6:4a:0b:92:f2: e8:2c:99:cd:77:19:11:cf:29:05:ab:67:69:8c:61: db:25:47:7e:09:e3:67:82:14:5a:00:be:16:cb:81: 43:ac:c7:b4:3b:52:40:61:48:e3:02:80:ee:cd:f2: c0:2d:92:10:52:c9:17:ff:41:38:ef:0c:a2:cf:99: 67:d0:b7:1e:60:4c:a5:11:ec:5f:29:cf:b8:3b:af: 51:ae:5b:46:7f:50:e5:08:9d:5a:54:ec:eb:e3:c0: c0:81:8c:a3:7e:4c:99:84:29:84:77:4e:8d:2c:07: 5d:5c:b1:1f:9c:b8:f2:11:2d:4c:d6:43:9a:12:60: 93:b2:b0:2c:65:ac:aa:8e:d2:4b:92:bf:72:73:87: 41:49:4d:fa:74:82:67:37:a1:f4:89:80:f4:87:16: 43:a0:42:b6:9e:4f:89:47:62:5a:26:59:d2:22:65: 61:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:0A:4E:C8:BB:59:7E:91:F5:AA:81:36:1B:41:BA:8F:46:AA:DA:1E X509v3 Authority Key Identifier: keyid:AB:62:62:BC:7D:02:EC:1A:D4:8B:71:DA:98:B7:3D:22:A3:62:DA:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:34:35:5d:4e:e0:85:46:d7:fe:ff:ba:91:21:e4:74:39:a6: a7:35:d0:77:e1:96:b4:33:9d:29:01:e4:10:e4:4e:db:2a:ed: aa:b5:2d:2f:2d:4b:69:b4:d4:41:62:0a:b7:71:09:c9:65:fb: f1:45:13:a5:bc:3d:c3:73:0f:e6:ff:b7:e0:21:37:6f:89:8c: f0:23:11:e3:80:9a:89:12:04:8b:f8:c5:8b:7e:67:08:7d:d3: 69:8a:66:71:6a:a8:3d:bc:66:43:dd:57:e4:77:e4:4e:d1:51: b3:36:09:78:cd:7a:cc:14:7b:73:72:51:51:15:b6:ef:1c:4d: 59:b6:56:81:ea:cc:aa:40:74:0c:90:31:6d:1b:65:87:22:dd: 4c:2f:9c:fe:d4:b1:b1:4b:c4:b9:43:fd:02:30:47:2c:f4:12: b5:94:e5:2e:62:9a:e6:21:1f:dc:4a:50:d2:9d:b7:24:4a:48: 66:46:a0:54:fb:e3:38:31:de:89:48:42:ab:51:e1:6b:6c:54: b3:d3:31:eb:58:2f:0d:de:a3:44:46:0c:ce:c8:33:8a:cc:e2: da:a6:93:18:61:b0:bc:c3:ef:d5:ec:86:4b:cf:85:5b:b2:e5: 46:15:5b:8f:29:cd:3c:f5:8e:03:b0:da:c0:f0:32:c7:c9:bc: 74:54:5d:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNkYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI0NTQxMTAvBgNVBAUTKEFCNjI2MkJDN0QwMkVDMUFENDhCNzFEQTk4QjczRDIy QTM2MkRBRjAwHhcNMjUxMDIyMTQzMDMxWhcNMjUxMDI5MTQzMDMxWjAYMRYwFAYD VQQDEw02OGY4ZWE4Ny01NDlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2pn4NhaV8qC6LUjuLPOAD809LrsdPNJ2EuegjFUZoFfh6mAKDj8+clxv8MWf 5ueChgXKasCr9CbexnAOqvLVQunvi0XKz6eUyVdBehE4gnOFR9ibtkoLkvLoLJnN dxkRzykFq2dpjGHbJUd+CeNnghRaAL4Wy4FDrMe0O1JAYUjjAoDuzfLALZIQUskX /0E47wyiz5ln0LceYEylEexfKc+4O69RrltGf1DlCJ1aVOzr48DAgYyjfkyZhCmE d06NLAddXLEfnLjyES1M1kOaEmCTsrAsZayqjtJLkr9yc4dBSU36dIJnN6H0iYD0 hxZDoEK2nk+JR2JaJlnSImVhMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE0KTsi7 WX6R9aqBNhtBuo9GqtoeMB8GA1UdIwQYMBaAFKtiYrx9Auwa1Itx2pi3PSKjYtrw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjQ1NC9ENEMzMEI0MjFE ODcxMUUyQTE5ODIyRTAwOEIwMkNEMi9xMkppdkgwQzdCclVpM0hhbUxjOUlxTmky dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3EySml2SDBDN0JyVWkzSGFtTGM5SXFOaTJ2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjQ1NC9ENEMzMEI0MjFEODcxMUUyQTE5ODIyRTAwOEIwMkNEMi9xMkppdkgwQzdC clVpM0hhbUxjOUlxTmkydkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfNDVdTuCFRtf+/7qRIeR0OaanNdB34Za0M50pAeQQ5E7bKu2qtS0v LUtptNRBYgq3cQnJZfvxRROlvD3Dcw/m/7fgITdviYzwIxHjgJqJEgSL+MWLfmcI fdNpimZxaqg9vGZD3Vfkd+RO0VGzNgl4zXrMFHtzclFRFbbvHE1ZtlaB6syqQHQM kDFtG2WHIt1ML5z+1LGxS8S5Q/0CMEcs9BK1lOUuYprmIR/cSlDSnbckSkhmRqBU ++M4Md6JSEKrUeFrbFSz0zHrWC8N3qNERgzOyDOKzOLappMYYbC8w+/V7IZLz4Vb suVGFVuPKc089Y4DsNrA8DLHybx0VF3P -----END CERTIFICATE-----Generated at Thu Oct 23 05:59:59 2025 by rpki-client