$ rpki-client -vvf rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft File: 70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft (raw, json) Hash identifier: F3sCOvIy4dzIY7eIjnM7LX45+WFZHUAvkeWgMX9BddM= Subject key identifier: 36:2E:45:1D:E1:75:2D:43:EC:68:6A:2E:ED:6F:B3:92:1D:BE:55:67 Authority key identifier: EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 Certificate issuer: /CN=A918BB4D/serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Certificate serial: 072D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft Manifest number: 070B Signing time: Sun 02 Nov 2025 21:54:33 +0000 Manifest this update: Sun 02 Nov 2025 21:54:33 +0000 Manifest next update: Sun 09 Nov 2025 21:54:33 +0000 Files and hashes: 1: 70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl (hash: QU8U8n7wWrflZn+2D17jdo4yR2ghCDDePdNXJ6a6WWM=) 2: 05F05106586011EE9399A92EC4F9AE02.roa (hash: uE1Fce5x0iyRAmN0knxTtSotHjcQGH0Wea/3oUShZPs=) 3: 3524F8BCD75511EF80E68A39C4F9AE02.roa (hash: hXI7auCZSPvAdHOfiV427I6HYIQHsMDxA6gjGw/HO3w=) 4: 34956990D75511EF80E68A39C4F9AE02.roa (hash: dxCqVoSNOkIPa8mn9WccbxZTxKG1nVMRR4a4UGacE9I=) 5: 80DE56F2355D11F0A8C7F559C4F9AE02.roa (hash: ZHB5HyWHIeMUdK8FQ83iXhPDeHhVdive57aqWkTwI34=) 6: 8065DE3E355D11F0A8C7F559C4F9AE02.roa (hash: u+3Kqlk1/ablMkybk1cn19GMLJzdy6UlNuONo3CbZ6Y=) 7: 35A4EFE0D75511EF80E68A39C4F9AE02.roa (hash: E255PQy8J0Om1w8sX22dbtF3FegoajHcFmWtic98DmU=) 8: 5997C4D0719A11EEBBA64415C4F9AE02.roa (hash: 2hIQWvs5gCQjNeqkzYCi7IsHJw8uYq2a3BY4+uJn8rA=) 9: C0681BF2CF4911EF8531B085C4F9AE02.roa (hash: TnWWrKTfNekbVi6pIzTrH/qhvsHIadymtQxdXn+0jBk=) 10: 58EBEC82719A11EEBBA64415C4F9AE02.roa (hash: lRSKSHnJ9I173rhXzeEXncsQoFojPmJc5tNaNSnncqo=) 11: 364089B4D75511EF80E68A39C4F9AE02.roa (hash: NrUDO3l9X5LzCJUbUlr+EVuvLPXgjAkVWS40pKWplwg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 21:54:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1837 (0x72d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BB4D, serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Validity Not Before: Nov 2 21:54:33 2025 GMT Not After : Nov 9 21:54:33 2025 GMT Subject: CN=6907d319-f29f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:0f:63:d2:8a:b2:d1:09:8e:a6:53:d1:27:98: 40:12:69:71:80:c0:54:bb:fc:6c:46:53:ac:d3:7e: 53:6a:d9:5d:12:9a:26:d7:31:7b:cb:6b:34:8e:d5: 5f:7f:cd:f8:e6:0b:89:43:55:ae:cf:be:55:ba:5e: b6:de:c3:00:20:c8:7a:36:35:0f:73:bc:ce:4c:77: d1:8a:05:a3:01:53:c9:c4:43:cd:06:ee:34:c5:0a: 05:4a:ef:46:c0:6b:87:6a:c7:4b:c4:95:65:a7:62: 98:06:07:da:56:93:e5:49:22:0c:87:fd:24:99:da: 39:29:d5:94:ba:ce:a5:2b:22:ce:7f:b6:29:9c:2f: d9:43:56:a4:c2:d7:f6:22:ed:71:40:4c:4e:5b:66: 8c:28:79:61:44:a4:bb:a6:d5:e0:c1:1d:17:e2:bc: 54:8d:1a:f6:5e:3a:46:ab:7d:65:f2:50:55:d1:21: f7:f4:9b:e6:72:88:64:d8:b4:91:4d:66:cb:73:a8: 