$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft File: YLrcBCw3e4bA3J7riVEnJc4-IzY.mft (raw, json) Hash identifier: UMTzsd0+Ej5nY4XEtkvWuDhKQfaY0OM2CNH48MH+YI4= Subject key identifier: AF:75:D3:D4:1E:29:93:A0:5F:95:40:D7:3C:59:2E:5A:DD:26:FC:6D Authority key identifier: 60:BA:DC:04:2C:37:7B:86:C0:DC:9E:EB:89:51:27:25:CE:3E:23:36 Certificate issuer: /CN=A918D0AA/serialNumber=60BADC042C377B86C0DC9EEB89512725CE3E2336 Certificate serial: 01FB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YLrcBCw3e4bA3J7riVEnJc4-IzY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft Manifest number: 01F2 Signing time: Sat 19 Jul 2025 02:48:38 +0000 Manifest this update: Sat 19 Jul 2025 02:48:38 +0000 Manifest next update: Sat 26 Jul 2025 02:48:38 +0000 Files and hashes: 1: YLrcBCw3e4bA3J7riVEnJc4-IzY.crl (hash: zi+IAsxOzUxLaSqsebmx+94jEVGGBOwFjcCMyh314Rk=) 2: B6C4F8787A5911EDB8C4E04FC4F9AE02.roa (hash: 7d+9V95blk3EIKh2Ixj3Euh7Ce2kReodQwZ4pY3gbnI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.crl rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YLrcBCw3e4bA3J7riVEnJc4-IzY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 02:48:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 507 (0x1fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0AA, serialNumber=60BADC042C377B86C0DC9EEB89512725CE3E2336 Validity Not Before: Jul 19 02:48:38 2025 GMT Not After : Jul 26 02:48:38 2025 GMT Subject: CN=687b0786-8679 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:b0:f1:c4:b3:9c:9a:93:c8:f1:a8:16:9b:34: 1f:50:27:27:84:83:b5:92:24:0e:7a:a7:ad:60:e5: 63:7c:33:6e:f1:2f:cd:89:77:3e:7f:52:59:b5:ab: 3b:91:d2:15:b5:c8:87:21:de:f4:be:96:d8:5b:6a: bd:fc:3b:0e:05:63:8f:30:d7:9f:fc:08:1b:e7:cc: fd:5b:37:24:3a:47:c7:d3:6f:62:c0:6f:6f:0f:0e: d6:b9:37:8d:a9:59:b1:11:f9:d4:e9:cc:21:1a:41: ea:7e:2e:56:56:59:1d:bf:31:3e:b9:9c:df:d7:c1: 6b:9b:4f:5c:e9:0e:bb:3c:fb:28:24:57:3e:e6:99: 03:1c:b2:76:57:58:f9:0a:c3:08:ee:77:ea:61:d8: 88:98:c1:33:3e:bd:06:41:da:37:6a:b1:14:0a:af: 5b:88:ab:ec:96:ec:4c:ea:3f:f4:1a:47:50:c8:6f: 5a:7e:d4:bb:6d:83:ac:98:ae:f1:bd:62:4f:79:1f: cb:7f:63:f5:9b:b2:3f:f4:b1:47:6d:f3:17:db:3c: ce:d2:f9:7d:e3:cc:fc:b6:47:79:42:eb:68:0d:11: f6:7f:13:5f:f9:1b:87:a7:ea:ef:73:82:96:4a:37: 53:8a:f6:ef:2f:9b:de:65:7c:7a:2e:9c:6e:fe:33: 0d:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:75:D3:D4:1E:29:93:A0:5F:95:40:D7:3C:59:2E:5A:DD:26:FC:6D X509v3 Authority Key Identifier: