$ rpki-client -vvf rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.mft File: 1y6SQ1zn27d4myQ4pI8hHEMcWAI.mft (raw, json) Hash identifier: N21cTiHGWTbq1NgovxoBc+Cbd4Qp1XZf/1dxeuY2YHA= Subject key identifier: B5:CC:A9:7C:25:2E:29:39:4A:89:29:D2:AE:78:18:87:D2:A7:EE:6E Authority key identifier: D7:2E:92:43:5C:E7:DB:B7:78:9B:24:38:A4:8F:21:1C:43:1C:58:02 Certificate issuer: /CN=A911F5B7/serialNumber=D72E92435CE7DBB7789B2438A48F211C431C5802 Certificate serial: 01A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1y6SQ1zn27d4myQ4pI8hHEMcWAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.mft Manifest number: 0C78 Signing time: Tue 22 Jul 2025 19:40:44 +0000 Manifest this update: Tue 22 Jul 2025 19:40:43 +0000 Manifest next update: Tue 29 Jul 2025 19:40:43 +0000 Files and hashes: 1: 1y6SQ1zn27d4myQ4pI8hHEMcWAI.crl (hash: I+eyxm6SrLoRQKeOEfWUKlfTK5MqLYtiI3jZIl3DXwI=) 2: 751E90665BAB11EFB9769A80C4F9AE02.roa (hash: eILOAPk7hEfHA4Xc/eZDuicer6q0kZbC4fsjNG1XiFo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.crl rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1y6SQ1zn27d4myQ4pI8hHEMcWAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 19:40:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 419 (0x1a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F5B7, serialNumber=D72E92435CE7DBB7789B2438A48F211C431C5802 Validity Not Before: Jul 22 19:40:43 2025 GMT Not After : Jul 29 19:40:43 2025 GMT Subject: CN=687fe93b-9c7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:e3:3f:08:c9:3a:8d:95:84:73:18:da:82:f1: 79:86:34:bf:3a:a2:87:cc:6f:49:d4:dd:85:94:1a: fc:ae:5f:9e:63:59:bc:cd:c0:9a:5e:bc:18:2e:d6: 38:d8:b7:ae:78:51:a7:7c:08:9b:e1:42:aa:8e:a4: 8e:eb:49:24:6f:0c:3a:bb:4f:4b:dd:2a:56:95:70: c7:68:e9:f4:14:5c:18:84:bd:ae:8f:49:a4:3d:c8: 3b:26:c1:0e:5a:dd:ad:5d:0e:30:57:af:c9:c2:4f: b2:b8:90:b6:27:6b:0b:ba:68:ba:db:3e:8b:e2:0a: 1b:e1:00:52:b1:4e:f2:96:b7:47:37:6b:06:ce:8e: 23:74:73:f2:55:10:94:62:f9:9a:66:27:71:64:8e: 04:1f:2c:2a:49:34:3b:4c:44:a0:7b:16:e9:2f:49: b1:70:b5:29:bf:f9:cb:17:9e:11:3f:83:c5:6f:02: 89:d1:74:95:e7:53:df:db:88:04:c0:ef:1e:f2:2c: d2:85:2d:c0:01:1a:8f:77:a2:a2:7a:88:1a:5b:58: f2:09:87:cd:39:8c:ff:65:0a:01:33:da:f9:eb:48: b7:39:51:0e:c2:60:a3:55:0a:de:84:dd:17:13:5c: b6:bd:73:9d:5d:9f:7f:8f:63:b9:ca:8d:30:80:3d: 7f:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:CC:A9:7C:25:2E:29:39:4A:89:29:D2:AE:78:18:87:D2:A7:EE:6E X509v3 Authority Key Identifier: keyid:D7:2E:92:43:5C:E7:DB:B7:78:9B:24:38:A4:8F:21:1C:43:1C:58:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1y6SQ1zn27d4myQ4pI8hHEMcWAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:da:b5:58:2e:b2:b9:b3:18:44:26:1e:db:28:a4:03:2c:eb: 12:7a:42:3f:7f:9f:a6:a8:14:c4:c9:52:8f:a6:7f:3f:18:32: f5:63:85:c4:44:28:26:6f:ab:4b:a0:d2:fb:e3:cd:17:30:11: 07:29:81:71:96:a7:18:f1:65:6e:4c:8d:15:27:36:6a:97:18: cd:16:de:ad:6e:41:d8:c7:5b:1b:e8:20:8f:31:bf:00:ae:cf: b4:b0:25:44:96:80:3a:94:c3:27:bd:fc:fb:01:78:cd:4e:21: a9:47:12:c2:53:14:f7:85:6c:45:a3:94:4d:d2:dc:cd:3d:1b: 85:35:2f:28:95:c5:2b:65:05:16:10:e1:4d:82:52:26:64:32: a0:84:4a:32:93:0e:1b:ba:d7:75:28:76:85:bb:07:a8:e5:a1: 7e:b5:fe:46:07:b9:1a:91:7f:0c:83:9c:05:99:79:71:76:dc: 2e:1b:9e:1f:d8:92:8a:2e:53:83:f6:f5:4e:8e:f4:c7:a4:8c: 37:c3:a6:4d:4b:03:0d:83:eb:14:be:21:0a:c9:f2:82:70:67: 16:7a:e1:ad:3c:a0:86:fa:02:27:04:dc:c9:25:67:f8:9b:d2: a9:a5:a1:08:ba:4b:07:39:5b:07:a0:2f:c1:38:8c:3d:8e:37: 7c:d9:97:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY1QjcxMTAvBgNVBAUTKEQ3MkU5MjQzNUNFN0RCQjc3ODlCMjQzOEE0OEYyMTFD NDMxQzU4MDIwHhcNMjUwNzIyMTk0MDQzWhcNMjUwNzI5MTk0MDQzWjAYMRYwFAYD VQQDEw02ODdmZTkzYi05YzdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3uM/CMk6jZWEcxjagvF5hjS/OqKHzG9J1N2FlBr8rl+eY1m8zcCaXrwYLtY4 2LeueFGnfAib4UKqjqSO60kkbww6u09L3SpWlXDHaOn0FFwYhL2uj0mkPcg7JsEO Wt2tXQ4wV6/Jwk+yuJC2J2sLumi62z6L4gob4QBSsU7ylrdHN2sGzo4jdHPyVRCU YvmaZidxZI4EHywqSTQ7TESgexbpL0mxcLUpv/nLF54RP4PFbwKJ0XSV51Pf24gE wO8e8izShS3AARqPd6KieogaW1jyCYfNOYz/ZQoBM9r560i3OVEOwmCjVQrehN0X E1y2vXOdXZ9/j2O5yo0wgD1/cQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLXMqXwl Lik5Sokp0q54GIfSp+5uMB8GA1UdIwQYMBaAFNcukkNc59u3eJskOKSPIRxDHFgC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjVCNy83MUU3QTIyMjUx OTUxMUVBODQ2NEJBNzhDNEY5QUUwMi8xeTZTUTF6bjI3ZDRteVE0cEk4aEhFTWNX QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzF5NlNRMXpuMjdkNG15UTRwSThoSEVNY1dBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjVCNy83MUU3QTIyMjUxOTUxMUVBODQ2NEJBNzhDNEY5QUUwMi8xeTZTUTF6bjI3 ZDRteVE0cEk4aEhFTWNXQUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCB2rVYLrK5sxhEJh7bKKQDLOsSekI/f5+mqBTEyVKPpn8/GDL1Y4XE RCgmb6tLoNL7480XMBEHKYFxlqcY8WVuTI0VJzZqlxjNFt6tbkHYx1sb6CCPMb8A rs+0sCVEloA6lMMnvfz7AXjNTiGpRxLCUxT3hWxFo5RN0tzNPRuFNS8olcUrZQUW EOFNglImZDKghEoykw4butd1KHaFuweo5aF+tf5GB7kakX8Mg5wFmXlxdtwuG54f 2JKKLlOD9vVOjvTHpIw3w6ZNSwMNg+sUviEKyfKCcGcWeuGtPKCG+gInBNzJJWf4 m9KppaEIuksHOVsHoC/BOIw9jjd82ZcJ -----END CERTIFICATE-----Generated at Thu Jul 24 05:04:20 2025 by rpki-client