$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft File: QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft (raw, json) Hash identifier: ba6zphCIhpUqcYCyc+7bYLFXQSOCyrl8BsPsqsc6u8w= Subject key identifier: 89:64:67:E2:BD:9C:A0:E0:8A:70:6B:32:44:19:31:3C:E3:71:4B:5A Authority key identifier: 40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 Certificate issuer: /CN=A911CA78/serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Certificate serial: 0CDA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft Manifest number: 0C0F Signing time: Mon 12 May 2025 18:59:33 +0000 Manifest this update: Mon 12 May 2025 18:59:33 +0000 Manifest next update: Mon 19 May 2025 18:59:33 +0000 Files and hashes: 1: QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl (hash: 60/TVlot1RBFhBRa4pYWytZeVQEtwtptQ25pvzd4Sjc=) 2: 8CC1AF1417DC11EE959DE671C4F9AE02.roa (hash: bH9ZC4QgjmS/I58+FDGDPuH33W9RsPxq1Xz3UvWrsE8=) 3: 8DB5B2BC17DC11EE959DE671C4F9AE02.roa (hash: MTAUWchwVeKxoXJgsd9CSOqi1gXkAXO05abtX//8zz0=) 4: 8CA2C07889D111EFAFEB2609C4F9AE02.roa (hash: Bbke0XmmIxWIWeMRBoj+nBwWgM3xQtB71wXvSJ5bc/c=) 5: 65A78BCE535F11EE9BC85F83C4F9AE02.roa (hash: onKAfoZCCQvGFRb8T+pywq7Otmi4UdU6B4vavVOep80=) 6: A0F26482C9F211EF986EE370C4F9AE02.roa (hash: IncpLcKA56KouK4nJfe3cMJBEi1TzpOjSfCTV1wFUog=) 7: 8BF60AF817DC11EE959DE671C4F9AE02.roa (hash: kh4hhTCX8Fi9NA+V05arYqEhwsTNSKknNhiVN/VBtTs=) 8: 67F68132535F11EE9BC85F83C4F9AE02.roa (hash: 68PnU5mlOA06iDNZ5XmPFrp9fhXfwnla9MbcMx8d36I=) 9: 8D2CC3EE17DC11EE959DE671C4F9AE02.roa (hash: zZr/wa0m1rFLaToJf+3XeU5H/f8ci0Eq6bfOYc73d3k=) 10: 8F9A2E2817DC11EE959DE671C4F9AE02.roa (hash: sNGI4IjSttFM+bJq5CDyljE79J+Q6/JoAjLErm5ZlOg=) 11: 6688CA76535F11EE9BC85F83C4F9AE02.roa (hash: X9BJWqFkDoO3Z1AnX2rwWIVc/LG4OOcRfPspBGbkn40=) 12: 67023924535F11EE9BC85F83C4F9AE02.roa (hash: ddZXmXMp+inqC1tu9O/Re3vjJXmPn1T/+0+8I6WAPIc=) 13: 9B3FF0EC1F6D11F0BBEE756AC4F9AE02.roa (hash: 2GnDplQiwMAlUAy3xpN879Pw+i4tKoxvTJrAxvUorrE=) 14: 678847C6535F11EE9BC85F83C4F9AE02.roa (hash: Vs5JYwOpofezkqiiF2qwHaO1ji2DOr491xFoDKani80=) 15: 8B707C6C17DC11EE959DE671C4F9AE02.roa (hash: bv2/9mHV5hvQUwYa7AUUUWrf3R41IAn85lkqotp1enw=) 16: 48E219C209C311EEA9D88A34C4F9AE02.roa (hash: ojzmtYL5oSSSDRNMHS4oBfQHwOO76KE3+ooyFQgsmPI=) 17: 