$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft File: QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft (raw, json) Hash identifier: +P2PB4qcT14mLw0hzvbat38I0+drmcLQvLoFVi4mjTA= Subject key identifier: E1:25:69:47:33:8D:63:40:AD:E3:21:48:2F:10:16:D0:48:9A:AF:88 Authority key identifier: 40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 Certificate issuer: /CN=A911CA78/serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Certificate serial: 0CEA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft Manifest number: 0C1F Signing time: Sat 14 Jun 2025 18:57:34 +0000 Manifest this update: Sat 14 Jun 2025 18:57:33 +0000 Manifest next update: Sat 21 Jun 2025 18:57:33 +0000 Files and hashes: 1: QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl (hash: d3kGPpJ1vOmlTSxT6fOL9dfJ2lRa3NqkPycx8WuALsw=) 2: 8CC1AF1417DC11EE959DE671C4F9AE02.roa (hash: bH9ZC4QgjmS/I58+FDGDPuH33W9RsPxq1Xz3UvWrsE8=) 3: 8DB5B2BC17DC11EE959DE671C4F9AE02.roa (hash: MTAUWchwVeKxoXJgsd9CSOqi1gXkAXO05abtX//8zz0=) 4: 8CA2C07889D111EFAFEB2609C4F9AE02.roa (hash: Bbke0XmmIxWIWeMRBoj+nBwWgM3xQtB71wXvSJ5bc/c=) 5: 65A78BCE535F11EE9BC85F83C4F9AE02.roa (hash: onKAfoZCCQvGFRb8T+pywq7Otmi4UdU6B4vavVOep80=) 6: A0F26482C9F211EF986EE370C4F9AE02.roa (hash: IncpLcKA56KouK4nJfe3cMJBEi1TzpOjSfCTV1wFUog=) 7: 8BF60AF817DC11EE959DE671C4F9AE02.roa (hash: kh4hhTCX8Fi9NA+V05arYqEhwsTNSKknNhiVN/VBtTs=) 8: 67F68132535F11EE9BC85F83C4F9AE02.roa (hash: 68PnU5mlOA06iDNZ5XmPFrp9fhXfwnla9MbcMx8d36I=) 9: 8D2CC3EE17DC11EE959DE671C4F9AE02.roa (hash: zZr/wa0m1rFLaToJf+3XeU5H/f8ci0Eq6bfOYc73d3k=) 10: 8F9A2E2817DC11EE959DE671C4F9AE02.roa (hash: sNGI4IjSttFM+bJq5CDyljE79J+Q6/JoAjLErm5ZlOg=) 11: 6688CA76535F11EE9BC85F83C4F9AE02.roa (hash: X9BJWqFkDoO3Z1AnX2rwWIVc/LG4OOcRfPspBGbkn40=) 12: 67023924535F11EE9BC85F83C4F9AE02.roa (hash: ddZXmXMp+inqC1tu9O/Re3vjJXmPn1T/+0+8I6WAPIc=) 13: 9B3FF0EC1F6D11F0BBEE756AC4F9AE02.roa (hash: 2GnDplQiwMAlUAy3xpN879Pw+i4tKoxvTJrAxvUorrE=) 14: 678847C6535F11EE9BC85F83C4F9AE02.roa (hash: Vs5JYwOpofezkqiiF2qwHaO1ji2DOr491xFoDKani80=) 15: 8B707C6C17DC11EE959DE671C4F9AE02.roa (hash: bv2/9mHV5hvQUwYa7AUUUWrf3R41IAn85lkqotp1enw=) 16: 48E219C209C311EEA9D88A34C4F9AE02.roa (hash: ojzmtYL5oSSSDRNMHS4oBfQHwOO76KE3+ooyFQgsmPI=) 