$ rpki-client -vvf rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft File: YNExg9Od5pVlYCMefgMX5py8bA8.mft (raw, json) Hash identifier: JiGdFhDRzdUWNTLqFBWPsrHdi2+mf9P/gn2BFPw3Wf4= Subject key identifier: F1:0E:63:9D:B5:89:77:88:BE:43:17:B0:10:7A:A5:D6:EE:03:5E:94 Authority key identifier: 60:D1:31:83:D3:9D:E6:95:65:60:23:1E:7E:03:17:E6:9C:BC:6C:0F Certificate issuer: /CN=A9131D31/serialNumber=60D13183D39DE6956560231E7E0317E69CBC6C0F Certificate serial: 10E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft Manifest number: 10D4 Signing time: Wed 02 Jul 2025 17:30:10 +0000 Manifest this update: Wed 02 Jul 2025 17:30:09 +0000 Manifest next update: Wed 09 Jul 2025 17:30:09 +0000 Files and hashes: 1: YNExg9Od5pVlYCMefgMX5py8bA8.crl (hash: FcpyM+pswBn1t8d7LVv/zPZIGTMcA9EZIN7Xg4ATMZY=) 2: 1F8D757623B811E9971D8168C4F9AE02.roa (hash: teyprXUhhu0eQN/HT8J3s42u5imFw2AiXDxoE1lRwMQ=) 3: BA310DEC23B611E98E5E6062C4F9AE02.roa (hash: Z2LA9kyLWJ5DSZqXR4GtE8WTNPkiU6v9mRONlsKS1tk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.crl rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:30:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4325 (0x10e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131D31, serialNumber=60D13183D39DE6956560231E7E0317E69CBC6C0F Validity Not Before: Jul 2 17:30:09 2025 GMT Not After : Jul 9 17:30:09 2025 GMT Subject: CN=68656ca1-a936 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:20:4a:14:54:57:72:24:ee:7a:ee:cf:f4:2a: d4:9a:94:09:7d:da:16:19:a1:23:5e:83:42:ef:fd: f6:5d:bb:47:98:99:68:7e:f5:44:18:7b:9f:48:2a: 66:3e:95:c7:16:20:8a:5b:29:11:bf:ca:ae:51:7c: 30:73:50:cd:33:53:34:eb:ca:be:79:3f:18:31:c2: b3:dc:5f:17:8f:a3:8f:6c:f2:04:c8:f0:cf:40:4c: 2a:3b:b3:29:b9:88:3c:3b:04:d0:19:5f:92:b3:8c: f6:f8:08:80:bb:17:fe:3b:0f:76:a7:eb:4c:3b:51: 3a:41:a3:38:97:95:0e:42:09:ae:f0:19:06:ce:49: 90:26:85:3e:a2:ea:35:c0:ff:e1:99:f3:43:e2:38: e5:86:a6:df:77:dc:41:9d:e0:08:53:8b:d7:ca:6e: fb:3e:ec:51:68:7b:3e:92:09:56:6a:63:64:ad:a2: 31:2d:77:73:b5:a8:2f:3c:52:0b:d0:a9:d4:2a:a4: 5e:70:a0:66:15:4a:37:16:53:e4:78:f3:f8:80:0f: 80:8c:a3:80:80:1a:9a:c2:cf:f0:81:77:8d:44:85: 45:d3:1d:c4:fd:a9:6c:92:27:11:35:34:06:7d:71: 2d:b9:87:7d:e5:19:33:cc:0f:5e:eb:3c:58:e0:b1: 83:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:0E:63:9D:B5:89:77:88:BE:43:17:B0:10:7A:A5:D6:EE:03:5E:94 X509v3 Authority Key Identifier: keyid:60:D1:31:83:D3:9D:E6:95:65:60:23:1E:7E:03:17:E6:9C:BC:6C:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:6c:74:ff:af:7c:01:75:b9:bf:17:04:22:55:30:88:ef:41: da:eb:c7:9c:7f:88:aa:61:15:ae:69:80:2d:76:86:8b:08:6e: 0f:96:07:5f:19:12:08:c6:81:9e:dc:82:9e:71:21:a4:6b:b7: a1:cc:e3:8e:c9:ab:65:7a:4f:75:29:63:b0:85:06:3a:e4:54: 33:b0:d4:14:0a:35:f3:bd:60:13:c2:16:a0:53:08:21:8a:6b: 5e:47:c5:97:49:ea:0e:8e:29:96:92:50:8c:d0:f8:79:3f:2a: 88:b0:70:37:43:bc:94:77:04:eb:dd:df:00:56:25:4c:71:a1: be:d8:37:0f:39:15:9d:e5:8d:13:ec:46:67:4e:8c:8c:98:c4: 86:29:16:bd:db:cb:7d:4d:a3:56:4a:f6:0a:f2:21:6b:05:10: 14:d9:83:57:2a:6f:36:53:8e:d8:70:e7:95:e8:82:ee:97:61: 02:0a:cb:17:3c:80:4d:9c:b1:c3:a3:7b:4e:f5:0d:5f:52:66: a6:fe:64:af:7c:4b:79:4c:e6:b6:69:dc:5e:24:3f:14:b6:e9: ce:f0:7d:f9:70:10:5d:8f:e1:10:8e:7c:15:b8:19:0e:e9:39: b7:3c:b1:52:00:f0:81:7b:db:f6:a4:eb:b8:8e:a2:e7:bb:5b: c0:69:69:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFEMzExMTAvBgNVBAUTKDYwRDEzMTgzRDM5REU2OTU2NTYwMjMxRTdFMDMxN0U2 OUNCQzZDMEYwHhcNMjUwNzAyMTczMDA5WhcNMjUwNzA5MTczMDA5WjAYMRYwFAYD VQQDEw02ODY1NmNhMS1hOTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAziBKFFRXciTueu7P9CrUmpQJfdoWGaEjXoNC7/32XbtHmJlofvVEGHufSCpm PpXHFiCKWykRv8quUXwwc1DNM1M068q+eT8YMcKz3F8Xj6OPbPIEyPDPQEwqO7Mp uYg8OwTQGV+Ss4z2+AiAuxf+Ow92p+tMO1E6QaM4l5UOQgmu8BkGzkmQJoU+ouo1 wP/hmfND4jjlhqbfd9xBneAIU4vXym77PuxRaHs+kglWamNkraIxLXdztagvPFIL 0KnUKqRecKBmFUo3FlPkePP4gA+AjKOAgBqaws/wgXeNRIVF0x3E/alskicRNTQG fXEtuYd95RkzzA9e6zxY4LGDHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPEOY521 iXeIvkMXsBB6pdbuA16UMB8GA1UdIwQYMBaAFGDRMYPTneaVZWAjHn4DF+acvGwP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUQzMS82NUVGMjk2QTIz MTMxMUU5QTI5QkIxNzRDNEY5QUUwMi9ZTkV4ZzlPZDVwVmxZQ01lZmdNWDVweThi QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lORXhnOU9kNXBWbFlDTWVmZ01YNXB5OGJBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUQzMS82NUVGMjk2QTIzMTMxMUU5QTI5QkIxNzRDNEY5QUUwMi9ZTkV4ZzlPZDVw VmxZQ01lZmdNWDVweThiQTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQbHT/r3wBdbm/FwQiVTCI70Ha68ecf4iqYRWuaYAtdoaLCG4Plgdf GRIIxoGe3IKecSGka7ehzOOOyatlek91KWOwhQY65FQzsNQUCjXzvWATwhagUwgh imteR8WXSeoOjimWklCM0Ph5PyqIsHA3Q7yUdwTr3d8AViVMcaG+2DcPORWd5Y0T 7EZnToyMmMSGKRa928t9TaNWSvYK8iFrBRAU2YNXKm82U47YcOeV6ILul2ECCssX PIBNnLHDo3tO9Q1fUmam/mSvfEt5TOa2adxeJD8UtunO8H35cBBdj+EQjnwVuBkO 6Tm3PLFSAPCBe9v2pOu4jqLnu1vAaWn3 -----END CERTIFICATE-----Generated at Fri Jul 4 07:27:15 2025 by rpki-client