$ rpki-client -vvf rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.mft File: YqwbuVgKcRmBnntrbrLDUVNHh_0.mft (raw, json) Hash identifier: +v4KhSAU+mNLCL5y77ZVENglGAETiRsVSVDvbq8NKMA= Subject key identifier: F0:E1:F8:DA:79:53:4E:44:48:05:70:9B:0F:F1:A3:A1:C9:3D:BE:B0 Authority key identifier: 62:AC:1B:B9:58:0A:71:19:81:9E:7B:6B:6E:B2:C3:51:53:47:87:FD Certificate issuer: /CN=A911DD08/serialNumber=62AC1BB9580A7119819E7B6B6EB2C351534787FD Certificate serial: AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YqwbuVgKcRmBnntrbrLDUVNHh_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.mft Manifest number: A8 Signing time: Thu 03 Jul 2025 06:20:24 +0000 Manifest this update: Thu 03 Jul 2025 06:20:24 +0000 Manifest next update: Thu 10 Jul 2025 06:20:24 +0000 Files and hashes: 1: YqwbuVgKcRmBnntrbrLDUVNHh_0.crl (hash: Abni/ZU3RV3WBc3Ij6Oh8WcFmlG4w/OQDl2HWCNClgU=) 2: 652283665B1A11EFA78B847EC4F9AE02.roa (hash: tP/YOIdnoY7zTO5p4ZVWJihHDwAVW3mBLrg6H6OaTlM=) 3: 474934DE5B1A11EFBF0E1F7CC4F9AE02.roa (hash: AbR4JwNeIxvK28YKeU+rC69Mel7G0dy68L3LDpPyx/4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.crl rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YqwbuVgKcRmBnntrbrLDUVNHh_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 171 (0xab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DD08, serialNumber=62AC1BB9580A7119819E7B6B6EB2C351534787FD Validity Not Before: Jul 3 06:20:24 2025 GMT Not After : Jul 10 06:20:24 2025 GMT Subject: CN=68662128-fc9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:d4:b9:5b:53:d8:fa:29:64:e5:58:be:e6:00: 60:79:56:5d:4e:27:ef:db:25:98:0a:6f:31:ba:b6: c7:01:1e:03:aa:0c:b0:9f:39:04:bd:2d:42:d6:78: 39:24:88:e9:15:bd:1a:af:99:3a:ae:f0:7a:aa:26: e9:c8:b0:48:45:88:29:16:69:c0:c7:af:d8:68:41: 4d:03:d5:28:58:eb:14:9c:b6:1f:13:50:15:db:1d: ab:7a:d8:4e:cf:7d:df:8d:76:9d:27:8b:cf:aa:87: 5c:b4:a4:ac:fc:fe:b8:7a:77:86:11:99:dc:f1:c6: 19:f7:d3:88:d9:e9:96:69:cf:67:30:bb:92:e5:c8: cc:8e:42:67:be:fc:a4:59:10:2b:71:eb:4a:2a:a4: cd:01:d6:f3:27:01:d9:bb:b9:be:b3:89:06:ec:18: dc:2f:d4:c4:91:e2:23:cd:4e:c0:5b:8d:c0:ee:be: 1c:0c:15:23:76:21:ba:15:b5:01:96:09:fc:02:8e: 58:60:53:b3:3d:9a:07:75:92:a7:7d:b5:58:d7:f0: 38:c6:36:a3:04:be:64:6a:e5:8d:8c:3a:ff:58:d9: 65:d7:61:e2:ea:54:68:36:2c:f9:69:4a:fb:cb:e7: df:b9:ca:65:3a:a0:9e:80:cb:ca:a8:9e:d2:4f:f0: 03:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:E1:F8:DA:79:53:4E:44:48:05:70:9B:0F:F1:A3:A1:C9:3D:BE:B0 X509v3 Authority Key Identifier: keyid:62:AC:1B:B9:58:0A:71:19:81:9E:7B:6B:6E:B2:C3:51:53:47:87:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YqwbuVgKcRmBnntrbrLDUVNHh_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:0c:03:ce:c6:c3:f6:79:c2:ba:d0:f1:7e:4f:5a:3f:c3:d5: b5:b8:d9:3f:e9:6d:08:20:50:a1:1d:12:4f:97:fe:46:e3:b5: 29:1c:93:74:f8:74:2b:8c:c5:cf:fe:9a:50:6f:25:84:92:b7: ae:f2:ad:cc:53:f0:61:7a:5f:62:00:f6:cf:0e:d4:46:ff:10: 7c:55:08:3e:e2:0b:eb:43:78:db:df:bb:1c:be:44:04:ff:7e: 00:43:b1:f3:c6:1f:08:3b:4c:46:69:d1:ef:be:3a:1c:23:08: a1:4d:36:ce:da:cb:98:99:bd:75:96:c3:c2:3b:a2:de:88:f6: 43:f1:e1:0e:69:a7:8c:bf:ab:96:79:93:e1:e4:c3:07:32:5e: cc:b4:33:a1:dc:ab:1e:ad:11:b1:aa:3c:b0:80:9c:29:60:54: fc:a9:66:32:15:eb:f6:fa:c3:7a:2c:85:fb:8b:48:ce:39:da: db:64:1d:ef:f2:07:68:f1:e5:5b:4a:7b:27:9b:21:05:3b:6b: 37:51:21:77:6e:4f:da:9e:f6:9f:14:7e:34:81:23:12:93:bf: d2:d9:da:e3:77:9f:b6:b5:16:b2:e4:13:da:e5:77:20:de:85: 7d:fc:cd:a6:f4:b5:02:c3:35:e0:33:1b:66:bc:04:af:7c:bd: 1e:63:f9:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUREMDgxMTAvBgNVBAUTKDYyQUMxQkI5NTgwQTcxMTk4MTlFN0I2QjZFQjJDMzUx NTM0Nzg3RkQwHhcNMjUwNzAzMDYyMDI0WhcNMjUwNzEwMDYyMDI0WjAYMRYwFAYD VQQDEw02ODY2MjEyOC1mYzljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7NS5W1PY+ilk5Vi+5gBgeVZdTifv2yWYCm8xurbHAR4DqgywnzkEvS1C1ng5 JIjpFb0ar5k6rvB6qibpyLBIRYgpFmnAx6/YaEFNA9UoWOsUnLYfE1AV2x2rethO z33fjXadJ4vPqodctKSs/P64eneGEZnc8cYZ99OI2emWac9nMLuS5cjMjkJnvvyk WRArcetKKqTNAdbzJwHZu7m+s4kG7BjcL9TEkeIjzU7AW43A7r4cDBUjdiG6FbUB lgn8Ao5YYFOzPZoHdZKnfbVY1/A4xjajBL5kauWNjDr/WNll12Hi6lRoNiz5aUr7 y+ffucplOqCegMvKqJ7ST/ADhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPDh+Np5 U05ESAVwmw/xo6HJPb6wMB8GA1UdIwQYMBaAFGKsG7lYCnEZgZ57a26yw1FTR4f9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREQwOC85QTVGQkI2MjVC MTkxMUVGQkVEMEM0N0FDNEY5QUUwMi9ZcXdidVZnS2NSbUJubnRyYnJMRFVWTkho XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lxd2J1VmdLY1JtQm5udHJickxEVVZOSGhfMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx REQwOC85QTVGQkI2MjVCMTkxMUVGQkVEMEM0N0FDNEY5QUUwMi9ZcXdidVZnS2NS bUJubnRyYnJMRFVWTkhoXzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdDAPOxsP2ecK60PF+T1o/w9W1uNk/6W0IIFChHRJPl/5G47UpHJN0 +HQrjMXP/ppQbyWEkreu8q3MU/Bhel9iAPbPDtRG/xB8VQg+4gvrQ3jb37scvkQE /34AQ7Hzxh8IO0xGadHvvjocIwihTTbO2suYmb11lsPCO6LeiPZD8eEOaaeMv6uW eZPh5MMHMl7MtDOh3KserRGxqjywgJwpYFT8qWYyFev2+sN6LIX7i0jOOdrbZB3v 8gdo8eVbSnsnmyEFO2s3USF3bk/anvafFH40gSMSk7/S2drjd5+2tRay5BPa5Xcg 3oV9/M2m9LUCwzXgMxtmvASvfL0eY/mr -----END CERTIFICATE-----Generated at Fri Jul 4 08:23:48 2025 by rpki-client