keyid:60:BA:DC:04:2C:37:7B:86:C0:DC:9E:EB:89:51:27:25:CE:3E:23:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YLrcBCw3e4bA3J7riVEnJc4-IzY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:e6:96:42:fa:55:68:fd:76:ef:02:be:3c:a2:20:0a:07:b3: 62:f7:46:25:e0:2e:ea:68:22:ba:d8:12:2b:e4:94:66:46:7b: 40:78:40:ab:1b:b3:8b:77:dc:1b:8a:2f:4c:39:c2:ad:a7:2b: fc:ba:2a:e4:22:35:ac:00:34:a7:9f:4f:ad:4a:37:1d:94:b2: 53:6c:9d:2b:3f:1d:39:d7:56:49:de:8f:27:75:8d:66:91:bd: cc:45:97:3e:3f:72:6a:49:b1:86:c8:26:08:05:07:6d:9e:61: b4:4c:cb:cc:20:7c:88:0b:26:4d:4a:1a:b3:7c:3e:7f:80:80: 7c:69:a3:65:74:70:6c:2c:ab:9e:f1:11:ac:36:9d:ae:67:44: 6a:d1:b9:96:90:59:19:6e:b0:ea:d9:88:42:5e:40:0f:4e:92: 31:de:47:72:8b:9c:76:b9:07:c5:0c:90:61:18:92:c3:5a:19: 05:e3:35:46:a6:11:0d:ec:2f:09:8d:23:19:bb:31:b2:bc:16: 98:91:31:fb:69:5f:58:da:22:21:4f:76:0e:6e:46:5e:8f:03: b4:d7:c5:2d:c8:de:19:9d:67:18:20:08:1a:e6:e7:c4:a4:c4: 9a:0f:cb:2b:25:69:43:b5:dc:f2:a8:db:c7:6f:06:38:30:b1: e6:82:46:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwQUExMTAvBgNVBAUTKDYwQkFEQzA0MkMzNzdCODZDMERDOUVFQjg5NTEyNzI1 Q0UzRTIzMzYwHhcNMjUwNzE5MDI0ODM4WhcNMjUwNzI2MDI0ODM4WjAYMRYwFAYD VQQDEw02ODdiMDc4Ni04Njc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5bDxxLOcmpPI8agWmzQfUCcnhIO1kiQOeqetYOVjfDNu8S/NiXc+f1JZtas7 kdIVtciHId70vpbYW2q9/DsOBWOPMNef/Agb58z9WzckOkfH029iwG9vDw7WuTeN qVmxEfnU6cwhGkHqfi5WVlkdvzE+uZzf18Frm09c6Q67PPsoJFc+5pkDHLJ2V1j5 CsMI7nfqYdiImMEzPr0GQdo3arEUCq9biKvsluxM6j/0GkdQyG9aftS7bYOsmK7x vWJPeR/Lf2P1m7I/9LFHbfMX2zzO0vl948z8tkd5QutoDRH2fxNf+RuHp+rvc4KW SjdTivbvL5veZXx6Lpxu/jMNHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK9109Qe KZOgX5VA1zxZLlrdJvxtMB8GA1UdIwQYMBaAFGC63AQsN3uGwNye64lRJyXOPiM2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBBQS8yQzc1RkVDODdB M0MxMUVEODYxQjI5MzNDNEY5QUUwMi9ZTHJjQkN3M2U0YkEzSjdyaVZFbkpjNC1J elkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1lMcmNCQ3czZTRiQTNKN3JpVkVuSmM0LUl6WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBBQS8yQzc1RkVDODdBM0MxMUVEODYxQjI5MzNDNEY5QUUwMi9ZTHJjQkN3M2U0 YkEzSjdyaVZFbkpjNC1JelkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCo5pZC+lVo/XbvAr48oiAKB7Ni90Yl4C7qaCK62BIr5JRmRntAeECr G7OLd9wbii9MOcKtpyv8uirkIjWsADSnn0+tSjcdlLJTbJ0rPx0511ZJ3o8ndY1m kb3MRZc+P3JqSbGGyCYIBQdtnmG0TMvMIHyICyZNShqzfD5/gIB8aaNldHBsLKue 8RGsNp2uZ0Rq0bmWkFkZbrDq2YhCXkAPTpIx3kdyi5x2uQfFDJBhGJLDWhkF4zVG phEN7C8JjSMZuzGyvBaYkTH7aV9Y2iIhT3YObkZejwO018UtyN4ZnWcYIAga5ufE pMSaD8srJWlDtdzyqNvHbwY4MLHmgka2 -----END CERTIFICATE-----Generated at Sun Jul 20 18:39:47 2025 by rpki-client