$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft File: yozvXh2MPaWsm67lsZbvBmCaOVk.mft (raw, json) Hash identifier: PFDwgKgoR8qW1K/qmwX5Q9DU6ZHU0fsZCYuAP8RERFA= Subject key identifier: E3:28:63:81:28:8A:DE:E8:88:6A:E0:1F:30:29:6C:30:A2:22:15:13 Authority key identifier: CA:8C:EF:5E:1D:8C:3D:A5:AC:9B:AE:E5:B1:96:EF:06:60:9A:39:59 Certificate issuer: /CN=A911B5BA/serialNumber=CA8CEF5E1D8C3DA5AC9BAEE5B196EF06609A3959 Certificate serial: 0B2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yozvXh2MPaWsm67lsZbvBmCaOVk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft Manifest number: 0B2D Signing time: Mon 30 Jun 2025 19:20:54 +0000 Manifest this update: Mon 30 Jun 2025 19:20:53 +0000 Manifest next update: Mon 07 Jul 2025 19:20:53 +0000 Files and hashes: 1: yozvXh2MPaWsm67lsZbvBmCaOVk.crl (hash: LAe5/gT6VsiDc8HI4ZHwa4EF1gOaAx5N+b921Jyedms=) 2: 410BAD2095F011EFA9137C67C4F9AE02.roa (hash: SNO/bBZDGGjsIOKkc1Q9a6n7NxtIrWP6e7L/IhWULh8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.crl rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yozvXh2MPaWsm67lsZbvBmCaOVk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 19:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2863 (0xb2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5BA, serialNumber=CA8CEF5E1D8C3DA5AC9BAEE5B196EF06609A3959 Validity Not Before: Jun 30 19:20:53 2025 GMT Not After : Jul 7 19:20:53 2025 GMT Subject: CN=6862e395-9a96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:08:c9:38:49:8c:25:6d:08:08:3b:e7:dd:16: 25:2f:38:ca:36:9d:69:6d:fb:2c:45:c7:e9:fc:ae: 99:da:28:65:e9:12:0f:a0:10:39:ee:dd:63:b4:5f: 43:b1:78:72:a5:96:02:73:62:c3:f7:b8:17:7e:b7: ff:64:3e:54:6c:ba:83:3e:63:8c:5f:a5:41:08:f3: 87:82:9f:02:e2:b5:61:28:fb:20:0d:d2:6d:02:b0: c1:f6:59:c5:93:7c:f8:ad:1b:e9:52:24:d6:45:9d: 16:7a:4e:59:45:90:f6:92:ee:96:a5:1a:00:46:09: 71:fc:bb:ec:41:1e:4c:0a:cc:d2:e4:eb:0a:71:91: e7:34:33:83:03:ef:4e:e8:ce:b3:ce:8a:9a:d1:e5: 59:52:a6:de:ef:6d:e7:e4:71:46:9f:0c:aa:9b:d7: 4d:e8:1d:cd:b9:30:59:99:af:6b:b6:32:47:3d:bd: 83:ff:4a:16:1f:e8:87:22:ba:8c:f9:d6:8a:10:f9: f9:25:06:35:ce:15:21:49:d2:ec:2c:d1:b9:0d:8d: 5d:65:89:93:ef:5e:f7:3e:de:33:71:e8:43:74:56: 2f:55:b5:9c:d5:4b:cb:57:58:d5:ac:81:15:6b:a7: 92:3a:0e:c1:7d:28:c4:9c:00:c4:48:92:11:db:87: 4a:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:28:63:81:28:8A:DE:E8:88:6A:E0:1F:30:29:6C:30:A2:22:15:13 X509v3 Authority Key Identifier: