$ rpki-client -vvf rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.mft File: yQm9soTk3whHdmDWgrfLP1lIMeM.mft (raw, json) Hash identifier: A2k1kqvlqV0klkohVlkIo2vVQWmuwyADaavl8PzeHko= Subject key identifier: BF:1F:1D:B7:F6:5C:A1:8C:74:E9:AE:9E:3A:AD:50:DB:22:52:9C:A0 Authority key identifier: C9:09:BD:B2:84:E4:DF:08:47:76:60:D6:82:B7:CB:3F:59:48:31:E3 Certificate issuer: /CN=A912BD25/serialNumber=C909BDB284E4DF08477660D682B7CB3F594831E3 Certificate serial: 0C0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yQm9soTk3whHdmDWgrfLP1lIMeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.mft Manifest number: 0C03 Signing time: Mon 30 Jun 2025 18:54:34 +0000 Manifest this update: Mon 30 Jun 2025 18:54:33 +0000 Manifest next update: Mon 07 Jul 2025 18:54:33 +0000 Files and hashes: 1: yQm9soTk3whHdmDWgrfLP1lIMeM.crl (hash: Ed6whleTIYJiUm8i++R4/AE2Z1mQmknyn8nSGsDon4c=) 2: CF3378E272DB11ED8483E95DC4F9AE02.roa (hash: 7P+2TWLqfeVNyGM33Rg8heOwqWfXOoMC0kS7Ev1IOzE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.crl rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yQm9soTk3whHdmDWgrfLP1lIMeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 18:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3084 (0xc0c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BD25, serialNumber=C909BDB284E4DF08477660D682B7CB3F594831E3 Validity Not Before: Jun 30 18:54:33 2025 GMT Not After : Jul 7 18:54:33 2025 GMT Subject: CN=6862dd6a-df2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:74:19:b6:88:12:d1:20:5c:aa:04:3e:4d:80: 6c:13:9f:a9:62:74:6b:51:bc:be:49:6d:cf:2f:e7: fb:34:7c:ce:0b:72:9f:9b:25:98:75:3d:71:35:9f: 91:2a:5f:9d:c5:e4:ed:16:0e:f7:3b:f6:d6:71:59: 2c:de:9c:93:e9:e4:c9:4e:26:1a:85:8a:cf:a3:72: ca:e7:f5:0c:bc:a7:98:6a:ed:dc:eb:83:b9:83:9d: 2d:b1:9f:ad:47:56:1c:74:24:6d:ca:73:a6:ef:39: 65:6b:24:49:76:96:ea:fd:0a:24:d5:0b:9c:5c:3f: b2:58:03:42:28:b9:59:2a:61:ab:8b:47:8f:b3:79: 4a:cf:cb:ed:e4:8d:29:78:f5:4a:29:39:fc:96:03: 67:7e:cb:4a:5f:1e:bf:ca:d6:47:c7:84:48:a4:b6: 20:fc:41:75:44:de:ac:56:25:62:8f:f4:62:c1:58: 3a:06:79:15:bf:6e:b9:7b:42:38:e3:78:34:ea:bd: a7:3b:48:ae:25:b6:34:51:f5:70:14:ee:d6:12:cd: af:c2:a7:94:90:ab:b0:c6:ce:24:b1:b0:26:69:85: db:63:17:3d:bd:ac:8d:83:07:de:d2:28:06:55:ee: 25:cc:d1:d6:70:57:12:c2:98:76:7a:7c:5e:da:6a: e0:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:1F:1D:B7:F6:5C:A1:8C:74:E9:AE:9E:3A:AD:50:DB:22:52:9C:A0 X509v3 Authority Key Identifier: keyid:C9:09:BD:B2:84:E4:DF:08:47:76:60:D6:82:B7:CB:3F:59:48:31:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yQm9soTk3whHdmDWgrfLP1lIMeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:ca:5e:2f:72:48:45:a9:89:1b:08:3c:29:9d:14:0d:a5:b2: fe:8e:64:e2:41:0a:58:b9:df:55:66:52:aa:8e:12:53:42:96: a1:40:e6:1d:b3:ed:67:95:99:ae:d8:09:29:0d:72:3c:13:6d: ef:03:60:a1:c9:50:18:33:9a:5e:ad:95:26:a4:7a:eb:99:c0: fc:b0:80:95:2b:41:68:a2:95:ba:16:a3:73:6d:85:85:07:f7: 3d:70:45:84:14:e1:e6:57:0f:6d:61:d6:0d:e6:3f:06:27:70: 69:ec:3f:ba:91:e8:73:80:e1:ab:bc:b0:2a:34:ba:cd:e2:36: 14:aa:c9:b1:52:8c:56:4a:6c:fa:49:77:dd:04:55:4c:d8:8e: 69:aa:ea:1f:9f:0b:38:db:95:da:81:a6:4d:cb:f5:82:0c:69: ab:d1:a9:f8:73:7c:f0:ab:df:04:49:ba:2d:7a:9c:56:74:bf: 7e:7d:3d:72:a6:c4:ff:a2:89:21:15:71:5d:8b:85:c3:ef:f6: 9d:97:9f:b6:53:57:18:c5:e8:a3:68:6f:5e:ff:af:86:e2:3c: f6:1d:6d:51:8b:28:4f:08:f8:de:11:cb:99:56:71:05:18:54: 0b:d0:d8:d8:6e:79:1f:a5:d1:d7:0e:8e:ea:e9:9d:34:19:88: 8c:9c:94:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJEMjUxMTAvBgNVBAUTKEM5MDlCREIyODRFNERGMDg0Nzc2NjBENjgyQjdDQjNG NTk0ODMxRTMwHhcNMjUwNjMwMTg1NDMzWhcNMjUwNzA3MTg1NDMzWjAYMRYwFAYD VQQDEw02ODYyZGQ2YS1kZjJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs3QZtogS0SBcqgQ+TYBsE5+pYnRrUby+SW3PL+f7NHzOC3KfmyWYdT1xNZ+R Kl+dxeTtFg73O/bWcVks3pyT6eTJTiYahYrPo3LK5/UMvKeYau3c64O5g50tsZ+t R1YcdCRtynOm7zllayRJdpbq/Qok1QucXD+yWANCKLlZKmGri0ePs3lKz8vt5I0p ePVKKTn8lgNnfstKXx6/ytZHx4RIpLYg/EF1RN6sViVij/RiwVg6BnkVv265e0I4 43g06r2nO0iuJbY0UfVwFO7WEs2vwqeUkKuwxs4ksbAmaYXbYxc9vayNgwfe0igG Ve4lzNHWcFcSwph2enxe2mrgNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL8fHbf2 XKGMdOmunjqtUNsiUpygMB8GA1UdIwQYMBaAFMkJvbKE5N8IR3Zg1oK3yz9ZSDHj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkQyNS8wN0Y4MjE0QTE0 RTQxMUVBODc2RTg2NDBDNEY5QUUwMi95UW05c29UazN3aEhkbURXZ3JmTFAxbElN ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lRbTlzb1RrM3doSGRtRFdncmZMUDFsSU1lTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkQyNS8wN0Y4MjE0QTE0RTQxMUVBODc2RTg2NDBDNEY5QUUwMi95UW05c29UazN3 aEhkbURXZ3JmTFAxbElNZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwyl4vckhFqYkbCDwpnRQNpbL+jmTiQQpYud9VZlKqjhJTQpahQOYd s+1nlZmu2AkpDXI8E23vA2ChyVAYM5perZUmpHrrmcD8sICVK0FoopW6FqNzbYWF B/c9cEWEFOHmVw9tYdYN5j8GJ3Bp7D+6kehzgOGrvLAqNLrN4jYUqsmxUoxWSmz6 SXfdBFVM2I5pquofnws425XagaZNy/WCDGmr0an4c3zwq98ESbotepxWdL9+fT1y psT/ookhFXFdi4XD7/adl5+2U1cYxeijaG9e/6+G4jz2HW1RiyhPCPjeEcuZVnEF GFQL0NjYbnkfpdHXDo7q6Z00GYiMnJTW -----END CERTIFICATE-----Generated at Wed Jul 2 19:26:26 2025 by rpki-client