8AD3E23A17DC11EE959DE671C4F9AE02.roa (hash: obVSxBoAnqffXMDTd+Z9+Lr3d6TSTuDzUuAxF1nefiI=) 18: 8EADC8C617DC11EE959DE671C4F9AE02.roa (hash: qWKBqzVZNaIWfle8O0qZvhFMlwqBUkUBmN22bjyzZlw=) 19: 8F1DD9E017DC11EE959DE671C4F9AE02.roa (hash: arl4UC92qPVUXs/4JsFRSGmU8q2ljxGq2A9CpZD8w3Q=) 20: DE0563C21F7111F0A41C9D84C4F9AE02.roa (hash: DPPDsUuLV78/5+KBuh51JsOidIpZY5CzHFHdoKE0S1c=) 21: 041A5B042C6911F098B91B76C4F9AE02.roa (hash: 7InJtR6Cn1ch7c1XpQQ6/w3PhjmqyqgTlZD0H0dlaLQ=) 22: 9005E6F417DC11EE959DE671C4F9AE02.roa (hash: nX+JdTppyQxuLXZd5ew3GC3f/sbog2Yk6PdmM9yWumY=) 23: 651E60A6535F11EE9BC85F83C4F9AE02.roa (hash: 4i6VJPAbegLRPG1TiRgqleRdlv3u9kO2DBkdXwrkMys=) 24: 8E2676DC17DC11EE959DE671C4F9AE02.roa (hash: 6WaRYsNX6RMzPE3WdzfKlbLBu0LngwxXI10OdHloqKc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:59:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3290 (0xcda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78, serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Validity Not Before: May 12 18:59:33 2025 GMT Not After : May 19 18:59:33 2025 GMT Subject: CN=68224515-32ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:7e:5a:cb:e5:cb:22:d4:0e:a6:4f:4a:b3:eb: 28:dc:89:e1:f9:f5:54:85:55:6f:9a:5b:62:40:5b: e7:d9:39:13:5e:4c:92:56:b0:16:99:6a:71:02:ae: fe:e1:b8:78:43:3f:f6:e9:39:5e:fd:b4:cc:b3:74: 2b:25:3d:f6:87:1d:04:c3:58:24:f1:43:12:d3:79: 45:2a:2d:6a:e4:0b:de:3e:86:4f:c7:bc:e2:7b:c9: 32:6a:cc:8c:b0:c0:66:95:e8:f9:d2:66:41:ff:df: 2d:9f:2a:36:21:84:ea:7b:fe:4e:49:96:57:30:70: 76:cc:0f:99:33:28:00:98:62:a6:e4:6d:a2:1b:23: 2f:5b:10:83:3d:ad:8e:90:aa:7a:16:96:c7:86:13: 5b:50:85:7b:3c:29:7c:ae:c0:0a:9c:8b:96:ff:88: f1:9d:e4:f8:3e:46:09:fb:fc:33:f3:c2:69:1d:bc: 74:6d:09:22:62:bb:4a:45:8a:3e:ce:b4:42:df:04: 79:5f:09:70:21:57:a3:94:e4:de:8a:74:1d:f6:27: 53:26:0f:4d:68:e8:04:bf:0c:2a:69:ed:fc:ba:0e: 9b:68:44:33:10:e9:4b:51:26:95:c5:ab:2e:e6:6a: d0:48:aa:4a:e1:1c:27:57:51:fd:b3:e5:b0:13:23: 52:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:64:67:E2:BD:9C:A0:E0:8A:70:6B:32:44:19:31:3C:E3:71:4B:5A X509v3 Authority Key Identifier: keyid:40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:89:20:20:e2:63:79:c9:33:df:86:98:dd:a3:3f:4a:8d:6b: c9:5a:e8:07:8f:02:cc:13:d1:49:d4:dd:7f:b8:e5:f2:69:71: 