$ rpki-client -vvf rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.mft File: yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.mft (raw, json) Hash identifier: p/pgbeRTxnAepnQ/f13LtdjVPmHSUXwPY78IamUOMWw= Subject key identifier: 0C:CE:95:27:F1:95:04:A3:94:1C:D5:49:2F:77:CE:76:19:27:70:3F Authority key identifier: C8:24:34:74:25:BA:C8:AF:59:B4:E1:96:6B:C1:0D:BF:A8:BD:AB:82 Certificate issuer: /CN=A912B2EE/serialNumber=C824347425BAC8AF59B4E1966BC10DBFA8BDAB82 Certificate serial: 0F8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.mft Manifest number: 0F75 Signing time: Wed 02 Jul 2025 17:46:40 +0000 Manifest this update: Wed 02 Jul 2025 17:46:39 +0000 Manifest next update: Wed 09 Jul 2025 17:46:39 +0000 Files and hashes: 1: yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.crl (hash: KUaYH3wDL0dOH26BmyvjRPpXyqu6NJtA5cqwcCzRz00=) 2: 05449490E17B11EC93AB7473C4F9AE02.roa (hash: TQO7DA2C+52oraPsdnjGz3A009856ZzetwGGv8/CUtg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.crl rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:46:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3978 (0xf8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B2EE, serialNumber=C824347425BAC8AF59B4E1966BC10DBFA8BDAB82 Validity Not Before: Jul 2 17:46:39 2025 GMT Not After : Jul 9 17:46:39 2025 GMT Subject: CN=6865707f-722c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:db:63:4a:0e:de:27:cb:7d:5c:6e:44:b3:1c: ac:78:47:d8:69:54:10:9d:38:1c:2c:82:52:09:dc: 42:b9:08:26:d6:86:9a:75:45:90:6d:d8:e8:3d:b4: 92:c1:5b:bd:c0:1f:b2:92:2e:a3:72:ab:d9:4a:8f: fb:6a:66:86:77:46:3c:bd:c4:6e:85:38:d6:ce:f7: c1:dd:bc:b1:3e:cd:f1:f2:1b:ff:35:92:b0:8f:b2: 8e:a4:86:de:d3:1a:d3:9a:02:5a:4f:6c:61:65:44: 57:72:98:31:ff:25:3e:08:b6:9a:9a:95:10:13:c7: ba:87:6d:a6:34:4f:42:04:01:49:c3:48:cc:98:51: 11:de:03:0f:ce:96:44:80:de:8e:1e:7a:39:93:3c: c9:44:e4:7a:52:1f:e0:4e:df:6d:ca:de:1f:dc:34: 27:cc:d4:02:7c:55:81:ab:18:2d:4c:5b:00:3a:49: a8:ff:e9:ee:ec:e9:ed:b8:86:ad:6d:ce:a9:8a:de: bc:94:df:ea:0d:47:eb:db:c6:a3:74:0d:67:20:fe: ce:6e:3c:7c:16:ca:2e:5a:9e:ff:5a:46:7d:cd:43: 65:e7:e8:c5:94:67:b0:5a:2f:12:63:bb:5d:5d:39: 47:be:e2:0f:b4:c2:6b:f0:85:29:17:f0:bc:d8:bf: 72:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:CE:95:27:F1:95:04:A3:94:1C:D5:49:2F:77:CE:76:19:27:70:3F X509v3 Authority Key Identifier: keyid:C8:24:34:74:25:BA:C8:AF:59:B4:E1:96:6B:C1:0D:BF:A8:BD:AB:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:d9:c7:b7:a7:3e:73:92:e6:89:76:3d:ab:f6:12:5f:f9:4d: 