$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft File: QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft (raw, json) Hash identifier: Gvx7wioGftnNq7TQpGxqJzlc39EvRxqjmqGgwtruRUI= Subject key identifier: FA:36:1E:E0:4E:D2:C3:99:32:8B:03:03:10:D1:BE:95:97:33:E8:1B Authority key identifier: 40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 Certificate issuer: /CN=A911CA78/serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Certificate serial: 0D0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft Manifest number: 0C3E Signing time: Fri 08 Aug 2025 19:18:43 +0000 Manifest this update: Fri 08 Aug 2025 19:18:43 +0000 Manifest next update: Fri 15 Aug 2025 19:18:43 +0000 Files and hashes: 1: QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl (hash: OLcXWpBrjbx0JC0fWLTF7i7vEegL1cixrUTHlxlApXk=) 2: 8CC1AF1417DC11EE959DE671C4F9AE02.roa (hash: bH9ZC4QgjmS/I58+FDGDPuH33W9RsPxq1Xz3UvWrsE8=) 3: 8DB5B2BC17DC11EE959DE671C4F9AE02.roa (hash: MTAUWchwVeKxoXJgsd9CSOqi1gXkAXO05abtX//8zz0=) 4: 8CA2C07889D111EFAFEB2609C4F9AE02.roa (hash: Bbke0XmmIxWIWeMRBoj+nBwWgM3xQtB71wXvSJ5bc/c=) 5: 65A78BCE535F11EE9BC85F83C4F9AE02.roa (hash: onKAfoZCCQvGFRb8T+pywq7Otmi4UdU6B4vavVOep80=) 6: A0F26482C9F211EF986EE370C4F9AE02.roa (hash: IncpLcKA56KouK4nJfe3cMJBEi1TzpOjSfCTV1wFUog=) 7: 8BF60AF817DC11EE959DE671C4F9AE02.roa (hash: kh4hhTCX8Fi9NA+V05arYqEhwsTNSKknNhiVN/VBtTs=) 8: 67F68132535F11EE9BC85F83C4F9AE02.roa (hash: 68PnU5mlOA06iDNZ5XmPFrp9fhXfwnla9MbcMx8d36I=) 9: 8D2CC3EE17DC11EE959DE671C4F9AE02.roa (hash: zZr/wa0m1rFLaToJf+3XeU5H/f8ci0Eq6bfOYc73d3k=) 10: 8F9A2E2817DC11EE959DE671C4F9AE02.roa (hash: sNGI4IjSttFM+bJq5CDyljE79J+Q6/JoAjLErm5ZlOg=) 11: 6688CA76535F11EE9BC85F83C4F9AE02.roa (hash: X9BJWqFkDoO3Z1AnX2rwWIVc/LG4OOcRfPspBGbkn40=) 12: 67023924535F11EE9BC85F83C4F9AE02.roa (hash: ddZXmXMp+inqC1tu9O/Re3vjJXmPn1T/+0+8I6WAPIc=) 13: 9B3FF0EC1F6D11F0BBEE756AC4F9AE02.roa (hash: 2GnDplQiwMAlUAy3xpN879Pw+i4tKoxvTJrAxvUorrE=) 14: 678847C6535F11EE9BC85F83C4F9AE02.roa (hash: Vs5JYwOpofezkqiiF2qwHaO1ji2DOr491xFoDKani80=) 15: 8B707C6C17DC11EE959DE671C4F9AE02.roa (hash: bv2/9mHV5hvQUwYa7AUUUWrf3R41IAn85lkqotp1enw=) 16: 48E219C209C311EEA9D88A34C4F9AE02.roa (hash: ojzmtYL5oSSSDRNMHS4oBfQHwOO76KE3+ooyFQgsmPI=) 17: 8AD3E23A17DC11EE959DE671C4F9AE02.roa (hash: obVSxBoAnqffXMDTd+Z9+Lr3d6TSTuDzUuAxF1nefiI=) 18: 8EADC8C617DC11EE959DE671C4F9AE02.roa (hash: qWKBqzVZNaIWfle8O0qZvhFMlwqBUkUBmN22bjyzZlw=) 19: 8F1DD9E017DC11EE959DE671C4F9AE02.roa (hash: arl4UC92qPVUXs/4JsFRSGmU8q2ljxGq2A9CpZD8w3Q=) 20: DE0563C21F7111F0A41C9D84C4F9AE02.roa (hash: /IpFXIthR5eSC7FyQ6j687IgRZDqYwU2/QUkyZynSVY=) 21: 041A5B042C6911F098B91B76C4F9AE02.roa (hash: 7InJtR6Cn1ch7c1XpQQ6/w3PhjmqyqgTlZD0H0dlaLQ=) 22: 9005E6F417DC11EE959DE671C4F9AE02.roa (hash: nX+JdTppyQxuLXZd5ew3GC3f/sbog2Yk6PdmM9yWumY=) 23: 651E60A6535F11EE9BC85F83C4F9AE02.roa (hash: 4i6VJPAbegLRPG1TiRgqleRdlv3u9kO2DBkdXwrkMys=) 24: 8E2676DC17DC11EE959DE671C4F9AE02.roa (hash: 6WaRYsNX6RMzPE3WdzfKlbLBu0LngwxXI10OdHloqKc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3339 (0xd0b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78, serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Validity Not Before: Aug 8 19:18:43 2025 GMT Not After : Aug 15 19:18:43 2025 GMT Subject: CN=68964d93-6f7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:78:ad:a0:7c:2a:d6:e7:bb:45:d3:0c:53:5e: a1:f6:6e:ff:64:09:db:42:c7:59:f5:fd:c2:09:7c: f5:16:9f:4b:e1:48:6c:72:a4:15:35:24:8e:3c:be: 4e:f4:9a:da:f9:3d:d4:95:4a:f6:de:c8:97:02:cc: f0:c0:ba:27:de:b9:f6:83:f8:73:0a:c1:d7:dc:ff: 77:f9:18:a1:fc:24:33:bc:24:0f:eb:71:20:f3:e1: d4:ff:6f:66:2a:4a:99:b8:cc:82:8c:cd:bf:db:6a: 82:0b:62:c2:2d:0d:ae:32:04:69:99:38:6a:fe:21: 4e:73:c7:11:74:35:f9:a7:51:d9:99:5d:4d:d6:03: 06:e3:7d:a9:c5:89:ec:0b:90:f9:d5:e1:2b:1b:fd: aa:68:88:92:e0:26:eb:0c:25:c4:fe:db:dd:bb:0a: c8:1e:f1:b1:c2:4a:ff:1c:b2:5f:9b:ed:69:7c:51: 4c:d2:00:da:c8:e3:51:e1:55:99:de:14:34:0e:aa: 24:07:f6:7d:7d:e2:d1:9e:36:3c:be:8b:b4:1b:7c: 40:02:f4:58:31:f0:46:f1:f9:f9:fb:54:6b:6c:70: de:3e:09:73:f6:9b:c9:75:51:cf:9f:47:6a:d6:fb: 1b:98:b7:ad:fc:3e:6e:47:09:98:15:17:c1:a6:27: c3:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:36:1E:E0:4E:D2:C3:99:32:8B:03:03:10:D1:BE:95:97:33:E8:1B X509v3 Authority Key Identifier: keyid:40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:79:b5:81:4e:5b:79:96:de:0b:c6:35:bb:55:20:78:93:b7: c5:1a:f4:cc:c3:e0:7c:7c:1b:f3:c1:60:66:a7:0f:82:6e:c3: