$ rpki-client -vvf rpki.apnic.net/member_repository/A917877E/389A62D25D5D11F0B49A7847C4F9AE02/bYq2_eUh3BBvlIKStQL9Wgc0g3w.mft File: bYq2_eUh3BBvlIKStQL9Wgc0g3w.mft (raw, json) Hash identifier: u+ms3HB7kOrSrRyAgRnYxafMv/swZDQZ1zZOQPRXBr4= Subject key identifier: E4:96:84:4E:38:72:D0:F3:76:7C:17:22:A8:48:65:09:0D:BD:6F:22 Authority key identifier: 6D:8A:B6:FD:E5:21:DC:10:6F:94:82:92:B5:02:FD:5A:07:34:83:7C Certificate issuer: /CN=A917877E/serialNumber=6D8AB6FDE521DC106F948292B502FD5A0734837C Certificate serial: 08 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bYq2_eUh3BBvlIKStQL9Wgc0g3w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917877E/389A62D25D5D11F0B49A7847C4F9AE02/bYq2_eUh3BBvlIKStQL9Wgc0g3w.mft Manifest number: 07 Signing time: Sat 19 Jul 2025 08:26:09 +0000 Manifest this update: Sat 19 Jul 2025 08:26:08 +0000 Manifest next update: Sat 26 Jul 2025 08:26:08 +0000 Files and hashes: 1: bYq2_eUh3BBvlIKStQL9Wgc0g3w.crl (hash: qy7E7sUSSr0hLYZJB3I8Cu8QVFgYZmgbkagpj6NwuDY=) 2: 9EA96DF25D5D11F08A574048C4F9AE02.roa (hash: q6ZblRMV0uyhkappWvL+RGy5XexsiemwGej/lfgL9RI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917877E/389A62D25D5D11F0B49A7847C4F9AE02/bYq2_eUh3BBvlIKStQL9Wgc0g3w.crl rsync://rpki.apnic.net/member_repository/A917877E/389A62D25D5D11F0B49A7847C4F9AE02/bYq2_eUh3BBvlIKStQL9Wgc0g3w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bYq2_eUh3BBvlIKStQL9Wgc0g3w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 08:26:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917877E, serialNumber=6D8AB6FDE521DC106F948292B502FD5A0734837C Validity Not Before: Jul 19 08:26:08 2025 GMT Not After : Jul 26 08:26:08 2025 GMT Subject: CN=687b56a0-01f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:8b:0a:62:af:40:2f:4e:f1:2a:3d:a0:17:47: 51:bf:dd:f3:80:ab:3b:bb:ad:06:7f:19:75:3a:3b: c1:53:f1:c2:a0:12:9e:df:a3:1d:46:0d:22:57:96: fe:ab:92:d1:e1:9f:02:a8:07:be:fb:58:c7:53:28: 21:16:85:be:b3:c2:c6:4b:56:cf:8e:a0:0a:12:c8: 6c:9a:64:d7:0a:d5:e2:bc:43:60:a5:6c:fc:fd:0a: 55:5c:92:23:0a:9e:12:5a:1b:14:89:fc:6a:a1:49: cc:35:ff:60:3c:a0:a0:58:fd:f8:e4:5e:85:5a:56: 95:6a:4f:f9:da:5b:fb:ac:4c:56:9a:14:92:cb:5f: 65:56:a8:cf:b6:4f:7c:08:97:7b:46:53:8c:28:d8: 71:37:93:68:f7:65:9b:6e:a9:03:b3:01:02:47:04: fb:56:5f:28:c1:09:93:75:14:84:b0:38:6e:0a:26: 72:4a:29:8f:9a:f2:22:97:33:52:5d:17:72:0c:87: 69:20:82:c4:5c:59:99:b7:82:b3:25:f1:88:ef:ff: 34:03:81:83:80:9c:12:59:c8:99:84:f1:c2:25:b1: 5d:9c:b4:07:15:39:3d:7a:d9:87:d7:b7:e8:43:31: 11:19:d2:d6:a2:67:e8:d9:d3:a9:55:d3:25:50:4a: ca:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:96:84:4E:38:72:D0:F3:76:7C:17:22:A8:48:65:09:0D:BD:6F:22 X509v3 Authority Key Identifier: keyid:6D:8A:B6:FD:E5:21:DC:10:6F:94:82:92:B5:02:FD:5A:07:34:83:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917877E/389A62D25D5D11F0B49A7847C4F9AE02/bYq2_eUh3BBvlIKStQL9Wgc0g3w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bYq2_eUh3BBvlIKStQL9Wgc0g3w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917877E/389A62D25D5D11F0B49A7847C4F9AE02/bYq2_eUh3BBvlIKStQL9Wgc0g3w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:d9:6b:0c:81:81:c2:b3:fb:11:90:95:08:34:36:c7:9b:05: 80:cb:64:73:ef:97:bb:55:52:12:b9:72:63:58:d6:27:8a:2b: aa:de:ac:2b:0a:9b:e7:32:1b:d8:12:bb:45:86:e4:3e:33:25: 3d:f0:b8:63:3d:56:e1:7e:00:0f:7f:bb:30:04:ae:22:2e:6d: e2:ce:1e:1c:2f:0b:44:17:f3:a0:24:d2:37:18:f2:36:cc:d2: a8:b2:b2:15:b3:bb:4e:b0:ae:57:48:fd:cb:a1:51:d8:68:9f: 96:b9:7d:e3:67:eb:7c:08:93:01:56:ae:de:5a:13:8b:cd:0d: 24:89:fd:58:1b:c6:12:85:51:0c:bc:bf:37:bf:e0:52:a7:11: 88:0a:76:43:bf:66:0f:80:60:88:50:16:f5:ec:7d:fc:0c:54: 72:e7:00:d3:6b:e8:da:50:ba:56:b1:e5:e7:0e:2a:56:ec:10: 60:76:17:95:67:dc:80:0a:d4:58:7d:f8:2a:7c:ff:98:76:42: 31:e7:68:da:47:32:ec:fa:17:ab:ff:6a:87:78:4e:88:8b:a4: 53:9f:a8:c0:c7:71:66:a3:1f:f1:5e:70:ad:26:ae:93:7d:d5: eb:72:22:bf:ec:c6:46:78:82:cc:89:39:06:06:06:ca:30:07: 17:1b:51:45 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 ODc3RTExMC8GA1UEBRMoNkQ4QUI2RkRFNTIxREMxMDZGOTQ4MjkyQjUwMkZENUEw NzM0ODM3QzAeFw0yNTA3MTkwODI2MDhaFw0yNTA3MjYwODI2MDhaMBgxFjAUBgNV BAMTDTY4N2I1NmEwLTAxZjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEiwpir0AvTvEqPaAXR1G/3fOAqzu7rQZ/GXU6O8FT8cKgEp7fox1GDSJXlv6r ktHhnwKoB777WMdTKCEWhb6zwsZLVs+OoAoSyGyaZNcK1eK8Q2ClbPz9ClVckiMK nhJaGxSJ/GqhScw1/2A8oKBY/fjkXoVaVpVqT/naW/usTFaaFJLLX2VWqM+2T3wI l3tGU4wo2HE3k2j3ZZtuqQOzAQJHBPtWXyjBCZN1FISwOG4KJnJKKY+a8iKXM1Jd F3IMh2kggsRcWZm3grMl8Yjv/zQDgYOAnBJZyJmE8cIlsV2ctAcVOT162YfXt+hD MREZ0taiZ+jZ06lV0yVQSsoFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU5JaETjhy 0PN2fBciqEhlCQ29byIwHwYDVR0jBBgwFoAUbYq2/eUh3BBvlIKStQL9Wgc0g3ww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc4NzdFLzM4OUE2MkQyNUQ1 RDExRjBCNDlBNzg0N0M0RjlBRTAyL2JZcTJfZVVoM0JCdmxJS1N0UUw5V2djMGcz dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvYllxMl9lVWgzQkJ2bElLU3RRTDlXZ2MwZzN3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc4 NzdFLzM4OUE2MkQyNUQ1RDExRjBCNDlBNzg0N0M0RjlBRTAyL2JZcTJfZVVoM0JC dmxJS1N0UUw5V2djMGczdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGPZawyBgcKz+xGQlQg0NsebBYDLZHPvl7tVUhK5cmNY1ieKK6rerCsK m+cyG9gSu0WG5D4zJT3wuGM9VuF+AA9/uzAEriIubeLOHhwvC0QX86Ak0jcY8jbM 0qiyshWzu06wrldI/cuhUdhon5a5feNn63wIkwFWrt5aE4vNDSSJ/VgbxhKFUQy8 vze/4FKnEYgKdkO/Zg+AYIhQFvXsffwMVHLnANNr6NpQulax5ecOKlbsEGB2F5Vn 3IAK1Fh9+Cp8/5h2QjHnaNpHMuz6F6v/aod4ToiLpFOfqMDHcWajH/FecK0mrpN9 1etyIr/sxkZ4gsyJOQYGBsowBxcbUUU= -----END CERTIFICATE-----Generated at Mon Jul 21 03:26:15 2025 by rpki-client