$ rpki-client -vvf rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.mft File: yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.mft (raw, json) Hash identifier: jQsbaFMx9qpxSv6BqOCEhDhSkTvrbRqEKFc/Y/4PqHQ= Subject key identifier: 41:65:53:CB:D1:56:C3:8E:B6:BF:7B:88:A0:0E:49:FD:EE:92:8E:C6 Authority key identifier: C8:24:34:74:25:BA:C8:AF:59:B4:E1:96:6B:C1:0D:BF:A8:BD:AB:82 Certificate issuer: /CN=A912B2EE/serialNumber=C824347425BAC8AF59B4E1966BC10DBFA8BDAB82 Certificate serial: 0F92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.mft Manifest number: 0F7D Signing time: Fri 18 Jul 2025 17:43:37 +0000 Manifest this update: Fri 18 Jul 2025 17:43:36 +0000 Manifest next update: Fri 25 Jul 2025 17:43:36 +0000 Files and hashes: 1: yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.crl (hash: qHT/G6uI2/fNbIj0+r66fL4Zv8uTsAe6FL5ZmWu3zJQ=) 2: 05449490E17B11EC93AB7473C4F9AE02.roa (hash: TQO7DA2C+52oraPsdnjGz3A009856ZzetwGGv8/CUtg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.crl rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 17:43:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3986 (0xf92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B2EE, serialNumber=C824347425BAC8AF59B4E1966BC10DBFA8BDAB82 Validity Not Before: Jul 18 17:43:36 2025 GMT Not After : Jul 25 17:43:36 2025 GMT Subject: CN=687a87c8-5c8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:f0:cf:b7:cd:7b:f4:c1:82:75:04:bb:4a:84: b5:52:cb:5e:1b:49:68:0d:5f:79:5a:7b:21:1e:39: 0e:6e:a1:76:91:65:5b:dc:c7:3e:90:9e:c7:c0:ba: a7:0c:18:3b:93:78:83:fa:51:6d:5a:e1:b4:d5:47: 85:9a:d3:80:a9:13:79:9a:47:82:6b:01:83:ce:a7: f0:ca:6d:2d:ad:77:7d:76:6e:e0:cf:ae:d2:e5:4e: ef:59:7a:f9:ba:e8:c7:a9:e5:4d:91:91:b7:c9:6a: 72:11:56:b2:35:18:6d:67:95:dd:5c:66:ba:4c:c1: 6d:67:cf:48:c6:55:40:ab:c0:1f:89:51:31:6f:da: ef:ae:fa:65:69:a8:17:81:05:63:93:bd:d3:29:7b: 31:29:f0:67:30:09:9f:08:05:67:f4:5b:19:47:0c: da:10:aa:d6:f0:c9:85:d8:7c:62:0c:41:60:d3:7d: 87:c8:e0:61:64:d5:0b:d7:80:9d:01:73:6c:37:9f: 47:6e:0a:1c:83:da:e8:03:e2:7c:d4:42:c8:66:5c: 18:70:58:e5:b4:89:1b:0c:88:d6:e2:47:06:a0:a2: cd:da:d5:f5:ba:79:5d:f8:f1:52:52:f8:f3:ec:64: ca:d5:95:fd:ac:45:be:f0:8a:cc:70:f8:2c:74:3a: 00:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:65:53:CB:D1:56:C3:8E:B6:BF:7B:88:A0:0E:49:FD:EE:92:8E:C6 X509v3 Authority Key Identifier: keyid:C8:24:34:74:25:BA:C8:AF:59:B4:E1:96:6B:C1:0D:BF:A8:BD:AB:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:af:59:fe:5f:21:38:6a:7b:6b:de:9e:f3:5e:19:c7:5f:18: bf:8d:07:dc:a6:b6:c8:a9:cf:c5:6b:a2:6e:5a:cc:a4:7d:ed: 33:d1:59:18:e9:e1:e0:63:30:e0:78:f0:79:c3:12:fb:cd:85: 2e:49:6d:d4:cc:80:76:eb:b8:ca:96:2b:b9:91:72:c3:7a:2a: 43:62:0b:7e:11:0f:da:42:7a:79:7a:be:16:81:fd:c7:d9:1b: 5d:4e:d7:49:da:c8:c0:8d:40:d7:3d:e8:8f:95:4e:6d:c3:f8: ab:ce:b7:3a:be:ff:58:70:63:5a:d7:f2:a1:fb:5f:66:c5:47: 75:a8:ae:25:bb:88:94:12:97:34:a6:87:86:e0:6b:47:6b:97: 85:69:1c:19:1a:f4:e8:ef:db:8e:fe:a0:5d:4e:6b:41:a8:1a: 36:89:83:1c:dd:a4:0a:a0:cd:29:37:11:25:fa:f9:8f:cc:58: 2c:d1:d7:1a:a2:64:f6:6b:ee:b4:2e:2c:46:a5:52:8c:81:a8: 16:30:d3:fa:f4:fc:e2:4e:8c:15:82:40:48:d7:3f:85:19:a0: a1:9e:b8:b8:14:9a:a0:a6:0d:8f:df:47:9d:f0:ad:9c:29:e6: 60:68:4d:44:4a:03:bc:30:9e:c8:0c:ea:89:ea:58:cb:13:1c: 9a:01:e5:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD5IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkIyRUUxMTAvBgNVBAUTKEM4MjQzNDc0MjVCQUM4QUY1OUI0RTE5NjZCQzEwREJG QThCREFCODIwHhcNMjUwNzE4MTc0MzM2WhcNMjUwNzI1MTc0MzM2WjAYMRYwFAYD VQQDEw02ODdhODdjOC01YzhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1PDPt8179MGCdQS7SoS1UsteG0loDV95WnshHjkObqF2kWVb3Mc+kJ7HwLqn DBg7k3iD+lFtWuG01UeFmtOAqRN5mkeCawGDzqfwym0trXd9dm7gz67S5U7vWXr5 uujHqeVNkZG3yWpyEVayNRhtZ5XdXGa6TMFtZ89IxlVAq8AfiVExb9rvrvplaagX gQVjk73TKXsxKfBnMAmfCAVn9FsZRwzaEKrW8MmF2HxiDEFg032HyOBhZNUL14Cd AXNsN59Hbgocg9roA+J81ELIZlwYcFjltIkbDIjW4kcGoKLN2tX1unld+PFSUvjz 7GTK1ZX9rEW+8IrMcPgsdDoA1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEFlU8vR VsOOtr97iKAOSf3uko7GMB8GA1UdIwQYMBaAFMgkNHQlusivWbThlmvBDb+ovauC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjJFRS8xRjQxMUY1ODZD MjExMUU5Qjc2RkE5MDlDNEY5QUUwMi95Q1EwZENXNnlLOVp0T0dXYThFTnY2aTlx NEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lDUTBkQ1c2eUs5WnRPR1dhOEVOdjZpOXE0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QjJFRS8xRjQxMUY1ODZDMjExMUU5Qjc2RkE5MDlDNEY5QUUwMi95Q1EwZENXNnlL OVp0T0dXYThFTnY2aTlxNEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlr1n+XyE4antr3p7zXhnHXxi/jQfcprbIqc/Fa6JuWsykfe0z0VkY 6eHgYzDgePB5wxL7zYUuSW3UzIB267jKliu5kXLDeipDYgt+EQ/aQnp5er4Wgf3H 2RtdTtdJ2sjAjUDXPeiPlU5tw/irzrc6vv9YcGNa1/Kh+19mxUd1qK4lu4iUEpc0 poeG4GtHa5eFaRwZGvTo79uO/qBdTmtBqBo2iYMc3aQKoM0pNxEl+vmPzFgs0dca omT2a+60LixGpVKMgagWMNP69PziTowVgkBI1z+FGaChnri4FJqgpg2P30ed8K2c KeZgaE1ESgO8MJ7IDOqJ6ljLExyaAeXK -----END CERTIFICATE-----Generated at Sun Jul 20 11:26:34 2025 by rpki-client