$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft File: q2JivH0C7BrUi3HamLc9IqNi2vA.mft (raw, json) Hash identifier: N66O6Q1E0nmAmtFPdW2Oh8yHji5Ib4oRxuQZB07cZRM= Subject key identifier: 82:0B:8B:35:DC:E6:C1:D5:42:15:0B:CE:90:C3:A7:94:BA:63:57:5B Authority key identifier: AB:62:62:BC:7D:02:EC:1A:D4:8B:71:DA:98:B7:3D:22:A3:62:DA:F0 Certificate issuer: /CN=A91E2454/serialNumber=AB6262BC7D02EC1AD48B71DA98B73D22A362DAF0 Certificate serial: 3644 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft Manifest number: 3577 Signing time: Sat 18 Oct 2025 14:31:33 +0000 Manifest this update: Sat 18 Oct 2025 14:31:32 +0000 Manifest next update: Sat 25 Oct 2025 14:31:32 +0000 Files and hashes: 1: q2JivH0C7BrUi3HamLc9IqNi2vA.crl (hash: 1qnAVLqmqkG6YZaZuvXE7wVnJ3fqCShbc8FhsQaAVa4=) 2: 4D5247EEA4C911E782854F50C4F9AE02.roa (hash: 0ae8AXI4ti/g7kjicz0FuqIQr5KuRMl+VwlLXivxPFk=) 3: 78123422B0CD11E58B55FC73C4F9AE02.roa (hash: ELjtbDvUJdRIE0OkklMq1ckQ7DJ/Pb2ipSH84CeiKCg=) 4: F1F087928C6B11F0B1A50E82C4F9AE02.roa (hash: 7tfXuCQjw9T0qFosF2h5F8UNVF4qyYhcz32Eciv+YZo=) 5: 7B938024B0CD11E58B55FC73C4F9AE02.roa (hash: 7ydpzn/QoSWEXvjnGZJ1ta2JwlGF9ANK2aScVlru+Tc=) 6: 7F4D30ACB0CD11E58B55FC73C4F9AE02.roa (hash: YwQuCfTd/qrlJSeamxwuUJ+BvQmXE+p3bNmQY1uUsFo=) 7: D4B25B928C6B11F09545B981C4F9AE02.roa (hash: pR1yc8aEmPb2Q8qUdycAP8NbLrXlxbLvJ23POTBrAso=) 8: 4BF67550A4C911E782854F50C4F9AE02.roa (hash: nr6/7CG6oXudz0l6iz2yM+GZu8wisnZlSv+XVHe+5pE=) 9: 7D920C1AB0CD11E58B55FC73C4F9AE02.roa (hash: GEX+sNV+gjoBRlfbvjQXv3uXeYnL4cH1wK1KCC8jYpA=) 10: 9C193BAC08C511EDBC862E48C4F9AE02.roa (hash: 896PbO0EonUimzXSLkBsI3knk6hd3BAHtAyqYKCmbBE=) 11: 4C9925F2A4C911E782854F50C4F9AE02.roa (hash: R2/SizcxlFy6GiKbWh9BC6IePjx7ZGaL4yUJEBHXwDg=) 12: 8207CCA0906C11EC86E8B711C4F9AE02.roa (hash: /ugniFpN/rGX8I1uxfmMZJryeFfYuWgB3WroPzoi6qU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.crl rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 14:31:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13892 (0x3644) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2454, serialNumber=AB6262BC7D02EC1AD48B71DA98B73D22A362DAF0 Validity Not Before: Oct 18 14:31:32 2025 GMT Not After : Oct 25 14:31:32 2025 GMT Subject: CN=68f3a4c4-953d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:1a:47:03:bf:a5:7b:ff:df:61:93:1c:0a:45: e1:30:ac:0c:ae:5e:4c:a1:b6:11:9e:7d:b2:0d:59: 9a:3c:2e:1a:59:dd:2f:70:41:70:b6:82:8d:ff:4f: 0f:4e:b6:ce:6d:26:00:b9:0b:fc:0e:f3:42:4d:d5: 50:92:40:61:5f:8a:04:02:bc:2c:04:69:48:d9:cf: 4a:dd:aa:0e:d4:dd:9d:bc:60:84:0c:8f:42:ec:13: 63:00:ad:0e:d8:30:95:fb:37:18:80:b9:9d:fc:30: 9e:41:ff:61:b1:b8:74:38:61:71:59:89:94:03:24: dc:20:88:e7:c5:ca:cf:8b:8e:54:28:9a:df:bd:0c: 9a:1b:19:ab:85:3e:7e:b8:f6:d3:f3:40:db:7f:b7: 30:a7:19:05:9e:8c:7b:2a:0c:ed:ff:6b:f4:27:8c: 4b:f2:8a:fd:98:d7:2e:7f:08:76:29:22:0a:05:80: c3:a6:67:a8:b5:60:78:c2:01:e3:18:6c:65:9c:93: 