$ rpki-client -vvf rpki.apnic.net/member_repository/A913FBB2/0E2705441A8611EEA0AA8716C4F9AE02/rYW34Ys6FvU-kpOKM07Guz64tjA.mft File: rYW34Ys6FvU-kpOKM07Guz64tjA.mft (raw, json) Hash identifier: FT8mBXZiA49uTDWHrk4THacIgDGuFRz76iKWvLAq2Q4= Subject key identifier: 7C:08:1F:B3:0F:5F:38:8F:91:54:54:90:30:C6:58:F1:3A:E5:B0:C1 Authority key identifier: AD:85:B7:E1:8B:3A:16:F5:3E:92:93:8A:33:4E:C6:BB:3E:B8:B6:30 Certificate issuer: /CN=A913FBB2/serialNumber=AD85B7E18B3A16F53E92938A334EC6BB3EB8B630 Certificate serial: 0185 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYW34Ys6FvU-kpOKM07Guz64tjA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913FBB2/0E2705441A8611EEA0AA8716C4F9AE02/rYW34Ys6FvU-kpOKM07Guz64tjA.mft Manifest number: 0179 Signing time: Thu 03 Jul 2025 03:49:45 +0000 Manifest this update: Thu 03 Jul 2025 03:49:44 +0000 Manifest next update: Thu 10 Jul 2025 03:49:44 +0000 Files and hashes: 1: rYW34Ys6FvU-kpOKM07Guz64tjA.crl (hash: x5GNCfYqjudHITz03tBwjzZwyJs/DBcNe88lNfn6C1c=) 2: A9321C0A1B2A11EE84F40B3AC4F9AE02.roa (hash: p81EH8N+mq+tuXFMTqadpbhtGnx8x8sovmy9swXxzCM=) 3: A8C501F61B2A11EE84F40B3AC4F9AE02.roa (hash: GGQZQXITbCi35kDi1cszvpoNDF4GQHNFV1AYsPL4NFA=) 4: B97D647C1A8811EEB5AE963CC4F9AE02.roa (hash: NMwwqT5E6qjLfBlg6rE6vavEzETFOwEvTWR7gAiqQV8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913FBB2/0E2705441A8611EEA0AA8716C4F9AE02/rYW34Ys6FvU-kpOKM07Guz64tjA.crl rsync://rpki.apnic.net/member_repository/A913FBB2/0E2705441A8611EEA0AA8716C4F9AE02/rYW34Ys6FvU-kpOKM07Guz64tjA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYW34Ys6FvU-kpOKM07Guz64tjA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 389 (0x185) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913FBB2, serialNumber=AD85B7E18B3A16F53E92938A334EC6BB3EB8B630 Validity Not Before: Jul 3 03:49:44 2025 GMT Not After : Jul 10 03:49:44 2025 GMT Subject: CN=6865fdd8-69f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:37:f4:44:c9:d1:40:3a:d8:1a:b0:56:77:b8: 5a:13:fd:67:1b:36:87:ab:8d:75:7c:50:7c:c8:19: de:de:03:c5:83:5a:f8:3a:e7:55:3b:9d:6f:1a:4c: f1:fd:36:9e:3f:ee:ba:51:62:30:db:0f:f1:b1:b9: fb:bb:a3:2d:f3:b3:4f:11:61:19:ec:58:46:e1:aa: ec:24:b2:77:8a:62:64:06:0a:09:b3:13:d5:cb:f0: a2:c0:9c:1b:ab:1a:fd:92:db:84:45:e8:33:b2:ac: 2f:f1:b7:55:22:32:3f:ad:56:47:7a:c9:ba:b1:22: 33:4e:bc:7d:ff:37:f5:2c:9d:6d:b8:c8:81:5a:aa: ee:f9:d8:af:37:f4:ca:9e:d6:a6:2e:85:5a:df:da: 15:69:5d:1d:9c:ef:ab:89:73:6b:c5:cb:6f:3b:7b: 51:de:b1:70:dc:51:2d:cd:c4:c3:b7:e4:6c:82:0f: e2:b4:2d:9b:68:32:89:e7:ca:5f:b5:3f:d7:77:c4: a6:d8:2e:db:bd:66:75:b5:e5:c2:cf:50:10:2c:90: f4:d4:ab:62:36:9c:3d:c4:cc:78:c8:09:45:f5:e4: da:2a:42:8e:79:0b:e0:ab:a2:f2:c4:38:f5:b4:c2: 87:96:c7:a9:79:96:0b:a3:38:8c:0f:99:24:dd:e7: 34:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:08:1F:B3:0F:5F:38:8F:91:54:54:90:30:C6:58:F1:3A:E5:B0:C1 