$ rpki-client -vvf rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft File: P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft (raw, json) Hash identifier: 8gwhjTFKN6maHPNd3WVl8WsdCSLbsVwuKPtPG+YEN2w= Subject key identifier: 48:0B:AC:B1:57:E2:26:FE:E7:C1:B5:2F:14:C3:65:DB:10:A8:77:59 Authority key identifier: 3F:E6:03:1F:25:56:7A:45:47:CD:E1:73:1A:2D:81:4D:B8:6E:20:94 Certificate issuer: /CN=A914988F/serialNumber=3FE6031F25567A4547CDE1731A2D814DB86E2094 Certificate serial: 07CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-YDHyVWekVHzeFzGi2BTbhuIJQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft Manifest number: 07C8 Signing time: Wed 02 Jul 2025 21:24:36 +0000 Manifest this update: Wed 02 Jul 2025 21:24:36 +0000 Manifest next update: Wed 09 Jul 2025 21:24:36 +0000 Files and hashes: 1: P-YDHyVWekVHzeFzGi2BTbhuIJQ.crl (hash: CPqNYwnjFPgIU75lk0ZuognhNdC3SvpQVZm9QhkZ334=) 2: 4ED5A00CFE2611EAA4F3424DC4F9AE02.roa (hash: qdn4Rx6KYVWRsCXtm49GAL/TWxFXG2srvh1gEG2saCQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.crl rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-YDHyVWekVHzeFzGi2BTbhuIJQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 21:24:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1999 (0x7cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914988F, serialNumber=3FE6031F25567A4547CDE1731A2D814DB86E2094 Validity Not Before: Jul 2 21:24:36 2025 GMT Not After : Jul 9 21:24:36 2025 GMT Subject: CN=6865a394-2892 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:83:18:c9:35:f3:b9:57:ac:42:09:2f:ec:94: 35:1d:6b:bb:10:48:88:01:97:d5:1e:a6:70:41:05: 5b:c3:c5:5b:70:8b:58:d1:db:cb:bc:84:3b:df:37: 8e:5a:90:df:e9:c1:07:3a:21:9b:b8:92:5d:78:1c: e2:72:21:ff:37:34:5b:df:9f:f2:05:3f:25:73:f1: 9f:1a:ee:6a:4c:0f:6b:5e:e1:14:19:e3:95:51:90: a8:c9:b8:c1:56:16:8c:5c:86:7d:ec:dd:98:de:31: 49:7c:a6:99:66:25:f0:7a:1b:d2:4d:4d:d6:ce:32: d9:9d:e5:14:5f:df:11:c3:95:45:ff:8f:33:12:ed: 4d:e7:e0:c7:27:41:42:71:0c:a3:d6:b8:58:6c:fc: 9e:1e:6a:c0:1d:6a:fd:18:51:52:b5:53:5e:24:99: c8:91:82:56:3d:23:ef:0d:8b:e0:b5:52:81:fe:1a: 17:d1:76:d1:0f:56:90:42:30:36:1f:1b:83:07:70: 7a:c1:8d:87:73:8a:61:0b:96:90:01:fc:11:ad:0b: af:77:9d:7e:73:f3:05:64:62:dd:3f:8d:2a:91:de: 2a:7c:1b:1f:f6:ec:46:bb:3a:05:dc:f2:5a:2f:7e: 9d:a6:14:d6:38:d7:1a:ea:9f:06:d6:3c:c4:9e:1d: 39:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:0B:AC:B1:57:E2:26:FE:E7:C1:B5:2F:14:C3:65:DB:10:A8:77:59 X509v3 Authority Key Identifier: keyid:3F:E6:03:1F:25:56:7A:45:47:CD:E1:73:1A:2D:81:4D:B8:6E:20:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-YDHyVWekVHzeFzGi2BTbhuIJQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:de:55:0f:9a:f7:05:ac:72:6d:23:92:7b:d1:37:69:6d:20: e7:4a:23:ba:ca:15:36:aa:28:5a:1e:d3:44:09:1a:21:be:c5: 65:7f:b2:e8:bf:e6:30:ab:96:20:d9:e8:11:4d:5a:8a:02:9a: 04:4b:e2:71:79:e4:09:72:8d:9b:4c:b2:82:00:39:63:e0:4f: ba:81:3b:64:99:1d:00:70:d6:6b:94:4b:79:17:d6:07:28:8b: 34:16:ce:4f:ce:24:09:1b:48:1a:14:48:93:c0:8a:f1:ff:fd: a9:9c:16:40:65:8c:ea:59:aa:46:a6:46:62:88:b5:81:c2:a5: 9c:64:54:70:7a:f2:0d:06:45:c0:48:56:e9:b9:cc:65:25:92: 85:0f:a6:54:9c:26:bf:44:04:4e:39:7c:88:50:5b:a0:bd:ba: a4:7d:b0:c1:06:f6:58:ac:0b:0b:02:7d:38:8b:db:ec:68:3f: 4c:a1:57:fc:18:1f:aa:54:aa:bc:ec:c4:65:20:a1:e2:5b:a0: 71:b2:75:b7:a3:d8:01:95:bc:42:ae:23:1e:af:0a:8a:4f:d9: 7c:f2:74:46:d2:49:5b:12:74:dc:bd:95:66:2a:46:f5:af:1d: 2c:b3:35:af:a9:d5:93:2d:a0:45:90:8e:09:d2:70:79:fa:20: a6:b4:e8:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB88wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDk4OEYxMTAvBgNVBAUTKDNGRTYwMzFGMjU1NjdBNDU0N0NERTE3MzFBMkQ4MTRE Qjg2RTIwOTQwHhcNMjUwNzAyMjEyNDM2WhcNMjUwNzA5MjEyNDM2WjAYMRYwFAYD VQQDEw02ODY1YTM5NC0yODkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzYMYyTXzuVesQgkv7JQ1HWu7EEiIAZfVHqZwQQVbw8VbcItY0dvLvIQ73zeO WpDf6cEHOiGbuJJdeBziciH/NzRb35/yBT8lc/GfGu5qTA9rXuEUGeOVUZCoybjB VhaMXIZ97N2Y3jFJfKaZZiXwehvSTU3WzjLZneUUX98Rw5VF/48zEu1N5+DHJ0FC cQyj1rhYbPyeHmrAHWr9GFFStVNeJJnIkYJWPSPvDYvgtVKB/hoX0XbRD1aQQjA2 HxuDB3B6wY2Hc4phC5aQAfwRrQuvd51+c/MFZGLdP40qkd4qfBsf9uxGuzoF3PJa L36dphTWONca6p8G1jzEnh05UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEgLrLFX 4ib+58G1LxTDZdsQqHdZMB8GA1UdIwQYMBaAFD/mAx8lVnpFR83hcxotgU24biCU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OTg4Ri8xOTI0N0ZCQUZF MjUxMUVBOUNDMTBDNENDNEY5QUUwMi9QLVlESHlWV2VrVkh6ZUZ6R2kyQlRiaHVJ SlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1AtWURIeVZXZWtWSHplRnpHaTJCVGJodUlKUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OTg4Ri8xOTI0N0ZCQUZFMjUxMUVBOUNDMTBDNENDNEY5QUUwMi9QLVlESHlWV2Vr Vkh6ZUZ6R2kyQlRiaHVJSlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBE3lUPmvcFrHJtI5J70TdpbSDnSiO6yhU2qihaHtNECRohvsVlf7Lo v+Ywq5Yg2egRTVqKApoES+JxeeQJco2bTLKCADlj4E+6gTtkmR0AcNZrlEt5F9YH KIs0Fs5PziQJG0gaFEiTwIrx//2pnBZAZYzqWapGpkZiiLWBwqWcZFRwevINBkXA SFbpucxlJZKFD6ZUnCa/RAROOXyIUFugvbqkfbDBBvZYrAsLAn04i9vsaD9MoVf8 GB+qVKq87MRlIKHiW6BxsnW3o9gBlbxCriMerwqKT9l88nRG0klbEnTcvZVmKkb1 rx0sszWvqdWTLaBFkI4J0nB5+iCmtOg8 -----END CERTIFICATE-----Generated at Fri Jul 4 07:43:51 2025 by rpki-client