$ rpki-client -vvf rpki.apnic.net/member_repository/A919DA63/01BF7BEEE1E311EAB497DD28C4F9AE02/yhlef9JZjYWjbJnsSBs1dMBuOxc.mft File: yhlef9JZjYWjbJnsSBs1dMBuOxc.mft (raw, json) Hash identifier: iyyl7r0uC44VvKyFPDuVyBiO3Hnyaw7fO+G8rMkCVDQ= Subject key identifier: 37:C1:6D:16:92:CC:E0:C9:0D:46:7B:02:51:0F:A5:06:58:9A:CB:5B Authority key identifier: CA:19:5E:7F:D2:59:8D:85:A3:6C:99:EC:48:1B:35:74:C0:6E:3B:17 Certificate issuer: /CN=A919DA63/serialNumber=CA195E7FD2598D85A36C99EC481B3574C06E3B17 Certificate serial: 080D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yhlef9JZjYWjbJnsSBs1dMBuOxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919DA63/01BF7BEEE1E311EAB497DD28C4F9AE02/yhlef9JZjYWjbJnsSBs1dMBuOxc.mft Manifest number: 0808 Signing time: Mon 30 Jun 2025 21:05:21 +0000 Manifest this update: Mon 30 Jun 2025 21:05:21 +0000 Manifest next update: Mon 07 Jul 2025 21:05:21 +0000 Files and hashes: 1: yhlef9JZjYWjbJnsSBs1dMBuOxc.crl (hash: N6lBmwAFvuy47bNKiG/LBQkh+4rf8CVvUK7kLi+wfnE=) 2: B65C355AE1E411EAAD5D8545C4F9AE02.roa (hash: UFJMOp2fvjsQLVH9S8VvXu+lCDjqJ5yXKWYrWh7iDH4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919DA63/01BF7BEEE1E311EAB497DD28C4F9AE02/yhlef9JZjYWjbJnsSBs1dMBuOxc.crl rsync://rpki.apnic.net/member_repository/A919DA63/01BF7BEEE1E311EAB497DD28C4F9AE02/yhlef9JZjYWjbJnsSBs1dMBuOxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yhlef9JZjYWjbJnsSBs1dMBuOxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 21:05:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2061 (0x80d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919DA63, serialNumber=CA195E7FD2598D85A36C99EC481B3574C06E3B17 Validity Not Before: Jun 30 21:05:21 2025 GMT Not After : Jul 7 21:05:21 2025 GMT Subject: CN=6862fc11-35b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:5e:7e:2c:52:e2:7a:3a:6d:4f:5e:7d:60:1f: ef:e6:48:93:d8:be:11:d9:1d:b1:35:82:e9:0c:94: 52:79:c2:c7:bc:23:29:46:16:c1:b3:bc:51:81:fb: e9:34:28:59:ba:49:4b:cb:93:6b:36:74:4f:30:6c: d4:05:4f:9d:3d:d7:eb:f5:38:6e:4a:01:b2:8a:b7: fb:5d:1a:b4:14:65:11:3c:7b:66:96:ee:92:44:1e: b3:b0:7c:9b:9c:3a:bc:fe:e0:b4:0b:44:d9:fd:d3: 1d:2a:08:77:35:7a:d5:b0:cd:24:7c:53:50:7d:19: e2:05:6b:e5:97:37:2b:6f:5e:b4:f7:8e:f1:59:64: 09:3f:26:df:b8:80:f9:a2:5a:2c:44:96:bd:af:8f: 74:d9:60:c4:36:9a:db:06:84:87:c1:7e:28:d7:66: e5:e7:cb:02:13:65:98:21:a8:09:2c:97:57:de:e0: d4:9b:38:9c:8f:0c:cb:bc:d1:b2:da:a6:ed:b9:ea: 9e:85:89:ec:0a:6b:cf:be:46:21:0e:b8:29:21:cd: a0:61:b6:fb:01:24:13:24:96:ee:e9:b9:ff:1f:6b: e8:00:79:b2:fd:d7:a4:67:cf:a4:88:7e:c8:6e:04: 9d:8a:16:e5:5a:7d:1b:2e:17:74:be:0b:de:14:9a: 6e:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:C1:6D:16:92:CC:E0:C9:0D:46:7B:02:51:0F:A5:06:58:9A:CB:5B X509v3 Authority Key Identifier: keyid:CA:19:5E:7F:D2:59:8D:85:A3:6C:99:EC:48:1B:35:74:C0:6E:3B:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919DA63/01BF7BEEE1E311EAB497DD28C4F9AE02/yhlef9JZjYWjbJnsSBs1dMBuOxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yhlef9JZjYWjbJnsSBs1dMBuOxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919DA63/01BF7BEEE1E311EAB497DD28C4F9AE02/yhlef9JZjYWjbJnsSBs1dMBuOxc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:fb:95:b1:f2:ba:f2:3b:19:38:34:50:c1:1e:a9:92:9d:ec: af:26:9f:bf:8f:d1:03:c5:86:db:5e:6c:94:64:c0:7b:b5:a4: 44:56:ca:28:1c:02:d1:12:65:21:03:aa:d0:c1:9a:db:44:d5: 01:f1:79:3e:5c:eb:16:73:35:90:7e:1c:26:0c:a4:7d:07:cf: c6:67:91:fe:6d:42:da:9f:e2:82:fc:e5:f0:de:07:88:4a:f6: d3:54:16:ed:40:35:d8:fc:93:0c:3a:d4:24:db:ad:68:e4:bc: 8a:77:92:9a:ed:42:af:6c:35:cf:d3:f0:f8:5b:bb:36:97:1e: e2:bb:12:70:b1:91:84:9d:22:3b:29:fe:cc:af:37:72:a3:42: 9f:7d:be:94:54:98:95:a2:49:d4:7a:3f:bb:c8:03:bc:e1:a2: 72:29:d9:a9:8b:e4:c6:ba:31:1a:ae:82:a5:3e:f1:46:8f:99: f3:3d:76:8f:e9:77:47:39:34:4d:9e:12:d4:30:7b:e5:e6:24: 03:1f:75:ce:46:c1:3b:b3:f7:9b:95:b1:28:1c:6a:81:d1:ac: 1e:cb:32:ce:91:6e:5d:4f:09:c0:72:b7:66:4c:ca:83:39:61: 4e:ae:be:3b:5e:59:43:66:9b:c2:e9:3e:f3:9c:1e:53:de:03: 72:4d:e9:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCA0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OURBNjMxMTAvBgNVBAUTKENBMTk1RTdGRDI1OThEODVBMzZDOTlFQzQ4MUIzNTc0 QzA2RTNCMTcwHhcNMjUwNjMwMjEwNTIxWhcNMjUwNzA3MjEwNTIxWjAYMRYwFAYD VQQDEw02ODYyZmMxMS0zNWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyV5+LFLiejptT159YB/v5kiT2L4R2R2xNYLpDJRSecLHvCMpRhbBs7xRgfvp NChZuklLy5NrNnRPMGzUBU+dPdfr9ThuSgGyirf7XRq0FGURPHtmlu6SRB6zsHyb nDq8/uC0C0TZ/dMdKgh3NXrVsM0kfFNQfRniBWvllzcrb160947xWWQJPybfuID5 olosRJa9r4902WDENprbBoSHwX4o12bl58sCE2WYIagJLJdX3uDUmzicjwzLvNGy 2qbtueqehYnsCmvPvkYhDrgpIc2gYbb7ASQTJJbu6bn/H2voAHmy/dekZ8+kiH7I bgSdihblWn0bLhd0vgveFJpu4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDfBbRaS zODJDUZ7AlEPpQZYmstbMB8GA1UdIwQYMBaAFMoZXn/SWY2Fo2yZ7EgbNXTAbjsX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5REE2My8wMUJGN0JFRUUx RTMxMUVBQjQ5N0REMjhDNEY5QUUwMi95aGxlZjlKWmpZV2piSm5zU0JzMWRNQnVP eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lobGVmOUpaallXamJKbnNTQnMxZE1CdU94Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 REE2My8wMUJGN0JFRUUxRTMxMUVBQjQ5N0REMjhDNEY5QUUwMi95aGxlZjlKWmpZ V2piSm5zU0JzMWRNQnVPeGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBp+5Wx8rryOxk4NFDBHqmSneyvJp+/j9EDxYbbXmyUZMB7taREVsoo HALREmUhA6rQwZrbRNUB8Xk+XOsWczWQfhwmDKR9B8/GZ5H+bULan+KC/OXw3geI SvbTVBbtQDXY/JMMOtQk261o5LyKd5Ka7UKvbDXP0/D4W7s2lx7iuxJwsZGEnSI7 Kf7Mrzdyo0Kffb6UVJiVoknUej+7yAO84aJyKdmpi+TGujEaroKlPvFGj5nzPXaP 6XdHOTRNnhLUMHvl5iQDH3XORsE7s/eblbEoHGqB0aweyzLOkW5dTwnAcrdmTMqD OWFOrr47XllDZpvC6T7znB5T3gNyTenX -----END CERTIFICATE-----Generated at Tue Jul 1 19:20:50 2025 by rpki-client