$ rpki-client -vvf rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft File: Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft (raw, json) Hash identifier: EnQlcoeAPGGiArkyeiEJEIUOwz5ovKFoAb/dF9obg0U= Subject key identifier: 97:68:56:16:91:14:0C:B4:3C:9C:A7:2E:24:6A:17:01:77:34:78:6A Authority key identifier: 43:6B:2C:5F:03:F9:1C:A7:41:C6:A2:49:DC:01:5A:6D:54:4A:62:A6 Certificate issuer: /CN=A911647C/serialNumber=436B2C5F03F91CA741C6A249DC015A6D544A62A6 Certificate serial: 0B20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft Manifest number: 0A70 Signing time: Sun 02 Nov 2025 19:49:16 +0000 Manifest this update: Sun 02 Nov 2025 19:49:15 +0000 Manifest next update: Sun 09 Nov 2025 19:49:15 +0000 Files and hashes: 1: Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl (hash: 0M2b0mYU3j6rtYDwj8ZCf12g4cUeeDeEO9FVwfAg590=) 2: 61EFB2ACAC3611EDA5995F3FC4F9AE02.roa (hash: dOCznw/J4c94cUvosSW/kOC2oIL6jbmFAL2+O7rkhag=) 3: 0DE32D9C2B1E11F0AFEB852DC4F9AE02.roa (hash: UfxAxapspNfCULgapde2dhkYeQjgb9Bzqtz/tQtQdPw=) 4: C3E2252E205F11EE8117111CC4F9AE02.roa (hash: 5nE372F+0IwqYdLJZogWsDWbHc80At5gKYtw/eBlXZE=) 5: 8626FFC65AE511EBA452D33EC4F9AE02.roa (hash: 9X7I+brkK/zM7IstcmQqkt3f3WU83UlUm6djQdlHWFo=) 6: 84023C06D24611EABDDF5344C4F9AE02.roa (hash: ejIz9Yuuvy/Lj5GU8AUntC0tFJ+QHqAuBe5ozlZ4Gxw=) 7: 0EA44D4E5ADD11EBB9CEE568C4F9AE02.roa (hash: L+W6w2B2/2JqZHEEy+XRZ0tQqm2y+76IdcVbyBsuS1w=) 8: 553170245AC511EBA052F663C4F9AE02.roa (hash: 1WjAWoIgFya9zcz3aaAfAZPj3TaOx48UOEMbOt7aBvY=) 9: DCF88EAE5ED811EBAB677671C4F9AE02.roa (hash: HSmuGZlq2yjbC7oby/mLDwMQgWOMUuKo8bggRUwHe8s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:49:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2848 (0xb20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911647C, serialNumber=436B2C5F03F91CA741C6A249DC015A6D544A62A6 Validity Not Before: Nov 2 19:49:15 2025 GMT Not After : Nov 9 19:49:15 2025 GMT Subject: CN=6907b5bb-babb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:52:e7:70:36:a7:be:b1:6c:0a:81:93:33:7b: 4b:c5:af:5e:72:0b:23:a0:cb:bf:e6:c4:13:4c:d3: f0:e4:f0:05:3d:5a:8e:c4:c0:51:a5:9d:dd:59:9b: db:0f:57:05:3e:93:d6:01:65:8f:e6:f4:c8:8a:fc: 6f:eb:be:30:da:27:24:7c:5e:89:6e:b1:dc:a8:86: c7:04:76:d3:8e:e2:56:28:3b:f2:5d:7a:3c:97:6a: 3e:d3:8a:be:2c:50:03:99:53:13:bc:ce:55:2a:82: 3f:8d:81:e8:30:2d:df:31:d0:68:e1:e5:d3:4c:f1: 4e:94:83:4c:a0:9a:2f:ca:07:9e:da:73:24:5b:6e: f4:72:2e:a2:0c:ee:66:d4:77:11:d5:0f:29:b9:54: 98:c5:57:a7:ec:3f:50:3d:69:58:6e:6b:c9:f2:e3: 02:0a:b1:66:17:18:32:67:e9:1f:ce:90:f3:6d:85: 31:34:f4:e6:ec:23:0e:c8:37:87:e1:21:2c:69:eb: a7:6b:51:d6:86:87:f0:e3:24:bc:8c:55:92:63:a3: 41:28:a0:73:7d:ba:c2:72:84:61:59:02:51:3a:3c: ca:97:2a:37:a2:67:70:4e:dc:00:b3:08:e3:ef:ca: 