17: 8AD3E23A17DC11EE959DE671C4F9AE02.roa (hash: obVSxBoAnqffXMDTd+Z9+Lr3d6TSTuDzUuAxF1nefiI=) 18: 8EADC8C617DC11EE959DE671C4F9AE02.roa (hash: qWKBqzVZNaIWfle8O0qZvhFMlwqBUkUBmN22bjyzZlw=) 19: 8F1DD9E017DC11EE959DE671C4F9AE02.roa (hash: arl4UC92qPVUXs/4JsFRSGmU8q2ljxGq2A9CpZD8w3Q=) 20: DE0563C21F7111F0A41C9D84C4F9AE02.roa (hash: DPPDsUuLV78/5+KBuh51JsOidIpZY5CzHFHdoKE0S1c=) 21: 041A5B042C6911F098B91B76C4F9AE02.roa (hash: 7InJtR6Cn1ch7c1XpQQ6/w3PhjmqyqgTlZD0H0dlaLQ=) 22: 9005E6F417DC11EE959DE671C4F9AE02.roa (hash: nX+JdTppyQxuLXZd5ew3GC3f/sbog2Yk6PdmM9yWumY=) 23: 651E60A6535F11EE9BC85F83C4F9AE02.roa (hash: 4i6VJPAbegLRPG1TiRgqleRdlv3u9kO2DBkdXwrkMys=) 24: 8E2676DC17DC11EE959DE671C4F9AE02.roa (hash: 6WaRYsNX6RMzPE3WdzfKlbLBu0LngwxXI10OdHloqKc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 18:57:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3306 (0xcea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78, serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Validity Not Before: Jun 14 18:57:33 2025 GMT Not After : Jun 21 18:57:33 2025 GMT Subject: CN=684dc61e-f2bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c8:6d:13:07:ef:16:fb:de:0a:aa:57:8a:77: a9:3d:7f:42:44:b3:5f:31:00:24:35:8c:bf:a8:7b: bd:13:be:0d:91:7e:05:50:3c:b7:e5:cb:8d:07:d7: ba:f9:59:e8:cf:41:5c:da:cc:6f:9a:f9:01:bf:c5: b5:51:ff:82:37:43:9f:c2:ca:d8:33:24:d6:61:c7: ff:64:44:74:12:69:a2:3a:f9:34:1e:23:c9:7d:fe: 23:e8:3a:3c:35:d7:a5:27:05:0a:7f:04:df:e4:a1: 81:d9:3f:70:4c:94:80:81:70:c6:39:3e:4d:8a:78: 2d:77:d1:80:b8:02:c9:8a:49:54:be:25:79:44:a2: 55:84:a4:da:d2:51:d8:c7:15:9b:ed:0e:8f:77:fd: 39:d3:bf:b3:34:9f:ee:ac:16:ba:d0:67:06:b8:7e: af:fd:05:97:e7:fc:b2:2f:29:f0:f9:7e:19:c8:b0: ed:b0:a9:24:27:de:53:44:c7:79:42:66:11:86:b8: a2:75:66:bb:57:f8:7d:ec:e8:87:40:d1:35:51:62: 75:4f:1c:ff:e1:09:33:81:1e:fe:61:62:a6:c4:3f: 2f:59:ef:5c:d2:20:b9:ad:ef:6b:30:f5:43:c9:a6: 49:09:4b:fb:ac:cb:5f:25:cc:29:d1:90:47:e5:54: ef:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:25:69:47:33:8D:63:40:AD:E3:21:48:2F:10:16:D0:48:9A:AF:88 X509v3 Authority Key Identifier: keyid:40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:55:6f:46:50:e4:9d:5f:1a:a2:4f:b9:64:74:64:57:b0:0a: 65:0e:36:74:96:78:ab:41:93:82:92:f9:45:db:c7:22:f9:ba: 