$ rpki-client -vvf rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft File: Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft (raw, json) Hash identifier: kxGSQ/amfm2jCjx+UvPAYRTX7MZHeIzzdo4qTdQC14g= Subject key identifier: A1:2A:A6:BB:3F:C2:D1:EE:27:82:E4:DE:D7:5A:36:76:F9:B0:D6:A1 Authority key identifier: 43:6B:2C:5F:03:F9:1C:A7:41:C6:A2:49:DC:01:5A:6D:54:4A:62:A6 Certificate issuer: /CN=A911647C/serialNumber=436B2C5F03F91CA741C6A249DC015A6D544A62A6 Certificate serial: 0AF5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft Manifest number: 0A45 Signing time: Sun 10 Aug 2025 19:58:06 +0000 Manifest this update: Sun 10 Aug 2025 19:58:05 +0000 Manifest next update: Sun 17 Aug 2025 19:58:05 +0000 Files and hashes: 1: Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl (hash: 1Bf1iimFDIz+UVuGwTD9yOb3pn+b55/bwE8HZA3T6Rw=) 2: 61EFB2ACAC3611EDA5995F3FC4F9AE02.roa (hash: dOCznw/J4c94cUvosSW/kOC2oIL6jbmFAL2+O7rkhag=) 3: 0DE32D9C2B1E11F0AFEB852DC4F9AE02.roa (hash: UfxAxapspNfCULgapde2dhkYeQjgb9Bzqtz/tQtQdPw=) 4: C3E2252E205F11EE8117111CC4F9AE02.roa (hash: 5nE372F+0IwqYdLJZogWsDWbHc80At5gKYtw/eBlXZE=) 5: 8626FFC65AE511EBA452D33EC4F9AE02.roa (hash: 9X7I+brkK/zM7IstcmQqkt3f3WU83UlUm6djQdlHWFo=) 6: 84023C06D24611EABDDF5344C4F9AE02.roa (hash: ejIz9Yuuvy/Lj5GU8AUntC0tFJ+QHqAuBe5ozlZ4Gxw=) 7: 0EA44D4E5ADD11EBB9CEE568C4F9AE02.roa (hash: L+W6w2B2/2JqZHEEy+XRZ0tQqm2y+76IdcVbyBsuS1w=) 8: 553170245AC511EBA052F663C4F9AE02.roa (hash: 1WjAWoIgFya9zcz3aaAfAZPj3TaOx48UOEMbOt7aBvY=) 9: DCF88EAE5ED811EBAB677671C4F9AE02.roa (hash: HSmuGZlq2yjbC7oby/mLDwMQgWOMUuKo8bggRUwHe8s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2805 (0xaf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911647C, serialNumber=436B2C5F03F91CA741C6A249DC015A6D544A62A6 Validity Not Before: Aug 10 19:58:05 2025 GMT Not After : Aug 17 19:58:05 2025 GMT Subject: CN=6898f9ce-247d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:89:6c:45:69:b0:06:59:84:34:9f:f2:28:2e: 54:ce:72:2c:e6:d0:15:f6:97:8e:3f:9d:4d:47:cd: 29:78:06:af:5c:e9:6f:be:63:f6:d6:b8:c2:66:92: e6:a2:0e:02:ad:4a:27:9d:14:a0:27:a3:89:62:9b: 24:7c:5a:2a:93:a7:e6:70:2b:3c:a4:99:8b:d8:f7: fc:cb:02:5c:0b:05:6e:33:b3:98:65:e8:80:ae:91: de:43:53:7d:1c:79:7b:13:f5:8a:91:0d:eb:af:f3: 74:6f:56:ff:0e:a4:de:64:78:6e:78:f3:5f:33:9a: 07:f0:fc:98:3c:36:9d:18:a9:18:5c:91:b2:8d:54: 4c:ef:41:9d:81:7b:76:cf:41:ba:db:88:c2:e4:91: 91:cb:47:c9:b4:40:8c:b2:60:fe:71:0c:0c:58:13: 79:16:d1:e2:b7:7d:cc:f5:39:fa:7e:c3:4d:e6:73: 99:32:31:26:3b:b4:2a:68:c5:59:9f:46:8d:0e:57: eb:d5:0f:4f:b4:a4:72:d6:4a:8b:4f:b5:a1:ad:23: e9:ca:17:d2:9d:17:26:19:8b:7d:e1:b6:2f:40:e2: d5:b2:33:27:56:45:41:27:69:2e:83:59:b8:e7:b0: 