$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft File: QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft (raw, json) Hash identifier: Z7WVmqLpWXuTyDI84yERh890lEkG7cgOwllS3zbHYKM= Subject key identifier: 36:D7:BE:16:91:1C:EC:40:17:6B:56:43:10:FF:1B:69:CB:08:E2:74 Authority key identifier: 40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 Certificate issuer: /CN=A911CA78/serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Certificate serial: 0CF3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft Manifest number: 0C28 Signing time: Wed 02 Jul 2025 19:19:12 +0000 Manifest this update: Wed 02 Jul 2025 19:19:12 +0000 Manifest next update: Wed 09 Jul 2025 19:19:12 +0000 Files and hashes: 1: QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl (hash: KRONZ1W8HvyV36YlF6oSSi3jEo70yfuCuaP9E+XaWPU=) 2: 8CC1AF1417DC11EE959DE671C4F9AE02.roa (hash: bH9ZC4QgjmS/I58+FDGDPuH33W9RsPxq1Xz3UvWrsE8=) 3: 8DB5B2BC17DC11EE959DE671C4F9AE02.roa (hash: MTAUWchwVeKxoXJgsd9CSOqi1gXkAXO05abtX//8zz0=) 4: 8CA2C07889D111EFAFEB2609C4F9AE02.roa (hash: Bbke0XmmIxWIWeMRBoj+nBwWgM3xQtB71wXvSJ5bc/c=) 5: 65A78BCE535F11EE9BC85F83C4F9AE02.roa (hash: onKAfoZCCQvGFRb8T+pywq7Otmi4UdU6B4vavVOep80=) 6: A0F26482C9F211EF986EE370C4F9AE02.roa (hash: IncpLcKA56KouK4nJfe3cMJBEi1TzpOjSfCTV1wFUog=) 7: 8BF60AF817DC11EE959DE671C4F9AE02.roa (hash: kh4hhTCX8Fi9NA+V05arYqEhwsTNSKknNhiVN/VBtTs=) 8: 67F68132535F11EE9BC85F83C4F9AE02.roa (hash: 68PnU5mlOA06iDNZ5XmPFrp9fhXfwnla9MbcMx8d36I=) 9: 8D2CC3EE17DC11EE959DE671C4F9AE02.roa (hash: zZr/wa0m1rFLaToJf+3XeU5H/f8ci0Eq6bfOYc73d3k=) 10: 8F9A2E2817DC11EE959DE671C4F9AE02.roa (hash: sNGI4IjSttFM+bJq5CDyljE79J+Q6/JoAjLErm5ZlOg=) 11: 6688CA76535F11EE9BC85F83C4F9AE02.roa (hash: X9BJWqFkDoO3Z1AnX2rwWIVc/LG4OOcRfPspBGbkn40=) 12: 67023924535F11EE9BC85F83C4F9AE02.roa (hash: ddZXmXMp+inqC1tu9O/Re3vjJXmPn1T/+0+8I6WAPIc=) 13: 9B3FF0EC1F6D11F0BBEE756AC4F9AE02.roa (hash: 2GnDplQiwMAlUAy3xpN879Pw+i4tKoxvTJrAxvUorrE=) 14: 678847C6535F11EE9BC85F83C4F9AE02.roa (hash: Vs5JYwOpofezkqiiF2qwHaO1ji2DOr491xFoDKani80=) 15: 8B707C6C17DC11EE959DE671C4F9AE02.roa (hash: bv2/9mHV5hvQUwYa7AUUUWrf3R41IAn85lkqotp1enw=) 16: 48E219C209C311EEA9D88A34C4F9AE02.roa (hash: ojzmtYL5oSSSDRNMHS4oBfQHwOO76KE3+ooyFQgsmPI=) 