84:33:09:df:6c:78:60:fe:3f:21:fb:37:b6:3b:30:83:0c:20: bb:34:a2:19:f2:70:03:13:37:bf:d6:20:0c:07:40:67:50:b5: 48:ad:ae:48:88:4d:98:30:68:93:89:3c:ba:bb:18:12:2b:b3: 0e:f6:b2:69:ce:8a:bb:73:0d:d4:2b:bd:14:cb:9b:9b:5d:55: 92:bc:23:bf:67:98:6d:2f:22:40:38:9e:d5:c7:d3:b4:1c:39: 16:c0:a7:b9:ad:fb:d7:77:8d:58:f0:32:bc:f5:20:ff:5a:74: 0d:20:ef:5a:1d:a2:bd:64:88:16:1f:30:dc:1c:4a:1f:5c:55: b7:49:0b:7d:ec:f9:d6:d9:a5:f3:d4:20:20:36:69:55:59:97: cd:ef:d0:bf:62:6d:48:e5:4b:5e:e8:cd:c6:ef:86:c7:82:20: 5a:1c:38:b0:ce:f0:ad:7b:9d:c8:03:9c:66:56:81:6f:e5:be: b9:a8:ee:2f:ae:a7:e7:fc:ae:bb:f0:8a:d9:04:f0:21:49:42: e2:ba:f7:c1:4e:a8:c1:56:ad:f5:8f:c2:5d:0e:e7:8e:9f:82: d5:d9:29:cf:d9:ad:78:e0:94:bb:8e:e1:4e:db:ae:44:29:db: 9a:3c:cc:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD4owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkIyRUUxMTAvBgNVBAUTKEM4MjQzNDc0MjVCQUM4QUY1OUI0RTE5NjZCQzEwREJG QThCREFCODIwHhcNMjUwNzAyMTc0NjM5WhcNMjUwNzA5MTc0NjM5WjAYMRYwFAYD VQQDEw02ODY1NzA3Zi03MjJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxttjSg7eJ8t9XG5EsxyseEfYaVQQnTgcLIJSCdxCuQgm1oaadUWQbdjoPbSS wVu9wB+yki6jcqvZSo/7amaGd0Y8vcRuhTjWzvfB3byxPs3x8hv/NZKwj7KOpIbe 0xrTmgJaT2xhZURXcpgx/yU+CLaampUQE8e6h22mNE9CBAFJw0jMmFER3gMPzpZE gN6OHno5kzzJROR6Uh/gTt9tyt4f3DQnzNQCfFWBqxgtTFsAOkmo/+nu7OntuIat bc6pit68lN/qDUfr28ajdA1nIP7Objx8FsouWp7/WkZ9zUNl5+jFlGewWi8SY7td XTlHvuIPtMJr8IUpF/C82L9yVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAzOlSfx lQSjlBzVSS93znYZJ3A/MB8GA1UdIwQYMBaAFMgkNHQlusivWbThlmvBDb+ovauC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjJFRS8xRjQxMUY1ODZD MjExMUU5Qjc2RkE5MDlDNEY5QUUwMi95Q1EwZENXNnlLOVp0T0dXYThFTnY2aTlx NEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lDUTBkQ1c2eUs5WnRPR1dhOEVOdjZpOXE0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QjJFRS8xRjQxMUY1ODZDMjExMUU5Qjc2RkE5MDlDNEY5QUUwMi95Q1EwZENXNnlL OVp0T0dXYThFTnY2aTlxNEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBW2ce3pz5zkuaJdj2r9hJf+U2EMwnfbHhg/j8h+ze2OzCDDCC7NKIZ 8nADEze/1iAMB0BnULVIra5IiE2YMGiTiTy6uxgSK7MO9rJpzoq7cw3UK70Uy5ub XVWSvCO/Z5htLyJAOJ7Vx9O0HDkWwKe5rfvXd41Y8DK89SD/WnQNIO9aHaK9ZIgW HzDcHEofXFW3SQt97PnW2aXz1CAgNmlVWZfN79C/Ym1I5Ute6M3G74bHgiBaHDiw zvCte53IA5xmVoFv5b65qO4vrqfn/K678IrZBPAhSULiuvfBTqjBVq31j8JdDueO n4LV2SnP2a144JS7juFO265EKduaPMz+ -----END CERTIFICATE-----Generated at Wed Jul 2 21:42:01 2025 by rpki-client