$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft File: QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft (raw, json) Hash identifier: NZEYwkmk2ynyKd9FGzxBygUZeuBC8DMJeO/8sL6Ay7Q= Subject key identifier: 03:A5:3B:14:B5:0D:27:4E:54:F2:93:82:DC:12:7E:42:92:82:C1:B1 Authority key identifier: 40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 Certificate issuer: /CN=A911CA78/serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Certificate serial: 0D1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft Manifest number: 0C4A Signing time: Fri 22 Aug 2025 19:10:59 +0000 Manifest this update: Fri 22 Aug 2025 19:10:58 +0000 Manifest next update: Fri 29 Aug 2025 19:10:58 +0000 Files and hashes: 1: QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl (hash: aX4P27Z0t7eUAeJlwuQNGMSCByGpy3zN3vvT+zlBO6k=) 2: 8CC1AF1417DC11EE959DE671C4F9AE02.roa (hash: bH9ZC4QgjmS/I58+FDGDPuH33W9RsPxq1Xz3UvWrsE8=) 3: 8DB5B2BC17DC11EE959DE671C4F9AE02.roa (hash: MTAUWchwVeKxoXJgsd9CSOqi1gXkAXO05abtX//8zz0=) 4: 8CA2C07889D111EFAFEB2609C4F9AE02.roa (hash: Bbke0XmmIxWIWeMRBoj+nBwWgM3xQtB71wXvSJ5bc/c=) 5: 65A78BCE535F11EE9BC85F83C4F9AE02.roa (hash: onKAfoZCCQvGFRb8T+pywq7Otmi4UdU6B4vavVOep80=) 6: A0F26482C9F211EF986EE370C4F9AE02.roa (hash: IncpLcKA56KouK4nJfe3cMJBEi1TzpOjSfCTV1wFUog=) 7: AABA617A78B811F0A62F9B28C4F9AE02.roa (hash: +yIXmJbCdMTZC3e7y+K7ZSmGxQFt4WPyrNXjRz6xTWc=) 8: 8BF60AF817DC11EE959DE671C4F9AE02.roa (hash: kh4hhTCX8Fi9NA+V05arYqEhwsTNSKknNhiVN/VBtTs=) 9: 67F68132535F11EE9BC85F83C4F9AE02.roa (hash: 68PnU5mlOA06iDNZ5XmPFrp9fhXfwnla9MbcMx8d36I=) 10: 8D2CC3EE17DC11EE959DE671C4F9AE02.roa (hash: zZr/wa0m1rFLaToJf+3XeU5H/f8ci0Eq6bfOYc73d3k=) 11: 8F9A2E2817DC11EE959DE671C4F9AE02.roa (hash: sNGI4IjSttFM+bJq5CDyljE79J+Q6/JoAjLErm5ZlOg=) 12: 6688CA76535F11EE9BC85F83C4F9AE02.roa (hash: X9BJWqFkDoO3Z1AnX2rwWIVc/LG4OOcRfPspBGbkn40=) 13: 67023924535F11EE9BC85F83C4F9AE02.roa (hash: ddZXmXMp+inqC1tu9O/Re3vjJXmPn1T/+0+8I6WAPIc=) 14: 9B3FF0EC1F6D11F0BBEE756AC4F9AE02.roa (hash: 2GnDplQiwMAlUAy3xpN879Pw+i4tKoxvTJrAxvUorrE=) 15: 678847C6535F11EE9BC85F83C4F9AE02.roa (hash: Vs5JYwOpofezkqiiF2qwHaO1ji2DOr491xFoDKani80=) 16: 8B707C6C17DC11EE959DE671C4F9AE02.roa (hash: bv2/9mHV5hvQUwYa7AUUUWrf3R41IAn85lkqotp1enw=) 17: 