$ rpki-client -vvf rpki.apnic.net/member_repository/A9116907/B56A7CB07AB711ED9B953569C4F9AE02/ygBwrFIB1vandapSXVPY4zDjIJY.mft File: ygBwrFIB1vandapSXVPY4zDjIJY.mft (raw, json) Hash identifier: /D/AB/lJsTa+cfsNueJ/pr97IdluC1QZqYCY7pxhomI= Subject key identifier: 66:E2:83:43:05:3F:AA:37:67:5D:F7:BE:AB:9F:89:E6:71:8B:8F:DE Authority key identifier: CA:00:70:AC:52:01:D6:F6:A7:75:AA:52:5D:53:D8:E3:30:E3:20:96 Certificate issuer: /CN=A9116907/serialNumber=CA0070AC5201D6F6A775AA525D53D8E330E32096 Certificate serial: 01EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ygBwrFIB1vandapSXVPY4zDjIJY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116907/B56A7CB07AB711ED9B953569C4F9AE02/ygBwrFIB1vandapSXVPY4zDjIJY.mft Manifest number: 01E3 Signing time: Tue 01 Jul 2025 03:06:33 +0000 Manifest this update: Tue 01 Jul 2025 03:06:33 +0000 Manifest next update: Tue 08 Jul 2025 03:06:32 +0000 Files and hashes: 1: ygBwrFIB1vandapSXVPY4zDjIJY.crl (hash: PLbnR0oZFFhi5hNTWZ/s7/RcJFMyRizXUhNDGHj55Dw=) 2: 9DE3DEAEAC9E11EFBAC6A027C4F9AE02.roa (hash: TvtT1Oa3KekcpLOO3lB33TtpOxnVn3h062NADWWRlOE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116907/B56A7CB07AB711ED9B953569C4F9AE02/ygBwrFIB1vandapSXVPY4zDjIJY.crl rsync://rpki.apnic.net/member_repository/A9116907/B56A7CB07AB711ED9B953569C4F9AE02/ygBwrFIB1vandapSXVPY4zDjIJY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ygBwrFIB1vandapSXVPY4zDjIJY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 03:06:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 491 (0x1eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116907, serialNumber=CA0070AC5201D6F6A775AA525D53D8E330E32096 Validity Not Before: Jul 1 03:06:33 2025 GMT Not After : Jul 8 03:06:32 2025 GMT Subject: CN=686350b9-0c8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:08:f8:f0:45:df:dd:62:f0:65:d8:93:30:cc: e4:e2:f4:de:7c:bd:4a:00:e6:9e:d3:17:96:b0:c3: 25:1a:9d:fd:9c:de:f2:de:3b:0e:e9:e4:34:f5:c2: 03:11:62:6b:55:0d:97:d1:bf:5f:05:5b:25:ad:7a: 98:3d:9e:78:0a:a8:08:ee:fb:10:24:45:5a:25:02: ac:3b:ce:17:d8:1a:62:d2:71:b8:70:f5:c1:d9:8c: 09:df:a7:8d:b9:a0:9d:82:0a:73:b3:98:2f:32:c9: 7f:2f:7c:31:36:f0:58:48:8e:ed:fe:bd:d3:d8:13: b8:39:d2:1d:3a:68:bb:83:e8:55:31:d7:2a:0b:d6: 88:26:28:33:17:cd:85:9e:73:a9:8f:ae:f1:97:10: 62:36:d4:55:03:12:39:23:0d:f7:79:28:e5:1a:6d: b8:31:f3:25:22:82:01:22:99:40:0c:f3:c2:9e:d3: 31:58:93:00:62:67:16:44:d2:96:50:5e:db:b5:f3: 4d:b6:f2:e9:fe:dc:9d:d8:ee:9b:f5:f8:0f:34:d0: 16:a7:07:9e:31:6c:91:82:71:d7:bd:bf:a5:c7:a7: 16:ab:2f:a5:1a:b8:e4:27:0c:92:06:9c:19:6d:66: 39:59:4f:23:a4:74:cd:44:a4:24:cf:3d:6d:f0:66: 1d:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:E2:83:43:05:3F:AA:37:67:5D:F7:BE:AB:9F:89:E6:71:8B:8F:DE X509v3 Authority Key Identifier: keyid:CA:00:70:AC:52:01:D6:F6:A7:75:AA:52:5D:53:D8:E3:30:E3:20:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116907/B56A7CB07AB711ED9B953569C4F9AE02/ygBwrFIB1vandapSXVPY4zDjIJY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ygBwrFIB1vandapSXVPY4zDjIJY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116907/B56A7CB07AB711ED9B953569C4F9AE02/ygBwrFIB1vandapSXVPY4zDjIJY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:c1:e9:a4:4d:92:75:ce:d0:46:3b:03:1b:99:fb:aa:0b:ec: b2:c0:40:32:9e:fa:d7:6c:b0:9b:ef:8d:4f:d0:8f:bf:18:3f: f7:a6:52:fb:2f:5c:db:b8:29:fa:bb:24:4f:d4:6e:b8:52:1e: 8f:b5:32:b8:64:0a:e4:e1:57:da:97:5a:25:e1:cd:c5:7c:df: b5:14:53:24:e5:70:e8:cf:54:6a:7b:0f:7c:63:bb:d0:b8:2c: 7e:6a:6f:e5:52:4a:af:b2:3e:39:bf:fc:2f:f1:55:41:27:24: 01:d0:e0:06:59:9c:89:60:ba:64:0a:86:6b:2f:a6:0f:67:77: 25:ff:f4:06:44:80:d6:67:39:de:c4:53:e0:be:a4:2c:80:20: 01:31:a0:4a:28:4c:e1:2b:96:1e:b4:2e:7c:bc:27:70:23:70: e8:e6:9a:7a:dd:b9:f4:5f:03:0a:11:ad:53:2c:8e:5c:6c:2d: cf:a5:a2:dd:ac:c4:c8:ae:0c:3d:25:e1:11:40:6f:2c:e1:cf: c3:f3:40:4a:40:42:a2:f7:96:54:37:a1:07:6a:c2:74:2a:e5: 49:ca:c5:f2:9f:cd:a5:c2:15:a0:e9:d7:fc:7c:83:d2:3b:a0: ea:c8:71:c7:65:09:0f:73:ae:58:08:6f:15:59:ee:b3:36:ac: 11:96:0e:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY5MDcxMTAvBgNVBAUTKENBMDA3MEFDNTIwMUQ2RjZBNzc1QUE1MjVENTNEOEUz MzBFMzIwOTYwHhcNMjUwNzAxMDMwNjMzWhcNMjUwNzA4MDMwNjMyWjAYMRYwFAYD VQQDEw02ODYzNTBiOS0wYzhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyAj48EXf3WLwZdiTMMzk4vTefL1KAOae0xeWsMMlGp39nN7y3jsO6eQ09cID EWJrVQ2X0b9fBVslrXqYPZ54CqgI7vsQJEVaJQKsO84X2Bpi0nG4cPXB2YwJ36eN uaCdggpzs5gvMsl/L3wxNvBYSI7t/r3T2BO4OdIdOmi7g+hVMdcqC9aIJigzF82F nnOpj67xlxBiNtRVAxI5Iw33eSjlGm24MfMlIoIBIplADPPCntMxWJMAYmcWRNKW UF7btfNNtvLp/tyd2O6b9fgPNNAWpweeMWyRgnHXvb+lx6cWqy+lGrjkJwySBpwZ bWY5WU8jpHTNRKQkzz1t8GYdAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGbig0MF P6o3Z133vqufieZxi4/eMB8GA1UdIwQYMBaAFMoAcKxSAdb2p3WqUl1T2OMw4yCW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjkwNy9CNTZBN0NCMDdB QjcxMUVEOUI5NTM1NjlDNEY5QUUwMi95Z0J3ckZJQjF2YW5kYXBTWFZQWTR6RGpJ SlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lnQndyRklCMXZhbmRhcFNYVlBZNHpEaklKWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjkwNy9CNTZBN0NCMDdBQjcxMUVEOUI5NTM1NjlDNEY5QUUwMi95Z0J3ckZJQjF2 YW5kYXBTWFZQWTR6RGpJSlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACwemkTZJ1ztBGOwMbmfuqC+yywEAynvrXbLCb741P0I+/GD/3plL7 L1zbuCn6uyRP1G64Uh6PtTK4ZArk4Vfal1ol4c3FfN+1FFMk5XDoz1Rqew98Y7vQ uCx+am/lUkqvsj45v/wv8VVBJyQB0OAGWZyJYLpkCoZrL6YPZ3cl//QGRIDWZzne xFPgvqQsgCABMaBKKEzhK5YetC58vCdwI3Do5pp63bn0XwMKEa1TLI5cbC3PpaLd rMTIrgw9JeERQG8s4c/D80BKQEKi95ZUN6EHasJ0KuVJysXyn82lwhWg6df8fIPS O6DqyHHHZQkPc65YCG8VWe6zNqwRlg7W -----END CERTIFICATE-----Generated at Tue Jul 1 15:05:00 2025 by rpki-client