87:b5:40:8a:52:09:49:6b:e8:12:40:59:49:c5:f9: 02:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:2A:A6:BB:3F:C2:D1:EE:27:82:E4:DE:D7:5A:36:76:F9:B0:D6:A1 X509v3 Authority Key Identifier: keyid:43:6B:2C:5F:03:F9:1C:A7:41:C6:A2:49:DC:01:5A:6D:54:4A:62:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:49:ec:25:e6:31:61:58:5e:79:e9:4e:53:39:23:aa:6c:10: 55:95:24:d5:32:ec:83:fe:43:28:10:aa:75:c2:76:07:15:e5: ab:26:a7:b1:60:76:fb:89:bf:98:43:29:54:72:90:c4:17:c3: 3c:da:88:1a:6c:61:5b:b6:13:6f:7f:6a:ee:bc:35:a5:77:b9: cc:67:60:dd:32:c2:8e:2f:8b:c5:61:60:72:e0:61:cb:03:d6: 1b:61:06:43:25:21:67:e9:b5:a2:ae:67:28:aa:b6:8a:6c:94: 9c:a3:02:b8:05:cd:7b:bb:bc:40:48:c4:bd:41:b6:66:29:fe: b1:c7:60:3d:22:f2:3b:32:23:92:1a:de:41:91:26:18:f5:c0: ad:cd:75:4f:30:a2:e0:7b:63:a7:d6:b5:2f:71:7e:44:a7:db: 41:85:06:84:b0:14:e2:c6:37:1c:cb:8d:8a:9f:cf:ae:c1:56: 9e:47:d2:f3:d7:fe:8f:8f:d6:ed:6c:12:9a:8b:8c:c7:71:7e: b7:f5:a9:75:04:6f:c4:dc:7d:49:3a:67:4a:97:06:b3:2d:6d: bc:ce:c8:d9:e6:5d:ec:b2:cb:e6:23:2e:27:d3:eb:83:cc:3b: 1f:21:8c:f2:3b:a5:9c:10:e0:aa:06:24:88:4b:c6:d2:6d:64: 32:52:d4:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY0N0MxMTAvBgNVBAUTKDQzNkIyQzVGMDNGOTFDQTc0MUM2QTI0OURDMDE1QTZE NTQ0QTYyQTYwHhcNMjUwODEwMTk1ODA1WhcNMjUwODE3MTk1ODA1WjAYMRYwFAYD VQQDEw02ODk4ZjljZS0yNDdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA04lsRWmwBlmENJ/yKC5UznIs5tAV9peOP51NR80peAavXOlvvmP21rjCZpLm og4CrUonnRSgJ6OJYpskfFoqk6fmcCs8pJmL2Pf8ywJcCwVuM7OYZeiArpHeQ1N9 HHl7E/WKkQ3rr/N0b1b/DqTeZHhuePNfM5oH8PyYPDadGKkYXJGyjVRM70GdgXt2 z0G624jC5JGRy0fJtECMsmD+cQwMWBN5FtHit33M9Tn6fsNN5nOZMjEmO7QqaMVZ n0aNDlfr1Q9PtKRy1kqLT7WhrSPpyhfSnRcmGYt94bYvQOLVsjMnVkVBJ2kug1m4 57CHtUCKUglJa+gSQFlJxfkCYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKEqprs/ wtHuJ4Lk3tdaNnb5sNahMB8GA1UdIwQYMBaAFENrLF8D+RynQcaiSdwBWm1USmKm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjQ3Qy80MzdDQzQwNjg1 MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9RMnNzWHdQNUhLZEJ4cUpKM0FGYWJWUktZ cVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Eyc3NYd1A1SEtkQnhxSkozQUZhYlZSS1lxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjQ3Qy80MzdDQzQwNjg1MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9RMnNzWHdQNUhL ZEJ4cUpKM0FGYWJWUktZcVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVSewl5jFhWF556U5TOSOqbBBVlSTVMuyD/kMoEKp1wnYHFeWrJqex YHb7ib+YQylUcpDEF8M82ogabGFbthNvf2ruvDWld7nMZ2DdMsKOL4vFYWBy4GHL A9YbYQZDJSFn6bWirmcoqraKbJScowK4Bc17u7xASMS9QbZmKf6xx2A9IvI7MiOS Gt5BkSYY9cCtzXVPMKLge2On1rUvcX5Ep9tBhQaEsBTixjccy42Kn8+uwVaeR9Lz 1/6Pj9btbBKai4zHcX639al1BG/E3H1JOmdKlwazLW28zsjZ5l3sssvmIy4n0+uD zDsfIYzyO6WcEOCqBiSIS8bSbWQyUtRy -----END CERTIFICATE-----Generated at Mon Aug 11 04:23:01 2025 by rpki-client