$ rpki-client -vvf rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft File: 70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft (raw, json) Hash identifier: C1UjydJ3WkFGOgdd58LeTmUoboO3YS31qJpmXMw9nBM= Subject key identifier: 02:30:31:07:0F:EB:01:34:7B:09:CF:61:1C:24:2B:C9:05:DC:A6:A7 Authority key identifier: EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 Certificate issuer: /CN=A918BB4D/serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Certificate serial: 0710 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft Manifest number: 06EE Signing time: Thu 04 Sep 2025 22:17:39 +0000 Manifest this update: Thu 04 Sep 2025 22:17:39 +0000 Manifest next update: Thu 11 Sep 2025 22:17:39 +0000 Files and hashes: 1: 70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl (hash: KLmiZGFFahcA9pcYpDezP2ifQ2aZG/LAEwCuOF2I0vY=) 2: 05F05106586011EE9399A92EC4F9AE02.roa (hash: uE1Fce5x0iyRAmN0knxTtSotHjcQGH0Wea/3oUShZPs=) 3: 8065DE3E355D11F0A8C7F559C4F9AE02.roa (hash: u+3Kqlk1/ablMkybk1cn19GMLJzdy6UlNuONo3CbZ6Y=) 4: 35A4EFE0D75511EF80E68A39C4F9AE02.roa (hash: E255PQy8J0Om1w8sX22dbtF3FegoajHcFmWtic98DmU=) 5: 5997C4D0719A11EEBBA64415C4F9AE02.roa (hash: 2hIQWvs5gCQjNeqkzYCi7IsHJw8uYq2a3BY4+uJn8rA=) 6: C0681BF2CF4911EF8531B085C4F9AE02.roa (hash: TnWWrKTfNekbVi6pIzTrH/qhvsHIadymtQxdXn+0jBk=) 7: 80DE56F2355D11F0A8C7F559C4F9AE02.roa (hash: ZHB5HyWHIeMUdK8FQ83iXhPDeHhVdive57aqWkTwI34=) 8: 34956990D75511EF80E68A39C4F9AE02.roa (hash: dxCqVoSNOkIPa8mn9WccbxZTxKG1nVMRR4a4UGacE9I=) 9: 3524F8BCD75511EF80E68A39C4F9AE02.roa (hash: hXI7auCZSPvAdHOfiV427I6HYIQHsMDxA6gjGw/HO3w=) 10: 58EBEC82719A11EEBBA64415C4F9AE02.roa (hash: lRSKSHnJ9I173rhXzeEXncsQoFojPmJc5tNaNSnncqo=) 11: 364089B4D75511EF80E68A39C4F9AE02.roa (hash: NrUDO3l9X5LzCJUbUlr+EVuvLPXgjAkVWS40pKWplwg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 22:17:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1808 (0x710) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BB4D, serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Validity Not Before: Sep 4 22:17:39 2025 GMT Not After : Sep 11 22:17:39 2025 GMT Subject: CN=68ba1003-ef25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:76:c8:93:f8:64:c3:17:66:40:27:6a:88:ff: f0:c5:74:e6:23:fb:85:e0:e8:3a:23:ab:15:46:a3: c0:ef:9c:ca:c5:6e:13:7a:c2:80:c4:e2:17:06:20: fc:4b:04:81:ab:07:f1:4d:67:be:14:04:92:25:85: 5d:4d:8b:ab:d2:c0:77:6d:89:5e:8d:04:46:a5:91: f9:c1:10:43:67:b5:ac:ee:3d:fa:f4:5c:38:f3:a7: f7:2c:32:76:e2:d7:75:f7:bc:fc:34:dd:32:0f:80: 13:f5:42:e6:ae:30:cd:c6:85:bb:7e:11:b7:4d:22: 14:17:78:74:c1:5b:25:ce:f2:e1:96:a4:b9:43:6b: 51:e9:3f:e9:ba:ce:11:2f:cc:8e:5b:13:d6:d7:fe: 3b:80:2d:2b:c9:de:46:a6:00:46:a1:88:68:81:fb: 0b:d7:39:bf:e5:4a:f4:dc:74:a3:db:7e:ce:14:59: cf:33:48:81:93:8a:99:ba:72:fc:94:bf:6f:b1:5a: 