$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft File: q2JivH0C7BrUi3HamLc9IqNi2vA.mft (raw, json) Hash identifier: jYmyckLILY8hbPUnR3bz2bPgvnollLTBYoAqw0oHNco= Subject key identifier: 71:E4:BE:A1:43:95:EF:E4:BF:DF:6A:FE:26:59:58:B3:D4:B0:87:7C Authority key identifier: AB:62:62:BC:7D:02:EC:1A:D4:8B:71:DA:98:B7:3D:22:A3:62:DA:F0 Certificate issuer: /CN=A91E2454/serialNumber=AB6262BC7D02EC1AD48B71DA98B73D22A362DAF0 Certificate serial: 361C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft Manifest number: 3551 Signing time: Fri 08 Aug 2025 14:30:17 +0000 Manifest this update: Fri 08 Aug 2025 14:30:17 +0000 Manifest next update: Fri 15 Aug 2025 14:30:17 +0000 Files and hashes: 1: q2JivH0C7BrUi3HamLc9IqNi2vA.crl (hash: 0RGVrQ13HkN0Xm34vAjbYCNUQq12D1RnGyQjOtRF/RI=) 2: 4D5247EEA4C911E782854F50C4F9AE02.roa (hash: 0ae8AXI4ti/g7kjicz0FuqIQr5KuRMl+VwlLXivxPFk=) 3: 78123422B0CD11E58B55FC73C4F9AE02.roa (hash: ELjtbDvUJdRIE0OkklMq1ckQ7DJ/Pb2ipSH84CeiKCg=) 4: 7B938024B0CD11E58B55FC73C4F9AE02.roa (hash: 7ydpzn/QoSWEXvjnGZJ1ta2JwlGF9ANK2aScVlru+Tc=) 5: 7F4D30ACB0CD11E58B55FC73C4F9AE02.roa (hash: YwQuCfTd/qrlJSeamxwuUJ+BvQmXE+p3bNmQY1uUsFo=) 6: 4BF67550A4C911E782854F50C4F9AE02.roa (hash: nr6/7CG6oXudz0l6iz2yM+GZu8wisnZlSv+XVHe+5pE=) 7: 7D920C1AB0CD11E58B55FC73C4F9AE02.roa (hash: GEX+sNV+gjoBRlfbvjQXv3uXeYnL4cH1wK1KCC8jYpA=) 8: 9C193BAC08C511EDBC862E48C4F9AE02.roa (hash: 896PbO0EonUimzXSLkBsI3knk6hd3BAHtAyqYKCmbBE=) 9: 816FA9C0B07611EFA5773917C4F9AE02.roa (hash: Pe6tz3jNRPR6gXfsK8tx8lrjl8rvWTB+EFpcz7nsWc8=) 10: 4C9925F2A4C911E782854F50C4F9AE02.roa (hash: R2/SizcxlFy6GiKbWh9BC6IePjx7ZGaL4yUJEBHXwDg=) 11: 8207CCA0906C11EC86E8B711C4F9AE02.roa (hash: /ugniFpN/rGX8I1uxfmMZJryeFfYuWgB3WroPzoi6qU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.crl rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13852 (0x361c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2454, serialNumber=AB6262BC7D02EC1AD48B71DA98B73D22A362DAF0 Validity Not Before: Aug 8 14:30:17 2025 GMT Not After : Aug 15 14:30:17 2025 GMT Subject: CN=689609f9-1723 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:e7:0f:b3:f1:72:18:3c:da:9d:01:f3:ef:52: 34:59:18:92:33:f1:e7:f4:36:f0:88:5f:1f:ca:d2: 59:a3:d8:4c:60:0b:a2:eb:27:aa:7c:72:1a:50:ca: 9c:bc:1f:09:51:b9:ea:b7:b0:5c:96:2e:da:2b:30: 7e:0e:db:22:5e:92:16:07:74:2c:db:56:0e:a7:bf: c7:67:f5:c6:9c:36:24:64:c1:77:6a:85:f8:77:e6: 32:20:0a:99:45:aa:60:cb:04:2f:0b:51:66:29:19: f1:0d:7c:bd:8e:3d:45:5b:8e:1e:09:61:ef:d8:b5: 0e:ce:6d:03:4d:96:d4:aa:07:34:06:aa:fc:df:44: 49:24:0f:60:d3:51:75:17:b4:50:39:f4:d5:22:3d: 93:3f:d4:f9:08:a1:5e:3a:81:27:af:7b:d8:8c:a4: ff:a0:fb:55:10:b3:a8:14:f9:7a:94:d8:d3:1c:92: 25:50:7d:f2:1c:f6:1d:00:ab:9c:5c:2e:ac:52:be: f1:a4:2a:5c:6b:78:84:bb:a3:9a:72:32:9f:83:75: b7:c5:39:28:15:18:11:f9:3a:ee:57:8b:9f:3b:eb: