$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft File: q2JivH0C7BrUi3HamLc9IqNi2vA.mft (raw, json) Hash identifier: XSZREwxXDx3DGd4ekMAkBmDleIJExx/+txUk+042p7c= Subject key identifier: 29:2A:90:E9:A6:14:C4:EE:0A:AB:35:D9:28:6B:8E:C6:D2:1E:EA:80 Authority key identifier: AB:62:62:BC:7D:02:EC:1A:D4:8B:71:DA:98:B7:3D:22:A3:62:DA:F0 Certificate issuer: /CN=A91E2454/serialNumber=AB6262BC7D02EC1AD48B71DA98B73D22A362DAF0 Certificate serial: 364D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft Manifest number: 3580 Signing time: Tue 04 Nov 2025 14:31:38 +0000 Manifest this update: Tue 04 Nov 2025 14:31:37 +0000 Manifest next update: Tue 11 Nov 2025 14:31:37 +0000 Files and hashes: 1: q2JivH0C7BrUi3HamLc9IqNi2vA.crl (hash: e2B2NnClEpJnKhiIgCuKGrafiPnL7hueXwN0MS1FBfQ=) 2: 4D5247EEA4C911E782854F50C4F9AE02.roa (hash: 0ae8AXI4ti/g7kjicz0FuqIQr5KuRMl+VwlLXivxPFk=) 3: 78123422B0CD11E58B55FC73C4F9AE02.roa (hash: ELjtbDvUJdRIE0OkklMq1ckQ7DJ/Pb2ipSH84CeiKCg=) 4: F1F087928C6B11F0B1A50E82C4F9AE02.roa (hash: 7tfXuCQjw9T0qFosF2h5F8UNVF4qyYhcz32Eciv+YZo=) 5: 7B938024B0CD11E58B55FC73C4F9AE02.roa (hash: 7ydpzn/QoSWEXvjnGZJ1ta2JwlGF9ANK2aScVlru+Tc=) 6: 7F4D30ACB0CD11E58B55FC73C4F9AE02.roa (hash: YwQuCfTd/qrlJSeamxwuUJ+BvQmXE+p3bNmQY1uUsFo=) 7: D4B25B928C6B11F09545B981C4F9AE02.roa (hash: pR1yc8aEmPb2Q8qUdycAP8NbLrXlxbLvJ23POTBrAso=) 8: 4BF67550A4C911E782854F50C4F9AE02.roa (hash: nr6/7CG6oXudz0l6iz2yM+GZu8wisnZlSv+XVHe+5pE=) 9: 7D920C1AB0CD11E58B55FC73C4F9AE02.roa (hash: GEX+sNV+gjoBRlfbvjQXv3uXeYnL4cH1wK1KCC8jYpA=) 10: 9C193BAC08C511EDBC862E48C4F9AE02.roa (hash: 896PbO0EonUimzXSLkBsI3knk6hd3BAHtAyqYKCmbBE=) 11: 4C9925F2A4C911E782854F50C4F9AE02.roa (hash: R2/SizcxlFy6GiKbWh9BC6IePjx7ZGaL4yUJEBHXwDg=) 12: 8207CCA0906C11EC86E8B711C4F9AE02.roa (hash: /ugniFpN/rGX8I1uxfmMZJryeFfYuWgB3WroPzoi6qU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.crl rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:31:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13901 (0x364d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2454, serialNumber=AB6262BC7D02EC1AD48B71DA98B73D22A362DAF0 Validity Not Before: Nov 4 14:31:37 2025 GMT Not After : Nov 11 14:31:37 2025 GMT Subject: CN=690a0e49-2b88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:80:d7:99:60:3c:cd:44:d8:01:7d:e8:76:e0: 8c:3a:e0:0a:32:d3:fe:74:78:96:4b:1e:c2:86:c4: b1:6f:c2:ee:06:e1:5f:f0:4b:0a:49:c3:f7:cd:9b: 6a:f4:e3:6e:51:60:d0:fa:97:5f:1e:ff:81:82:81: 00:a6:56:e6:a4:dc:27:45:3c:ba:3f:59:b0:87:e0: 82:00:8c:f0:aa:b2:90:1c:59:75:ec:f9:a7:34:1e: d4:92:9f:4d:c2:e0:d5:6c:84:e8:8a:3f:de:00:c7: a2:8e:7b:ad:dc:ad:e5:ec:ff:cf:4e:8c:16:94:9c: c0:bc:01:1b:84:1e:25:bd:13:7e:6a:39:a5:e0:07: 69:00:a6:52:55:65:8e:b2:09:a7:77:b8:ea:dc:f5: c7:7d:6f:03:25:1d:3c:70:50:1d:d3:e5:dc:70:7c: 5e:be:6b:3b:b5:46:3f:bb:35:31:2b:78:26:72:b1: da:ff:c5:86:53:1f:75:39:73:3b:41:06:16:18:a7: 