28:e9:a7:bf:50:c2:b3:7f:57:a1:fe:e4:54:90:ea:2a:b4:d3: 0c:a4:81:52:47:c2:17:6e:cb:83:8a:28:4c:42:f2:4f:16:3e: bf:5d:45:c8:6a:b7:c5:35:32:04:6e:93:40:5e:09:02:6c:b3: 84:a3:f7:e5:d5:ac:1a:65:96:56:5c:31:06:5b:1b:73:6e:20: e2:d5:ea:50:57:f8:0b:fd:11:90:9f:8f:14:c1:2d:66:fb:5d: 02:66:36:f6:3f:69:8c:80:1e:74:18:78:05:9b:c2:66:dc:cd: 94:ef:fc:40:60:a0:02:44:21:f6:eb:da:8f:90:d2:34:29:1b: ea:5a:1c:8b:bb:52:ea:6c:2b:88:d5:58:2c:b3:eb:ef:ef:54: b5:05:1e:bd:a7:e9:14:ec:c9:93:8d:d0:8e:55:25:30:26:58: ad:fb:80:5e:2f:65:44:b1:3c:86:1b:26:ac:ab:11:56:12:5b: 7d:ed:ec:30:a5:af:bf:4c:91:d8:86:b6:fa:b6:88:be:cd:94: f9:ae:1f:2e:66:98:3a:1c:b4:f6:16:fd:d5:a0:2b:4e:70:92: 76:d6:31:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDQwNTYyQzE0M0EyOUNCMTlDNzBGRkM5Qjk5QjYwQkJF Q0QxRDczQjYwHhcNMjUwNjE0MTg1NzMzWhcNMjUwNjIxMTg1NzMzWjAYMRYwFAYD VQQDEw02ODRkYzYxZS1mMmJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtchtEwfvFvveCqpXinepPX9CRLNfMQAkNYy/qHu9E74NkX4FUDy35cuNB9e6 +Vnoz0Fc2sxvmvkBv8W1Uf+CN0OfwsrYMyTWYcf/ZER0EmmiOvk0HiPJff4j6Do8 NdelJwUKfwTf5KGB2T9wTJSAgXDGOT5Ningtd9GAuALJiklUviV5RKJVhKTa0lHY xxWb7Q6Pd/0507+zNJ/urBa60GcGuH6v/QWX5/yyLynw+X4ZyLDtsKkkJ95TRMd5 QmYRhriidWa7V/h97OiHQNE1UWJ1Txz/4QkzgR7+YWKmxD8vWe9c0iC5re9rMPVD yaZJCUv7rMtfJcwp0ZBH5VTvKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOElaUcz jWNAreMhSC8QFtBImq+IMB8GA1UdIwQYMBaAFEBWLBQ6KcsZxw/8m5m2C77NHXO2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC9CRTg4NDZEMjM1 RDgxMUVBQTczMEVDNDZDNEY5QUUwMi9RRllzRkRvcHl4bkhEX3libWJZTHZzMGRj N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FGWXNGRG9weXhuSERfeWJtYllMdnMwZGM3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E3OC9CRTg4NDZEMjM1RDgxMUVBQTczMEVDNDZDNEY5QUUwMi9RRllzRkRvcHl4 bkhEX3libWJZTHZzMGRjN1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhVW9GUOSdXxqiT7lkdGRXsAplDjZ0lnirQZOCkvlF28ci+boo6ae/ UMKzf1eh/uRUkOoqtNMMpIFSR8IXbsuDiihMQvJPFj6/XUXIarfFNTIEbpNAXgkC bLOEo/fl1awaZZZWXDEGWxtzbiDi1epQV/gL/RGQn48UwS1m+10CZjb2P2mMgB50 GHgFm8Jm3M2U7/xAYKACRCH269qPkNI0KRvqWhyLu1LqbCuI1Vgss+vv71S1BR69 p+kU7MmTjdCOVSUwJlit+4BeL2VEsTyGGyasqxFWElt97ewwpa+/TJHYhrb6toi+ zZT5rh8uZpg6HLT2Fv3VoCtOcJJ21jGM -----END CERTIFICATE-----Generated at Sun Jun 15 08:39:09 2025 by rpki-client