a8:e3:49:b4:74:7e:89:d5:b0:00:ec:83:b4:5f:0f: 46:9e:87:5e:07:cf:76:cb:b8:c8:a7:9f:e5:2b:14: 06:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:E4:BE:A1:43:95:EF:E4:BF:DF:6A:FE:26:59:58:B3:D4:B0:87:7C X509v3 Authority Key Identifier: keyid:AB:62:62:BC:7D:02:EC:1A:D4:8B:71:DA:98:B7:3D:22:A3:62:DA:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:fc:67:d9:5c:e8:c2:70:d9:32:84:79:41:56:f7:4e:23:7a: e3:c0:38:f0:43:ac:e3:bb:1b:b7:d2:27:ba:cb:06:91:9e:f9: 97:20:de:9a:ab:30:52:15:f7:53:40:3b:9f:16:0c:35:d7:67: cf:48:13:86:fa:a7:18:34:58:63:c8:22:7b:6c:e1:18:8f:19: dc:89:99:87:af:6a:f8:12:61:ba:b2:84:cb:df:d9:e8:4e:87: a5:34:e7:fd:8f:c9:d3:79:b9:77:5b:1d:6a:36:fa:f6:d9:af: cc:3f:60:a1:27:e8:7c:77:87:01:28:1c:97:29:9d:de:50:84: 3e:0c:8f:c2:de:a5:d7:a8:06:c0:0a:28:d4:bb:3c:85:a9:aa: 37:bc:71:a6:0d:23:47:e4:df:8d:54:70:86:46:0a:34:e3:83: b9:df:6c:52:fb:40:78:cb:7b:72:e6:de:e8:54:9e:70:a6:7b: 95:37:6e:32:4c:96:a6:a6:6c:66:a1:6b:9a:cf:13:69:b1:1f: cb:66:b6:f5:b9:56:af:33:10:67:11:b7:32:a1:06:45:e3:2f: 09:8d:86:0c:ca:10:27:4b:cd:5e:e1:f5:9d:79:08:5d:84:32: e3:72:77:4b:1e:3a:89:8a:ef:db:39:28:e4:60:30:a6:e6:fb: b0:b7:a1:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNhwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI0NTQxMTAvBgNVBAUTKEFCNjI2MkJDN0QwMkVDMUFENDhCNzFEQTk4QjczRDIy QTM2MkRBRjAwHhcNMjUwODA4MTQzMDE3WhcNMjUwODE1MTQzMDE3WjAYMRYwFAYD VQQDEw02ODk2MDlmOS0xNzIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArOcPs/FyGDzanQHz71I0WRiSM/Hn9DbwiF8fytJZo9hMYAui6yeqfHIaUMqc vB8JUbnqt7Bcli7aKzB+DtsiXpIWB3Qs21YOp7/HZ/XGnDYkZMF3aoX4d+YyIAqZ RapgywQvC1FmKRnxDXy9jj1FW44eCWHv2LUOzm0DTZbUqgc0Bqr830RJJA9g01F1 F7RQOfTVIj2TP9T5CKFeOoEnr3vYjKT/oPtVELOoFPl6lNjTHJIlUH3yHPYdAKuc XC6sUr7xpCpca3iEu6OacjKfg3W3xTkoFRgR+TruV4ufO+uo40m0dH6J1bAA7IO0 Xw9GnodeB892y7jIp5/lKxQGgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHHkvqFD le/kv99q/iZZWLPUsId8MB8GA1UdIwQYMBaAFKtiYrx9Auwa1Itx2pi3PSKjYtrw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjQ1NC9ENEMzMEI0MjFE ODcxMUUyQTE5ODIyRTAwOEIwMkNEMi9xMkppdkgwQzdCclVpM0hhbUxjOUlxTmky dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3EySml2SDBDN0JyVWkzSGFtTGM5SXFOaTJ2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjQ1NC9ENEMzMEI0MjFEODcxMUUyQTE5ODIyRTAwOEIwMkNEMi9xMkppdkgwQzdC clVpM0hhbUxjOUlxTmkydkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZ/GfZXOjCcNkyhHlBVvdOI3rjwDjwQ6zjuxu30ie6ywaRnvmXIN6a qzBSFfdTQDufFgw112fPSBOG+qcYNFhjyCJ7bOEYjxnciZmHr2r4EmG6soTL39no ToelNOf9j8nTebl3Wx1qNvr22a/MP2ChJ+h8d4cBKByXKZ3eUIQ+DI/C3qXXqAbA CijUuzyFqao3vHGmDSNH5N+NVHCGRgo044O532xS+0B4y3ty5t7oVJ5wpnuVN24y TJampmxmoWuazxNpsR/LZrb1uVavMxBnEbcyoQZF4y8JjYYMyhAnS81e4fWdeQhd hDLjcndLHjqJiu/bOSjkYDCm5vuwt6HR -----END CERTIFICATE-----Generated at Sun Aug 10 13:59:30 2025 by rpki-client