X509v3 Authority Key Identifier: keyid:AD:85:B7:E1:8B:3A:16:F5:3E:92:93:8A:33:4E:C6:BB:3E:B8:B6:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913FBB2/0E2705441A8611EEA0AA8716C4F9AE02/rYW34Ys6FvU-kpOKM07Guz64tjA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYW34Ys6FvU-kpOKM07Guz64tjA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913FBB2/0E2705441A8611EEA0AA8716C4F9AE02/rYW34Ys6FvU-kpOKM07Guz64tjA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:16:e4:69:ac:10:f1:cb:56:54:27:9d:7b:1b:5e:03:92:aa: 77:de:24:60:40:3d:11:a2:c3:4e:25:11:3f:c2:ee:97:ab:62: 00:d0:b5:cb:f5:a7:1a:7f:91:9f:fd:2c:94:b1:af:e5:e9:b8: ac:8b:a7:aa:b6:24:05:ce:ca:a0:a9:93:68:71:b7:3d:3b:00: 3a:35:52:b9:17:b1:78:0c:30:ca:6a:9f:11:d8:3d:6c:c4:fa: ff:05:97:46:5a:93:e0:4a:b1:48:d6:a1:45:66:25:7e:04:cf: d8:1d:56:c8:ef:0f:b2:89:0d:23:4e:07:1a:6d:41:0a:a1:3f: e7:8f:b1:bd:61:d1:f3:77:94:b3:80:88:54:cf:e7:e8:79:37: 37:38:7f:72:d2:5b:12:25:9d:72:29:9b:4a:6f:63:31:10:c6: 85:1a:ac:2d:d7:75:98:d3:8b:eb:1f:d2:63:68:21:cb:b4:cc: 08:1f:5d:8e:cd:9e:56:a5:fb:23:79:9b:4d:dd:89:32:db:f9: 19:62:be:6e:6d:43:a7:49:f4:c2:4c:1c:bc:39:56:e7:89:73: 84:e0:d3:ae:26:d3:3e:3b:a8:df:54:d7:35:33:27:2e:c5:8d: 0c:39:0c:d4:ca:07:66:9a:f2:25:0c:e6:75:f8:cc:78:2c:30: 83:f3:6f:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0ZCQjIxMTAvBgNVBAUTKEFEODVCN0UxOEIzQTE2RjUzRTkyOTM4QTMzNEVDNkJC M0VCOEI2MzAwHhcNMjUwNzAzMDM0OTQ0WhcNMjUwNzEwMDM0OTQ0WjAYMRYwFAYD VQQDEw02ODY1ZmRkOC02OWY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuzf0RMnRQDrYGrBWd7haE/1nGzaHq411fFB8yBne3gPFg1r4OudVO51vGkzx /TaeP+66UWIw2w/xsbn7u6Mt87NPEWEZ7FhG4arsJLJ3imJkBgoJsxPVy/CiwJwb qxr9ktuERegzsqwv8bdVIjI/rVZHesm6sSIzTrx9/zf1LJ1tuMiBWqru+divN/TK ntamLoVa39oVaV0dnO+riXNrxctvO3tR3rFw3FEtzcTDt+Rsgg/itC2baDKJ58pf tT/Xd8Sm2C7bvWZ1teXCz1AQLJD01KtiNpw9xMx4yAlF9eTaKkKOeQvgq6LyxDj1 tMKHlsepeZYLoziMD5kk3ec0uQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHwIH7MP XziPkVRUkDDGWPE65bDBMB8GA1UdIwQYMBaAFK2Ft+GLOhb1PpKTijNOxrs+uLYw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRkJCMi8wRTI3MDU0NDFB ODYxMUVFQTBBQTg3MTZDNEY5QUUwMi9yWVczNFlzNkZ2VS1rcE9LTTA3R3V6NjR0 akEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JZVzM0WXM2RnZVLWtwT0tNMDdHdXo2NHRqQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RkJCMi8wRTI3MDU0NDFBODYxMUVFQTBBQTg3MTZDNEY5QUUwMi9yWVczNFlzNkZ2 VS1rcE9LTTA3R3V6NjR0akEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChFuRprBDxy1ZUJ517G14Dkqp33iRgQD0RosNOJRE/wu6Xq2IA0LXL 9acaf5Gf/SyUsa/l6bisi6eqtiQFzsqgqZNocbc9OwA6NVK5F7F4DDDKap8R2D1s xPr/BZdGWpPgSrFI1qFFZiV+BM/YHVbI7w+yiQ0jTgcabUEKoT/nj7G9YdHzd5Sz gIhUz+foeTc3OH9y0lsSJZ1yKZtKb2MxEMaFGqwt13WY04vrH9JjaCHLtMwIH12O zZ5WpfsjeZtN3Yky2/kZYr5ubUOnSfTCTBy8OVbniXOE4NOuJtM+O6jfVNc1Mycu xY0MOQzUygdmmvIlDOZ1+Mx4LDCD82+/ -----END CERTIFICATE-----Generated at Thu Jul 3 11:55:58 2025 by rpki-client