17:eb:03:9d:30:37:69:e6:dc:d8:9a:c7:57:a6:aa: e4:a8:56:d7:cb:35:5d:e7:32:6d:2e:83:37:76:42: 3a:ad:85:61:27:c1:64:d6:84:c9:a2:e2:de:85:6b: ad:c4:e3:45:cc:ea:ed:3a:39:55:49:4e:41:45:b8: da:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:2E:45:1D:E1:75:2D:43:EC:68:6A:2E:ED:6F:B3:92:1D:BE:55:67 X509v3 Authority Key Identifier: keyid:EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:80:5e:7a:55:cb:db:65:67:23:4d:68:c1:92:26:cf:62:ad: 4e:5a:d3:8b:ee:f5:ca:ad:a9:7d:fb:d4:8d:44:74:d9:91:07: f0:a2:cb:a8:02:2f:7a:28:97:35:ec:bc:c8:50:aa:0e:1d:ab: 3d:f5:3f:20:66:1d:d8:39:16:a5:9c:3e:53:0d:1d:a0:5f:dd: 11:65:ba:dd:07:c0:8e:f7:8a:92:88:a5:b9:78:b4:2c:75:e4: 15:d1:6c:3d:5c:ae:fb:01:ca:14:1c:44:36:6a:a2:b4:25:0f: 59:a3:44:ec:53:05:56:43:7f:32:54:34:f6:87:47:eb:06:28: f8:5a:9f:16:ec:4d:41:c2:88:fb:55:34:51:ba:35:41:72:eb: 60:c4:a7:b0:bd:42:70:51:fc:64:9e:0e:42:ae:f5:4d:8f:f3: a0:29:d7:d7:c0:90:0a:f2:01:e0:e3:4c:2e:fd:ef:c7:60:69: 04:6c:40:58:1d:c0:22:9f:0a:d5:8b:a8:90:d6:0a:20:e6:7d: 0f:e8:97:0f:87:53:09:2c:39:f8:08:cf:d7:95:27:d9:c4:1f: 78:5c:6b:79:9d:8d:5b:34:9e:6f:25:db:fb:b8:1f:3a:62:c6: 74:86:a8:6f:47:11:9e:f6:26:d7:a7:38:4d:b8:9c:b7:36:e0: fc:be:f8:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBy0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJCNEQxMTAvBgNVBAUTKEVGNDAzNjQzRUE5ODIwQUU2RDlENjIyRjlBRUZEN0E0 QzkxNTRGMjQwHhcNMjUxMTAyMjE1NDMzWhcNMjUxMTA5MjE1NDMzWjAYMRYwFAYD VQQDEw02OTA3ZDMxOS1mMjlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxg9j0oqy0QmOplPRJ5hAEmlxgMBUu/xsRlOs035TatldEpom1zF7y2s0jtVf f8345guJQ1Wuz75Vul623sMAIMh6NjUPc7zOTHfRigWjAVPJxEPNBu40xQoFSu9G wGuHasdLxJVlp2KYBgfaVpPlSSIMh/0kmdo5KdWUus6lKyLOf7YpnC/ZQ1akwtf2 Iu1xQExOW2aMKHlhRKS7ptXgwR0X4rxUjRr2XjpGq31l8lBV0SH39Jvmcohk2LSR TWbLc6gX6wOdMDdp5tzYmsdXpqrkqFbXyzVd5zJtLoM3dkI6rYVhJ8Fk1oTJouLe hWutxONFzOrtOjlVSU5BRbjaewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDYuRR3h dS1D7GhqLu1vs5IdvlVnMB8GA1UdIwQYMBaAFO9ANkPqmCCubZ1iL5rv16TJFU8k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkI0RC9DQTU2M0JFODY1 MjIxMUVCODBGNkU5NEJDNEY5QUUwMi83MEEyUS1xWUlLNXRuV0l2bXVfWHBNa1ZU eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcwQTJRLXFZSUs1dG5XSXZtdV9YcE1rVlR5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QkI0RC9DQTU2M0JFODY1MjIxMUVCODBGNkU5NEJDNEY5QUUwMi83MEEyUS1xWUlL NXRuV0l2bXVfWHBNa1ZUeVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMgF56VcvbZWcjTWjBkibPYq1OWtOL7vXKral9+9SNRHTZkQfwosuo Ai96KJc17LzIUKoOHas99T8gZh3YORalnD5TDR2gX90RZbrdB8CO94qSiKW5eLQs deQV0Ww9XK77AcoUHEQ2aqK0JQ9Zo0TsUwVWQ38yVDT2h0frBij4Wp8W7E1Bwoj7 VTRRujVBcutgxKewvUJwUfxkng5CrvVNj/OgKdfXwJAK8gHg40wu/e/HYGkEbEBY HcAinwrVi6iQ1gog5n0P6JcPh1MJLDn4CM/XlSfZxB94XGt5nY1bNJ5vJdv7uB86 YsZ0hqhvRxGe9ibXpzhNuJy3NuD8vvhA -----END CERTIFICATE-----Generated at Tue Nov 4 19:05:50 2025 by rpki-client