$ rpki-client -vvf rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft File: P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft (raw, json) Hash identifier: OuKnBfjYaX4iuNNt+DXSsydu67f/l+XnMRrWa9fnSnQ= Subject key identifier: 32:D6:7B:C6:93:A2:67:9B:54:71:C2:55:5C:BF:E9:BD:60:14:34:A4 Authority key identifier: 3F:E6:03:1F:25:56:7A:45:47:CD:E1:73:1A:2D:81:4D:B8:6E:20:94 Certificate issuer: /CN=A914988F/serialNumber=3FE6031F25567A4547CDE1731A2D814DB86E2094 Certificate serial: 07EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-YDHyVWekVHzeFzGi2BTbhuIJQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft Manifest number: 07E4 Signing time: Fri 22 Aug 2025 21:12:19 +0000 Manifest this update: Fri 22 Aug 2025 21:12:19 +0000 Manifest next update: Fri 29 Aug 2025 21:12:19 +0000 Files and hashes: 1: P-YDHyVWekVHzeFzGi2BTbhuIJQ.crl (hash: EyoIq+x2BnKNClpPkWcbWAlIq6iZEkXIZY7c9Vo7x3M=) 2: 4ED5A00CFE2611EAA4F3424DC4F9AE02.roa (hash: jObAEaW9jlDTMyIb6A8JZqjslqhvlPIsAzJOzv+NnRY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.crl rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-YDHyVWekVHzeFzGi2BTbhuIJQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:12:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2028 (0x7ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914988F, serialNumber=3FE6031F25567A4547CDE1731A2D814DB86E2094 Validity Not Before: Aug 22 21:12:19 2025 GMT Not After : Aug 29 21:12:19 2025 GMT Subject: CN=68a8dd33-14d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:29:93:19:cf:82:af:56:4e:43:2b:cc:c2:b7: 91:8f:2e:e0:c4:51:b6:32:8b:95:98:72:d9:17:5a: 83:3b:82:4f:d7:28:59:a0:54:26:cb:0e:be:19:82: a3:f6:c0:59:73:eb:0d:62:ed:83:1d:86:18:d0:b3: ce:dd:7e:82:24:56:7b:7b:4c:07:a3:00:5d:48:80: 16:14:11:f3:bb:cd:fa:76:5a:28:a0:e0:72:34:3f: 8a:4b:21:26:67:3a:1f:8d:03:b5:7a:5c:67:3b:d7: 7f:f9:91:69:1c:68:aa:d0:02:4b:5a:09:eb:ca:65: ab:f5:99:6c:54:1a:99:fc:b2:21:c4:67:19:9f:8e: 47:c2:6c:2b:c9:86:f6:24:5c:b3:a7:ae:70:f4:2c: fc:e6:b7:4a:e6:92:b8:67:06:33:00:c6:1e:bd:2f: d9:ae:71:65:dc:17:94:87:34:1f:03:ae:f4:b5:c2: c5:0c:6b:d4:83:6c:4c:7e:c5:ed:8d:43:e9:8a:e0: 3d:02:78:48:40:c5:5f:2b:eb:7d:07:6c:dd:35:1e: 67:92:82:a4:77:6b:22:d9:bb:63:57:78:c5:eb:9a: 45:a5:d3:fd:41:11:4d:3d:7a:18:66:61:53:f3:e0: 01:0f:97:07:aa:51:a0:e7:3a:c9:d5:e2:ba:b7:56: a8:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:D6:7B:C6:93:A2:67:9B:54:71:C2:55:5C:BF:E9:BD:60:14:34:A4 X509v3 Authority Key Identifier: keyid:3F:E6:03:1F:25:56:7A:45:47:CD:E1:73:1A:2D:81:4D:B8:6E:20:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-YDHyVWekVHzeFzGi2BTbhuIJQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:f3:f1:54:09:eb:4e:94:04:f6:cf:b9:56:2a:55:af:25:39: 1a:4e:ec:4f:c1:22:e2:ff:ae:d1:c8:7c:a4:0c:4d:57:10:f3: a8:1f:8c:cd:58:ee:97:41:79:52:1d:e1:50:c1:70:f3:b8:2c: 4b:b3:b8:3d:78:82:79:79:31:ff:04:1e:c6:af:5a:d1:a0:36: 7b:7a:1f:df:3d:84:f4:40:66:72:71:a3:d5:1f:48:20:02:fb: 6e:49:ae:13:b9:6e:dd:2c:6f:43:6b:53:f6:e4:b0:48:41:29: 5c:7a:66:ba:6f:11:4a:08:d1:46:32:14:8a:47:8e:3f:d4:3d: 73:f6:57:7c:f9:a9:86:21:c8:66:c3:e2:9b:76:97:e8:86:0b: 77:78:45:e5:6f:3e:fd:75:30:60:2b:72:01:46:58:0b:86:be: 1c:25:da:dc:ce:55:06:66:17:06:e2:50:9f:f1:c2:81:44:ef: ec:e3:93:02:0e:0b:10:80:8f:ec:d2:29:26:e5:87:d9:41:ac: a3:ea:e6:98:72:15:25:6b:06:dc:37:c3:22:40:1b:15:56:31: 7d:83:4f:66:e3:66:88:3e:a6:90:55:24:d4:ef:23:07:f5:73: 93:13:4f:c5:e0:42:09:a2:73:ca:85:56:1b:38:e4:71:2f:86: 26:30:78:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDk4OEYxMTAvBgNVBAUTKDNGRTYwMzFGMjU1NjdBNDU0N0NERTE3MzFBMkQ4MTRE Qjg2RTIwOTQwHhcNMjUwODIyMjExMjE5WhcNMjUwODI5MjExMjE5WjAYMRYwFAYD VQQDEw02OGE4ZGQzMy0xNGQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtimTGc+Cr1ZOQyvMwreRjy7gxFG2MouVmHLZF1qDO4JP1yhZoFQmyw6+GYKj 9sBZc+sNYu2DHYYY0LPO3X6CJFZ7e0wHowBdSIAWFBHzu836dloooOByND+KSyEm ZzofjQO1elxnO9d/+ZFpHGiq0AJLWgnrymWr9ZlsVBqZ/LIhxGcZn45HwmwryYb2 JFyzp65w9Cz85rdK5pK4ZwYzAMYevS/ZrnFl3BeUhzQfA670tcLFDGvUg2xMfsXt jUPpiuA9AnhIQMVfK+t9B2zdNR5nkoKkd2si2btjV3jF65pFpdP9QRFNPXoYZmFT 8+ABD5cHqlGg5zrJ1eK6t1aoawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDLWe8aT omebVHHCVVy/6b1gFDSkMB8GA1UdIwQYMBaAFD/mAx8lVnpFR83hcxotgU24biCU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OTg4Ri8xOTI0N0ZCQUZF MjUxMUVBOUNDMTBDNENDNEY5QUUwMi9QLVlESHlWV2VrVkh6ZUZ6R2kyQlRiaHVJ SlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1AtWURIeVZXZWtWSHplRnpHaTJCVGJodUlKUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OTg4Ri8xOTI0N0ZCQUZFMjUxMUVBOUNDMTBDNENDNEY5QUUwMi9QLVlESHlWV2Vr Vkh6ZUZ6R2kyQlRiaHVJSlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+8/FUCetOlAT2z7lWKlWvJTkaTuxPwSLi/67RyHykDE1XEPOoH4zN WO6XQXlSHeFQwXDzuCxLs7g9eIJ5eTH/BB7Gr1rRoDZ7eh/fPYT0QGZycaPVH0gg AvtuSa4TuW7dLG9Da1P25LBIQSlcema6bxFKCNFGMhSKR44/1D1z9ld8+amGIchm w+Kbdpfohgt3eEXlbz79dTBgK3IBRlgLhr4cJdrczlUGZhcG4lCf8cKBRO/s45MC DgsQgI/s0ikm5YfZQayj6uaYchUlawbcN8MiQBsVVjF9g09m42aIPqaQVSTU7yMH 9XOTE0/F4EIJonPKhVYbOORxL4YmMHif -----END CERTIFICATE-----Generated at Sat Aug 23 21:32:40 2025 by rpki-client