08:cf:9f:16:a5:92:18:78:f2:8f:a0:63:e6:0e:7e: 73:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:68:56:16:91:14:0C:B4:3C:9C:A7:2E:24:6A:17:01:77:34:78:6A X509v3 Authority Key Identifier: keyid:43:6B:2C:5F:03:F9:1C:A7:41:C6:A2:49:DC:01:5A:6D:54:4A:62:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:70:e9:4d:cd:c4:ba:31:e4:61:a8:0d:fa:d6:96:4e:33:18: da:92:08:94:8c:9b:a7:c4:ae:94:e8:de:e2:7e:73:69:0b:c7: 86:a9:a2:56:a7:f0:f7:45:b4:13:9a:74:34:fc:c8:d0:c9:a2: cc:33:ef:9d:ef:b8:00:4e:65:e9:e8:e8:4e:4b:ef:22:fb:96: af:2a:5c:81:9d:58:08:94:ad:ad:5e:d1:69:c9:b6:27:ef:52: 69:f0:41:8e:0c:0c:36:cf:46:20:ff:56:33:43:36:53:2c:22: c7:59:b9:1c:1c:c2:23:53:3b:34:d2:c3:0d:d6:43:44:c8:4f: cf:60:ea:3c:93:e1:2f:aa:19:fd:e9:21:4e:0a:a7:0d:4b:50: a7:fb:38:06:3d:b6:52:9d:8a:0c:f9:40:39:dc:56:76:98:cf: 42:19:11:ff:7e:e7:d6:4a:b9:52:d0:f3:3b:13:b4:59:5e:ef: 8b:99:6a:06:90:9c:04:f1:ef:0c:1c:81:b8:74:48:b3:12:d0: 19:41:42:72:2f:3a:6d:83:81:58:8a:89:51:a7:ee:bd:7b:64: 1a:99:a8:9a:3f:e4:52:9e:0c:af:8d:e1:98:83:6a:fa:8a:13: 8a:0a:da:f2:7b:1b:d1:0d:84:b9:80:75:3a:2d:6b:43:82:1d: e0:55:46:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCyAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY0N0MxMTAvBgNVBAUTKDQzNkIyQzVGMDNGOTFDQTc0MUM2QTI0OURDMDE1QTZE NTQ0QTYyQTYwHhcNMjUxMTAyMTk0OTE1WhcNMjUxMTA5MTk0OTE1WjAYMRYwFAYD VQQDEw02OTA3YjViYi1iYWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2FLncDanvrFsCoGTM3tLxa9ecgsjoMu/5sQTTNPw5PAFPVqOxMBRpZ3dWZvb D1cFPpPWAWWP5vTIivxv674w2ickfF6JbrHcqIbHBHbTjuJWKDvyXXo8l2o+04q+ LFADmVMTvM5VKoI/jYHoMC3fMdBo4eXTTPFOlINMoJovygee2nMkW270ci6iDO5m 1HcR1Q8puVSYxVen7D9QPWlYbmvJ8uMCCrFmFxgyZ+kfzpDzbYUxNPTm7CMOyDeH 4SEsaeuna1HWhofw4yS8jFWSY6NBKKBzfbrCcoRhWQJROjzKlyo3omdwTtwAswjj 78oIz58WpZIYePKPoGPmDn5zLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJdoVhaR FAy0PJynLiRqFwF3NHhqMB8GA1UdIwQYMBaAFENrLF8D+RynQcaiSdwBWm1USmKm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjQ3Qy80MzdDQzQwNjg1 MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9RMnNzWHdQNUhLZEJ4cUpKM0FGYWJWUktZ cVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Eyc3NYd1A1SEtkQnhxSkozQUZhYlZSS1lxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjQ3Qy80MzdDQzQwNjg1MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9RMnNzWHdQNUhL ZEJ4cUpKM0FGYWJWUktZcVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbcOlNzcS6MeRhqA361pZOMxjakgiUjJunxK6U6N7ifnNpC8eGqaJW p/D3RbQTmnQ0/MjQyaLMM++d77gATmXp6OhOS+8i+5avKlyBnVgIlK2tXtFpybYn 71Jp8EGODAw2z0Yg/1YzQzZTLCLHWbkcHMIjUzs00sMN1kNEyE/PYOo8k+Evqhn9 6SFOCqcNS1Cn+zgGPbZSnYoM+UA53FZ2mM9CGRH/fufWSrlS0PM7E7RZXu+LmWoG kJwE8e8MHIG4dEizEtAZQUJyLzptg4FYiolRp+69e2QamaiaP+RSngyvjeGYg2r6 ihOKCtryexvRDYS5gHU6LWtDgh3gVUac -----END CERTIFICATE-----Generated at Tue Nov 4 20:23:39 2025 by rpki-client