$ rpki-client -vvf rpki.apnic.net/member_repository/A919FA55/0F9E616E40FC11EEB8206744C4F9AE02/YCdrQR9t9pTdNkxP04LyXJ5qYGI.mft File: YCdrQR9t9pTdNkxP04LyXJ5qYGI.mft (raw, json) Hash identifier: vphV0HRMNNomfzjfWYuJErlJqqSPEWMyoHfNEzu5vjM= Subject key identifier: 31:77:4C:0C:3E:B0:4A:3A:2A:2E:CB:ED:1F:61:2C:1F:E1:7F:DF:E0 Authority key identifier: 60:27:6B:41:1F:6D:F6:94:DD:36:4C:4F:D3:82:F2:5C:9E:6A:60:62 Certificate issuer: /CN=A919FA55/serialNumber=60276B411F6DF694DD364C4FD382F25C9E6A6062 Certificate serial: 0173 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCdrQR9t9pTdNkxP04LyXJ5qYGI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919FA55/0F9E616E40FC11EEB8206744C4F9AE02/YCdrQR9t9pTdNkxP04LyXJ5qYGI.mft Manifest number: 016D Signing time: Mon 21 Jul 2025 03:58:44 +0000 Manifest this update: Mon 21 Jul 2025 03:58:44 +0000 Manifest next update: Mon 28 Jul 2025 03:58:44 +0000 Files and hashes: 1: YCdrQR9t9pTdNkxP04LyXJ5qYGI.crl (hash: /iAqEnaGbWptjpEWfw/bDAIWuENVr7OuetUk0/koWT4=) 2: 730BFF8C428B11EEB9A5EA63C4F9AE02.roa (hash: kkjE94BBiiWiAJ9He43Jc/0GO/LlMOG+ydM9xjAZ/oQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919FA55/0F9E616E40FC11EEB8206744C4F9AE02/YCdrQR9t9pTdNkxP04LyXJ5qYGI.crl rsync://rpki.apnic.net/member_repository/A919FA55/0F9E616E40FC11EEB8206744C4F9AE02/YCdrQR9t9pTdNkxP04LyXJ5qYGI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCdrQR9t9pTdNkxP04LyXJ5qYGI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 03:58:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 371 (0x173) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919FA55, serialNumber=60276B411F6DF694DD364C4FD382F25C9E6A6062 Validity Not Before: Jul 21 03:58:44 2025 GMT Not After : Jul 28 03:58:44 2025 GMT Subject: CN=687dbaf4-fe65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:97:5f:62:7f:7f:26:10:19:a5:d2:8a:db:65: e3:9c:dc:8a:80:66:b3:bb:44:49:b7:03:cc:f9:75: 91:56:7d:c5:a5:97:4f:86:ff:7a:d1:f0:d1:f2:c4: 8d:5d:e6:21:29:8d:c9:a9:4a:71:ca:39:7d:12:68: 97:6f:ab:e4:c0:96:d6:c3:a5:22:6e:c9:6b:6a:0b: 24:bb:0c:c1:f8:25:61:c3:f8:bc:a2:33:1c:ca:29: 98:ea:7c:1b:5a:4b:d9:97:6b:a2:43:00:57:a4:36: 88:e1:fa:f9:4c:7a:5b:e6:82:f6:18:e9:f8:79:f8: 70:74:af:ec:e5:c0:97:b0:85:7a:e6:88:3a:f9:44: 99:82:42:9c:87:a9:1d:c5:e9:b8:a1:16:b3:05:87: f8:54:e5:88:38:43:42:c8:6c:bc:f8:91:16:2b:5d: 30:b0:80:79:af:fc:39:cd:73:ee:e7:01:fc:d2:c3: 32:51:4b:3e:61:8e:e9:78:45:59:b7:66:27:2c:37: 90:da:17:05:7f:1d:72:8d:e7:1a:39:11:4b:a4:23: 96:e9:8a:68:71:c2:15:40:77:f2:dd:08:0a:be:b4: c8:9a:85:6a:6c:dd:b6:18:48:19:6e:57:a9:42:c3: 88:ef:36:af:c8:7c:48:75:88:5e:c4:f5:41:9c:6a: c7:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:77:4C:0C:3E:B0:4A:3A:2A:2E:CB:ED:1F:61:2C:1F:E1:7F:DF:E0 X509v3 Authority Key Identifier: