$ rpki-client -vvf rpki.apnic.net/member_repository/A914275E/4DF7DB04911811E994793C4DC4F9AE02/YoQgfQ0noui_TS6xT7EpytT2zD8.mft File: YoQgfQ0noui_TS6xT7EpytT2zD8.mft (raw, json) Hash identifier: 0P3RuVxgrXOlFlxP/3qcI7xGZBVL4qyoeWUa6lj7QoM= Subject key identifier: A9:E7:BC:D4:BC:A9:2D:FF:67:7C:C0:04:35:A5:FB:18:75:13:2D:40 Authority key identifier: 62:84:20:7D:0D:27:A2:E8:BF:4D:2E:B1:4F:B1:29:CA:D4:F6:CC:3F Certificate issuer: /CN=A914275E/serialNumber=6284207D0D27A2E8BF4D2EB14FB129CAD4F6CC3F Certificate serial: 0EC3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YoQgfQ0noui_TS6xT7EpytT2zD8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914275E/4DF7DB04911811E994793C4DC4F9AE02/YoQgfQ0noui_TS6xT7EpytT2zD8.mft Manifest number: 0EA8 Signing time: Fri 18 Jul 2025 17:50:23 +0000 Manifest this update: Fri 18 Jul 2025 17:50:22 +0000 Manifest next update: Fri 25 Jul 2025 17:50:22 +0000 Files and hashes: 1: YoQgfQ0noui_TS6xT7EpytT2zD8.crl (hash: dgqZnTyJUIhAmcGklW8PMKts09nxz1+dxHKZIbii9N4=) 2: 58105BCA5ACB11EA84F2392EC4F9AE02.roa (hash: VOr56XdXHCfTJb7vCteXD3c/7SeyxHXCJjM/HYRl50c=) 3: 50E999AA911911E9BEF5F94EC4F9AE02.roa (hash: oCjpYZp3Jq8v9CYytKf/Jy8pzYlTc/kezyUqPc+tK1E=) 4: 2012E112712611EB8BCB2B84C4F9AE02.roa (hash: yrTYzTGLD7DdI6Sq4pABNT1xu81eDL8OtDlxoy9a6BI=) 5: 504E3B04911911E9BEF5F94EC4F9AE02.roa (hash: XFUDQ5YpEwqHQdCoCuZZOQlERoKAxzu3Gpexl3i5/54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914275E/4DF7DB04911811E994793C4DC4F9AE02/YoQgfQ0noui_TS6xT7EpytT2zD8.crl rsync://rpki.apnic.net/member_repository/A914275E/4DF7DB04911811E994793C4DC4F9AE02/YoQgfQ0noui_TS6xT7EpytT2zD8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YoQgfQ0noui_TS6xT7EpytT2zD8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 17:50:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3779 (0xec3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914275E, serialNumber=6284207D0D27A2E8BF4D2EB14FB129CAD4F6CC3F Validity Not Before: Jul 18 17:50:22 2025 GMT Not After : Jul 25 17:50:22 2025 GMT Subject: CN=687a895e-1e7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:fd:83:5c:99:10:1f:67:db:09:cb:da:b5:51: 7b:06:5d:cc:ed:0e:9a:60:4d:85:f8:55:b2:70:c7: f3:7f:46:2c:fb:85:9e:10:a9:aa:2e:54:60:f3:a8: 19:cb:5a:5d:91:ab:46:57:3b:3f:cc:6a:4c:b2:1a: 9b:ee:c8:8c:f3:d9:d2:88:2d:d3:a3:b7:77:de:1f: 06:08:fa:cc:89:fe:4a:ad:e8:ad:9f:75:6b:fb:1e: bd:09:4d:b5:a7:93:9f:8c:c8:6c:9d:99:4f:4d:63: d6:b5:fa:09:a1:45:e5:41:41:14:d3:28:ff:3a:77: b5:4a:12:f4:b5:ed:54:34:c2:1d:ce:c7:85:0b:60: de:74:69:18:5c:cf:72:3b:da:db:dd:dc:89:55:7b: 43:65:86:8e:1c:4e:84:86:6e:0b:97:65:83:f0:e9: c2:07:27:ae:09:1e:28:f3:1c:87:84:64:b2:61:97: 85:49:fd:24:4d:19:30:04:51:e1:b9:e8:f9:b0:15: f5:a6:e0:ea:f3:1e:e4:71:52:ab:37:5a:f7:b2:42: a1:1f:a2:b3:9d:43:18:c5:57:04:ed:cd:d1:8f:fa: 44:c5:31:ae:6f:7b:fc:0d:60:7b:a4:02:ca:d5:49: ad:8f:36:d8:07:a6:81:6d:e9:a1:86:66:ca:79:8d: bd:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:E7:BC:D4:BC:A9:2D:FF:67:7C:C0:04:35:A5:FB:18:75:13:2D:40 