$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft File: QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft (raw, json) Hash identifier: 98unbKV//NxB8YIFzvXQM1IC2I+FrAbYsehGtx0b6og= Subject key identifier: A2:6A:36:44:55:E8:41:59:AD:7D:41:A6:59:6D:31:65:41:47:6B:1D Authority key identifier: 40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 Certificate issuer: /CN=A911CA78/serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Certificate serial: 0D5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft Manifest number: 0C73 Signing time: Tue 04 Nov 2025 19:05:22 +0000 Manifest this update: Tue 04 Nov 2025 19:05:21 +0000 Manifest next update: Tue 11 Nov 2025 19:05:21 +0000 Files and hashes: 1: QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl (hash: /VonJTU6T7pYqpqnD5eAF/ih7ol9MBPQR3xSqER1N0E=) 2: 8CC1AF1417DC11EE959DE671C4F9AE02.roa (hash: 7+0RKtv/QFqUJhAIU0jwK/kD2sQJylo8+nExaHdj0YU=) 3: 8DB5B2BC17DC11EE959DE671C4F9AE02.roa (hash: mXW/o+2lA5CH8jN2VyvKEwBUBouEpc3dMmyPpKEoHZM=) 4: 8CA2C07889D111EFAFEB2609C4F9AE02.roa (hash: 7eWRkSZdf992QxbF3h3c0q+aJY3RkuNNtdN+bDuFcbA=) 5: 65A78BCE535F11EE9BC85F83C4F9AE02.roa (hash: JS8uyA5ZDD31OuyzTdeFf/XwQTyv6XqrH8RkgQ1lshw=) 6: A0F26482C9F211EF986EE370C4F9AE02.roa (hash: WvJTTw2h2x8eNtvB9hnnw/qG2i/35vtgBc53uEDUyyE=) 7: AABA617A78B811F0A62F9B28C4F9AE02.roa (hash: JtPXx1WRgsbzmrsNLInF92woE+rUeMA5vr5GiqEQHmw=) 8: 8BF60AF817DC11EE959DE671C4F9AE02.roa (hash: LVCceArjrNx9uJHc32TrQrfuXNf5yNmqL+LVGTZ/kcg=) 9: 67F68132535F11EE9BC85F83C4F9AE02.roa (hash: 93zu71Bbjz/nav2+CvE7DZaoexH+Z1OOLkl6NHafn3s=) 10: 8D2CC3EE17DC11EE959DE671C4F9AE02.roa (hash: zctn/DI/I3BOanvNBzpc9IpPDcrqCUE0GkQVT4ki+nE=) 11: 8F9A2E2817DC11EE959DE671C4F9AE02.roa (hash: fnkMj+nr5Q7iQNfww9b8AyH+pO8Tw9U80LkD+4bYx0w=) 12: 6688CA76535F11EE9BC85F83C4F9AE02.roa (hash: 2TDhWa5aEDfj/OSlXTwrUwhI6/Fx1H9p120AVX8QFaw=) 13: 67023924535F11EE9BC85F83C4F9AE02.roa (hash: auKtqb5gzHutedVTKNtnJRubcnvktJVt0VqmZO9kd5I=) 14: 9B3FF0EC1F6D11F0BBEE756AC4F9AE02.roa (hash: oIlNxA/X4w99Dtq7i69xwEidK0QOO+TfD/eZvN+32J0=) 15: 678847C6535F11EE9BC85F83C4F9AE02.roa (hash: tQ4cyb3heb45htZx1h245p6eBfZ/hq4FrcBUNHIJiPo=) 16: 8B707C6C17DC11EE959DE671C4F9AE02.roa (hash: FBcOfIAiLQzUwARh2vRnAPUlJE7QYwm514/u+ntzHTg=) 17: 