keyid:CA:8C:EF:5E:1D:8C:3D:A5:AC:9B:AE:E5:B1:96:EF:06:60:9A:39:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yozvXh2MPaWsm67lsZbvBmCaOVk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:57:50:10:1b:e5:52:47:60:30:c1:e3:84:6c:b5:20:01:75: 26:ff:e2:f3:b4:49:fc:3c:39:50:48:b6:00:f0:fe:e1:c2:d2: bc:58:e0:7c:37:d4:63:77:27:cc:75:5e:29:46:4c:36:46:a5: 01:a0:7f:07:74:29:55:cf:16:bd:86:33:e2:cb:43:f3:c1:ae: ad:55:c7:c7:6c:20:a1:68:d1:80:4b:80:cb:48:ad:31:48:37: bc:4b:bd:04:f7:1c:4f:b6:2c:df:e3:5c:c6:73:aa:ed:53:19: ba:44:37:49:f0:d7:fe:82:d0:60:0d:82:f1:0b:13:8f:ae:bc: c1:ec:f2:2a:8d:4f:4d:49:88:c7:04:e5:06:8d:63:20:79:99: 6d:86:f4:6d:68:8c:1d:0d:d9:05:7b:4a:04:84:78:da:22:8c: b2:b9:62:d9:5e:5d:3c:a9:9b:d9:85:a1:53:4a:05:75:f7:37: 8e:8a:ac:79:09:7b:f0:9a:10:59:f5:f4:3e:c4:2a:7e:57:9d: ac:7a:09:71:d5:76:2c:fb:59:9e:fd:e4:9a:1e:18:a2:d2:3e: ac:3d:68:58:3d:70:2e:af:e7:99:0d:6f:76:4c:09:9a:31:25: d1:15:5d:d1:61:3c:71:bd:6f:86:0d:04:05:bd:65:4b:d4:ff: da:81:53:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCy8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1QkExMTAvBgNVBAUTKENBOENFRjVFMUQ4QzNEQTVBQzlCQUVFNUIxOTZFRjA2 NjA5QTM5NTkwHhcNMjUwNjMwMTkyMDUzWhcNMjUwNzA3MTkyMDUzWjAYMRYwFAYD VQQDEw02ODYyZTM5NS05YTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvAjJOEmMJW0ICDvn3RYlLzjKNp1pbfssRcfp/K6Z2ihl6RIPoBA57t1jtF9D sXhypZYCc2LD97gXfrf/ZD5UbLqDPmOMX6VBCPOHgp8C4rVhKPsgDdJtArDB9lnF k3z4rRvpUiTWRZ0Wek5ZRZD2ku6WpRoARglx/LvsQR5MCszS5OsKcZHnNDODA+9O 6M6zzoqa0eVZUqbe723n5HFGnwyqm9dN6B3NuTBZma9rtjJHPb2D/0oWH+iHIrqM +daKEPn5JQY1zhUhSdLsLNG5DY1dZYmT7173Pt4zcehDdFYvVbWc1UvLV1jVrIEV a6eSOg7BfSjEnADESJIR24dKiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOMoY4Eo it7oiGrgHzApbDCiIhUTMB8GA1UdIwQYMBaAFMqM714djD2lrJuu5bGW7wZgmjlZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVCQS85M0UyRkIwQzNE QTMxMUVBQTREQzNBNTlDNEY5QUUwMi95b3p2WGgyTVBhV3NtNjdsc1pidkJtQ2FP VmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lvenZYaDJNUGFXc202N2xzWmJ2Qm1DYU9Way5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjVCQS85M0UyRkIwQzNEQTMxMUVBQTREQzNBNTlDNEY5QUUwMi95b3p2WGgyTVBh V3NtNjdsc1pidkJtQ2FPVmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzV1AQG+VSR2AwweOEbLUgAXUm/+LztEn8PDlQSLYA8P7hwtK8WOB8 N9RjdyfMdV4pRkw2RqUBoH8HdClVzxa9hjPiy0Pzwa6tVcfHbCChaNGAS4DLSK0x SDe8S70E9xxPtizf41zGc6rtUxm6RDdJ8Nf+gtBgDYLxCxOPrrzB7PIqjU9NSYjH BOUGjWMgeZlthvRtaIwdDdkFe0oEhHjaIoyyuWLZXl08qZvZhaFTSgV19zeOiqx5 CXvwmhBZ9fQ+xCp+V52seglx1XYs+1me/eSaHhii0j6sPWhYPXAur+eZDW92TAma MSXRFV3RYTxxvW+GDQQFvWVL1P/agVO9 -----END CERTIFICATE-----Generated at Wed Jul 2 15:24:30 2025 by rpki-client