$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft File: q2JivH0C7BrUi3HamLc9IqNi2vA.mft (raw, json) Hash identifier: DsIzS4GRhMstpJmpjWCK7Vox+AtLT2Pqavj/HuFNobg= Subject key identifier: F2:0A:E1:9D:14:23:77:4F:76:EA:C4:C5:AA:D8:7E:69:44:A0:D7:26 Authority key identifier: AB:62:62:BC:7D:02:EC:1A:D4:8B:71:DA:98:B7:3D:22:A3:62:DA:F0 Certificate issuer: /CN=A91E2454/serialNumber=AB6262BC7D02EC1AD48B71DA98B73D22A362DAF0 Certificate serial: 3609 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft Manifest number: 353E Signing time: Wed 02 Jul 2025 14:29:23 +0000 Manifest this update: Wed 02 Jul 2025 14:29:23 +0000 Manifest next update: Wed 09 Jul 2025 14:29:23 +0000 Files and hashes: 1: q2JivH0C7BrUi3HamLc9IqNi2vA.crl (hash: oEs4A94I1dWlXMW3HBmnvkf9zVS3VQM3rU7qnqllrN0=) 2: 4D5247EEA4C911E782854F50C4F9AE02.roa (hash: 0ae8AXI4ti/g7kjicz0FuqIQr5KuRMl+VwlLXivxPFk=) 3: 78123422B0CD11E58B55FC73C4F9AE02.roa (hash: ELjtbDvUJdRIE0OkklMq1ckQ7DJ/Pb2ipSH84CeiKCg=) 4: 7B938024B0CD11E58B55FC73C4F9AE02.roa (hash: 7ydpzn/QoSWEXvjnGZJ1ta2JwlGF9ANK2aScVlru+Tc=) 5: 7F4D30ACB0CD11E58B55FC73C4F9AE02.roa (hash: YwQuCfTd/qrlJSeamxwuUJ+BvQmXE+p3bNmQY1uUsFo=) 6: 4BF67550A4C911E782854F50C4F9AE02.roa (hash: nr6/7CG6oXudz0l6iz2yM+GZu8wisnZlSv+XVHe+5pE=) 7: 7D920C1AB0CD11E58B55FC73C4F9AE02.roa (hash: GEX+sNV+gjoBRlfbvjQXv3uXeYnL4cH1wK1KCC8jYpA=) 8: 9C193BAC08C511EDBC862E48C4F9AE02.roa (hash: 896PbO0EonUimzXSLkBsI3knk6hd3BAHtAyqYKCmbBE=) 9: 816FA9C0B07611EFA5773917C4F9AE02.roa (hash: Pe6tz3jNRPR6gXfsK8tx8lrjl8rvWTB+EFpcz7nsWc8=) 10: 4C9925F2A4C911E782854F50C4F9AE02.roa (hash: R2/SizcxlFy6GiKbWh9BC6IePjx7ZGaL4yUJEBHXwDg=) 11: 8207CCA0906C11EC86E8B711C4F9AE02.roa (hash: /ugniFpN/rGX8I1uxfmMZJryeFfYuWgB3WroPzoi6qU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.crl rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 14:29:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13833 (0x3609) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2454, serialNumber=AB6262BC7D02EC1AD48B71DA98B73D22A362DAF0 Validity Not Before: Jul 2 14:29:23 2025 GMT Not After : Jul 9 14:29:23 2025 GMT Subject: CN=68654243-f950 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:90:14:db:8d:73:1b:c4:29:64:8d:f6:1f:b2: 04:d6:1e:e2:ae:e9:c4:36:eb:fc:34:a8:0f:93:5e: 92:43:37:db:63:03:71:c0:c5:eb:cc:48:d5:3b:d9: 79:86:5d:62:ed:b5:01:7e:a7:47:d3:a5:1d:0c:58: 03:ce:65:62:89:85:2b:dd:69:df:73:92:e4:df:6b: 39:55:7c:0e:6c:a4:bd:f9:96:2b:2e:ab:58:39:1f: 8a:81:11:14:1d:d6:40:06:3c:35:b2:29:09:f4:a7: 6f:ee:df:54:ec:f0:ea:bf:5b:03:5d:bd:17:52:19: ae:c9:11:84:5c:97:8b:27:16:72:74:60:79:54:7e: 36:78:31:b4:6a:94:a2:80:69:14:6f:68:1d:b4:d1: 6a:ab:31:c9:6f:99:3b:10:be:f3:c0:cf:78:4a:e7: 80:f5:d7:01:60:56:10:b8:aa:1f:cb:38:a8:e6:d5: 78:12:d9:f1:f7:fb:6c:f9:38:9d:9d:9c:49:49:8d: 40:c8:a7:04:15:8c:0b:86:88:d0:95:8a:f2:7c:b2: 