50:da:5f:a4:ba:f2:1a:2f:52:89:97:02:d7:78:1f: 8e:f2:60:aa:70:21:df:13:bc:de:84:c6:dd:35:a3: f0:7b:73:aa:06:8e:0e:23:46:3d:b3:41:52:4c:09: b3:44:36:3f:ba:af:54:43:46:4e:58:52:16:3f:17: c1:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:0B:8B:35:DC:E6:C1:D5:42:15:0B:CE:90:C3:A7:94:BA:63:57:5B X509v3 Authority Key Identifier: keyid:AB:62:62:BC:7D:02:EC:1A:D4:8B:71:DA:98:B7:3D:22:A3:62:DA:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:c0:d3:4a:67:ee:11:6a:91:3e:f9:c2:91:ec:fd:54:c0:c0: e6:b4:9e:c1:12:f6:59:c2:36:b2:9c:a6:ae:d9:8a:4e:14:d9: 0f:33:80:d0:30:a4:67:d1:ea:cf:81:e0:80:6c:6c:15:cf:2e: e1:4a:88:28:1d:1c:0c:43:a8:fa:d3:31:97:70:6f:1f:36:ac: 88:05:1d:27:a0:13:ba:51:53:55:66:86:b3:37:63:5c:3c:06: 5a:c6:4f:d5:ab:5e:25:7c:d6:c8:c9:4b:28:3c:07:35:ac:36: 6b:a6:9e:97:14:15:5d:4a:55:ec:9a:e2:1a:24:3c:6f:7e:b7: 03:44:3b:79:22:53:bf:4f:92:2c:55:6a:18:95:c1:7d:93:87: cb:27:f4:f8:a8:83:8b:2c:e2:10:38:c0:58:13:4a:e2:3f:f0: 50:a2:98:b5:d9:96:e6:3b:22:e3:2f:71:8f:d1:54:88:e7:47: 81:32:6f:46:f3:f0:a7:7d:73:73:54:c9:ba:50:74:c3:ce:a8: c2:6e:b7:59:9c:5c:9e:68:35:2e:b7:9d:62:78:66:8c:36:9b: d7:25:af:8e:85:67:e5:54:99:57:5a:eb:67:4a:84:ff:03:ab: cf:1b:de:a6:98:3d:c2:66:9c:6f:14:0b:f8:fa:86:39:bf:c1: 1d:65:e1:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNkQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI0NTQxMTAvBgNVBAUTKEFCNjI2MkJDN0QwMkVDMUFENDhCNzFEQTk4QjczRDIy QTM2MkRBRjAwHhcNMjUxMDE4MTQzMTMyWhcNMjUxMDI1MTQzMTMyWjAYMRYwFAYD VQQDEw02OGYzYTRjNC05NTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3xpHA7+le//fYZMcCkXhMKwMrl5MobYRnn2yDVmaPC4aWd0vcEFwtoKN/08P TrbObSYAuQv8DvNCTdVQkkBhX4oEArwsBGlI2c9K3aoO1N2dvGCEDI9C7BNjAK0O 2DCV+zcYgLmd/DCeQf9hsbh0OGFxWYmUAyTcIIjnxcrPi45UKJrfvQyaGxmrhT5+ uPbT80Dbf7cwpxkFnox7Kgzt/2v0J4xL8or9mNcufwh2KSIKBYDDpmeotWB4wgHj GGxlnJNQ2l+kuvIaL1KJlwLXeB+O8mCqcCHfE7zehMbdNaPwe3OqBo4OI0Y9s0FS TAmzRDY/uq9UQ0ZOWFIWPxfBSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIILizXc 5sHVQhULzpDDp5S6Y1dbMB8GA1UdIwQYMBaAFKtiYrx9Auwa1Itx2pi3PSKjYtrw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjQ1NC9ENEMzMEI0MjFE ODcxMUUyQTE5ODIyRTAwOEIwMkNEMi9xMkppdkgwQzdCclVpM0hhbUxjOUlxTmky dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3EySml2SDBDN0JyVWkzSGFtTGM5SXFOaTJ2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjQ1NC9ENEMzMEI0MjFEODcxMUUyQTE5ODIyRTAwOEIwMkNEMi9xMkppdkgwQzdC clVpM0hhbUxjOUlxTmkydkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCwNNKZ+4RapE++cKR7P1UwMDmtJ7BEvZZwjaynKau2YpOFNkPM4DQ MKRn0erPgeCAbGwVzy7hSogoHRwMQ6j60zGXcG8fNqyIBR0noBO6UVNVZoazN2Nc PAZaxk/Vq14lfNbIyUsoPAc1rDZrpp6XFBVdSlXsmuIaJDxvfrcDRDt5IlO/T5Is VWoYlcF9k4fLJ/T4qIOLLOIQOMBYE0riP/BQopi12ZbmOyLjL3GP0VSI50eBMm9G 8/CnfXNzVMm6UHTDzqjCbrdZnFyeaDUut51ieGaMNpvXJa+OhWflVJlXWutnSoT/ A6vPG96mmD3CZpxvFAv4+oY5v8EdZeEN -----END CERTIFICATE-----Generated at Mon Oct 20 01:44:51 2025 by rpki-client