01:9c:6e:50:e2:44:d0:d4:72:77:37:3c:39:43:58: 20:c3:bd:2a:8e:dd:60:d6:29:d6:1c:7f:1f:a6:10: 4c:c2:c9:4d:5b:36:3b:51:57:70:97:74:a4:e0:3d: 94:a0:b7:3c:2a:09:29:f3:e5:d7:3d:45:fe:4b:50: 1c:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:2A:90:E9:A6:14:C4:EE:0A:AB:35:D9:28:6B:8E:C6:D2:1E:EA:80 X509v3 Authority Key Identifier: keyid:AB:62:62:BC:7D:02:EC:1A:D4:8B:71:DA:98:B7:3D:22:A3:62:DA:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:51:c0:c2:b9:84:cf:3d:42:5e:8d:e9:6f:ff:2d:83:81:80: 12:48:f1:aa:b4:d8:d3:2e:df:8b:dc:f0:92:13:98:d0:b7:69: 40:47:03:96:eb:6b:a0:09:a4:d8:90:9d:2c:02:1d:71:a2:40: 91:a1:3a:be:90:0f:ea:8f:91:59:69:51:1d:c5:d0:7d:3d:ef: 75:e8:a0:1a:b1:80:6e:dc:91:c8:b8:73:d1:1a:45:87:87:09: d3:ff:46:30:d5:0b:3e:7d:7b:62:36:01:c3:2d:2a:a9:21:14: df:80:a6:4e:9c:6e:96:b5:c9:ca:b9:42:f9:26:fc:7f:74:08: b3:4f:d4:b1:80:bd:c3:43:31:1c:f0:ed:46:9e:4e:ca:7b:62: 18:10:ea:43:a7:16:28:4c:c8:ff:60:d2:c4:0d:29:b7:2e:09: b1:9c:e3:07:d1:69:7d:24:d5:36:59:6c:a9:27:7d:e9:04:ae: a3:3c:b5:34:9a:75:7b:d0:39:70:f3:49:31:e0:8d:7d:69:4b: db:04:43:d3:79:1b:1f:67:95:65:f1:1b:ce:37:64:fe:45:a7: 89:d5:7a:d9:bf:7d:91:17:ea:af:37:9b:35:32:59:d4:93:54: ef:21:01:20:fb:df:96:1b:f7:41:80:6f:c1:6c:00:fe:3f:92: 34:cd:ef:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNk0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI0NTQxMTAvBgNVBAUTKEFCNjI2MkJDN0QwMkVDMUFENDhCNzFEQTk4QjczRDIy QTM2MkRBRjAwHhcNMjUxMTA0MTQzMTM3WhcNMjUxMTExMTQzMTM3WjAYMRYwFAYD VQQDEw02OTBhMGU0OS0yYjg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4IDXmWA8zUTYAX3oduCMOuAKMtP+dHiWSx7ChsSxb8LuBuFf8EsKScP3zZtq 9ONuUWDQ+pdfHv+BgoEAplbmpNwnRTy6P1mwh+CCAIzwqrKQHFl17PmnNB7Ukp9N wuDVbIToij/eAMeijnut3K3l7P/PTowWlJzAvAEbhB4lvRN+ajml4AdpAKZSVWWO sgmnd7jq3PXHfW8DJR08cFAd0+XccHxevms7tUY/uzUxK3gmcrHa/8WGUx91OXM7 QQYWGKcBnG5Q4kTQ1HJ3Nzw5Q1ggw70qjt1g1inWHH8fphBMwslNWzY7UVdwl3Sk 4D2UoLc8Kgkp8+XXPUX+S1AcKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCkqkOmm FMTuCqs12ShrjsbSHuqAMB8GA1UdIwQYMBaAFKtiYrx9Auwa1Itx2pi3PSKjYtrw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjQ1NC9ENEMzMEI0MjFE ODcxMUUyQTE5ODIyRTAwOEIwMkNEMi9xMkppdkgwQzdCclVpM0hhbUxjOUlxTmky dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3EySml2SDBDN0JyVWkzSGFtTGM5SXFOaTJ2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjQ1NC9ENEMzMEI0MjFEODcxMUUyQTE5ODIyRTAwOEIwMkNEMi9xMkppdkgwQzdC clVpM0hhbUxjOUlxTmkydkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDUcDCuYTPPUJejelv/y2DgYASSPGqtNjTLt+L3PCSE5jQt2lARwOW 62ugCaTYkJ0sAh1xokCRoTq+kA/qj5FZaVEdxdB9Pe916KAasYBu3JHIuHPRGkWH hwnT/0Yw1Qs+fXtiNgHDLSqpIRTfgKZOnG6WtcnKuUL5Jvx/dAizT9SxgL3DQzEc 8O1Gnk7Ke2IYEOpDpxYoTMj/YNLEDSm3LgmxnOMH0Wl9JNU2WWypJ33pBK6jPLU0 mnV70Dlw80kx4I19aUvbBEPTeRsfZ5Vl8RvON2T+RaeJ1XrZv32RF+qvN5s1MlnU k1TvIQEg+9+WG/dBgG/BbAD+P5I0ze// -----END CERTIFICATE-----Generated at Tue Nov 4 19:05:05 2025 by rpki-client