$ rpki-client -vvf rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft File: P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft (raw, json) Hash identifier: zU69lSROlGOFlATl5U1QAAHH9kY4zxSgxS03s2k0tCo= Subject key identifier: 09:5D:A9:A6:0F:15:F6:20:A7:EC:01:D2:01:82:95:CC:D1:A8:46:E0 Authority key identifier: 3F:E6:03:1F:25:56:7A:45:47:CD:E1:73:1A:2D:81:4D:B8:6E:20:94 Certificate issuer: /CN=A914988F/serialNumber=3FE6031F25567A4547CDE1731A2D814DB86E2094 Certificate serial: 07D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-YDHyVWekVHzeFzGi2BTbhuIJQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft Manifest number: 07D2 Signing time: Tue 22 Jul 2025 21:22:02 +0000 Manifest this update: Tue 22 Jul 2025 21:22:01 +0000 Manifest next update: Tue 29 Jul 2025 21:22:01 +0000 Files and hashes: 1: P-YDHyVWekVHzeFzGi2BTbhuIJQ.crl (hash: p2H96SKHtLskfSpQSYT6gj42k1/TxRz7ecwHQbAW2dw=) 2: 4ED5A00CFE2611EAA4F3424DC4F9AE02.roa (hash: qdn4Rx6KYVWRsCXtm49GAL/TWxFXG2srvh1gEG2saCQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.crl rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-YDHyVWekVHzeFzGi2BTbhuIJQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 21:22:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2009 (0x7d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914988F, serialNumber=3FE6031F25567A4547CDE1731A2D814DB86E2094 Validity Not Before: Jul 22 21:22:01 2025 GMT Not After : Jul 29 21:22:01 2025 GMT Subject: CN=688000f9-ee1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:24:a2:b1:2a:42:42:55:c0:8d:d1:59:9c:61: 73:cf:ae:55:65:6b:ab:45:1c:1d:d3:f2:ad:49:cb: 72:f3:39:cd:d2:02:39:9c:eb:00:14:4f:40:a7:f4: ea:c9:1c:53:67:c2:ec:ca:fb:66:35:31:2b:9c:49: cf:a0:a3:8d:b8:49:3b:62:30:87:7c:44:30:3a:3a: 11:5e:49:f0:40:d2:81:c3:d7:04:90:82:32:0b:d5: ff:9b:89:60:b9:a1:3f:d0:cf:05:52:e4:57:42:e7: 3e:69:cf:54:9a:85:f0:b1:32:97:08:2e:4c:8d:49: 4a:5f:a2:66:4c:50:90:9f:3d:f2:70:dd:a2:f9:c9: b4:c3:7f:e0:85:c0:87:c9:ac:97:c4:3c:c2:b5:76: fb:af:e1:b5:0a:c0:5e:de:bb:6c:d3:6a:89:4e:b9: 74:20:79:77:30:1d:de:6b:98:ca:0b:74:64:e5:70: 58:0c:b8:be:5b:88:3c:55:64:51:22:ae:1b:10:c3: 22:36:6e:8d:ee:00:31:52:04:f1:33:2f:d0:3d:12: 1e:78:16:f3:1d:a3:0e:4b:0a:18:06:ec:75:a3:b4: 8e:1b:c4:2b:76:51:5b:17:c7:84:a9:88:f2:50:3c: 0e:c5:26:31:54:c6:14:f8:a6:ea:79:5e:b9:dd:95: 59:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:5D:A9:A6:0F:15:F6:20:A7:EC:01:D2:01:82:95:CC:D1:A8:46:E0 X509v3 Authority Key Identifier: keyid:3F:E6:03:1F:25:56:7A:45:47:CD:E1:73:1A:2D:81:4D:B8:6E:20:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-YDHyVWekVHzeFzGi2BTbhuIJQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:71:5d:37:28:13:21:15:33:f7:b9:40:7f:86:b2:9d:c9:9d: 48:66:30:25:36:57:2e:69:47:3a:ab:1a:4b:2a:f2:c5:72:f5: ea:0e:3f:f1:c4:1f:08:04:86:b3:ab:5f:15:87:9b:13:8f:f5: c4:4d:da:c9:f5:d7:ae:8e:cc:96:22:f4:dd:fa:de:80:02:37: d9:39:99:0b:7b:63:da:aa:84:54:c3:31:d0:a5:ee:58:fc:ae: 8b:a1:51:5d:59:0f:0e:78:b3:5d:91:b0:04:b3:3d:a2:f3:c7: fb:f0:04:3b:7c:ae:2f:6a:20:09:98:df:3a:01:4c:12:de:08: e7:02:62:86:5c:70:e7:ec:45:47:b0:52:dc:11:7a:60:43:47: 5a:fa:eb:d4:37:f0:8d:a5:e1:fb:87:02:b3:98:01:a7:59:c1: 32:2d:b8:79:41:82:4b:0a:6a:9a:5a:5b:71:8b:40:a0:6e:1b: ea:c1:5c:ae:c4:8d:b0:d9:5c:5a:25:c2:eb:37:cf:f3:58:8b: 57:d8:1c:25:ae:d7:d6:0b:5a:77:79:55:a5:52:35:e2:8e:9a: d9:74:ec:00:e0:24:ca:31:4d:d1:eb:23:3a:a7:91:a3:e0:57: d6:7e:43:b6:6c:1e:d8:46:56:57:fb:06:8a:b2:ce:1d:b9:79: 2a:81:81:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDk4OEYxMTAvBgNVBAUTKDNGRTYwMzFGMjU1NjdBNDU0N0NERTE3MzFBMkQ4MTRE Qjg2RTIwOTQwHhcNMjUwNzIyMjEyMjAxWhcNMjUwNzI5MjEyMjAxWjAYMRYwFAYD VQQDEw02ODgwMDBmOS1lZTFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoiSisSpCQlXAjdFZnGFzz65VZWurRRwd0/KtScty8znN0gI5nOsAFE9Ap/Tq yRxTZ8LsyvtmNTErnEnPoKONuEk7YjCHfEQwOjoRXknwQNKBw9cEkIIyC9X/m4lg uaE/0M8FUuRXQuc+ac9UmoXwsTKXCC5MjUlKX6JmTFCQnz3ycN2i+cm0w3/ghcCH yayXxDzCtXb7r+G1CsBe3rts02qJTrl0IHl3MB3ea5jKC3Rk5XBYDLi+W4g8VWRR Iq4bEMMiNm6N7gAxUgTxMy/QPRIeeBbzHaMOSwoYBux1o7SOG8QrdlFbF8eEqYjy UDwOxSYxVMYU+KbqeV653ZVZVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAldqaYP FfYgp+wB0gGClczRqEbgMB8GA1UdIwQYMBaAFD/mAx8lVnpFR83hcxotgU24biCU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OTg4Ri8xOTI0N0ZCQUZF MjUxMUVBOUNDMTBDNENDNEY5QUUwMi9QLVlESHlWV2VrVkh6ZUZ6R2kyQlRiaHVJ SlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1AtWURIeVZXZWtWSHplRnpHaTJCVGJodUlKUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OTg4Ri8xOTI0N0ZCQUZFMjUxMUVBOUNDMTBDNENDNEY5QUUwMi9QLVlESHlWV2Vr Vkh6ZUZ6R2kyQlRiaHVJSlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKcV03KBMhFTP3uUB/hrKdyZ1IZjAlNlcuaUc6qxpLKvLFcvXqDj/x xB8IBIazq18Vh5sTj/XETdrJ9deujsyWIvTd+t6AAjfZOZkLe2PaqoRUwzHQpe5Y /K6LoVFdWQ8OeLNdkbAEsz2i88f78AQ7fK4vaiAJmN86AUwS3gjnAmKGXHDn7EVH sFLcEXpgQ0da+uvUN/CNpeH7hwKzmAGnWcEyLbh5QYJLCmqaWltxi0CgbhvqwVyu xI2w2VxaJcLrN8/zWItX2BwlrtfWC1p3eVWlUjXijprZdOwA4CTKMU3R6yM6p5Gj 4FfWfkO2bB7YRlZX+waKss4duXkqgYEu -----END CERTIFICATE-----Generated at Wed Jul 23 02:30:44 2025 by rpki-client