$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft File: QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft (raw, json) Hash identifier: WEdUOjduY1gpZCPjpiOOxcwfHBPlQH7/72avlKMofpo= Subject key identifier: 68:B5:65:4C:D9:E5:3C:F1:FD:AE:79:8E:EA:26:B0:1A:3D:D8:66:ED Authority key identifier: 40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 Certificate issuer: /CN=A911CA78/serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Certificate serial: 0D38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft Manifest number: 0C67 Signing time: Sat 18 Oct 2025 19:51:23 +0000 Manifest this update: Sat 18 Oct 2025 19:51:23 +0000 Manifest next update: Sat 25 Oct 2025 19:51:23 +0000 Files and hashes: 1: QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl (hash: mqvfMRgFv5OnPX8B2BpwgVjpz+VeCBz5jRlWu6mXLA8=) 2: 8CC1AF1417DC11EE959DE671C4F9AE02.roa (hash: bH9ZC4QgjmS/I58+FDGDPuH33W9RsPxq1Xz3UvWrsE8=) 3: 8DB5B2BC17DC11EE959DE671C4F9AE02.roa (hash: MTAUWchwVeKxoXJgsd9CSOqi1gXkAXO05abtX//8zz0=) 4: 8CA2C07889D111EFAFEB2609C4F9AE02.roa (hash: Bbke0XmmIxWIWeMRBoj+nBwWgM3xQtB71wXvSJ5bc/c=) 5: 65A78BCE535F11EE9BC85F83C4F9AE02.roa (hash: onKAfoZCCQvGFRb8T+pywq7Otmi4UdU6B4vavVOep80=) 6: A0F26482C9F211EF986EE370C4F9AE02.roa (hash: IncpLcKA56KouK4nJfe3cMJBEi1TzpOjSfCTV1wFUog=) 7: AABA617A78B811F0A62F9B28C4F9AE02.roa (hash: +yIXmJbCdMTZC3e7y+K7ZSmGxQFt4WPyrNXjRz6xTWc=) 8: 8BF60AF817DC11EE959DE671C4F9AE02.roa (hash: kh4hhTCX8Fi9NA+V05arYqEhwsTNSKknNhiVN/VBtTs=) 9: 67F68132535F11EE9BC85F83C4F9AE02.roa (hash: 68PnU5mlOA06iDNZ5XmPFrp9fhXfwnla9MbcMx8d36I=) 10: 8D2CC3EE17DC11EE959DE671C4F9AE02.roa (hash: zZr/wa0m1rFLaToJf+3XeU5H/f8ci0Eq6bfOYc73d3k=) 11: 8F9A2E2817DC11EE959DE671C4F9AE02.roa (hash: sNGI4IjSttFM+bJq5CDyljE79J+Q6/JoAjLErm5ZlOg=) 12: 6688CA76535F11EE9BC85F83C4F9AE02.roa (hash: X9BJWqFkDoO3Z1AnX2rwWIVc/LG4OOcRfPspBGbkn40=) 13: 67023924535F11EE9BC85F83C4F9AE02.roa (hash: ddZXmXMp+inqC1tu9O/Re3vjJXmPn1T/+0+8I6WAPIc=) 14: 9B3FF0EC1F6D11F0BBEE756AC4F9AE02.roa (hash: 2GnDplQiwMAlUAy3xpN879Pw+i4tKoxvTJrAxvUorrE=) 15: 678847C6535F11EE9BC85F83C4F9AE02.roa (hash: Vs5JYwOpofezkqiiF2qwHaO1ji2DOr491xFoDKani80=) 16: 8B707C6C17DC11EE959DE671C4F9AE02.roa (hash: bv2/9mHV5hvQUwYa7AUUUWrf3R41IAn85lkqotp1enw=) 17: 