$ rpki-client -vvf rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.mft File: yQm9soTk3whHdmDWgrfLP1lIMeM.mft (raw, json) Hash identifier: f1lYOA1zwfzFacgha77xYsZUYD7IYZpxgOexNBFNRqo= Subject key identifier: 18:6A:8B:87:6E:B5:74:45:95:34:45:7D:98:94:8C:FF:0B:26:0C:80 Authority key identifier: C9:09:BD:B2:84:E4:DF:08:47:76:60:D6:82:B7:CB:3F:59:48:31:E3 Certificate issuer: /CN=A912BD25/serialNumber=C909BDB284E4DF08477660D682B7CB3F594831E3 Certificate serial: 0C27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yQm9soTk3whHdmDWgrfLP1lIMeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.mft Manifest number: 0C1E Signing time: Fri 22 Aug 2025 18:49:22 +0000 Manifest this update: Fri 22 Aug 2025 18:49:22 +0000 Manifest next update: Fri 29 Aug 2025 18:49:22 +0000 Files and hashes: 1: yQm9soTk3whHdmDWgrfLP1lIMeM.crl (hash: 5TKJaVZLM5d31cTj1BvGVq9WYLFTLDZrAVYP4VusS8k=) 2: CF3378E272DB11ED8483E95DC4F9AE02.roa (hash: 7P+2TWLqfeVNyGM33Rg8heOwqWfXOoMC0kS7Ev1IOzE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.crl rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yQm9soTk3whHdmDWgrfLP1lIMeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:49:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3111 (0xc27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BD25, serialNumber=C909BDB284E4DF08477660D682B7CB3F594831E3 Validity Not Before: Aug 22 18:49:22 2025 GMT Not After : Aug 29 18:49:22 2025 GMT Subject: CN=68a8bbb2-f50f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:83:8c:f1:07:69:be:66:7a:06:d6:3a:da:66: 0f:fc:dd:3d:8a:3c:9d:9d:ba:a7:d3:48:fd:41:a4: c1:b8:5b:24:f4:f7:da:0f:d8:dd:2d:87:9d:7c:31: 5c:05:e3:9d:72:5e:01:fe:a3:60:dd:0e:55:bc:9b: 22:fb:b4:5b:27:d1:da:78:d5:2f:3f:b0:24:a4:44: 0f:a1:d6:f7:80:62:af:d0:86:3d:15:57:8f:55:21: 9e:12:3f:94:7b:7e:5d:25:d3:60:30:9c:ba:cf:e5: 2c:75:e4:6e:a6:7c:73:0a:c4:8e:10:83:43:00:49: 8c:11:b8:ae:a8:aa:b6:ae:3b:c6:29:a3:67:1d:bb: 27:06:d3:b8:0d:52:d1:07:8b:fc:bf:fa:87:0b:69: 88:e9:0b:6e:9f:0f:d1:1a:20:cd:11:f6:b7:94:f5: 63:4c:02:19:2e:19:0c:c2:76:8b:78:c7:3d:84:1d: 8b:29:84:07:00:94:68:ac:fe:9e:bd:66:b8:93:4f: 15:83:1f:ac:4c:a2:ca:a0:10:5d:c9:a4:ec:77:8d: 2c:74:a8:c2:d8:72:ec:d9:1c:e9:6d:d2:b7:ea:16: 03:30:c6:e4:b7:4c:92:d6:6a:c6:b8:b6:c2:c6:e0: 45:3d:e3:37:90:e5:7b:3f:55:e1:eb:04:ff:87:86: 6b:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:6A:8B:87:6E:B5:74:45:95:34:45:7D:98:94:8C:FF:0B:26:0C:80 X509v3 Authority Key Identifier: keyid:C9:09:BD:B2:84:E4:DF:08:47:76:60:D6:82:B7:CB:3F:59:48:31:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yQm9soTk3whHdmDWgrfLP1lIMeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:72:c5:58:86:7f:6f:70:80:f3:ef:2e:fe:33:94:e3:15:9b: 3c:b1:78:e3:06:46:cd:f5:f9:60:f3:a6:f5:5a:f4:bb:05:8d: b2:7c:6d:95:c1:a1:52:c4:f8:85:db:17:03:46:e0:d5:3c:04: a4:1c:33:df:35:56:4a:d4:30:4c:2f:55:93:b0:7f:15:8e:3d: c8:12:a7:ff:6f:34:f7:1a:b5:b8:9e:b9:51:04:4b:d8:65:54: 41:b8:fd:36:2e:38:c5:cd:6e:0c:b5:79:3f:45:95:1f:9a:02: 7f:7a:0b:c7:45:10:36:43:63:22:0f:e2:e7:19:a6:af:b6:5d: 0a:f8:86:89:d0:70:86:4d:42:db:8e:96:c3:4c:ae:ed:9f:2e: 8f:7c:f4:4b:54:db:7f:e8:28:64:96:29:96:a0:b8:f3:d4:e2: f6:9d:04:fc:84:05:bc:b7:41:bf:a1:75:99:c0:6e:f9:5b:47: a8:fa:39:8f:19:99:2d:8b:e1:c0:51:ad:69:36:cd:7b:4d:f3: 42:d8:5f:22:52:a3:68:90:ef:01:c5:0b:85:f8:31:98:d4:71: c8:6a:12:e6:8a:c2:ca:19:57:7d:0e:04:6a:b9:7e:b3:af:a6: a2:1c:03:bc:cd:cb:fe:11:2c:e9:ca:dd:d9:94:0f:b3:7f:75: 68:5e:60:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJEMjUxMTAvBgNVBAUTKEM5MDlCREIyODRFNERGMDg0Nzc2NjBENjgyQjdDQjNG NTk0ODMxRTMwHhcNMjUwODIyMTg0OTIyWhcNMjUwODI5MTg0OTIyWjAYMRYwFAYD VQQDEw02OGE4YmJiMi1mNTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo4OM8QdpvmZ6BtY62mYP/N09ijydnbqn00j9QaTBuFsk9PfaD9jdLYedfDFc BeOdcl4B/qNg3Q5VvJsi+7RbJ9HaeNUvP7AkpEQPodb3gGKv0IY9FVePVSGeEj+U e35dJdNgMJy6z+UsdeRupnxzCsSOEINDAEmMEbiuqKq2rjvGKaNnHbsnBtO4DVLR B4v8v/qHC2mI6Qtunw/RGiDNEfa3lPVjTAIZLhkMwnaLeMc9hB2LKYQHAJRorP6e vWa4k08Vgx+sTKLKoBBdyaTsd40sdKjC2HLs2RzpbdK36hYDMMbkt0yS1mrGuLbC xuBFPeM3kOV7P1Xh6wT/h4ZrSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBhqi4du tXRFlTRFfZiUjP8LJgyAMB8GA1UdIwQYMBaAFMkJvbKE5N8IR3Zg1oK3yz9ZSDHj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkQyNS8wN0Y4MjE0QTE0 RTQxMUVBODc2RTg2NDBDNEY5QUUwMi95UW05c29UazN3aEhkbURXZ3JmTFAxbElN ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lRbTlzb1RrM3doSGRtRFdncmZMUDFsSU1lTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkQyNS8wN0Y4MjE0QTE0RTQxMUVBODc2RTg2NDBDNEY5QUUwMi95UW05c29UazN3 aEhkbURXZ3JmTFAxbElNZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApcsVYhn9vcIDz7y7+M5TjFZs8sXjjBkbN9flg86b1WvS7BY2yfG2V waFSxPiF2xcDRuDVPASkHDPfNVZK1DBML1WTsH8Vjj3IEqf/bzT3GrW4nrlRBEvY ZVRBuP02LjjFzW4MtXk/RZUfmgJ/egvHRRA2Q2MiD+LnGaavtl0K+IaJ0HCGTULb jpbDTK7tny6PfPRLVNt/6ChklimWoLjz1OL2nQT8hAW8t0G/oXWZwG75W0eo+jmP GZkti+HAUa1pNs17TfNC2F8iUqNokO8BxQuF+DGY1HHIahLmisLKGVd9DgRquX6z r6aiHAO8zcv+ESzpyt3ZlA+zf3VoXmCQ -----END CERTIFICATE-----Generated at Sat Aug 23 17:07:12 2025 by rpki-client