17: 8AD3E23A17DC11EE959DE671C4F9AE02.roa (hash: obVSxBoAnqffXMDTd+Z9+Lr3d6TSTuDzUuAxF1nefiI=) 18: 8EADC8C617DC11EE959DE671C4F9AE02.roa (hash: qWKBqzVZNaIWfle8O0qZvhFMlwqBUkUBmN22bjyzZlw=) 19: 8F1DD9E017DC11EE959DE671C4F9AE02.roa (hash: arl4UC92qPVUXs/4JsFRSGmU8q2ljxGq2A9CpZD8w3Q=) 20: DE0563C21F7111F0A41C9D84C4F9AE02.roa (hash: DPPDsUuLV78/5+KBuh51JsOidIpZY5CzHFHdoKE0S1c=) 21: 041A5B042C6911F098B91B76C4F9AE02.roa (hash: 7InJtR6Cn1ch7c1XpQQ6/w3PhjmqyqgTlZD0H0dlaLQ=) 22: 9005E6F417DC11EE959DE671C4F9AE02.roa (hash: nX+JdTppyQxuLXZd5ew3GC3f/sbog2Yk6PdmM9yWumY=) 23: 651E60A6535F11EE9BC85F83C4F9AE02.roa (hash: 4i6VJPAbegLRPG1TiRgqleRdlv3u9kO2DBkdXwrkMys=) 24: 8E2676DC17DC11EE959DE671C4F9AE02.roa (hash: 6WaRYsNX6RMzPE3WdzfKlbLBu0LngwxXI10OdHloqKc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:19:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3315 (0xcf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78, serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Validity Not Before: Jul 2 19:19:12 2025 GMT Not After : Jul 9 19:19:12 2025 GMT Subject: CN=68658630-da71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:1b:0a:14:43:31:b2:ec:ba:be:4d:ca:7d:bf: 80:57:7e:dd:cb:76:83:39:0e:1d:9c:7e:21:b2:53: f5:f2:57:a3:34:f5:db:47:13:43:55:6c:02:bb:b9: 36:54:1c:17:47:e8:0a:91:d4:e2:7a:28:ed:da:28: 1f:af:50:ac:ca:51:f8:5d:61:4e:7e:03:7c:33:b0: de:97:07:a6:ad:b1:ac:63:9f:0a:81:15:10:ec:e3: 49:dd:ae:6b:3c:18:16:a3:f0:48:18:7a:38:2c:d6: 91:d0:2a:71:2f:03:43:d7:47:99:05:d9:d3:f7:4d: d7:cf:a6:bd:a1:56:42:37:85:cc:e6:3d:96:30:9d: d5:10:d0:88:3b:38:7b:99:a9:cb:d9:80:9c:57:ed: 54:8c:e1:13:3e:87:65:93:49:4a:ac:9c:df:5c:94: b1:54:8b:be:10:21:1a:e1:03:59:a9:ce:25:fb:79: 2f:8d:6e:c1:46:0b:ff:ed:35:d3:30:7e:11:78:b6: 9b:56:a5:01:bb:b0:58:3b:7c:4d:0c:f8:4d:ec:a0: 17:5d:64:de:6e:d8:d1:57:00:80:17:f0:7c:fc:10: 46:9e:4b:ff:7a:f7:43:e2:47:97:72:96:27:2c:73: fa:0c:d4:d7:06:47:94:0b:b4:06:9b:1f:b3:9a:76: ec:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:D7:BE:16:91:1C:EC:40:17:6B:56:43:10:FF:1B:69:CB:08:E2:74 X509v3 Authority Key Identifier: keyid:40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:26:cf:43:0e:fd:b3:89:b1:d1:08:7b:8e:6b:bd:6b:d0:a3: 21:cb:c5:f5:b1:f5:11:9f:6e:b4:95:f1:7b:cd:f9:be:e1:6b: da:fc:93:20:bf:01:1a:05:cd:27:49:92:4b:a8:de:20:04:9a: 1a:24:7a:2f:44:75:95:e7:33:cb:c0:b0:be:a2:93:74:f4:5e: d8:2c:42:d7:12:23:11:18:e2:8c:54:eb:53:e0:5b:6d:a9:21: dd:f4:2a:cd:c5:d8:6d:7d:30:62:1c:f5:e4:f2:2b:16:a5:6e: 3b:bb:34:f1:a2:84:6d:22:74:62:a9:4c:b2:42:59:88:a2:90: a1:1c:03:b1:b4:8d:13:04:bd:44:ef:cb:fa:cf:33:6e:a0:5b: 2e:f9:db:17:95:f7:4e:8d:3a:f3:41:6b:11:f4:4c:a2:08:c1: 6c:42:f8:70:18:01:ea:52:c9:3f:0c:90:0c:07:72:29:db:aa: c3:b9:ba:49:e5:7d:19:bc:85:bc:a7:40:41:1a:46:48:2a:31: 00:db:4e:15:a7:12:7c:e1:1b:57:ae:55:f8:ec:1c:ec:e9:46: 12:66:3a:88:01:6d:dc:94:0b:04:73:98:0d:7b:30:a5:34:55: ac:f3:78:24:75:92:11:c2:d6:da:eb:88:87:61:15:46:47:71: a9:ee:e3:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDQwNTYyQzE0M0EyOUNCMTlDNzBGRkM5Qjk5QjYwQkJF Q0QxRDczQjYwHhcNMjUwNzAyMTkxOTEyWhcNMjUwNzA5MTkxOTEyWjAYMRYwFAYD VQQDEw02ODY1ODYzMC1kYTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyxsKFEMxsuy6vk3Kfb+AV37dy3aDOQ4dnH4hslP18lejNPXbRxNDVWwCu7k2 VBwXR+gKkdTieijt2igfr1CsylH4XWFOfgN8M7DelwemrbGsY58KgRUQ7ONJ3a5r PBgWo/BIGHo4LNaR0CpxLwND10eZBdnT903Xz6a9oVZCN4XM5j2WMJ3VENCIOzh7 manL2YCcV+1UjOETPodlk0lKrJzfXJSxVIu+ECEa4QNZqc4l+3kvjW7BRgv/7TXT MH4ReLabVqUBu7BYO3xNDPhN7KAXXWTebtjRVwCAF/B8/BBGnkv/evdD4keXcpYn LHP6DNTXBkeUC7QGmx+zmnbsqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDbXvhaR HOxAF2tWQxD/G2nLCOJ0MB8GA1UdIwQYMBaAFEBWLBQ6KcsZxw/8m5m2C77NHXO2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC9CRTg4NDZEMjM1 RDgxMUVBQTczMEVDNDZDNEY5QUUwMi9RRllzRkRvcHl4bkhEX3libWJZTHZzMGRj N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FGWXNGRG9weXhuSERfeWJtYllMdnMwZGM3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E3OC9CRTg4NDZEMjM1RDgxMUVBQTczMEVDNDZDNEY5QUUwMi9RRllzRkRvcHl4 bkhEX3libWJZTHZzMGRjN1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsJs9DDv2zibHRCHuOa71r0KMhy8X1sfURn260lfF7zfm+4Wva/JMg vwEaBc0nSZJLqN4gBJoaJHovRHWV5zPLwLC+opN09F7YLELXEiMRGOKMVOtT4Ftt qSHd9CrNxdhtfTBiHPXk8isWpW47uzTxooRtInRiqUyyQlmIopChHAOxtI0TBL1E 78v6zzNuoFsu+dsXlfdOjTrzQWsR9EyiCMFsQvhwGAHqUsk/DJAMB3Ip26rDubpJ 5X0ZvIW8p0BBGkZIKjEA204VpxJ84RtXrlX47Bzs6UYSZjqIAW3clAsEc5gNezCl NFWs83gkdZIRwtba64iHYRVGR3Gp7uM+ -----END CERTIFICATE-----Generated at Wed Jul 2 22:17:59 2025 by rpki-client