48E219C209C311EEA9D88A34C4F9AE02.roa (hash: ojzmtYL5oSSSDRNMHS4oBfQHwOO76KE3+ooyFQgsmPI=) 18: 8AD3E23A17DC11EE959DE671C4F9AE02.roa (hash: obVSxBoAnqffXMDTd+Z9+Lr3d6TSTuDzUuAxF1nefiI=) 19: 8EADC8C617DC11EE959DE671C4F9AE02.roa (hash: qWKBqzVZNaIWfle8O0qZvhFMlwqBUkUBmN22bjyzZlw=) 20: 8F1DD9E017DC11EE959DE671C4F9AE02.roa (hash: arl4UC92qPVUXs/4JsFRSGmU8q2ljxGq2A9CpZD8w3Q=) 21: 041A5B042C6911F098B91B76C4F9AE02.roa (hash: 7InJtR6Cn1ch7c1XpQQ6/w3PhjmqyqgTlZD0H0dlaLQ=) 22: 9005E6F417DC11EE959DE671C4F9AE02.roa (hash: nX+JdTppyQxuLXZd5ew3GC3f/sbog2Yk6PdmM9yWumY=) 23: 651E60A6535F11EE9BC85F83C4F9AE02.roa (hash: 4i6VJPAbegLRPG1TiRgqleRdlv3u9kO2DBkdXwrkMys=) 24: 8E2676DC17DC11EE959DE671C4F9AE02.roa (hash: 6WaRYsNX6RMzPE3WdzfKlbLBu0LngwxXI10OdHloqKc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:10:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3355 (0xd1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78, serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Validity Not Before: Aug 22 19:10:58 2025 GMT Not After : Aug 29 19:10:58 2025 GMT Subject: CN=68a8c0c3-1ff6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:f2:42:59:97:9a:71:35:5e:ab:01:3b:66:fb: 36:a1:97:b4:3c:fa:80:24:d7:0c:8a:46:e0:3f:40: 68:cc:27:94:13:d9:4f:9d:9a:59:3a:06:97:80:16: 4c:cd:a2:fd:a7:07:31:36:18:6d:63:c0:01:56:5a: c2:93:80:c1:f6:5e:d6:f3:d5:d7:8e:61:0a:ad:41: 62:ab:94:c2:e9:ed:68:9a:03:6d:93:4d:37:77:a6: c3:c8:e9:fa:63:46:89:a4:88:dd:ca:3c:1b:30:ea: 93:48:0b:f8:d6:ba:30:84:74:68:db:96:45:8d:a2: e8:0f:56:61:3e:07:88:88:be:dd:ec:88:49:9b:d7: da:9b:f2:d1:3b:1e:71:c9:2e:ee:25:57:37:c7:b2: 67:54:fb:26:1c:5c:dc:f9:dc:ac:58:c9:f1:ba:fd: 34:d1:0b:65:d8:4f:9a:40:d8:a0:8c:75:18:41:41: 0a:e0:0f:db:9a:8a:5d:5c:3c:e4:b9:3e:fc:c7:89: 5a:f8:37:08:ff:35:9f:a6:dc:25:05:92:a6:14:06: eb:c9:49:a8:35:a6:62:7b:33:fb:81:1a:6b:1b:6d: a8:5f:d6:6f:43:8f:df:40:96:2f:ff:99:db:75:66: 0f:7e:24:99:bc:3f:fa:52:27:b0:95:dd:de:4a:17: 8d:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:A5:3B:14:B5:0D:27:4E:54:F2:93:82:DC:12:7E:42:92:82:C1:B1 X509v3 Authority Key Identifier: keyid:40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:80:f6:62:db:be:c4:1a:34:cc:ba:75:df:f6:33:26:72:6c: 7f:58:79:71:1d:82:15:ba:7d:01:ac:d7:c6:f6:9f:9b:72:58: 