f2:18:af:8d:ce:2c:57:08:d9:58:aa:2c:48:ca:61:1c:29:ed: 94:34:c0:59:ca:61:14:55:b3:f3:18:7c:8c:3a:3c:04:1f:d4: fa:ae:b0:a5:ae:5b:b5:09:bc:ad:24:58:84:54:9a:21:f7:41: 01:a3:8e:60:62:bb:9b:a3:c6:1f:18:6b:04:2a:4a:63:ad:ef: 66:78:9f:41:0f:b3:e1:3d:38:03:bc:26:9b:37:f3:bf:b2:bc: c8:3e:e8:77:fb:98:2b:f5:39:64:3c:a3:14:d3:da:ab:8c:65: f1:26:14:fc:f9:b4:67:2b:c5:11:ac:a1:2d:31:7f:dc:a3:d2: 9e:5d:11:5f:b4:a7:03:57:43:85:2f:3e:54:d2:05:34:86:bc: e1:38:25:e7:64:1b:ac:78:e0:27:ba:95:dd:84:de:81:ee:bc: fc:85:2d:44:b0:de:0a:df:c6:60:36:63:ea:37:a0:ec:41:70: bd:a8:f2:a2:93:11:ed:b1:d8:ff:09:62:ab:74:fc:ef:98:ab: 71:cc:ae:d8:ce:91:a1:da:f6:bd:00:18:1d:b0:f4:99:c7:60: f3:d5:97:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDQwNTYyQzE0M0EyOUNCMTlDNzBGRkM5Qjk5QjYwQkJF Q0QxRDczQjYwHhcNMjUwODA4MTkxODQzWhcNMjUwODE1MTkxODQzWjAYMRYwFAYD VQQDEw02ODk2NGQ5My02ZjdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8HitoHwq1ue7RdMMU16h9m7/ZAnbQsdZ9f3CCXz1Fp9L4UhscqQVNSSOPL5O 9Jra+T3UlUr23siXAszwwLon3rn2g/hzCsHX3P93+Rih/CQzvCQP63Eg8+HU/29m KkqZuMyCjM2/22qCC2LCLQ2uMgRpmThq/iFOc8cRdDX5p1HZmV1N1gMG432pxYns C5D51eErG/2qaIiS4CbrDCXE/tvduwrIHvGxwkr/HLJfm+1pfFFM0gDayONR4VWZ 3hQ0DqokB/Z9feLRnjY8vou0G3xAAvRYMfBG8fn5+1RrbHDePglz9pvJdVHPn0dq 1vsbmLet/D5uRwmYFRfBpifDYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPo2HuBO 0sOZMosDAxDRvpWXM+gbMB8GA1UdIwQYMBaAFEBWLBQ6KcsZxw/8m5m2C77NHXO2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC9CRTg4NDZEMjM1 RDgxMUVBQTczMEVDNDZDNEY5QUUwMi9RRllzRkRvcHl4bkhEX3libWJZTHZzMGRj N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FGWXNGRG9weXhuSERfeWJtYllMdnMwZGM3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E3OC9CRTg4NDZEMjM1RDgxMUVBQTczMEVDNDZDNEY5QUUwMi9RRllzRkRvcHl4 bkhEX3libWJZTHZzMGRjN1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwebWBTlt5lt4LxjW7VSB4k7fFGvTMw+B8fBvzwWBmpw+CbsPyGK+N zixXCNlYqixIymEcKe2UNMBZymEUVbPzGHyMOjwEH9T6rrClrlu1CbytJFiEVJoh 90EBo45gYrubo8YfGGsEKkpjre9meJ9BD7PhPTgDvCabN/O/srzIPuh3+5gr9Tlk PKMU09qrjGXxJhT8+bRnK8URrKEtMX/co9KeXRFftKcDV0OFLz5U0gU0hrzhOCXn ZBuseOAnupXdhN6B7rz8hS1EsN4K38ZgNmPqN6DsQXC9qPKikxHtsdj/CWKrdPzv mKtxzK7YzpGh2va9ABgdsPSZx2Dz1ZdZ -----END CERTIFICATE-----Generated at Sat Aug 9 23:10:23 2025 by rpki-client