48E219C209C311EEA9D88A34C4F9AE02.roa (hash: ojzmtYL5oSSSDRNMHS4oBfQHwOO76KE3+ooyFQgsmPI=) 18: 8AD3E23A17DC11EE959DE671C4F9AE02.roa (hash: obVSxBoAnqffXMDTd+Z9+Lr3d6TSTuDzUuAxF1nefiI=) 19: 8EADC8C617DC11EE959DE671C4F9AE02.roa (hash: qWKBqzVZNaIWfle8O0qZvhFMlwqBUkUBmN22bjyzZlw=) 20: 8F1DD9E017DC11EE959DE671C4F9AE02.roa (hash: arl4UC92qPVUXs/4JsFRSGmU8q2ljxGq2A9CpZD8w3Q=) 21: 041A5B042C6911F098B91B76C4F9AE02.roa (hash: 7InJtR6Cn1ch7c1XpQQ6/w3PhjmqyqgTlZD0H0dlaLQ=) 22: 9005E6F417DC11EE959DE671C4F9AE02.roa (hash: nX+JdTppyQxuLXZd5ew3GC3f/sbog2Yk6PdmM9yWumY=) 23: 651E60A6535F11EE9BC85F83C4F9AE02.roa (hash: 4i6VJPAbegLRPG1TiRgqleRdlv3u9kO2DBkdXwrkMys=) 24: 8E2676DC17DC11EE959DE671C4F9AE02.roa (hash: 6WaRYsNX6RMzPE3WdzfKlbLBu0LngwxXI10OdHloqKc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:51:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3384 (0xd38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78, serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Validity Not Before: Oct 18 19:51:23 2025 GMT Not After : Oct 25 19:51:23 2025 GMT Subject: CN=68f3efbb-d4f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:e6:04:2f:6e:e8:72:bd:8d:a8:32:d8:03:78: 6f:0c:b1:66:9f:67:af:27:6c:42:cf:bb:5e:96:ea: 6d:9d:5c:0a:ad:67:9e:b3:d1:f0:fc:db:9e:ea:ac: 4f:f4:c5:16:cd:6c:8f:f7:cf:c5:a2:76:8a:b7:19: 91:94:12:98:ce:8d:08:80:7f:e1:26:0b:ba:c0:af: 63:db:7d:a3:19:2c:01:cb:15:fd:73:30:eb:c0:95: 53:cb:c8:35:77:67:74:10:f7:8b:82:bc:7e:9a:5a: 0b:26:1b:ee:5f:a8:9d:ee:75:ca:c0:de:77:72:4e: 1d:1b:1c:d0:78:db:bb:31:c4:32:97:57:fe:0d:bb: 5f:56:71:59:1c:f6:31:ac:47:3c:3f:97:bd:39:91: ca:da:8a:0a:e6:28:df:8a:a4:39:1a:d0:de:85:d9: a2:41:17:dc:a9:31:1d:06:a6:d0:a5:8b:42:f2:9b: ca:da:e7:c5:37:dd:e3:12:85:7c:d3:70:5f:fd:6c: 77:c6:a0:2c:d6:2d:8b:c1:8a:ed:1b:74:03:b8:29: f6:84:6a:f0:4a:59:63:8e:72:8c:ef:88:fc:4e:e9: 08:64:2f:f3:2d:81:a4:3b:21:6a:79:6f:11:a1:07: 75:ae:4d:51:24:39:4b:ff:02:63:b7:4c:20:e9:cf: 80:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:B5:65:4C:D9:E5:3C:F1:FD:AE:79:8E:EA:26:B0:1A:3D:D8:66:ED X509v3 Authority Key Identifier: keyid:40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:a3:54:a6:7b:ec:6e:64:71:d9:4e:08:98:f0:ca:c0:7d:a2: dc:7d:41:0f:2b:8d:e2:08:eb:d4:2d:23:a5:e6:e8:f7:94:57: f8:79:37:e9:9f:05:26:17:27:b7:a5:12:84:fa:bb:66:39:57: d9:b3:b5:c4:ed:29:24:0e:b7:b4:d2:9f:95:be:77:a3:97:75: 23:71:52:b1:8b:e4:9f:f8:fb:40:6a:ad:2f:10:80:9e:4a:e2: c7:ff:6a:c6:93:23:13:e5:2b:c5:3d:78:d7:0b:2c:89:ca:f0: 17:9c:40:c3:01:fb:cd:54:e5:ad:c6:98:fd:34:9f:6e:9f:c6: 4b:bc:62:b1:12:97:04:27:5d:af:d6:b6:ec:b7:bf:ab:c7:8a: f3:c1:be:59:c1:22:06:3b:f0:a1:a8:09:50:18:38:f8:05:2d: 91:3c:5e:29:36:1c:c8:61:23:ef:f8:ea:cd:f5:a8:a2:d3:32: c0:f0:32:47:54:37:51:98:6a:20:54:00:a8:ee:43:c9:cc:04: bf:eb:f4:fc:68:5a:6b:11:df:48:f9:91:87:2d:d4:ac:31:da: 32:37:ac:34:d0:68:23:5f:17:9c:17:82:f1:d6:cf:76:2b:86: b2:12:aa:65:eb:1b:70:0f:5a:c0:44:59:66:73:a2:10:70:c5: bd:70:d6:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDTgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDQwNTYyQzE0M0EyOUNCMTlDNzBGRkM5Qjk5QjYwQkJF Q0QxRDczQjYwHhcNMjUxMDE4MTk1MTIzWhcNMjUxMDI1MTk1MTIzWjAYMRYwFAYD VQQDEw02OGYzZWZiYi1kNGY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqOYEL27ocr2NqDLYA3hvDLFmn2evJ2xCz7teluptnVwKrWees9Hw/Nue6qxP 9MUWzWyP98/FonaKtxmRlBKYzo0IgH/hJgu6wK9j232jGSwByxX9czDrwJVTy8g1 d2d0EPeLgrx+mloLJhvuX6id7nXKwN53ck4dGxzQeNu7McQyl1f+DbtfVnFZHPYx rEc8P5e9OZHK2ooK5ijfiqQ5GtDehdmiQRfcqTEdBqbQpYtC8pvK2ufFN93jEoV8 03Bf/Wx3xqAs1i2LwYrtG3QDuCn2hGrwSlljjnKM74j8TukIZC/zLYGkOyFqeW8R oQd1rk1RJDlL/wJjt0wg6c+A+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGi1ZUzZ 5Tzx/a55juomsBo92GbtMB8GA1UdIwQYMBaAFEBWLBQ6KcsZxw/8m5m2C77NHXO2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC9CRTg4NDZEMjM1 RDgxMUVBQTczMEVDNDZDNEY5QUUwMi9RRllzRkRvcHl4bkhEX3libWJZTHZzMGRj N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FGWXNGRG9weXhuSERfeWJtYllMdnMwZGM3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E3OC9CRTg4NDZEMjM1RDgxMUVBQTczMEVDNDZDNEY5QUUwMi9RRllzRkRvcHl4 bkhEX3libWJZTHZzMGRjN1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADo1Sme+xuZHHZTgiY8MrAfaLcfUEPK43iCOvULSOl5uj3lFf4eTfp nwUmFye3pRKE+rtmOVfZs7XE7SkkDre00p+Vvnejl3UjcVKxi+Sf+PtAaq0vEICe SuLH/2rGkyMT5SvFPXjXCyyJyvAXnEDDAfvNVOWtxpj9NJ9un8ZLvGKxEpcEJ12v 1rbst7+rx4rzwb5ZwSIGO/ChqAlQGDj4BS2RPF4pNhzIYSPv+OrN9aii0zLA8DJH VDdRmGogVACo7kPJzAS/6/T8aFprEd9I+ZGHLdSsMdoyN6w00GgjXxecF4Lx1s92 K4ayEqpl6xtwD1rARFlmc6IQcMW9cNbf -----END CERTIFICATE-----Generated at Sun Oct 19 23:33:26 2025 by rpki-client