48E219C209C311EEA9D88A34C4F9AE02.roa (hash: SfxwUXkZ6scs6b9stvrkH0M3EDnjNSsIuRA3moh8vhQ=) 18: 8AD3E23A17DC11EE959DE671C4F9AE02.roa (hash: Y/n3NB4Jr09jG3Cs+pVr+0yWJBuRJo/kO/On8tf2V5E=) 19: 8EADC8C617DC11EE959DE671C4F9AE02.roa (hash: CD4VpLZIjAnREdFcpXUGct5U+Mw4EMKjpjAEDuYsKeI=) 20: 8F1DD9E017DC11EE959DE671C4F9AE02.roa (hash: yQvc3ntNpG7BJNIHH6+Ojk1HrYYp15Nu10dcUFhCOA8=) 21: 041A5B042C6911F098B91B76C4F9AE02.roa (hash: I5wPyYqqdfF0mXRXOECwyg6iI7z8KBKDKIwaF8mL0MA=) 22: 9005E6F417DC11EE959DE671C4F9AE02.roa (hash: ht52TuAJDLY4uwUtrNchRV8xkg3G9MLjO4Fq4TB9fIk=) 23: 651E60A6535F11EE9BC85F83C4F9AE02.roa (hash: YhNbhFzO7WHU8UmccgfY4hoJ4t2k4JoW/bwFa0YyNSk=) 24: 8E2676DC17DC11EE959DE671C4F9AE02.roa (hash: ba+G7MIs0RgCQosv/d6yBO5KvwyRloGnmrJta7ui9GM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:05:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3419 (0xd5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78, serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Validity Not Before: Nov 4 19:05:21 2025 GMT Not After : Nov 11 19:05:21 2025 GMT Subject: CN=690a4e72-f270 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:3d:0d:7b:38:9f:12:48:89:84:07:0f:32:5c: f0:c4:86:2f:df:2c:49:de:4f:ad:31:4c:33:f7:09: fa:97:cc:0a:bb:9c:67:ad:c8:db:07:8f:55:28:b7: 6c:31:eb:40:3f:40:84:5c:90:2f:12:b5:0a:a6:06: 05:b7:d3:e9:ff:f3:bf:32:a3:31:3c:24:9e:1c:84: 7d:44:de:ff:80:cb:4d:34:d0:83:0e:11:8a:d0:94: 03:e2:68:5b:e0:c6:a6:cc:fc:76:89:09:5e:df:20: 6d:e6:d9:2a:53:61:2d:27:a5:95:14:1c:a9:a0:5c: 46:19:20:16:53:1c:24:cb:53:fa:2c:1b:11:ac:86: 5c:ec:ea:28:c8:db:06:5c:94:10:6d:bc:b0:90:8f: 72:d9:27:3c:ef:55:7d:55:17:fc:08:8d:40:8e:76: 9f:e4:ad:d4:a8:30:0a:fa:7f:53:b6:e5:ee:87:3c: ce:ea:10:29:b5:91:82:ff:77:7d:79:13:16:a1:1e: 03:38:12:3b:74:da:d5:00:6c:ad:3d:f1:b2:b5:b1: 1c:36:26:30:13:13:d4:ee:73:e3:20:dd:59:be:87: 0b:c6:e1:8c:42:db:ea:c8:1e:47:4a:72:80:70:1a: 93:24:c0:f4:e7:66:17:36:d3:d4:44:4e:45:89:22: 59:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:6A:36:44:55:E8:41:59:AD:7D:41:A6:59:6D:31:65:41:47:6B:1D X509v3 Authority Key Identifier: keyid:40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:50:ad:a5:4d:ff:b6:7f:e1:f1:f0:78:e0:d4:b9:bd:ae:35: 06:6b:9d:d5:44:b0:e0:18:05:72:0e:68:83:89:44:72:17:0d: b7:c6:55:b8:eb:78:a7:d5:70:f8:32:b6:a2:3b:46:ab:fd:ab: 92:3d:4e:d3:c9:07:ca:42:9f:0d:9c:a1:04:7d:97:f6:3c:8d: 04:44:df:9d:03:08:07:6a:eb:a3:f9:84:a6:cc:97:51:73:df: 5b:df:d3:e6:13:9c:59:2e:4d:0e:f5:b8:78:52:24:3b:cc:88: 68:08:6e:c0:ed:5b:72:23:1b:f2:cd:af:1d:64:41:43:7f:bb: bd:e1:4a:49:09:27:91:d4:38:84:c9:b2:75:7a:ee:d4:33:e0: dc:06:df:2e:0d:30:2f:ae:71:61:f6:98:fd:e9:ae:90:05:61: df:76:96:a5:bf:53:09:c1:76:2c:d1:a4:49:5a:2f:e0:20:dd: ab:16:ce:dc:c6:b7:fe:ec:5a:0c:6b:b3:3b:20:79:3c:39:95: 2c:70:9e:aa:80:81:f6:1b:76:d0:b5:d6:94:c4:ca:6e:4f:75: b8:46:37:a9:c5:27:09:fb:a5:77:07:c4:a3:81:b0:2e:d0:cc: 9a:78:58:40:8e:5d:db:28:55:fa:ef:80:9b:0b:e5:a5:19:81: c9:d0:71:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDVswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDQwNTYyQzE0M0EyOUNCMTlDNzBGRkM5Qjk5QjYwQkJF Q0QxRDczQjYwHhcNMjUxMTA0MTkwNTIxWhcNMjUxMTExMTkwNTIxWjAYMRYwFAYD VQQDEw02OTBhNGU3Mi1mMjcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsz0NezifEkiJhAcPMlzwxIYv3yxJ3k+tMUwz9wn6l8wKu5xnrcjbB49VKLds MetAP0CEXJAvErUKpgYFt9Pp//O/MqMxPCSeHIR9RN7/gMtNNNCDDhGK0JQD4mhb 4MamzPx2iQle3yBt5tkqU2EtJ6WVFBypoFxGGSAWUxwky1P6LBsRrIZc7OooyNsG XJQQbbywkI9y2Sc871V9VRf8CI1Ajnaf5K3UqDAK+n9TtuXuhzzO6hAptZGC/3d9 eRMWoR4DOBI7dNrVAGytPfGytbEcNiYwExPU7nPjIN1ZvocLxuGMQtvqyB5HSnKA cBqTJMD052YXNtPURE5FiSJZaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKJqNkRV 6EFZrX1BplltMWVBR2sdMB8GA1UdIwQYMBaAFEBWLBQ6KcsZxw/8m5m2C77NHXO2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC9CRTg4NDZEMjM1 RDgxMUVBQTczMEVDNDZDNEY5QUUwMi9RRllzRkRvcHl4bkhEX3libWJZTHZzMGRj N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FGWXNGRG9weXhuSERfeWJtYllMdnMwZGM3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E3OC9CRTg4NDZEMjM1RDgxMUVBQTczMEVDNDZDNEY5QUUwMi9RRllzRkRvcHl4 bkhEX3libWJZTHZzMGRjN1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALUK2lTf+2f+Hx8Hjg1Lm9rjUGa53VRLDgGAVyDmiDiURyFw23xlW4 63in1XD4MraiO0ar/auSPU7TyQfKQp8NnKEEfZf2PI0ERN+dAwgHauuj+YSmzJdR c99b39PmE5xZLk0O9bh4UiQ7zIhoCG7A7VtyIxvyza8dZEFDf7u94UpJCSeR1DiE ybJ1eu7UM+DcBt8uDTAvrnFh9pj96a6QBWHfdpalv1MJwXYs0aRJWi/gIN2rFs7c xrf+7FoMa7M7IHk8OZUscJ6qgIH2G3bQtdaUxMpuT3W4RjepxScJ+6V3B8SjgbAu 0MyaeFhAjl3bKFX674CbC+WlGYHJ0HHR -----END CERTIFICATE-----Generated at Wed Nov 5 15:33:47 2025 by rpki-client