5e:f4:89:c3:e2:e6:4e:2e:52:ac:63:fb:a0:dc:ff:da:15:54: 5c:38:ba:59:da:9c:d7:40:eb:ff:71:0d:c2:70:86:1b:96:18: ea:36:3c:4a:40:0e:6e:ee:58:f9:ed:38:bb:28:4f:e2:30:7c: fe:81:e0:6e:58:f1:0c:1b:14:36:07:fa:38:2c:8a:24:c4:26: 5a:6e:fe:6f:fa:47:c0:13:21:10:f7:6b:e9:7d:7b:4c:51:39: 58:d4:10:fa:7c:28:0c:9b:9f:c0:8a:80:ef:3f:c5:39:5c:69: c4:a6:99:a8:7c:14:a1:b7:0f:9a:f6:e0:7d:67:f5:5d:a8:b1: 37:cd:03:1f:98:0d:3e:88:ab:98:e4:10:4c:e9:aa:7f:09:f3: 54:4c:d4:84:c6:b2:e7:81:96:13:92:85:30:f0:ec:78:75:81: 70:c4:48:67:f4:ec:88:76:65:56:6f:8d:63:67:dd:c6:f0:5d: 57:ac:e7:99:c3:0e:09:bb:22:42:f3:63:b0:65:f9:5f:de:ed: a4:f7:ca:cd:19:29:65:72:ce:e3:2a:0f:9a:50:d4:d0:5a:ba: 63:ea:ba:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDRswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDQwNTYyQzE0M0EyOUNCMTlDNzBGRkM5Qjk5QjYwQkJF Q0QxRDczQjYwHhcNMjUwODIyMTkxMDU4WhcNMjUwODI5MTkxMDU4WjAYMRYwFAYD VQQDEw02OGE4YzBjMy0xZmY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9PJCWZeacTVeqwE7Zvs2oZe0PPqAJNcMikbgP0BozCeUE9lPnZpZOgaXgBZM zaL9pwcxNhhtY8ABVlrCk4DB9l7W89XXjmEKrUFiq5TC6e1omgNtk003d6bDyOn6 Y0aJpIjdyjwbMOqTSAv41rowhHRo25ZFjaLoD1ZhPgeIiL7d7IhJm9fam/LROx5x yS7uJVc3x7JnVPsmHFzc+dysWMnxuv000Qtl2E+aQNigjHUYQUEK4A/bmopdXDzk uT78x4la+DcI/zWfptwlBZKmFAbryUmoNaZiezP7gRprG22oX9ZvQ4/fQJYv/5nb dWYPfiSZvD/6Uiewld3eSheNawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAOlOxS1 DSdOVPKTgtwSfkKSgsGxMB8GA1UdIwQYMBaAFEBWLBQ6KcsZxw/8m5m2C77NHXO2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC9CRTg4NDZEMjM1 RDgxMUVBQTczMEVDNDZDNEY5QUUwMi9RRllzRkRvcHl4bkhEX3libWJZTHZzMGRj N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FGWXNGRG9weXhuSERfeWJtYllMdnMwZGM3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E3OC9CRTg4NDZEMjM1RDgxMUVBQTczMEVDNDZDNEY5QUUwMi9RRllzRkRvcHl4 bkhEX3libWJZTHZzMGRjN1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMgPZi277EGjTMunXf9jMmcmx/WHlxHYIVun0BrNfG9p+bclhe9InD 4uZOLlKsY/ug3P/aFVRcOLpZ2pzXQOv/cQ3CcIYblhjqNjxKQA5u7lj57Ti7KE/i MHz+geBuWPEMGxQ2B/o4LIokxCZabv5v+kfAEyEQ92vpfXtMUTlY1BD6fCgMm5/A ioDvP8U5XGnEppmofBShtw+a9uB9Z/VdqLE3zQMfmA0+iKuY5BBM6ap/CfNUTNSE xrLngZYTkoUw8Ox4dYFwxEhn9OyIdmVWb41jZ93G8F1XrOeZww4JuyJC82OwZflf 3u2k98rNGSllcs7jKg+aUNTQWrpj6rrv -----END CERTIFICATE-----Generated at Sun Aug 24 00:11:16 2025 by rpki-client