$ rpki-client -vvf rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft File: yZ1gB81HfYmzWcM8k8qptbsQYBo.mft (raw, json) Hash identifier: 2Wy0KnSqGSrsK69n1IMC3PFdalGeQtf3puGNhux4Fak= Subject key identifier: E7:0E:17:A6:7A:48:BF:EE:ED:DF:95:56:A5:39:88:A2:88:66:59:93 Authority key identifier: C9:9D:60:07:CD:47:7D:89:B3:59:C3:3C:93:CA:A9:B5:BB:10:60:1A Certificate issuer: /CN=A9173F03/serialNumber=C99D6007CD477D89B359C33C93CAA9B5BB10601A Certificate serial: 0C48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ1gB81HfYmzWcM8k8qptbsQYBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft Manifest number: 0C38 Signing time: Fri 18 Jul 2025 18:47:38 +0000 Manifest this update: Fri 18 Jul 2025 18:47:37 +0000 Manifest next update: Fri 25 Jul 2025 18:47:37 +0000 Files and hashes: 1: yZ1gB81HfYmzWcM8k8qptbsQYBo.crl (hash: RF63NxAvkvG56fCP/B6ku680yRJ5GKvz1o9OQobnGW0=) 2: 1F3C6E3C6E6811EF93F0A64EC4F9AE02.roa (hash: KCbvW2+iTb2FhCUJSCAthuyvDnx7MU5+U8PZ8z1pu+g=) 3: 7D16D03C861A11EF99D32B66C4F9AE02.roa (hash: LFZ6uBkW6voau17buZXmD8B1WuozeZe536RV9ixDxuw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.crl rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ1gB81HfYmzWcM8k8qptbsQYBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 18:47:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3144 (0xc48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173F03, serialNumber=C99D6007CD477D89B359C33C93CAA9B5BB10601A Validity Not Before: Jul 18 18:47:37 2025 GMT Not After : Jul 25 18:47:37 2025 GMT Subject: CN=687a96ca-9d40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:86:fa:11:cb:38:97:6a:d9:80:7f:aa:9d:e3: d8:18:da:41:b6:47:ea:da:88:f7:4c:3f:c4:18:7d: 38:77:6e:47:dd:f8:16:d5:77:e3:b4:bc:78:4f:a0: 47:2c:ce:9e:05:ed:cf:f5:c7:68:ad:10:ef:fa:e0: 7c:4d:77:26:eb:ff:85:05:cb:b0:9f:dc:8b:bd:12: 7e:07:25:69:5a:f7:45:f4:69:b9:80:c3:fb:bd:52: 08:da:28:27:e0:93:b3:c2:08:ef:2c:ba:93:be:ec: e9:cd:5c:63:52:e0:49:9d:10:0e:90:69:a6:41:54: 1d:69:3a:3b:ea:2d:6b:23:c9:70:67:e5:b1:11:15: c5:82:d1:e8:5e:c8:53:05:bc:e2:2a:c7:01:5c:35: 63:cf:44:cd:49:d3:6f:0d:4c:12:1f:d5:55:78:81: 0f:75:a5:ee:e9:41:29:31:ce:1b:e1:01:51:61:39: ad:4c:e5:8d:60:73:db:ef:7a:69:02:b9:35:12:4d: 69:79:93:4e:ac:13:93:68:5f:8f:80:aa:0e:0a:7b: 88:35:7b:14:76:2b:87:98:f7:78:72:a1:84:46:7c: 72:4b:82:8b:43:d9:fb:90:48:cb:7b:ec:ab:8b:11: 21:a3:b9:9b:e0:5b:6e:4c:53:2e:2b:fb:a6:5c:92: c4:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:0E:17:A6:7A:48:BF:EE:ED:DF:95:56:A5:39:88:A2:88:66:59:93 X509v3 Authority Key Identifier: keyid:C9:9D:60:07:CD:47:7D:89:B3:59:C3:3C:93:CA:A9:B5:BB:10:60:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ1gB81HfYmzWcM8k8qptbsQYBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:7e:76:7d:40:3c:c2:be:4c:d9:fb:c5:36:10:6a:12:64:49: d3:52:a3:81:5a:c7:e9:82:a5:c1:5d:50:0f:a8:c7:c5:43:a5: c7:e8:ce:07:b2:3f:da:5e:14:85:67:6c:39:6b:bf:b9:e5:ff: e7:4c:87:cf:b2:28:99:3e:4a:99:03:1d:5b:ce:e6:9f:92:4f: e1:da:b8:ec:29:2d:6c:3f:04:f8:57:8b:c8:c7:78:cd:3f:c7: b7:f6:b3:28:d7:f0:42:31:cd:2b:16:c8:bb:68:b8:f0:19:8d: 77:81:cb:1b:84:18:38:e8:26:c5:c0:7e:e2:03:d3:28:44:23: 94:a5:42:57:e5:70:0a:3e:1b:08:83:6b:4b:05:87:00:86:55: 3d:1b:68:ea:39:a5:41:c2:82:5d:bc:a8:ef:de:91:aa:df:da: 11:f9:18:73:b1:dc:de:be:69:f6:b1:dd:79:87:2a:69:fc:e1: 33:0f:ad:c9:2f:bf:28:d2:6f:5a:2b:7a:e6:48:7e:e7:c4:64: 68:fb:e5:78:5e:dc:a7:59:30:e9:31:0c:1f:cf:62:f9:39:19: 94:0c:bb:9d:bc:44:cf:ce:6e:94:60:57:1c:49:e3:2d:db:24: c7:9a:c9:9f:db:04:a1:d5:3f:f9:79:91:c8:1f:2e:2a:69:c4: d5:b1:8e:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNGMDMxMTAvBgNVBAUTKEM5OUQ2MDA3Q0Q0NzdEODlCMzU5QzMzQzkzQ0FBOUI1 QkIxMDYwMUEwHhcNMjUwNzE4MTg0NzM3WhcNMjUwNzI1MTg0NzM3WjAYMRYwFAYD VQQDEw02ODdhOTZjYS05ZDQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA64b6Ecs4l2rZgH+qnePYGNpBtkfq2oj3TD/EGH04d25H3fgW1XfjtLx4T6BH LM6eBe3P9cdorRDv+uB8TXcm6/+FBcuwn9yLvRJ+ByVpWvdF9Gm5gMP7vVII2ign 4JOzwgjvLLqTvuzpzVxjUuBJnRAOkGmmQVQdaTo76i1rI8lwZ+WxERXFgtHoXshT BbziKscBXDVjz0TNSdNvDUwSH9VVeIEPdaXu6UEpMc4b4QFRYTmtTOWNYHPb73pp Ark1Ek1peZNOrBOTaF+PgKoOCnuINXsUdiuHmPd4cqGERnxyS4KLQ9n7kEjLe+yr ixEho7mb4FtuTFMuK/umXJLEMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOcOF6Z6 SL/u7d+VVqU5iKKIZlmTMB8GA1UdIwQYMBaAFMmdYAfNR32Js1nDPJPKqbW7EGAa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0YwMy82NEY2QzI4RTBE RTExMUVBOTk2Njk4ODVDNEY5QUUwMi95WjFnQjgxSGZZbXpXY004azhxcHRic1FZ Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3laMWdCODFIZllteldjTThrOHFwdGJzUVlCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0YwMy82NEY2QzI4RTBERTExMUVBOTk2Njk4ODVDNEY5QUUwMi95WjFnQjgxSGZZ bXpXY004azhxcHRic1FZQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADfnZ9QDzCvkzZ+8U2EGoSZEnTUqOBWsfpgqXBXVAPqMfFQ6XH6M4H sj/aXhSFZ2w5a7+55f/nTIfPsiiZPkqZAx1bzuafkk/h2rjsKS1sPwT4V4vIx3jN P8e39rMo1/BCMc0rFsi7aLjwGY13gcsbhBg46CbFwH7iA9MoRCOUpUJX5XAKPhsI g2tLBYcAhlU9G2jqOaVBwoJdvKjv3pGq39oR+Rhzsdzevmn2sd15hypp/OEzD63J L78o0m9aK3rmSH7nxGRo++V4XtynWTDpMQwfz2L5ORmUDLudvETPzm6UYFccSeMt 2yTHmsmf2wSh1T/5eZHIHy4qacTVsY6H -----END CERTIFICATE-----Generated at Sun Jul 20 19:01:50 2025 by rpki-client