$ rpki-client -vvf rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft File: YNExg9Od5pVlYCMefgMX5py8bA8.mft (raw, json) Hash identifier: 9eH+r0z0I0BOnZMbe8OnQJWHB8yTp7iAJ+G7OrQUzN0= Subject key identifier: F4:C3:EF:F2:67:FF:D1:45:CF:5D:E8:01:17:60:75:A4:7D:AE:78:1E Authority key identifier: 60:D1:31:83:D3:9D:E6:95:65:60:23:1E:7E:03:17:E6:9C:BC:6C:0F Certificate issuer: /CN=A9131D31/serialNumber=60D13183D39DE6956560231E7E0317E69CBC6C0F Certificate serial: 10EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft Manifest number: 10DD Signing time: Sun 20 Jul 2025 17:19:34 +0000 Manifest this update: Sun 20 Jul 2025 17:19:34 +0000 Manifest next update: Sun 27 Jul 2025 17:19:34 +0000 Files and hashes: 1: YNExg9Od5pVlYCMefgMX5py8bA8.crl (hash: 3I+cLZ3Y/e//RDIuOK/C3Lo4aJRuZ+BJYYgxJwXUtT4=) 2: 1F8D757623B811E9971D8168C4F9AE02.roa (hash: teyprXUhhu0eQN/HT8J3s42u5imFw2AiXDxoE1lRwMQ=) 3: BA310DEC23B611E98E5E6062C4F9AE02.roa (hash: Z2LA9kyLWJ5DSZqXR4GtE8WTNPkiU6v9mRONlsKS1tk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.crl rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4334 (0x10ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131D31, serialNumber=60D13183D39DE6956560231E7E0317E69CBC6C0F Validity Not Before: Jul 20 17:19:34 2025 GMT Not After : Jul 27 17:19:34 2025 GMT Subject: CN=687d2526-4129 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:8f:ed:41:4f:fc:9a:4f:5e:bd:74:ee:1a:09: f8:e5:26:48:db:1f:a2:ef:b1:65:8c:a3:63:43:ec: f4:36:62:62:36:33:8e:fe:e3:97:1a:7e:89:22:32: 8f:74:d2:46:74:9b:dd:d4:53:9d:92:0b:c4:df:de: 5b:fe:a3:fe:21:aa:e6:41:45:6f:97:fb:7c:ea:13: 51:11:79:67:74:f4:8b:1c:c8:3b:93:6c:aa:a3:c7: f1:69:6f:2d:a2:bb:e6:dc:bc:93:3d:62:92:cd:69: ba:ba:e2:b4:f1:4d:ae:c8:89:36:84:4a:7b:51:77: 87:d9:c2:d2:e0:8a:40:40:6c:5e:bb:76:3f:55:29: bb:68:36:63:04:44:dc:04:c1:c5:7d:4b:f2:29:8d: 46:00:f3:94:3f:25:09:4f:b4:96:ef:af:8a:4b:e2: 1f:76:65:2a:2c:a2:33:7c:f8:97:8b:ec:e8:15:8d: c2:81:bb:f7:92:f1:73:26:86:48:01:4f:6c:3b:08: f4:a7:25:08:c3:32:35:dd:3f:6f:4e:51:0e:4a:42: 91:78:16:14:5e:00:c1:de:ed:f7:97:d8:12:1a:64: f0:57:cf:88:27:30:49:02:11:a7:07:98:ae:f1:d0: d7:a3:90:26:d8:95:51:24:82:02:a8:69:c1:d6:33: 9e:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:C3:EF:F2:67:FF:D1:45:CF:5D:E8:01:17:60:75:A4:7D:AE:78:1E X509v3 Authority Key Identifier: keyid:60:D1:31:83:D3:9D:E6:95:65:60:23:1E:7E:03:17:E6:9C:BC:6C:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:e4:e6:e4:7c:92:70:e3:7a:5e:84:68:6e:5c:cc:9a:ce:d8: 18:d4:f3:4f:4e:1c:96:b7:ce:7d:3d:07:ef:0f:2e:ba:03:1b: dd:72:bb:e5:ae:d4:90:da:e5:15:db:d8:13:db:05:9e:e7:8c: 25:f0:ee:ca:90:61:b9:65:70:58:51:b7:d3:60:c6:c6:52:a5: e9:e3:6f:c3:ee:dc:31:8d:7b:ba:40:e9:29:86:96:83:9c:b7: 18:54:f0:7f:62:cd:0f:1b:b0:ef:68:7f:b1:44:a4:f1:e1:6b: c3:45:1f:95:0a:ec:f9:fc:a4:58:1e:8d:56:75:0c:d5:70:09: 4b:8e:66:57:ae:ae:30:a0:20:99:b2:99:9d:bf:88:1b:c4:5b: 10:fc:0d:e8:60:db:87:48:f3:e9:a2:cf:66:ac:6c:de:26:21: 8e:e9:92:0d:c7:91:7c:a5:47:ba:97:9d:1c:52:d8:68:62:48: 7b:42:30:39:29:51:27:30:21:8e:c7:cc:8d:10:e7:e8:72:29: 4c:a8:6f:7d:02:d6:bb:4a:01:56:4a:fa:4a:4e:d0:85:52:ff: 07:85:ee:9e:ce:eb:06:7c:ed:8a:54:97:b5:02:6f:cf:e5:63: 38:44:e1:09:b0:11:e5:75:da:a9:85:ec:80:1e:f1:e5:c2:3b: db:cd:89:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFEMzExMTAvBgNVBAUTKDYwRDEzMTgzRDM5REU2OTU2NTYwMjMxRTdFMDMxN0U2 OUNCQzZDMEYwHhcNMjUwNzIwMTcxOTM0WhcNMjUwNzI3MTcxOTM0WjAYMRYwFAYD VQQDEw02ODdkMjUyNi00MTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuI/tQU/8mk9evXTuGgn45SZI2x+i77FljKNjQ+z0NmJiNjOO/uOXGn6JIjKP dNJGdJvd1FOdkgvE395b/qP+IarmQUVvl/t86hNREXlndPSLHMg7k2yqo8fxaW8t orvm3LyTPWKSzWm6uuK08U2uyIk2hEp7UXeH2cLS4IpAQGxeu3Y/VSm7aDZjBETc BMHFfUvyKY1GAPOUPyUJT7SW76+KS+IfdmUqLKIzfPiXi+zoFY3Cgbv3kvFzJoZI AU9sOwj0pyUIwzI13T9vTlEOSkKReBYUXgDB3u33l9gSGmTwV8+IJzBJAhGnB5iu 8dDXo5Am2JVRJIICqGnB1jOetwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPTD7/Jn /9FFz13oARdgdaR9rngeMB8GA1UdIwQYMBaAFGDRMYPTneaVZWAjHn4DF+acvGwP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUQzMS82NUVGMjk2QTIz MTMxMUU5QTI5QkIxNzRDNEY5QUUwMi9ZTkV4ZzlPZDVwVmxZQ01lZmdNWDVweThi QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lORXhnOU9kNXBWbFlDTWVmZ01YNXB5OGJBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUQzMS82NUVGMjk2QTIzMTMxMUU5QTI5QkIxNzRDNEY5QUUwMi9ZTkV4ZzlPZDVw VmxZQ01lZmdNWDVweThiQTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCj5ObkfJJw43pehGhuXMyaztgY1PNPThyWt859PQfvDy66Axvdcrvl rtSQ2uUV29gT2wWe54wl8O7KkGG5ZXBYUbfTYMbGUqXp42/D7twxjXu6QOkphpaD nLcYVPB/Ys0PG7DvaH+xRKTx4WvDRR+VCuz5/KRYHo1WdQzVcAlLjmZXrq4woCCZ spmdv4gbxFsQ/A3oYNuHSPPpos9mrGzeJiGO6ZINx5F8pUe6l50cUthoYkh7QjA5 KVEnMCGOx8yNEOfocilMqG99Ata7SgFWSvpKTtCFUv8Hhe6ezusGfO2KVJe1Am/P 5WM4ROEJsBHlddqpheyAHvHlwjvbzYnx -----END CERTIFICATE-----Generated at Sun Jul 20 18:56:24 2025 by rpki-client