keyid:60:27:6B:41:1F:6D:F6:94:DD:36:4C:4F:D3:82:F2:5C:9E:6A:60:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919FA55/0F9E616E40FC11EEB8206744C4F9AE02/YCdrQR9t9pTdNkxP04LyXJ5qYGI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCdrQR9t9pTdNkxP04LyXJ5qYGI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FA55/0F9E616E40FC11EEB8206744C4F9AE02/YCdrQR9t9pTdNkxP04LyXJ5qYGI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:49:6c:30:91:50:2a:72:2f:76:50:f0:b2:00:93:8a:81:d1: 6a:26:93:31:34:cb:c4:87:06:04:8b:b3:59:82:eb:1c:7f:a1: 26:ab:5c:a7:33:1a:3a:8d:cc:c2:42:e8:73:fa:69:32:94:c4: 92:d0:41:eb:1b:ad:84:93:f4:8c:df:f4:85:73:df:19:fc:97: e9:41:e9:67:fe:25:15:60:8f:89:01:82:a5:48:02:f8:d7:de: bb:a6:45:de:5b:f3:75:7f:89:9e:22:00:10:f1:0e:81:bd:ec: 54:f7:d6:18:65:23:9d:3a:de:f2:03:e7:f6:fd:d7:d8:ed:f5: 37:42:c2:88:ea:21:a4:1e:ab:0a:d7:11:6a:59:31:08:9e:3c: 03:cb:b4:3c:ef:86:5c:9f:dd:6a:43:98:59:82:bc:16:df:83: 95:e3:01:7a:84:d9:8a:1e:52:ae:aa:25:7c:48:64:0b:3f:f3: 96:6e:ba:af:9f:b2:fb:1b:6f:09:39:84:aa:48:ab:50:ea:4a: 8c:a5:7c:f2:89:4e:94:33:73:ec:6b:04:7e:2b:70:84:30:cb: 9b:8f:af:55:02:e3:b6:42:d4:01:50:50:82:bc:8b:d2:64:1a: 36:d8:15:68:2e:92:0a:f2:04:8e:35:de:ba:0c:6d:75:fa:c6: 69:95:21:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUZBNTUxMTAvBgNVBAUTKDYwMjc2QjQxMUY2REY2OTRERDM2NEM0RkQzODJGMjVD OUU2QTYwNjIwHhcNMjUwNzIxMDM1ODQ0WhcNMjUwNzI4MDM1ODQ0WjAYMRYwFAYD VQQDEw02ODdkYmFmNC1mZTY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtJdfYn9/JhAZpdKK22XjnNyKgGazu0RJtwPM+XWRVn3FpZdPhv960fDR8sSN XeYhKY3JqUpxyjl9EmiXb6vkwJbWw6UibslragskuwzB+CVhw/i8ojMcyimY6nwb WkvZl2uiQwBXpDaI4fr5THpb5oL2GOn4efhwdK/s5cCXsIV65og6+USZgkKch6kd xem4oRazBYf4VOWIOENCyGy8+JEWK10wsIB5r/w5zXPu5wH80sMyUUs+YY7peEVZ t2YnLDeQ2hcFfx1yjecaORFLpCOW6YpoccIVQHfy3QgKvrTImoVqbN22GEgZblep QsOI7zavyHxIdYhexPVBnGrHwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDF3TAw+ sEo6Ki7L7R9hLB/hf9/gMB8GA1UdIwQYMBaAFGAna0EfbfaU3TZMT9OC8lyeamBi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RkE1NS8wRjlFNjE2RTQw RkMxMUVFQjgyMDY3NDRDNEY5QUUwMi9ZQ2RyUVI5dDlwVGROa3hQMDRMeVhKNXFZ R0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lDZHJRUjl0OXBUZE5reFAwNEx5WEo1cVlHSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RkE1NS8wRjlFNjE2RTQwRkMxMUVFQjgyMDY3NDRDNEY5QUUwMi9ZQ2RyUVI5dDlw VGROa3hQMDRMeVhKNXFZR0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXSWwwkVAqci92UPCyAJOKgdFqJpMxNMvEhwYEi7NZguscf6Emq1yn Mxo6jczCQuhz+mkylMSS0EHrG62Ek/SM3/SFc98Z/JfpQeln/iUVYI+JAYKlSAL4 1967pkXeW/N1f4meIgAQ8Q6BvexU99YYZSOdOt7yA+f2/dfY7fU3QsKI6iGkHqsK 1xFqWTEInjwDy7Q874Zcn91qQ5hZgrwW34OV4wF6hNmKHlKuqiV8SGQLP/OWbrqv n7L7G28JOYSqSKtQ6kqMpXzyiU6UM3PsawR+K3CEMMubj69VAuO2QtQBUFCCvIvS ZBo22BVoLpIK8gSONd66DG11+sZplSEY -----END CERTIFICATE-----Generated at Tue Jul 22 05:14:16 2025 by rpki-client