X509v3 Authority Key Identifier: keyid:62:84:20:7D:0D:27:A2:E8:BF:4D:2E:B1:4F:B1:29:CA:D4:F6:CC:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914275E/4DF7DB04911811E994793C4DC4F9AE02/YoQgfQ0noui_TS6xT7EpytT2zD8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YoQgfQ0noui_TS6xT7EpytT2zD8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914275E/4DF7DB04911811E994793C4DC4F9AE02/YoQgfQ0noui_TS6xT7EpytT2zD8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:e3:6c:08:70:eb:81:41:3c:28:a8:67:1c:ff:1e:3f:a0:6f: 50:2d:a8:68:87:44:6d:00:20:8b:cc:25:9c:bc:6f:27:41:7a: aa:1f:d7:a4:40:3f:20:c7:30:54:79:c0:f1:3d:b2:4c:c3:3a: 36:29:23:e5:f4:19:52:d4:0f:7e:fb:3f:94:3f:ac:47:28:61: 71:4b:b1:de:3e:32:8f:fc:ac:d5:a0:27:d3:a8:39:49:96:dc: 8c:cb:90:db:cc:01:1a:1b:a8:99:79:a0:1f:3e:ce:c3:49:e1: 67:b1:8b:11:20:4c:65:4c:e8:7e:0d:56:85:ec:70:97:75:71: 05:97:bd:3f:63:15:3a:fa:32:ea:a7:08:c6:f8:90:19:e2:07: a1:0a:2a:71:1c:f1:a5:f9:8e:1b:fe:65:d2:25:90:c4:e1:ec: 4c:8c:ad:0d:8d:65:c0:26:15:18:b3:bb:59:f2:c3:19:dc:94: 67:f9:f6:8b:8c:31:24:76:e5:42:72:48:23:07:11:09:b6:0e: 9a:49:00:12:6d:66:86:e5:37:02:d0:43:80:da:31:05:56:c4: 7b:d6:50:69:93:b5:93:cc:2c:62:2a:fd:8b:3d:2a:20:72:f6: 48:9a:fb:a0:b1:8f:ca:52:de:e6:36:27:8c:23:c2:71:8c:e9: 29:e2:17:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDsMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDI3NUUxMTAvBgNVBAUTKDYyODQyMDdEMEQyN0EyRThCRjREMkVCMTRGQjEyOUNB RDRGNkNDM0YwHhcNMjUwNzE4MTc1MDIyWhcNMjUwNzI1MTc1MDIyWjAYMRYwFAYD VQQDEw02ODdhODk1ZS0xZTdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyv2DXJkQH2fbCcvatVF7Bl3M7Q6aYE2F+FWycMfzf0Ys+4WeEKmqLlRg86gZ y1pdkatGVzs/zGpMshqb7siM89nSiC3To7d33h8GCPrMif5Kreitn3Vr+x69CU21 p5OfjMhsnZlPTWPWtfoJoUXlQUEU0yj/One1ShL0te1UNMIdzseFC2DedGkYXM9y O9rb3dyJVXtDZYaOHE6Ehm4Ll2WD8OnCByeuCR4o8xyHhGSyYZeFSf0kTRkwBFHh uej5sBX1puDq8x7kcVKrN1r3skKhH6KznUMYxVcE7c3Rj/pExTGub3v8DWB7pALK 1UmtjzbYB6aBbemhhmbKeY29TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKnnvNS8 qS3/Z3zABDWl+xh1Ey1AMB8GA1UdIwQYMBaAFGKEIH0NJ6Lov00usU+xKcrU9sw/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Mjc1RS80REY3REIwNDkx MTgxMUU5OTQ3OTNDNERDNEY5QUUwMi9Zb1FnZlEwbm91aV9UUzZ4VDdFcHl0VDJ6 RDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lvUWdmUTBub3VpX1RTNnhUN0VweXRUMnpEOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Mjc1RS80REY3REIwNDkxMTgxMUU5OTQ3OTNDNERDNEY5QUUwMi9Zb1FnZlEwbm91 aV9UUzZ4VDdFcHl0VDJ6RDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAy42wIcOuBQTwoqGcc/x4/oG9QLahoh0RtACCLzCWcvG8nQXqqH9ek QD8gxzBUecDxPbJMwzo2KSPl9BlS1A9++z+UP6xHKGFxS7HePjKP/KzVoCfTqDlJ ltyMy5DbzAEaG6iZeaAfPs7DSeFnsYsRIExlTOh+DVaF7HCXdXEFl70/YxU6+jLq pwjG+JAZ4gehCipxHPGl+Y4b/mXSJZDE4exMjK0NjWXAJhUYs7tZ8sMZ3JRn+faL jDEkduVCckgjBxEJtg6aSQASbWaG5TcC0EOA2jEFVsR71lBpk7WTzCxiKv2LPSog cvZImvugsY/KUt7mNieMI8JxjOkp4hd9 -----END CERTIFICATE-----Generated at Sun Jul 20 18:57:08 2025 by rpki-client