$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft File: q2JivH0C7BrUi3HamLc9IqNi2vA.mft (raw, json) Hash identifier: 5DGRJCmQLE4Gm51Gg2lTYXPJiS6q6yEGJGZDuH0hXbA= Subject key identifier: 27:05:75:18:30:D3:3D:3B:FF:F2:F0:AE:36:DA:5C:F4:45:46:70:5A Authority key identifier: AB:62:62:BC:7D:02:EC:1A:D4:8B:71:DA:98:B7:3D:22:A3:62:DA:F0 Certificate issuer: /CN=A91E2454/serialNumber=AB6262BC7D02EC1AD48B71DA98B73D22A362DAF0 Certificate serial: 3600 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft Manifest number: 3535 Signing time: Sat 14 Jun 2025 14:28:48 +0000 Manifest this update: Sat 14 Jun 2025 14:28:48 +0000 Manifest next update: Sat 21 Jun 2025 14:28:48 +0000 Files and hashes: 1: q2JivH0C7BrUi3HamLc9IqNi2vA.crl (hash: rdCAlPhqUa0YollmvpyF0XyKtiNeFdzxrpoyjz0bIlg=) 2: 4D5247EEA4C911E782854F50C4F9AE02.roa (hash: 0ae8AXI4ti/g7kjicz0FuqIQr5KuRMl+VwlLXivxPFk=) 3: 78123422B0CD11E58B55FC73C4F9AE02.roa (hash: ELjtbDvUJdRIE0OkklMq1ckQ7DJ/Pb2ipSH84CeiKCg=) 4: 7B938024B0CD11E58B55FC73C4F9AE02.roa (hash: 7ydpzn/QoSWEXvjnGZJ1ta2JwlGF9ANK2aScVlru+Tc=) 5: 7F4D30ACB0CD11E58B55FC73C4F9AE02.roa (hash: YwQuCfTd/qrlJSeamxwuUJ+BvQmXE+p3bNmQY1uUsFo=) 6: 4BF67550A4C911E782854F50C4F9AE02.roa (hash: nr6/7CG6oXudz0l6iz2yM+GZu8wisnZlSv+XVHe+5pE=) 7: 7D920C1AB0CD11E58B55FC73C4F9AE02.roa (hash: GEX+sNV+gjoBRlfbvjQXv3uXeYnL4cH1wK1KCC8jYpA=) 8: 9C193BAC08C511EDBC862E48C4F9AE02.roa (hash: 896PbO0EonUimzXSLkBsI3knk6hd3BAHtAyqYKCmbBE=) 9: 816FA9C0B07611EFA5773917C4F9AE02.roa (hash: Pe6tz3jNRPR6gXfsK8tx8lrjl8rvWTB+EFpcz7nsWc8=) 10: 4C9925F2A4C911E782854F50C4F9AE02.roa (hash: R2/SizcxlFy6GiKbWh9BC6IePjx7ZGaL4yUJEBHXwDg=) 11: 8207CCA0906C11EC86E8B711C4F9AE02.roa (hash: /ugniFpN/rGX8I1uxfmMZJryeFfYuWgB3WroPzoi6qU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.crl rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 14:28:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13824 (0x3600) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2454, serialNumber=AB6262BC7D02EC1AD48B71DA98B73D22A362DAF0 Validity Not Before: Jun 14 14:28:48 2025 GMT Not After : Jun 21 14:28:48 2025 GMT Subject: CN=684d8720-d0e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:6e:95:2e:08:4e:8d:8a:1a:65:12:3b:da:e2: 60:ee:14:61:1a:d8:84:7d:b2:4d:f6:9d:81:0a:ed: 85:14:d6:ed:ec:f1:f8:c1:5c:ac:b0:e2:b3:64:93: e8:0d:c4:e5:90:ae:67:f6:6f:39:f9:51:66:15:ff: 8d:08:71:76:bc:03:a1:36:5d:18:5d:45:b3:55:77: e1:ca:5c:cc:26:c2:e4:34:ac:9b:ef:79:e6:90:92: 79:d3:72:ee:ae:06:eb:8c:57:67:ab:82:10:b1:60: 50:a2:80:ee:37:e6:64:95:b8:41:9a:55:1a:5e:38: 4c:ea:81:d6:14:ee:d1:46:29:f7:70:8a:28:c3:a8: cf:b8:dd:02:3d:6c:1d:7d:09:7a:38:2a:18:98:09: 0f:64:a8:df:38:df:fe:2a:8f:18:76:2f:64:8c:5f: ad:4f:4c:28:32:9e:95:03:60:0e:30:49:85:0d:d9: ab:ee:c7:bf:46:6e:4a:cf:25:6a:81:62:f6:9e:e2: 