$ rpki-client -vvf rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft File: 70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft (raw, json) Hash identifier: +3jRneeTfHC+OosC8wWrnlMV5U3cTCWKomqmbl+Z/6s= Subject key identifier: 8F:87:5E:36:E0:18:4A:73:54:D5:B2:95:8B:17:4B:C9:4B:9D:24:F1 Authority key identifier: EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 Certificate issuer: /CN=A918BB4D/serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Certificate serial: 0709 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft Manifest number: 06E7 Signing time: Fri 22 Aug 2025 22:11:52 +0000 Manifest this update: Fri 22 Aug 2025 22:11:51 +0000 Manifest next update: Fri 29 Aug 2025 22:11:51 +0000 Files and hashes: 1: 70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl (hash: PgSlUoiIZPxY3o8mPIw9VKEJeIG2OFxLPoyHFtLU3xk=) 2: 05F05106586011EE9399A92EC4F9AE02.roa (hash: uE1Fce5x0iyRAmN0knxTtSotHjcQGH0Wea/3oUShZPs=) 3: 8065DE3E355D11F0A8C7F559C4F9AE02.roa (hash: u+3Kqlk1/ablMkybk1cn19GMLJzdy6UlNuONo3CbZ6Y=) 4: 35A4EFE0D75511EF80E68A39C4F9AE02.roa (hash: E255PQy8J0Om1w8sX22dbtF3FegoajHcFmWtic98DmU=) 5: 5997C4D0719A11EEBBA64415C4F9AE02.roa (hash: 2hIQWvs5gCQjNeqkzYCi7IsHJw8uYq2a3BY4+uJn8rA=) 6: C0681BF2CF4911EF8531B085C4F9AE02.roa (hash: TnWWrKTfNekbVi6pIzTrH/qhvsHIadymtQxdXn+0jBk=) 7: 80DE56F2355D11F0A8C7F559C4F9AE02.roa (hash: ZHB5HyWHIeMUdK8FQ83iXhPDeHhVdive57aqWkTwI34=) 8: 34956990D75511EF80E68A39C4F9AE02.roa (hash: dxCqVoSNOkIPa8mn9WccbxZTxKG1nVMRR4a4UGacE9I=) 9: 3524F8BCD75511EF80E68A39C4F9AE02.roa (hash: hXI7auCZSPvAdHOfiV427I6HYIQHsMDxA6gjGw/HO3w=) 10: 58EBEC82719A11EEBBA64415C4F9AE02.roa (hash: lRSKSHnJ9I173rhXzeEXncsQoFojPmJc5tNaNSnncqo=) 11: 364089B4D75511EF80E68A39C4F9AE02.roa (hash: NrUDO3l9X5LzCJUbUlr+EVuvLPXgjAkVWS40pKWplwg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:11:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1801 (0x709) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BB4D, serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Validity Not Before: Aug 22 22:11:51 2025 GMT Not After : Aug 29 22:11:51 2025 GMT Subject: CN=68a8eb27-1d11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:44:18:e7:1f:1b:bc:28:af:9a:08:44:f4:52: ac:97:e1:4c:0e:c8:0e:1b:2e:be:df:ab:5f:b9:6f: c8:8e:ce:4d:89:b3:5f:4b:21:da:c4:7d:8c:c5:0c: 15:4b:ec:4d:5c:7a:fa:d5:67:bd:da:56:de:a0:b2: 35:eb:8a:e2:88:5e:b3:97:0d:10:c2:4e:7e:40:d6: dd:52:1b:b0:6c:99:64:3a:a2:63:96:cc:68:18:81: 73:c3:cc:0f:4b:9d:3f:1e:05:34:16:24:06:92:26: c8:91:83:5a:4a:ce:28:e5:36:ad:f8:6c:1b:a6:ec: 43:23:0d:2d:aa:ed:af:c8:44:52:a0:32:3c:55:8b: 07:1a:c2:d9:1b:36:08:10:d2:aa:25:7e:a9:7b:75: 4d:cb:4f:cf:58:9e:47:a4:e3:5e:ab:a8:73:f3:b7: 1c:d2:9b:57:22:2e:9a:f6:39:42:a7:40:ee:f4:59: 69:ea:9c:3e:20:d1:6a:63:99:40:ba:2d:47:78:cc: d9:e5:a3:61:9f:18:f2:5e:00:5c:7b:4a:72:73:85: 27:f8:aa:85:bb:e1:7f:90:c3:d4:03:34:b8:5b:e2: ea:5d:bc:56:fb:6b:82:52:5f:c3:6c:8d:13:c7:8f: 42:02:4f:c9:7a:0c:73:75:22:60:29:aa:20:17:49: 5b:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:87:5E:36:E0:18:4A:73:54:D5:B2:95:8B:17:4B:C9:4B:9D:24:F1 X509v3 Authority Key Identifier: keyid:EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:5d:7f:3f:9f:ca:d1:90:0a:6c:e4:78:e2:8c:6e:d1:6f:8c: 4b:57:63:ac:5f:4a:a7:03:55:5b:9e:75:bd:a4:ee:f1:78:bd: bc:42:11:cc:00:0f:7c:9b:4f:54:03:5c:3d:87:23:43:e0:6a: b7:42:6a:7e:e2:4a:21:45:ce:eb:5a:99:6e:36:d8:bf:ca:98: b0:c2:dc:fd:37:88:c5:5c:d2:d4:19:b3:bc:49:cf:fc:73:58: aa:46:ca:5d:44:8f:7a:37:df:91:a7:62:de:aa:1d:0f:f5:b5: 75:ab:75:27:94:a0:9e:e9:a0:0b:bb:1a:d1:84:2b:ac:60:9a: b8:04:45:46:7d:58:ca:ba:48:28:69:d8:fa:57:b0:3e:22:50: 9c:ec:28:f6:12:1f:2d:ff:a8:34:b8:32:d2:52:d6:38:29:f2: 15:b0:1e:de:f9:98:4d:5f:ef:a7:6f:67:0a:f5:b3:58:27:ce: db:2e:e6:91:2b:88:20:ca:64:6d:c1:bf:18:26:1a:c4:7a:77: b5:7f:66:ca:13:1f:15:31:d1:29:d3:5a:01:e4:df:81:73:5d: cd:0f:86:e3:75:7f:84:a9:bb:5f:31:5a:3c:e8:12:f0:70:48: 7e:d8:36:d5:1c:ab:94:d1:b5:dc:f8:a3:c0:54:88:8e:90:ee: dd:34:3f:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJCNEQxMTAvBgNVBAUTKEVGNDAzNjQzRUE5ODIwQUU2RDlENjIyRjlBRUZEN0E0 QzkxNTRGMjQwHhcNMjUwODIyMjIxMTUxWhcNMjUwODI5MjIxMTUxWjAYMRYwFAYD VQQDEw02OGE4ZWIyNy0xZDExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAykQY5x8bvCivmghE9FKsl+FMDsgOGy6+36tfuW/Ijs5NibNfSyHaxH2MxQwV S+xNXHr61We92lbeoLI164riiF6zlw0Qwk5+QNbdUhuwbJlkOqJjlsxoGIFzw8wP S50/HgU0FiQGkibIkYNaSs4o5Tat+GwbpuxDIw0tqu2vyERSoDI8VYsHGsLZGzYI ENKqJX6pe3VNy0/PWJ5HpONeq6hz87cc0ptXIi6a9jlCp0Du9Flp6pw+INFqY5lA ui1HeMzZ5aNhnxjyXgBce0pyc4Un+KqFu+F/kMPUAzS4W+LqXbxW+2uCUl/DbI0T x49CAk/JegxzdSJgKaogF0lbYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI+HXjbg GEpzVNWylYsXS8lLnSTxMB8GA1UdIwQYMBaAFO9ANkPqmCCubZ1iL5rv16TJFU8k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkI0RC9DQTU2M0JFODY1 MjIxMUVCODBGNkU5NEJDNEY5QUUwMi83MEEyUS1xWUlLNXRuV0l2bXVfWHBNa1ZU eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcwQTJRLXFZSUs1dG5XSXZtdV9YcE1rVlR5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QkI0RC9DQTU2M0JFODY1MjIxMUVCODBGNkU5NEJDNEY5QUUwMi83MEEyUS1xWUlL NXRuV0l2bXVfWHBNa1ZUeVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7XX8/n8rRkAps5HjijG7Rb4xLV2OsX0qnA1VbnnW9pO7xeL28QhHM AA98m09UA1w9hyND4Gq3Qmp+4kohRc7rWpluNti/ypiwwtz9N4jFXNLUGbO8Sc/8 c1iqRspdRI96N9+Rp2Leqh0P9bV1q3UnlKCe6aALuxrRhCusYJq4BEVGfVjKukgo adj6V7A+IlCc7Cj2Eh8t/6g0uDLSUtY4KfIVsB7e+ZhNX++nb2cK9bNYJ87bLuaR K4ggymRtwb8YJhrEene1f2bKEx8VMdEp01oB5N+Bc13ND4bjdX+EqbtfMVo86BLw cEh+2DbVHKuU0bXc+KPAVIiOkO7dND9n -----END CERTIFICATE-----Generated at Sat Aug 23 22:37:24 2025 by rpki-client