97:93:45:19:f8:54:6f:f9:b5:42:73:10:48:49:ba: 4a:c0:65:23:b0:92:52:17:35:1b:db:49:c3:5f:9c: d4:3d:4c:6b:97:f1:de:a6:4a:6d:63:e0:1e:ac:b5: 13:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:0A:E1:9D:14:23:77:4F:76:EA:C4:C5:AA:D8:7E:69:44:A0:D7:26 X509v3 Authority Key Identifier: keyid:AB:62:62:BC:7D:02:EC:1A:D4:8B:71:DA:98:B7:3D:22:A3:62:DA:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:7e:02:48:bb:61:f4:26:52:5b:9e:15:05:5e:ac:68:aa:0f: e8:8c:0f:5c:b4:cf:80:5c:9b:a4:d9:a6:0e:65:25:46:57:04: f8:8a:cc:42:cf:65:25:e3:59:05:d6:21:11:2b:d5:66:80:24: 5f:84:80:3c:8a:2f:34:41:98:99:ae:54:99:41:4e:3d:45:5a: 56:d4:6f:c8:0c:64:f0:9e:e5:7b:6e:f9:1e:a2:90:35:dc:55: a6:cc:74:35:e0:1f:6c:4b:77:e8:54:bd:66:62:1e:dd:d2:cc: a1:18:27:84:5e:d0:30:b8:ab:80:89:3e:21:7d:c9:28:1f:5f: 15:a0:2c:11:a7:6e:3a:16:11:c3:b6:88:77:96:41:ad:d8:bd: 07:31:f0:48:2a:e3:04:7c:b1:15:4f:d5:a2:a0:b3:83:e2:ca: de:6a:6e:b9:17:a0:f0:89:a3:88:93:2b:4d:10:67:12:b6:69: da:23:9c:7d:0f:80:93:46:4b:92:03:10:ba:93:ec:9e:27:23: af:1c:57:e1:ce:9d:90:a8:b3:ae:00:6e:83:6f:4b:f6:0c:65: f2:54:53:62:63:10:ab:d2:12:a3:8b:90:39:2f:12:53:3d:d1: 25:e9:38:19:73:8e:a2:1c:79:f8:3f:6b:00:9f:39:a8:f9:a5: 2d:e9:20:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNgkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI0NTQxMTAvBgNVBAUTKEFCNjI2MkJDN0QwMkVDMUFENDhCNzFEQTk4QjczRDIy QTM2MkRBRjAwHhcNMjUwNzAyMTQyOTIzWhcNMjUwNzA5MTQyOTIzWjAYMRYwFAYD VQQDEw02ODY1NDI0My1mOTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs5AU241zG8QpZI32H7IE1h7irunENuv8NKgPk16SQzfbYwNxwMXrzEjVO9l5 hl1i7bUBfqdH06UdDFgDzmViiYUr3Wnfc5Lk32s5VXwObKS9+ZYrLqtYOR+KgREU HdZABjw1sikJ9Kdv7t9U7PDqv1sDXb0XUhmuyRGEXJeLJxZydGB5VH42eDG0apSi gGkUb2gdtNFqqzHJb5k7EL7zwM94SueA9dcBYFYQuKofyzio5tV4Etnx9/ts+Tid nZxJSY1AyKcEFYwLhojQlYryfLKXk0UZ+FRv+bVCcxBISbpKwGUjsJJSFzUb20nD X5zUPUxrl/HepkptY+AerLUTBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPIK4Z0U I3dPdurExarYfmlEoNcmMB8GA1UdIwQYMBaAFKtiYrx9Auwa1Itx2pi3PSKjYtrw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjQ1NC9ENEMzMEI0MjFE ODcxMUUyQTE5ODIyRTAwOEIwMkNEMi9xMkppdkgwQzdCclVpM0hhbUxjOUlxTmky dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3EySml2SDBDN0JyVWkzSGFtTGM5SXFOaTJ2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjQ1NC9ENEMzMEI0MjFEODcxMUUyQTE5ODIyRTAwOEIwMkNEMi9xMkppdkgwQzdC clVpM0hhbUxjOUlxTmkydkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAffgJIu2H0JlJbnhUFXqxoqg/ojA9ctM+AXJuk2aYOZSVGVwT4isxC z2Ul41kF1iERK9VmgCRfhIA8ii80QZiZrlSZQU49RVpW1G/IDGTwnuV7bvkeopA1 3FWmzHQ14B9sS3foVL1mYh7d0syhGCeEXtAwuKuAiT4hfckoH18VoCwRp246FhHD toh3lkGt2L0HMfBIKuMEfLEVT9WioLOD4sream65F6DwiaOIkytNEGcStmnaI5x9 D4CTRkuSAxC6k+yeJyOvHFfhzp2QqLOuAG6Db0v2DGXyVFNiYxCr0hKji5A5LxJT PdEl6TgZc46iHHn4P2sAnzmo+aUt6SAn -----END CERTIFICATE-----Generated at Thu Jul 3 23:36:38 2025 by rpki-client