$ rpki-client -vvf rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.mft File: 1y6SQ1zn27d4myQ4pI8hHEMcWAI.mft (raw, json) Hash identifier: 55Z6osyErSUv1p8x0wyLeCOgGuXzkD8SR5Z1hOjOfck= Subject key identifier: B6:69:9A:B6:7F:93:BF:67:1C:20:E9:DA:BA:4E:41:97:8A:AB:F9:CC Authority key identifier: D7:2E:92:43:5C:E7:DB:B7:78:9B:24:38:A4:8F:21:1C:43:1C:58:02 Certificate issuer: /CN=A911F5B7/serialNumber=D72E92435CE7DBB7789B2438A48F211C431C5802 Certificate serial: 01A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1y6SQ1zn27d4myQ4pI8hHEMcWAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.mft Manifest number: 0C7A Signing time: Thu 24 Jul 2025 19:34:39 +0000 Manifest this update: Thu 24 Jul 2025 19:34:39 +0000 Manifest next update: Thu 31 Jul 2025 19:34:39 +0000 Files and hashes: 1: 1y6SQ1zn27d4myQ4pI8hHEMcWAI.crl (hash: kG+kaNpqGBf3Cwl7FgdUFNkTlF/h7HzyXZBE2bpi6WQ=) 2: 751E90665BAB11EFB9769A80C4F9AE02.roa (hash: eILOAPk7hEfHA4Xc/eZDuicer6q0kZbC4fsjNG1XiFo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.crl rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1y6SQ1zn27d4myQ4pI8hHEMcWAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 19:34:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 420 (0x1a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F5B7, serialNumber=D72E92435CE7DBB7789B2438A48F211C431C5802 Validity Not Before: Jul 24 19:34:39 2025 GMT Not After : Jul 31 19:34:39 2025 GMT Subject: CN=68828acf-065b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:0e:df:03:c3:2e:a0:2d:8c:e3:49:14:b0:22: fe:a8:70:dc:8c:74:1a:0c:e4:f6:1c:b8:53:b9:69: f1:20:43:9e:d1:a1:ac:4a:2a:a8:4f:1e:00:c6:fb: a3:24:6c:2a:b4:f1:f7:48:73:31:79:d8:9a:9e:50: 50:c7:68:4c:6f:f9:5a:9b:96:36:59:3d:7e:ae:a2: 23:1c:6c:68:ec:6b:5c:49:dd:6f:35:1a:21:4f:42: 25:37:ec:9e:b8:fa:56:f4:e1:e9:f4:24:b2:c5:2b: 1a:c5:64:3b:04:29:8a:49:69:df:57:ed:0f:90:c7: f9:21:71:bf:30:e5:9a:30:b5:a1:9e:02:bb:15:28: db:78:e5:83:da:36:31:1e:36:2d:dc:9a:80:e4:04: f4:dd:e3:34:b8:ed:0b:bd:80:e0:e2:28:62:dc:e4: fd:f0:47:86:f9:b4:0c:32:01:93:f3:6b:a9:6d:20: 5d:30:e4:60:81:37:95:03:b3:9f:0b:7b:b6:30:12: bf:c8:f2:03:67:3e:06:5c:ef:b2:7e:0f:98:d6:aa: 20:3b:32:dd:fc:a3:d9:7b:49:1f:d1:01:37:79:50: b8:e7:0c:ff:ff:94:1d:d3:09:52:64:eb:ec:63:fe: fd:5a:b6:d7:f3:a6:be:69:5d:35:26:b5:07:f8:b5: c5:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:69:9A:B6:7F:93:BF:67:1C:20:E9:DA:BA:4E:41:97:8A:AB:F9:CC X509v3 Authority Key Identifier: keyid:D7:2E:92:43:5C:E7:DB:B7:78:9B:24:38:A4:8F:21:1C:43:1C:58:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1y6SQ1zn27d4myQ4pI8hHEMcWAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:0e:a0:27:66:d0:8f:15:f6:55:24:16:fa:c5:b7:60:db:ff: 51:2a:06:85:f2:e8:12:5b:53:19:0a:0e:5a:72:71:71:a1:d7: 12:81:26:1e:c8:15:7a:cd:7f:ca:f3:47:54:de:9e:4d:20:fa: 68:a1:81:bf:12:2c:c8:66:94:30:e5:e0:2e:71:b7:7a:42:44: 3b:37:f9:cc:1d:7c:6b:13:cf:34:eb:d8:16:5e:ee:45:1c:c2: 43:34:e7:b6:e6:c4:4b:97:27:4a:2a:c2:2c:53:15:7e:da:04: 7b:2f:56:67:c6:ca:16:5d:f3:db:0d:93:48:6a:54:42:26:75: c1:73:cb:79:0a:09:10:4c:e7:f5:2d:cd:24:bf:3c:c8:6b:8b: 58:9f:da:67:e7:27:e1:34:ff:8f:07:40:ab:09:ee:cc:2d:17: 23:73:02:e0:7f:4c:cf:ac:13:3d:b5:ad:17:d2:c3:a8:46:93: 1a:f0:b7:11:bc:44:f4:dd:c0:a9:05:f4:6e:e5:65:99:9f:40: 8b:97:95:88:1e:f0:c0:e9:2f:f6:62:67:b7:b8:68:51:f9:fa: f9:87:9d:c3:0a:c2:05:dc:eb:b0:5f:65:96:9a:2d:a8:90:2b: 3d:52:d3:75:4f:e8:6d:a2:6e:49:d1:48:3d:59:f1:0f:20:f9: 03:c4:d2:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY1QjcxMTAvBgNVBAUTKEQ3MkU5MjQzNUNFN0RCQjc3ODlCMjQzOEE0OEYyMTFD NDMxQzU4MDIwHhcNMjUwNzI0MTkzNDM5WhcNMjUwNzMxMTkzNDM5WjAYMRYwFAYD VQQDEw02ODgyOGFjZi0wNjViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6w7fA8MuoC2M40kUsCL+qHDcjHQaDOT2HLhTuWnxIEOe0aGsSiqoTx4Axvuj JGwqtPH3SHMxedianlBQx2hMb/lam5Y2WT1+rqIjHGxo7GtcSd1vNRohT0IlN+ye uPpW9OHp9CSyxSsaxWQ7BCmKSWnfV+0PkMf5IXG/MOWaMLWhngK7FSjbeOWD2jYx HjYt3JqA5AT03eM0uO0LvYDg4ihi3OT98EeG+bQMMgGT82upbSBdMORggTeVA7Of C3u2MBK/yPIDZz4GXO+yfg+Y1qogOzLd/KPZe0kf0QE3eVC45wz//5Qd0wlSZOvs Y/79WrbX86a+aV01JrUH+LXF8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLZpmrZ/ k79nHCDp2rpOQZeKq/nMMB8GA1UdIwQYMBaAFNcukkNc59u3eJskOKSPIRxDHFgC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjVCNy83MUU3QTIyMjUx OTUxMUVBODQ2NEJBNzhDNEY5QUUwMi8xeTZTUTF6bjI3ZDRteVE0cEk4aEhFTWNX QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzF5NlNRMXpuMjdkNG15UTRwSThoSEVNY1dBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjVCNy83MUU3QTIyMjUxOTUxMUVBODQ2NEJBNzhDNEY5QUUwMi8xeTZTUTF6bjI3 ZDRteVE0cEk4aEhFTWNXQUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPDqAnZtCPFfZVJBb6xbdg2/9RKgaF8ugSW1MZCg5acnFxodcSgSYe yBV6zX/K80dU3p5NIPpooYG/EizIZpQw5eAucbd6QkQ7N/nMHXxrE88069gWXu5F HMJDNOe25sRLlydKKsIsUxV+2gR7L1ZnxsoWXfPbDZNIalRCJnXBc8t5CgkQTOf1 Lc0kvzzIa4tYn9pn5yfhNP+PB0CrCe7MLRcjcwLgf0zPrBM9ta0X0sOoRpMa8LcR vET03cCpBfRu5WWZn0CLl5WIHvDA6S/2Yme3uGhR+fr5h53DCsIF3OuwX2WWmi2o kCs9UtN1T+htom5J0Ug9WfEPIPkDxNK3 -----END CERTIFICATE-----Generated at Sat Jul 26 02:02:47 2025 by rpki-client