$ rpki-client -vvf rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.mft File: 1y6SQ1zn27d4myQ4pI8hHEMcWAI.mft (raw, json) Hash identifier: 24Qt+zoPlEHIk58Aw3yBiprx2QPBOrGtYu+Q79kShAQ= Subject key identifier: 98:90:8B:84:35:43:4B:9E:0D:29:BE:8D:8D:89:69:96:91:98:39:9A Authority key identifier: D7:2E:92:43:5C:E7:DB:B7:78:9B:24:38:A4:8F:21:1C:43:1C:58:02 Certificate issuer: /CN=A911F5B7/serialNumber=D72E92435CE7DBB7789B2438A48F211C431C5802 Certificate serial: 01A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1y6SQ1zn27d4myQ4pI8hHEMcWAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.mft Manifest number: 0C76 Signing time: Sun 20 Jul 2025 19:31:45 +0000 Manifest this update: Sun 20 Jul 2025 19:31:45 +0000 Manifest next update: Sun 27 Jul 2025 19:31:45 +0000 Files and hashes: 1: 1y6SQ1zn27d4myQ4pI8hHEMcWAI.crl (hash: V5Md9JQLpCgknZAoa/ZH4BcsoC4P/rO43hyx87BhfMY=) 2: 751E90665BAB11EFB9769A80C4F9AE02.roa (hash: eILOAPk7hEfHA4Xc/eZDuicer6q0kZbC4fsjNG1XiFo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.crl rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1y6SQ1zn27d4myQ4pI8hHEMcWAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 19:31:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 418 (0x1a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F5B7, serialNumber=D72E92435CE7DBB7789B2438A48F211C431C5802 Validity Not Before: Jul 20 19:31:45 2025 GMT Not After : Jul 27 19:31:45 2025 GMT Subject: CN=687d4421-0963 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ef:8b:53:b9:84:ff:8f:8f:e2:2c:a3:1d:93: 42:87:37:01:14:af:da:82:4f:9e:60:ef:8f:1b:40: cf:d0:b1:5a:c1:74:33:0c:0a:86:e4:50:c8:25:db: 9a:9d:fe:a0:c2:c1:f2:cb:70:9b:ed:a9:0e:c9:65: 12:2b:48:bf:c2:ad:4c:00:cb:96:d0:71:03:10:1d: 75:e4:eb:83:77:d4:51:ac:13:5e:40:d2:b1:79:3a: 7c:11:01:dc:e8:e0:17:7e:4d:5e:5b:0f:10:e3:3d: 68:06:32:f8:b8:45:a9:06:0a:83:93:2d:85:2b:65: d7:73:c6:6f:d5:e8:24:0c:da:c9:4c:23:f6:6d:8c: 7a:b7:f6:93:95:7d:1c:6e:51:36:25:c9:aa:cc:36: 75:46:d7:2e:42:5b:c3:51:2b:dc:7a:c9:44:68:b8: bc:e6:96:76:01:b6:1e:fc:9d:34:9a:74:3f:e9:97: f5:c2:92:3a:13:8a:a5:cc:ff:78:84:07:e7:91:66: bb:f1:03:6b:01:8f:fb:8f:48:c4:de:de:9f:a4:76: a1:f7:fa:70:71:1d:b1:f6:1c:e2:f8:d3:60:59:05: 6f:25:83:34:a5:b1:ad:e9:e5:19:a8:54:e4:74:b3: 1a:9c:42:52:73:be:26:66:e1:42:b6:14:64:b7:57: 74:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:90:8B:84:35:43:4B:9E:0D:29:BE:8D:8D:89:69:96:91:98:39:9A X509v3 Authority Key Identifier: keyid:D7:2E:92:43:5C:E7:DB:B7:78:9B:24:38:A4:8F:21:1C:43:1C:58:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1y6SQ1zn27d4myQ4pI8hHEMcWAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:b8:4b:cc:59:13:81:c4:58:44:5c:28:18:43:08:7e:f0:12: d8:99:45:98:47:ec:e8:12:b4:21:df:88:04:e8:85:bc:95:87: ca:e1:b9:46:89:5e:39:a4:8e:f0:5f:08:36:39:b2:65:7a:93: b3:8f:91:bf:bd:65:38:4e:fb:b3:61:98:b6:cf:9d:88:99:a8: 85:6d:bf:15:4f:70:2e:83:f1:08:2f:b1:30:06:0c:48:85:fb: 2d:8d:ce:61:f0:3d:8c:4a:58:93:57:06:82:87:74:3a:a8:9d: 3e:dd:67:9b:ed:d9:82:5f:82:38:3a:7b:f4:ff:2e:a1:80:6a: 64:b1:0f:9b:f9:99:e6:de:ca:ec:0b:bd:2c:32:95:43:a9:80: bf:99:b0:1f:b3:f5:a2:dd:0b:5e:ac:f2:a1:df:9e:9b:30:9c: f4:c6:aa:c1:fc:79:31:e8:1c:1f:55:8d:24:7a:15:e6:56:29: 80:8d:fe:b1:58:ad:ea:49:16:7b:e2:af:e6:9f:04:8c:bb:05: d7:50:f9:c0:36:ae:d8:ae:2a:65:e3:c8:3b:24:33:44:a6:d0: 5f:2c:bd:5b:af:05:a4:7d:47:4f:6c:cf:bb:62:13:cd:13:7e: 98:81:b0:e2:9d:27:cd:c3:f8:7a:de:79:49:65:ae:ca:4c:71: 36:fc:64:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY1QjcxMTAvBgNVBAUTKEQ3MkU5MjQzNUNFN0RCQjc3ODlCMjQzOEE0OEYyMTFD NDMxQzU4MDIwHhcNMjUwNzIwMTkzMTQ1WhcNMjUwNzI3MTkzMTQ1WjAYMRYwFAYD VQQDEw02ODdkNDQyMS0wOTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs++LU7mE/4+P4iyjHZNChzcBFK/agk+eYO+PG0DP0LFawXQzDAqG5FDIJdua nf6gwsHyy3Cb7akOyWUSK0i/wq1MAMuW0HEDEB115OuDd9RRrBNeQNKxeTp8EQHc 6OAXfk1eWw8Q4z1oBjL4uEWpBgqDky2FK2XXc8Zv1egkDNrJTCP2bYx6t/aTlX0c blE2JcmqzDZ1RtcuQlvDUSvceslEaLi85pZ2AbYe/J00mnQ/6Zf1wpI6E4qlzP94 hAfnkWa78QNrAY/7j0jE3t6fpHah9/pwcR2x9hzi+NNgWQVvJYM0pbGt6eUZqFTk dLManEJSc74mZuFCthRkt1d04wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJiQi4Q1 Q0ueDSm+jY2JaZaRmDmaMB8GA1UdIwQYMBaAFNcukkNc59u3eJskOKSPIRxDHFgC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjVCNy83MUU3QTIyMjUx OTUxMUVBODQ2NEJBNzhDNEY5QUUwMi8xeTZTUTF6bjI3ZDRteVE0cEk4aEhFTWNX QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzF5NlNRMXpuMjdkNG15UTRwSThoSEVNY1dBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjVCNy83MUU3QTIyMjUxOTUxMUVBODQ2NEJBNzhDNEY5QUUwMi8xeTZTUTF6bjI3 ZDRteVE0cEk4aEhFTWNXQUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxuEvMWROBxFhEXCgYQwh+8BLYmUWYR+zoErQh34gE6IW8lYfK4blG iV45pI7wXwg2ObJlepOzj5G/vWU4TvuzYZi2z52ImaiFbb8VT3Aug/EIL7EwBgxI hfstjc5h8D2MSliTVwaCh3Q6qJ0+3Web7dmCX4I4Onv0/y6hgGpksQ+b+Znm3srs C70sMpVDqYC/mbAfs/Wi3QterPKh356bMJz0xqrB/Hkx6BwfVY0kehXmVimAjf6x WK3qSRZ74q/mnwSMuwXXUPnANq7Yripl48g7JDNEptBfLL1brwWkfUdPbM+7YhPN E36YgbDinSfNw/h63nlJZa7KTHE2/GRz -----END CERTIFICATE-----Generated at Tue Jul 22 12:17:36 2025 by rpki-client