$ rpki-client -vvf rpki.apnic.net/member_repository/A9112B24/8A16FF725BA011EF9F2F2361C4F9AE02/ymSxcxGVIJPNTWDarxe2rKD3pRY.mft File: ymSxcxGVIJPNTWDarxe2rKD3pRY.mft (raw, json) Hash identifier: MKmbWEQdLnBEQCJMdDFxoD/lD1pMA2/Dbbeu9PlsKDo= Subject key identifier: 00:79:4F:73:1B:F0:27:81:3A:14:64:A7:EB:7C:8E:43:16:86:91:6B Authority key identifier: CA:64:B1:73:11:95:20:93:CD:4D:60:DA:AF:17:B6:AC:A0:F7:A5:16 Certificate issuer: /CN=A9112B24/serialNumber=CA64B17311952093CD4D60DAAF17B6ACA0F7A516 Certificate serial: AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymSxcxGVIJPNTWDarxe2rKD3pRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112B24/8A16FF725BA011EF9F2F2361C4F9AE02/ymSxcxGVIJPNTWDarxe2rKD3pRY.mft Manifest number: AD Signing time: Sat 19 Jul 2025 06:17:42 +0000 Manifest this update: Sat 19 Jul 2025 06:17:42 +0000 Manifest next update: Sat 26 Jul 2025 06:17:41 +0000 Files and hashes: 1: ymSxcxGVIJPNTWDarxe2rKD3pRY.crl (hash: dWgU7yiPT7/cvTARzcLy9O4HwJKWcVekjhmP2JfWcMc=) 2: C384F0025BA011EFB7E79861C4F9AE02.roa (hash: HB8QMXYnImTcdy2zBeTOvUb91weeMYAQqjoTwrsvfrA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112B24/8A16FF725BA011EF9F2F2361C4F9AE02/ymSxcxGVIJPNTWDarxe2rKD3pRY.crl rsync://rpki.apnic.net/member_repository/A9112B24/8A16FF725BA011EF9F2F2361C4F9AE02/ymSxcxGVIJPNTWDarxe2rKD3pRY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymSxcxGVIJPNTWDarxe2rKD3pRY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:17:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 174 (0xae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112B24, serialNumber=CA64B17311952093CD4D60DAAF17B6ACA0F7A516 Validity Not Before: Jul 19 06:17:42 2025 GMT Not After : Jul 26 06:17:41 2025 GMT Subject: CN=687b3886-47b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:2c:55:32:4c:8e:92:c5:bd:98:b3:59:19:5e: 03:d8:e0:d8:49:bf:69:ed:b9:ee:7b:87:fc:db:ba: 66:fd:0b:94:8d:28:9c:50:f6:8b:ab:d3:69:cc:ad: 87:d4:42:4b:48:e5:6b:8b:6f:35:87:22:9d:6c:03: 39:43:d9:5d:2e:57:2c:00:f1:95:9d:5f:e1:f2:54: 0e:ae:fe:17:93:b0:6d:a5:13:90:4d:2f:81:4a:97: 83:da:99:3f:39:40:e2:5a:5d:02:a9:a4:61:35:e9: c7:9a:c3:93:46:bb:5a:e6:95:64:75:df:8d:ac:f5: 5a:6f:6f:f5:25:45:d6:0b:27:4d:e3:b0:d8:33:8b: 92:80:82:64:c7:52:9f:05:a2:22:4f:6f:ac:5e:64: 48:ee:cb:fb:52:1f:1f:85:4b:74:27:b9:37:a4:4e: 33:e8:59:bf:e6:a2:bf:f7:fc:aa:6f:20:0c:d8:93: b6:85:31:39:ad:dc:1c:53:06:36:8e:54:ea:9b:df: 03:2a:79:df:95:ff:e8:4f:9c:1c:08:bc:f3:97:58: e6:8f:ff:71:6d:fd:b6:f7:66:3f:58:4f:2e:51:e8: 99:59:0c:f2:96:03:e8:f2:36:9b:7b:e4:ca:f9:42: ea:57:55:0a:cb:97:d4:aa:d7:e9:47:87:47:d8:fd: 49:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:79:4F:73:1B:F0:27:81:3A:14:64:A7:EB:7C:8E:43:16:86:91:6B X509v3 Authority Key Identifier: keyid:CA:64:B1:73:11:95:20:93:CD:4D:60:DA:AF:17:B6:AC:A0:F7:A5:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112B24/8A16FF725BA011EF9F2F2361C4F9AE02/ymSxcxGVIJPNTWDarxe2rKD3pRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymSxcxGVIJPNTWDarxe2rKD3pRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112B24/8A16FF725BA011EF9F2F2361C4F9AE02/ymSxcxGVIJPNTWDarxe2rKD3pRY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:d2:0e:a4:d1:14:5d:3b:67:be:43:39:40:d5:c6:2d:97:af: fa:06:66:23:d1:aa:90:73:5a:fb:42:e1:36:70:02:8d:37:c6: 11:73:8d:8b:a4:6d:3d:cf:8a:56:b3:db:59:4e:1a:fe:e2:46: 5e:07:fd:d8:f4:de:4d:4c:95:54:2f:d4:c6:4a:b2:9f:2c:80: 3e:f6:a2:c8:56:62:28:a6:c5:e5:58:6e:50:75:14:a6:f7:cc: 3a:2f:ce:b1:ec:5b:fb:cd:4f:08:5c:66:d9:ff:5d:dc:78:52: ce:8d:f0:60:6b:87:8a:66:a2:59:4b:21:07:23:c4:d7:8f:66: 49:e5:26:e7:56:6f:5c:0a:fb:e9:15:97:70:a8:38:aa:d4:56: 61:8a:56:91:0d:7f:df:51:6a:a8:03:36:72:06:ec:f9:a1:7c: 5f:5c:87:0d:b8:c2:8a:94:a6:a1:93:e6:1f:e2:95:01:f1:1e: a1:ba:f6:8a:c9:d5:32:dd:8e:02:f9:89:6e:f7:e7:22:7e:ef: bc:32:89:ad:6e:14:4f:80:81:b2:05:1b:f1:2c:10:a8:4a:6c: 80:70:85:e0:a3:91:f3:7b:d6:31:08:3d:c4:91:1a:80:fc:1b: a0:0a:3c:9a:78:c2:41:83:44:a6:a1:f5:6d:73:b1:b4:3e:64: 79:4f:ae:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTJCMjQxMTAvBgNVBAUTKENBNjRCMTczMTE5NTIwOTNDRDRENjBEQUFGMTdCNkFD QTBGN0E1MTYwHhcNMjUwNzE5MDYxNzQyWhcNMjUwNzI2MDYxNzQxWjAYMRYwFAYD VQQDEw02ODdiMzg4Ni00N2I0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3CxVMkyOksW9mLNZGV4D2ODYSb9p7bnue4f827pm/QuUjSicUPaLq9NpzK2H 1EJLSOVri281hyKdbAM5Q9ldLlcsAPGVnV/h8lQOrv4Xk7BtpROQTS+BSpeD2pk/ OUDiWl0CqaRhNenHmsOTRrta5pVkdd+NrPVab2/1JUXWCydN47DYM4uSgIJkx1Kf BaIiT2+sXmRI7sv7Uh8fhUt0J7k3pE4z6Fm/5qK/9/yqbyAM2JO2hTE5rdwcUwY2 jlTqm98DKnnflf/oT5wcCLzzl1jmj/9xbf2292Y/WE8uUeiZWQzylgPo8jabe+TK +ULqV1UKy5fUqtfpR4dH2P1JMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAB5T3Mb 8CeBOhRkp+t8jkMWhpFrMB8GA1UdIwQYMBaAFMpksXMRlSCTzU1g2q8Xtqyg96UW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkIyNC84QTE2RkY3MjVC QTAxMUVGOUYyRjIzNjFDNEY5QUUwMi95bVN4Y3hHVklKUE5UV0RhcnhlMnJLRDNw UlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ltU3hjeEdWSUpQTlRXRGFyeGUycktEM3BSWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MkIyNC84QTE2RkY3MjVCQTAxMUVGOUYyRjIzNjFDNEY5QUUwMi95bVN4Y3hHVklK UE5UV0RhcnhlMnJLRDNwUlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQ0g6k0RRdO2e+QzlA1cYtl6/6BmYj0aqQc1r7QuE2cAKNN8YRc42L pG09z4pWs9tZThr+4kZeB/3Y9N5NTJVUL9TGSrKfLIA+9qLIVmIopsXlWG5QdRSm 98w6L86x7Fv7zU8IXGbZ/13ceFLOjfBga4eKZqJZSyEHI8TXj2ZJ5SbnVm9cCvvp FZdwqDiq1FZhilaRDX/fUWqoAzZyBuz5oXxfXIcNuMKKlKahk+Yf4pUB8R6huvaK ydUy3Y4C+Ylu9+cifu+8MomtbhRPgIGyBRvxLBCoSmyAcIXgo5Hze9YxCD3EkRqA /BugCjyaeMJBg0SmofVtc7G0PmR5T65H -----END CERTIFICATE-----Generated at Sun Jul 20 14:25:43 2025 by rpki-client