$ rpki-client -vvf rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft File: 70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft (raw, json) Hash identifier: WqI4baWqIV38Rq/htPp7r35yv2PNe+CVYJR0bbogPDs= Subject key identifier: 08:3D:39:00:6D:2E:FC:18:11:60:88:2F:09:1C:D7:10:C2:F7:EB:B4 Authority key identifier: EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 Certificate issuer: /CN=A918BB4D/serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Certificate serial: 0726 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft Manifest number: 0704 Signing time: Sat 18 Oct 2025 23:23:14 +0000 Manifest this update: Sat 18 Oct 2025 23:23:14 +0000 Manifest next update: Sat 25 Oct 2025 23:23:14 +0000 Files and hashes: 1: 70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl (hash: Z+W1TJ1/WWLjBiCfymNgiC2A39cGOUFMu3Jlcp0iMd0=) 2: 05F05106586011EE9399A92EC4F9AE02.roa (hash: uE1Fce5x0iyRAmN0knxTtSotHjcQGH0Wea/3oUShZPs=) 3: 3524F8BCD75511EF80E68A39C4F9AE02.roa (hash: hXI7auCZSPvAdHOfiV427I6HYIQHsMDxA6gjGw/HO3w=) 4: 34956990D75511EF80E68A39C4F9AE02.roa (hash: dxCqVoSNOkIPa8mn9WccbxZTxKG1nVMRR4a4UGacE9I=) 5: 80DE56F2355D11F0A8C7F559C4F9AE02.roa (hash: ZHB5HyWHIeMUdK8FQ83iXhPDeHhVdive57aqWkTwI34=) 6: 8065DE3E355D11F0A8C7F559C4F9AE02.roa (hash: u+3Kqlk1/ablMkybk1cn19GMLJzdy6UlNuONo3CbZ6Y=) 7: 35A4EFE0D75511EF80E68A39C4F9AE02.roa (hash: E255PQy8J0Om1w8sX22dbtF3FegoajHcFmWtic98DmU=) 8: 5997C4D0719A11EEBBA64415C4F9AE02.roa (hash: 2hIQWvs5gCQjNeqkzYCi7IsHJw8uYq2a3BY4+uJn8rA=) 9: C0681BF2CF4911EF8531B085C4F9AE02.roa (hash: TnWWrKTfNekbVi6pIzTrH/qhvsHIadymtQxdXn+0jBk=) 10: 58EBEC82719A11EEBBA64415C4F9AE02.roa (hash: lRSKSHnJ9I173rhXzeEXncsQoFojPmJc5tNaNSnncqo=) 11: 364089B4D75511EF80E68A39C4F9AE02.roa (hash: NrUDO3l9X5LzCJUbUlr+EVuvLPXgjAkVWS40pKWplwg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1830 (0x726) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BB4D, serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Validity Not Before: Oct 18 23:23:14 2025 GMT Not After : Oct 25 23:23:14 2025 GMT Subject: CN=68f42162-a498 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:49:52:20:12:d5:9a:4c:2b:61:5c:70:e5:53: 5d:14:c3:68:eb:33:67:dd:41:2c:bd:a6:c0:77:bb: 6a:c1:20:43:cc:f8:c6:ed:84:fe:44:b4:94:0d:61: b8:ed:74:33:7b:c2:13:ae:6c:f9:fa:f0:b9:46:c5: 00:48:a7:d2:d3:1d:87:58:da:8e:01:90:10:b6:10: 38:48:82:4f:77:6f:aa:1d:55:02:99:a6:25:9d:1d: da:5b:de:37:bf:20:61:47:13:d7:92:45:27:06:6a: 74:c1:22:11:da:e6:3b:fb:4e:d3:53:06:00:62:bc: 58:41:1c:cf:ce:c1:c2:32:89:69:06:38:49:65:c0: 40:fc:16:a3:9a:13:46:ed:16:94:c4:2c:51:ec:9a: c1:0c:9f:a4:dc:0e:6a:b1:34:31:89:44:ca:a2:e0: 54:0b:8d:3c:90:91:8d:34:7a:3e:b7:09:e9:0f:83: 9e:5a:01:76:fc:fe:e4:ae:13:a9:79:ed:0f:69:e9: 23:ff:be:cf:18:e2:14:f8:c9:c0:e2:af:b3:47:14: e0:27:02:38:e1:3e:71:08:0b:83:95:7e:06:38:b0: 89:33:00:4d:fd:57:c6:dd:28:62:7f:7c:c1:24:52: af:6a:a9:53:73:60:b2:16:22:39:e9:4c:25:63:81: ef:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:3D:39:00:6D:2E:FC:18:11:60:88:2F:09:1C:D7:10:C2:F7:EB:B4 X509v3 Authority Key Identifier: keyid:EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:63:14:e6:6b:b5:60:86:6d:ee:6b:e0:e7:5b:29:97:a7:e3: 1c:6d:ae:70:04:4c:c7:cd:46:b0:e3:14:fc:38:33:0e:1f:c8: 30:b6:06:f5:01:08:ab:80:0d:c4:ac:bb:dd:ad:17:5a:41:b4: de:bb:04:93:c7:9e:7b:54:5e:4c:75:47:65:04:d5:26:70:9b: fa:8c:0c:cb:73:b1:f2:01:5a:4a:79:b2:19:de:d2:70:a5:89: 23:ab:63:f2:8d:81:f4:32:ed:7b:46:bf:5b:2c:be:48:4a:4a: 0d:17:7e:d2:51:b1:56:54:68:a2:1e:f5:e0:a1:a3:ec:96:e0: f1:b1:e1:d3:f2:4c:e7:68:56:25:7a:a0:c6:d9:4f:f2:9e:a9: 9f:1b:1b:23:3a:9b:4f:8c:dc:04:0f:48:eb:8f:df:88:4a:58: d2:de:8f:3f:22:ee:22:52:11:70:24:64:ea:ab:f9:99:0a:47: bc:14:39:ff:fe:ad:9d:2d:90:78:18:ac:ef:89:a0:2e:46:db: 76:0c:9a:1f:43:c9:9b:a4:90:9c:57:d0:08:66:58:f7:98:34: b4:12:53:35:ea:06:d8:f6:4f:a8:be:bc:e4:a3:45:16:d6:0d: 16:7c:d4:05:fc:5e:a8:4b:37:67:50:54:8f:c2:a1:36:28:c7: 4f:1e:6e:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICByYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJCNEQxMTAvBgNVBAUTKEVGNDAzNjQzRUE5ODIwQUU2RDlENjIyRjlBRUZEN0E0 QzkxNTRGMjQwHhcNMjUxMDE4MjMyMzE0WhcNMjUxMDI1MjMyMzE0WjAYMRYwFAYD VQQDEw02OGY0MjE2Mi1hNDk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx0lSIBLVmkwrYVxw5VNdFMNo6zNn3UEsvabAd7tqwSBDzPjG7YT+RLSUDWG4 7XQze8ITrmz5+vC5RsUASKfS0x2HWNqOAZAQthA4SIJPd2+qHVUCmaYlnR3aW943 vyBhRxPXkkUnBmp0wSIR2uY7+07TUwYAYrxYQRzPzsHCMolpBjhJZcBA/BajmhNG 7RaUxCxR7JrBDJ+k3A5qsTQxiUTKouBUC408kJGNNHo+twnpD4OeWgF2/P7krhOp ee0Paekj/77PGOIU+MnA4q+zRxTgJwI44T5xCAuDlX4GOLCJMwBN/VfG3Shif3zB JFKvaqlTc2CyFiI56UwlY4HvjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAg9OQBt LvwYEWCILwkc1xDC9+u0MB8GA1UdIwQYMBaAFO9ANkPqmCCubZ1iL5rv16TJFU8k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkI0RC9DQTU2M0JFODY1 MjIxMUVCODBGNkU5NEJDNEY5QUUwMi83MEEyUS1xWUlLNXRuV0l2bXVfWHBNa1ZU eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcwQTJRLXFZSUs1dG5XSXZtdV9YcE1rVlR5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QkI0RC9DQTU2M0JFODY1MjIxMUVCODBGNkU5NEJDNEY5QUUwMi83MEEyUS1xWUlL NXRuV0l2bXVfWHBNa1ZUeVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlYxTma7Vghm3ua+DnWymXp+Mcba5wBEzHzUaw4xT8ODMOH8gwtgb1 AQirgA3ErLvdrRdaQbTeuwSTx557VF5MdUdlBNUmcJv6jAzLc7HyAVpKebIZ3tJw pYkjq2PyjYH0Mu17Rr9bLL5ISkoNF37SUbFWVGiiHvXgoaPsluDxseHT8kznaFYl eqDG2U/ynqmfGxsjOptPjNwED0jrj9+ISljS3o8/Iu4iUhFwJGTqq/mZCke8FDn/ /q2dLZB4GKzviaAuRtt2DJofQ8mbpJCcV9AIZlj3mDS0ElM16gbY9k+ovrzko0UW 1g0WfNQF/F6oSzdnUFSPwqE2KMdPHm7L -----END CERTIFICATE-----Generated at Mon Oct 20 11:28:29 2025 by rpki-client