$ rpki-client -vvf rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft File: 70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft (raw, json) Hash identifier: wIm0/L0+g07+1+IDyNG06Amz3bHMVBrSkf2Jd/RsLnA= Subject key identifier: 8E:B2:13:A1:16:84:F9:50:FD:BD:E6:AA:AD:DA:FB:35:4D:01:A7:86 Authority key identifier: EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 Certificate issuer: /CN=A918BB4D/serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Certificate serial: 06EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft Manifest number: 06CD Signing time: Wed 02 Jul 2025 22:32:08 +0000 Manifest this update: Wed 02 Jul 2025 22:32:07 +0000 Manifest next update: Wed 09 Jul 2025 22:32:07 +0000 Files and hashes: 1: 70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl (hash: SOuCU5jyrwemaIKGFgfJCBEr1XowRqAZ3Ji2sCq+tXo=) 2: 05F05106586011EE9399A92EC4F9AE02.roa (hash: uE1Fce5x0iyRAmN0knxTtSotHjcQGH0Wea/3oUShZPs=) 3: 8065DE3E355D11F0A8C7F559C4F9AE02.roa (hash: u+3Kqlk1/ablMkybk1cn19GMLJzdy6UlNuONo3CbZ6Y=) 4: 35A4EFE0D75511EF80E68A39C4F9AE02.roa (hash: E255PQy8J0Om1w8sX22dbtF3FegoajHcFmWtic98DmU=) 5: 5997C4D0719A11EEBBA64415C4F9AE02.roa (hash: 2hIQWvs5gCQjNeqkzYCi7IsHJw8uYq2a3BY4+uJn8rA=) 6: C0681BF2CF4911EF8531B085C4F9AE02.roa (hash: TnWWrKTfNekbVi6pIzTrH/qhvsHIadymtQxdXn+0jBk=) 7: 80DE56F2355D11F0A8C7F559C4F9AE02.roa (hash: ZHB5HyWHIeMUdK8FQ83iXhPDeHhVdive57aqWkTwI34=) 8: 34956990D75511EF80E68A39C4F9AE02.roa (hash: dxCqVoSNOkIPa8mn9WccbxZTxKG1nVMRR4a4UGacE9I=) 9: 3524F8BCD75511EF80E68A39C4F9AE02.roa (hash: hXI7auCZSPvAdHOfiV427I6HYIQHsMDxA6gjGw/HO3w=) 10: 58EBEC82719A11EEBBA64415C4F9AE02.roa (hash: lRSKSHnJ9I173rhXzeEXncsQoFojPmJc5tNaNSnncqo=) 11: 364089B4D75511EF80E68A39C4F9AE02.roa (hash: NrUDO3l9X5LzCJUbUlr+EVuvLPXgjAkVWS40pKWplwg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:32:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1775 (0x6ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BB4D, serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Validity Not Before: Jul 2 22:32:07 2025 GMT Not After : Jul 9 22:32:07 2025 GMT Subject: CN=6865b368-2735 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:21:a7:32:0e:f3:e2:3a:7f:c2:6c:23:91:ca: 84:e0:d1:b5:00:1d:99:22:e0:76:40:8d:17:22:8d: ce:7b:79:d7:b1:6c:39:4d:01:c2:b4:1c:1e:97:d5: c3:88:cf:3c:c2:15:80:2b:58:33:8e:09:c4:54:af: f2:3d:9a:c4:b4:78:27:8e:37:b8:af:35:e4:f9:33: 2c:52:1a:a6:a9:36:8e:73:83:04:d6:c8:b3:a1:ff: f7:b1:9f:80:6d:8d:fa:d4:0f:5d:9f:e0:36:8b:6d: 34:03:9f:cd:89:ff:4b:55:59:19:75:64:e6:55:86: af:28:0d:d6:0a:c1:9b:42:8b:1f:c0:0d:6e:45:42: 9e:00:ca:1f:e4:b2:39:4f:c7:52:67:c4:c6:87:01: e0:da:38:d3:ec:36:27:c1:9b:5f:83:ee:f8:5f:02: 71:b7:cf:2e:11:95:ca:b0:e3:06:40:95:22:a9:d4: 91:2e:85:83:a0:4a:cd:5d:00:29:43:34:1c:42:6e: f1:d4:27:85:dc:f7:04:b8:d6:2c:a6:09:1a:6d:ba: 3f:ae:fa:3e:23:6e:df:4e:7c:1d:9a:af:43:de:6e: 5e:b4:d6:d6:f8:18:49:4f:ad:58:4b:8f:ee:87:07: b4:33:fb:5e:7b:f3:2f:67:68:b3:59:4f:6b:6b:43: a2:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:B2:13:A1:16:84:F9:50:FD:BD:E6:AA:AD:DA:FB:35:4D:01:A7:86 X509v3 Authority Key Identifier: keyid:EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:d1:1e:7e:18:c0:00:1c:c3:39:79:74:f7:8e:63:55:fa:d6: 11:aa:bf:0f:46:60:3a:c5:af:22:80:bc:3a:d3:4f:b7:c2:3b: c6:fc:b4:d0:e5:5c:03:22:41:78:c6:e6:32:c2:16:64:6b:f3: 57:55:06:92:6a:f3:3d:a7:69:e2:2d:ed:85:ae:ea:72:4b:90: ae:a9:7a:fb:e3:d0:60:c2:fd:34:94:a6:c1:3a:67:5c:a2:25: f1:87:6a:9e:98:74:63:f0:be:1b:90:3a:57:db:52:9c:e4:b9: 61:c3:de:bd:d7:3f:81:b1:37:ae:54:1d:2c:59:ee:da:45:fb: 86:41:44:46:55:d3:d8:54:b3:72:2e:ec:09:fd:7e:36:67:6b: 1a:48:8a:b7:41:d0:ec:f9:3f:35:1e:59:55:a1:88:66:f0:05: 69:49:f3:a9:ee:95:2c:8d:99:17:f4:11:70:28:be:3c:8c:d0: d4:2b:fa:60:62:ea:9c:e0:7b:7d:f3:c2:66:ea:9e:e2:2f:5a: a3:4e:67:f7:a5:f8:b8:58:20:16:4b:69:1e:a1:67:4f:21:80: 58:97:98:86:1a:de:a7:19:d7:55:0a:a1:64:55:67:c9:64:34: 8d:9d:24:46:7f:8f:b1:bf:bc:6c:97:e8:fc:3c:80:ac:03:ee: 5a:e0:b3:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBu8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJCNEQxMTAvBgNVBAUTKEVGNDAzNjQzRUE5ODIwQUU2RDlENjIyRjlBRUZEN0E0 QzkxNTRGMjQwHhcNMjUwNzAyMjIzMjA3WhcNMjUwNzA5MjIzMjA3WjAYMRYwFAYD VQQDEw02ODY1YjM2OC0yNzM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAriGnMg7z4jp/wmwjkcqE4NG1AB2ZIuB2QI0XIo3Oe3nXsWw5TQHCtBwel9XD iM88whWAK1gzjgnEVK/yPZrEtHgnjje4rzXk+TMsUhqmqTaOc4ME1sizof/3sZ+A bY361A9dn+A2i200A5/Nif9LVVkZdWTmVYavKA3WCsGbQosfwA1uRUKeAMof5LI5 T8dSZ8TGhwHg2jjT7DYnwZtfg+74XwJxt88uEZXKsOMGQJUiqdSRLoWDoErNXQAp QzQcQm7x1CeF3PcEuNYspgkabbo/rvo+I27fTnwdmq9D3m5etNbW+BhJT61YS4/u hwe0M/tee/MvZ2izWU9ra0OiWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI6yE6EW hPlQ/b3mqq3a+zVNAaeGMB8GA1UdIwQYMBaAFO9ANkPqmCCubZ1iL5rv16TJFU8k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkI0RC9DQTU2M0JFODY1 MjIxMUVCODBGNkU5NEJDNEY5QUUwMi83MEEyUS1xWUlLNXRuV0l2bXVfWHBNa1ZU eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcwQTJRLXFZSUs1dG5XSXZtdV9YcE1rVlR5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QkI0RC9DQTU2M0JFODY1MjIxMUVCODBGNkU5NEJDNEY5QUUwMi83MEEyUS1xWUlL NXRuV0l2bXVfWHBNa1ZUeVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAG0R5+GMAAHMM5eXT3jmNV+tYRqr8PRmA6xa8igLw600+3wjvG/LTQ 5VwDIkF4xuYywhZka/NXVQaSavM9p2niLe2FrupyS5CuqXr749Bgwv00lKbBOmdc oiXxh2qemHRj8L4bkDpX21Kc5Llhw9691z+BsTeuVB0sWe7aRfuGQURGVdPYVLNy LuwJ/X42Z2saSIq3QdDs+T81HllVoYhm8AVpSfOp7pUsjZkX9BFwKL48jNDUK/pg Yuqc4Ht988Jm6p7iL1qjTmf3pfi4WCAWS2keoWdPIYBYl5iGGt6nGddVCqFkVWfJ ZDSNnSRGf4+xv7xsl+j8PICsA+5a4LP2 -----END CERTIFICATE-----Generated at Thu Jul 3 05:06:49 2025 by rpki-client