6e:d7:81:91:81:12:46:2c:58:52:d1:f0:4b:aa:b1: a4:5d:92:e4:54:86:d7:d4:aa:14:78:9d:ea:ec:53: 2e:ee:ba:10:5e:3a:be:fb:26:6c:a6:3f:1f:03:4f: ce:d5:bc:01:a7:68:45:83:1f:99:0e:c4:2b:95:22: 86:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:30:31:07:0F:EB:01:34:7B:09:CF:61:1C:24:2B:C9:05:DC:A6:A7 X509v3 Authority Key Identifier: keyid:EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:9c:98:a8:70:c9:bc:7d:a0:3b:08:3a:cc:92:9d:81:6e:10: 0f:db:6b:06:09:ae:94:75:90:12:7b:4a:fc:05:8b:e0:3e:ce: 36:b3:dc:83:33:8c:7e:d6:0e:d1:ab:01:2d:ba:f9:46:ec:66: 92:49:a9:72:c2:92:4b:90:cb:40:85:a9:83:47:0f:66:fd:f5: 71:39:13:c4:dc:f4:b4:81:95:26:50:78:da:20:92:52:4f:93: dc:38:4c:9e:cf:d0:ad:13:0a:65:8d:41:5e:7e:8a:9e:24:6b: f5:2a:29:b3:83:4e:48:56:63:f6:09:e4:4f:63:6d:3e:41:22: 82:6f:6b:31:ea:85:2f:00:17:e9:9e:74:38:67:00:25:0f:1d: 96:ee:e5:70:7f:0e:07:00:18:06:14:f7:dd:cb:67:bf:3a:aa: e9:b8:8b:b3:92:50:9c:70:b2:63:a6:3e:cd:7b:5f:a1:d3:38: 39:df:87:f0:0a:fa:df:91:50:50:d9:43:b5:d5:5c:97:e5:66: 2f:48:8b:74:57:35:81:70:1c:94:89:a3:d4:c3:05:7e:33:93: 27:c0:b7:cd:f6:4e:a2:4b:5c:c3:b1:b6:79:f7:d4:89:50:fb: 9e:6d:26:ca:f6:08:ae:18:2f:56:b8:d8:11:d8:d2:37:47:42: 24:b0:95:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJCNEQxMTAvBgNVBAUTKEVGNDAzNjQzRUE5ODIwQUU2RDlENjIyRjlBRUZEN0E0 QzkxNTRGMjQwHhcNMjUwOTA0MjIxNzM5WhcNMjUwOTExMjIxNzM5WjAYMRYwFAYD VQQDEw02OGJhMTAwMy1lZjI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxXbIk/hkwxdmQCdqiP/wxXTmI/uF4Og6I6sVRqPA75zKxW4TesKAxOIXBiD8 SwSBqwfxTWe+FASSJYVdTYur0sB3bYlejQRGpZH5wRBDZ7Ws7j369Fw486f3LDJ2 4td197z8NN0yD4AT9ULmrjDNxoW7fhG3TSIUF3h0wVslzvLhlqS5Q2tR6T/pus4R L8yOWxPW1/47gC0ryd5GpgBGoYhogfsL1zm/5Ur03HSj237OFFnPM0iBk4qZunL8 lL9vsVpu14GRgRJGLFhS0fBLqrGkXZLkVIbX1KoUeJ3q7FMu7roQXjq++yZspj8f A0/O1bwBp2hFgx+ZDsQrlSKGLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAIwMQcP 6wE0ewnPYRwkK8kF3KanMB8GA1UdIwQYMBaAFO9ANkPqmCCubZ1iL5rv16TJFU8k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkI0RC9DQTU2M0JFODY1 MjIxMUVCODBGNkU5NEJDNEY5QUUwMi83MEEyUS1xWUlLNXRuV0l2bXVfWHBNa1ZU eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcwQTJRLXFZSUs1dG5XSXZtdV9YcE1rVlR5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QkI0RC9DQTU2M0JFODY1MjIxMUVCODBGNkU5NEJDNEY5QUUwMi83MEEyUS1xWUlL NXRuV0l2bXVfWHBNa1ZUeVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXnJiocMm8faA7CDrMkp2BbhAP22sGCa6UdZASe0r8BYvgPs42s9yD M4x+1g7RqwEtuvlG7GaSSalywpJLkMtAhamDRw9m/fVxORPE3PS0gZUmUHjaIJJS T5PcOEyez9CtEwpljUFefoqeJGv1Kimzg05IVmP2CeRPY20+QSKCb2sx6oUvABfp nnQ4ZwAlDx2W7uVwfw4HABgGFPfdy2e/OqrpuIuzklCccLJjpj7Ne1+h0zg534fw CvrfkVBQ2UO11VyX5WYvSIt0VzWBcByUiaPUwwV+M5MnwLfN9k6iS1zDsbZ599SJ UPuebSbK9giuGC9WuNgR2NI3R0IksJVX -----END CERTIFICATE-----Generated at Sat Sep 6 05:01:54 2025 by rpki-client