27:7c:48:df:e1:9a:b2:b1:12:1a:55:6d:53:6e:b1: 2d:03:1c:d4:ca:a0:18:e1:3d:5a:92:85:9d:a6:01: f7:29:98:1a:69:9d:d0:8e:d9:82:0e:86:06:f4:19: c4:1c:cb:aa:b0:e5:7e:8c:48:16:38:1e:1e:9c:06: d6:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:05:75:18:30:D3:3D:3B:FF:F2:F0:AE:36:DA:5C:F4:45:46:70:5A X509v3 Authority Key Identifier: keyid:AB:62:62:BC:7D:02:EC:1A:D4:8B:71:DA:98:B7:3D:22:A3:62:DA:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:6b:fb:67:14:f7:8c:a0:6e:0c:01:dc:9c:1d:b3:39:20:55: 77:e7:0e:c2:9e:e0:58:c3:25:a8:e0:1a:37:29:31:8c:a8:35: 6f:13:ed:f4:eb:21:03:c0:c9:a5:3d:5e:7c:55:11:e5:5e:1d: 77:80:ec:d8:af:31:3e:72:51:d9:20:10:74:09:b7:09:f8:ae: 6f:9a:64:3f:cc:6f:ac:90:45:d0:d9:a0:11:0a:08:d2:ae:41: 73:b4:76:bf:b3:53:8a:17:ef:55:fb:66:bb:1a:26:4b:e8:2e: e3:20:be:c3:aa:e3:fd:77:28:cb:b3:41:aa:cc:2e:a8:14:c8: 74:5e:a4:9f:bb:bf:c5:7a:7f:6f:94:db:52:46:d4:69:5d:bc: a6:a2:87:7d:36:cf:84:a4:a2:d8:08:8e:09:ac:b6:92:6f:59: 62:bf:16:0c:c7:59:07:03:c9:f6:9f:89:36:ba:d5:c2:b8:24: 3c:55:62:87:ff:f0:02:c3:82:57:02:50:1e:a5:5e:68:ef:55: f4:d4:30:91:26:ce:90:3a:b6:24:59:7c:c0:79:8f:94:09:8b: 4f:ed:49:71:6a:a7:eb:b1:6d:8e:99:35:df:b5:86:01:b7:fd: c4:f2:bf:31:5d:18:3d:07:21:7f:9c:b4:95:9a:49:bd:75:f8: ce:72:5b:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI0NTQxMTAvBgNVBAUTKEFCNjI2MkJDN0QwMkVDMUFENDhCNzFEQTk4QjczRDIy QTM2MkRBRjAwHhcNMjUwNjE0MTQyODQ4WhcNMjUwNjIxMTQyODQ4WjAYMRYwFAYD VQQDEw02ODRkODcyMC1kMGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxm6VLghOjYoaZRI72uJg7hRhGtiEfbJN9p2BCu2FFNbt7PH4wVyssOKzZJPo DcTlkK5n9m85+VFmFf+NCHF2vAOhNl0YXUWzVXfhylzMJsLkNKyb73nmkJJ503Lu rgbrjFdnq4IQsWBQooDuN+ZklbhBmlUaXjhM6oHWFO7RRin3cIoow6jPuN0CPWwd fQl6OCoYmAkPZKjfON/+Ko8Ydi9kjF+tT0woMp6VA2AOMEmFDdmr7se/Rm5KzyVq gWL2nuInfEjf4ZqysRIaVW1TbrEtAxzUyqAY4T1akoWdpgH3KZgaaZ3QjtmCDoYG 9BnEHMuqsOV+jEgWOB4enAbWjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCcFdRgw 0z07//LwrjbaXPRFRnBaMB8GA1UdIwQYMBaAFKtiYrx9Auwa1Itx2pi3PSKjYtrw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjQ1NC9ENEMzMEI0MjFE ODcxMUUyQTE5ODIyRTAwOEIwMkNEMi9xMkppdkgwQzdCclVpM0hhbUxjOUlxTmky dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3EySml2SDBDN0JyVWkzSGFtTGM5SXFOaTJ2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjQ1NC9ENEMzMEI0MjFEODcxMUUyQTE5ODIyRTAwOEIwMkNEMi9xMkppdkgwQzdC clVpM0hhbUxjOUlxTmkydkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDa/tnFPeMoG4MAdycHbM5IFV35w7CnuBYwyWo4Bo3KTGMqDVvE+30 6yEDwMmlPV58VRHlXh13gOzYrzE+clHZIBB0CbcJ+K5vmmQ/zG+skEXQ2aARCgjS rkFztHa/s1OKF+9V+2a7GiZL6C7jIL7DquP9dyjLs0GqzC6oFMh0XqSfu7/Fen9v lNtSRtRpXbymood9Ns+EpKLYCI4JrLaSb1livxYMx1kHA8n2n4k2utXCuCQ8VWKH //ACw4JXAlAepV5o71X01DCRJs6QOrYkWXzAeY+UCYtP7UlxaqfrsW2OmTXftYYB t/3E8r8xXRg9ByF/nLSVmkm9dfjOclsW -----END CERTIFICATE-----Generated at Sun Jun 15 09:31:26 2025 by rpki-client