$ rpki-client -vvf rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.mft File: yIwqqUquXvn01JfoOHo53RvOk50.mft (raw, json) Hash identifier: lQWjVk0gWFqzgJKAmYgVpLVzc7kXdAR8amoBIg+ocj4= Subject key identifier: A8:E1:50:1A:94:E0:11:DE:F7:8D:73:2F:96:53:36:04:D4:31:DC:78 Authority key identifier: C8:8C:2A:A9:4A:AE:5E:F9:F4:D4:97:E8:38:7A:39:DD:1B:CE:93:9D Certificate issuer: /CN=A91228E2/serialNumber=C88C2AA94AAE5EF9F4D497E8387A39DD1BCE939D Certificate serial: 0140 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yIwqqUquXvn01JfoOHo53RvOk50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.mft Manifest number: 013D Signing time: Thu 03 Jul 2025 04:30:50 +0000 Manifest this update: Thu 03 Jul 2025 04:30:50 +0000 Manifest next update: Thu 10 Jul 2025 04:30:50 +0000 Files and hashes: 1: yIwqqUquXvn01JfoOHo53RvOk50.crl (hash: +peooHcOpyAXiQaibbtVSJ/hgUgDxfcoipBkyHSt1uo=) 2: EF98E11472E211EEB93A4F72C4F9AE02.roa (hash: zjnMnu7RY/dZWeqb3tnlHnJORJa1AYwPA3wCVz3+WfI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.crl rsync://rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yIwqqUquXvn01JfoOHo53RvOk50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 320 (0x140) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91228E2, serialNumber=C88C2AA94AAE5EF9F4D497E8387A39DD1BCE939D Validity Not Before: Jul 3 04:30:50 2025 GMT Not After : Jul 10 04:30:50 2025 GMT Subject: CN=6866077a-8a4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:bd:95:ee:38:b9:18:7f:ad:a6:8a:da:30:97: f4:79:f5:1e:2e:51:fa:5d:2c:2e:89:b3:15:02:2a: a0:5e:59:61:1f:59:d6:b9:79:72:4a:1a:44:b5:ff: cc:c3:f6:90:ed:21:54:f5:06:ce:76:91:70:51:2b: 22:0b:28:07:97:47:3f:4c:06:6d:0b:d1:37:1c:b0: 8f:c5:49:f5:49:19:c5:08:c2:5d:02:3f:74:69:ec: b1:eb:40:57:7c:5f:e4:19:70:74:60:08:bb:45:50: 5b:dd:17:3d:76:8d:9e:3a:5c:e8:06:69:cc:11:c8: b3:26:48:70:fb:e6:71:2a:95:00:09:ce:93:89:ca: 32:ae:8a:28:6c:34:13:a3:be:32:ef:a9:0b:7b:cf: fa:4d:a5:45:ed:b6:5c:c8:dc:f1:b4:75:ea:67:56: 13:2e:60:1e:1b:02:5d:ff:e8:6d:e9:f9:ed:fe:49: 46:b5:bf:39:03:56:4e:be:70:17:cc:84:57:b3:30: dd:a8:e3:07:95:c6:c3:07:86:cd:be:35:2b:0d:f0: 2c:a8:70:03:77:ba:ba:23:f5:64:ee:41:6b:c7:0c: db:b1:60:f1:13:5d:3e:a2:51:c1:f4:d4:0e:d0:ad: d7:5d:7c:52:83:f7:23:7d:97:97:6f:c2:ab:bb:fa: f1:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:E1:50:1A:94:E0:11:DE:F7:8D:73:2F:96:53:36:04:D4:31:DC:78 X509v3 Authority Key Identifier: keyid:C8:8C:2A:A9:4A:AE:5E:F9:F4:D4:97:E8:38:7A:39:DD:1B:CE:93:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yIwqqUquXvn01JfoOHo53RvOk50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:4d:51:12:51:b4:47:e8:4d:81:eb:be:fe:d5:fa:c4:0d:e5: c6:e6:c5:31:1c:b3:36:4c:61:f0:ae:a4:ee:6f:f8:8b:fc:96: 3e:7f:44:82:39:72:49:ef:6f:98:9d:61:f7:2d:ac:70:5d:8e: dd:fa:db:a4:f8:7f:44:09:69:89:4f:1e:50:8b:79:d8:2a:db: b8:43:5f:6a:12:e7:fe:2d:af:ac:f7:0d:71:fa:d5:2f:2c:d8: 1b:d2:9b:39:e4:3f:61:60:83:8e:73:15:a7:81:47:c5:91:a1: 1e:e9:c5:d3:36:af:f5:d8:71:cc:05:db:dd:48:6c:b1:ea:89: a8:7c:60:a0:26:74:54:53:15:40:3e:c8:73:df:ca:46:08:c8: 1f:86:62:bf:b9:33:ec:af:4e:b2:92:b0:c4:dd:38:06:6a:c2: c7:ce:2d:29:65:27:a7:99:94:a1:95:83:66:ce:e5:c2:f0:90: ac:16:0e:65:95:da:c0:c7:1a:a6:15:c7:90:7b:26:67:a4:38: d5:47:e3:8e:10:32:6e:bf:af:c1:3b:18:24:75:14:a6:20:9f: a7:90:de:ec:b8:a4:6c:ce:0b:e3:3a:7d:ae:79:fc:4a:22:b2: b1:0e:d6:03:85:1d:e2:cd:10:4a:df:de:3f:20:a2:5b:34:3b: 9c:b8:72:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjI4RTIxMTAvBgNVBAUTKEM4OEMyQUE5NEFBRTVFRjlGNEQ0OTdFODM4N0EzOURE MUJDRTkzOUQwHhcNMjUwNzAzMDQzMDUwWhcNMjUwNzEwMDQzMDUwWjAYMRYwFAYD VQQDEw02ODY2MDc3YS04YTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA172V7ji5GH+tporaMJf0efUeLlH6XSwuibMVAiqgXllhH1nWuXlyShpEtf/M w/aQ7SFU9QbOdpFwUSsiCygHl0c/TAZtC9E3HLCPxUn1SRnFCMJdAj90aeyx60BX fF/kGXB0YAi7RVBb3Rc9do2eOlzoBmnMEcizJkhw++ZxKpUACc6TicoyrooobDQT o74y76kLe8/6TaVF7bZcyNzxtHXqZ1YTLmAeGwJd/+ht6fnt/klGtb85A1ZOvnAX zIRXszDdqOMHlcbDB4bNvjUrDfAsqHADd7q6I/Vk7kFrxwzbsWDxE10+olHB9NQO 0K3XXXxSg/cjfZeXb8Kru/rxQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKjhUBqU 4BHe941zL5ZTNgTUMdx4MB8GA1UdIwQYMBaAFMiMKqlKrl759NSX6Dh6Od0bzpOd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjhFMi9DRTU0MDZGNjcy RTExMUVFQjA3ODE2MTlDNEY5QUUwMi95SXdxcVVxdVh2bjAxSmZvT0hvNTNSdk9r NTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lJd3FxVXF1WHZuMDFKZm9PSG81M1J2T2s1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjhFMi9DRTU0MDZGNjcyRTExMUVFQjA3ODE2MTlDNEY5QUUwMi95SXdxcVVxdVh2 bjAxSmZvT0hvNTNSdk9rNTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZTVESUbRH6E2B677+1frEDeXG5sUxHLM2TGHwrqTub/iL/JY+f0SC OXJJ72+YnWH3LaxwXY7d+tuk+H9ECWmJTx5Qi3nYKtu4Q19qEuf+La+s9w1x+tUv LNgb0ps55D9hYIOOcxWngUfFkaEe6cXTNq/12HHMBdvdSGyx6omofGCgJnRUUxVA Pshz38pGCMgfhmK/uTPsr06ykrDE3TgGasLHzi0pZSenmZShlYNmzuXC8JCsFg5l ldrAxxqmFceQeyZnpDjVR+OOEDJuv6/BOxgkdRSmIJ+nkN7suKRszgvjOn2uefxK IrKxDtYDhR3izRBK394/IKJbNDucuHIi -----END CERTIFICATE-----Generated at Thu Jul 3 17:29:57 2025 by rpki-client