77:23:d3:aa:16:1e:dd:77:0f:52:97:f4:a6:d7:c8:8b:bf:69: 1d:74:da:e3:31:18:82:ef:dd:34:c0:c6:78:28:b6:56:ec:68: 17:73:76:6d:8a:16:49:ce:9d:fc:00:25:7d:17:3d:05:42:81: 76:45:ec:46:2f:f7:37:f6:c8:90:55:3a:d7:f7:9c:76:fa:9a: 58:80:4d:52:ab:70:79:b1:f3:be:24:84:87:cd:de:ea:d7:b1: 4c:c5:bc:65:86:84:59:5b:f6:93:0e:49:11:29:31:37:89:17: f6:70:12:54:2c:c0:7f:cb:7e:04:2f:9a:b4:0c:66:51:8e:61: 9b:57:59:1b:ad:66:19:4b:b1:6d:a1:cc:e2:ea:ba:72:d9:fd: 1f:15:24:f7:93:3c:d6:53:d6:29:7d:cd:61:89:1a:65:36:6a: d3:2e:eb:56:0d:43:4e:5b:be:4e:1b:6d:da:4e:93:66:2f:05: 27:70:7e:aa:7a:5a:4b:f0:ab:60:15:93:52:e7:ac:f7:21:a0: ea:0d:5f:55:b6:e8:28:b4:e1:ac:7f:5a:43:dc:7d:7a:d6:48: 0c:13:3f:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDNowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDQwNTYyQzE0M0EyOUNCMTlDNzBGRkM5Qjk5QjYwQkJF Q0QxRDczQjYwHhcNMjUwNTEyMTg1OTMzWhcNMjUwNTE5MTg1OTMzWjAYMRYwFAYD VQQDEw02ODIyNDUxNS0zMmVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx35ay+XLItQOpk9Ks+so3Inh+fVUhVVvmltiQFvn2TkTXkySVrAWmWpxAq7+ 4bh4Qz/26Tle/bTMs3QrJT32hx0Ew1gk8UMS03lFKi1q5AvePoZPx7zie8kyasyM sMBmlej50mZB/98tnyo2IYTqe/5OSZZXMHB2zA+ZMygAmGKm5G2iGyMvWxCDPa2O kKp6FpbHhhNbUIV7PCl8rsAKnIuW/4jxneT4PkYJ+/wz88JpHbx0bQkiYrtKRYo+ zrRC3wR5XwlwIVejlOTeinQd9idTJg9NaOgEvwwqae38ug6baEQzEOlLUSaVxasu 5mrQSKpK4RwnV1H9s+WwEyNShQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIlkZ+K9 nKDginBrMkQZMTzjcUtaMB8GA1UdIwQYMBaAFEBWLBQ6KcsZxw/8m5m2C77NHXO2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC9CRTg4NDZEMjM1 RDgxMUVBQTczMEVDNDZDNEY5QUUwMi9RRllzRkRvcHl4bkhEX3libWJZTHZzMGRj N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FGWXNGRG9weXhuSERfeWJtYllMdnMwZGM3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E3OC9CRTg4NDZEMjM1RDgxMUVBQTczMEVDNDZDNEY5QUUwMi9RRllzRkRvcHl4 bkhEX3libWJZTHZzMGRjN1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMiSAg4mN5yTPfhpjdoz9KjWvJWugHjwLME9FJ1N1/uOXyaXF3I9Oq Fh7ddw9Sl/Sm18iLv2kddNrjMRiC7900wMZ4KLZW7GgXc3ZtihZJzp38ACV9Fz0F QoF2RexGL/c39siQVTrX95x2+ppYgE1Sq3B5sfO+JISHzd7q17FMxbxlhoRZW/aT DkkRKTE3iRf2cBJULMB/y34EL5q0DGZRjmGbV1kbrWYZS7Ftoczi6rpy2f0fFST3 kzzWU9Ypfc1hiRplNmrTLutWDUNOW75OG23aTpNmLwUncH6qelpL8KtgFZNS56z3 IaDqDV9VtugotOGsf1pD3H161kgMEz8l -----END CERTIFICATE-----Generated at Tue May 13 15:28:49 2025 by rpki-client