$ rpki-client -vvf rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.mft File: YRy1Vsh7wEmlpD6x8pcQfv8beUA.mft (raw, json) Hash identifier: gy1Rt0sAUYDexumNoh5sdQPTkCh/yeJhTwIEUSeC3Es= Subject key identifier: C6:93:9A:D5:3F:B2:2B:37:B8:57:9A:30:D1:34:BD:F1:50:7E:C7:13 Authority key identifier: 61:1C:B5:56:C8:7B:C0:49:A5:A4:3E:B1:F2:97:10:7E:FF:1B:79:40 Certificate issuer: /CN=A914F7F0/serialNumber=611CB556C87BC049A5A43EB1F297107EFF1B7940 Certificate serial: B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRy1Vsh7wEmlpD6x8pcQfv8beUA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.mft Manifest number: AC Signing time: Tue 01 Jul 2025 06:47:59 +0000 Manifest this update: Tue 01 Jul 2025 06:47:59 +0000 Manifest next update: Tue 08 Jul 2025 06:47:59 +0000 Files and hashes: 1: YRy1Vsh7wEmlpD6x8pcQfv8beUA.crl (hash: Vprmmh5qo1QKAW16kj4EKM179HaI6Lc5uALL9PnrDMg=) 2: 9A826D9059D611EF814F004DC4F9AE02.roa (hash: 3aT0muq2AP76fHDV6M45dsCuBJOlUCEA5kwKeP8ww7o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.crl rsync://rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRy1Vsh7wEmlpD6x8pcQfv8beUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 06:47:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 176 (0xb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F7F0, serialNumber=611CB556C87BC049A5A43EB1F297107EFF1B7940 Validity Not Before: Jul 1 06:47:59 2025 GMT Not After : Jul 8 06:47:59 2025 GMT Subject: CN=6863849f-a427 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:cd:1a:f0:d4:96:40:44:c0:cb:3a:a7:74:6e: 8b:dc:7c:25:64:22:4f:e7:df:5e:80:2e:05:72:9f: b2:0a:d2:10:a5:78:71:16:43:1c:e8:0c:6a:d5:37: 04:29:4d:36:29:6b:29:27:88:1c:d9:de:25:06:87: 4e:7a:85:71:8b:ea:a7:40:a5:8e:6e:6b:41:8b:0b: f4:e1:5e:e1:89:38:39:60:61:2b:b0:dd:1f:b7:ea: b9:0b:1f:a0:c8:e0:5f:74:f5:26:45:0d:6d:ef:fa: 30:2c:82:96:f8:5b:55:b1:36:03:1c:4b:27:c7:70: 8c:7b:7a:5b:65:1b:0e:ab:01:60:fb:71:6c:8a:f3: 89:05:ef:11:7c:f5:f6:68:0c:17:ab:32:61:87:a8: 2b:fc:d5:b5:44:94:13:1e:46:9c:fc:28:e0:4e:8e: 5e:49:60:93:b2:25:bf:14:08:b3:f9:4a:5e:18:22: 16:f1:0e:95:27:e5:fb:64:74:42:76:8f:05:7d:ba: c0:5e:1d:de:6f:1b:0d:85:f4:ac:b4:fb:ac:b1:30: 69:8a:36:ec:c1:50:b7:34:49:d0:c6:27:99:aa:f8: f5:e3:e1:95:df:eb:c0:b9:17:fb:9d:fe:ed:e2:37: 73:95:49:35:59:fc:3d:d6:2f:bb:6b:53:36:15:7d: 4e:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:93:9A:D5:3F:B2:2B:37:B8:57:9A:30:D1:34:BD:F1:50:7E:C7:13 X509v3 Authority Key Identifier: keyid:61:1C:B5:56:C8:7B:C0:49:A5:A4:3E:B1:F2:97:10:7E:FF:1B:79:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRy1Vsh7wEmlpD6x8pcQfv8beUA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:10:f9:5c:df:9f:b5:37:6a:d8:c6:1a:be:d2:dc:f9:1a:14: d1:d2:5d:02:be:16:04:cf:2a:c1:76:9d:6e:42:2d:b1:ce:c3: fd:75:5f:33:66:44:21:10:4d:c4:6d:d8:27:e6:5f:3f:13:3d: 8e:40:b1:d6:81:d9:77:c4:46:e5:39:44:5c:36:e1:9f:88:5d: b2:94:b4:13:ad:d4:22:e9:7f:25:ca:fc:7b:cd:c5:f4:b9:3c: 71:9c:cd:4b:5c:7b:d9:73:a2:3a:d7:50:f9:c8:33:98:37:c0: 21:56:46:f3:cf:ea:f1:fc:3f:0d:7b:c2:3f:32:87:3e:db:87: da:c1:35:a8:aa:81:c5:41:a4:d4:4a:31:0c:a7:db:f6:9d:86: 3c:bb:1d:ae:57:47:6a:ec:84:7f:c1:22:cc:20:35:67:5e:92: 68:c7:78:15:cd:9d:c8:11:96:6f:c5:99:b6:be:23:bd:59:df: 5d:f5:03:59:a0:e3:06:1d:60:14:22:be:16:38:be:72:e1:9b: ea:fa:90:30:35:ff:99:9f:e1:d5:b6:bd:73:d4:03:c1:16:de: e1:8e:85:c0:f6:08:1b:22:34:0e:3c:42:ba:42:d0:e7:38:a1: 76:b0:58:43:95:90:c3:05:09:9a:31:41:2b:98:dc:26:e8:65: 65:9f:67:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY3RjAxMTAvBgNVBAUTKDYxMUNCNTU2Qzg3QkMwNDlBNUE0M0VCMUYyOTcxMDdF RkYxQjc5NDAwHhcNMjUwNzAxMDY0NzU5WhcNMjUwNzA4MDY0NzU5WjAYMRYwFAYD VQQDEw02ODYzODQ5Zi1hNDI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5s0a8NSWQETAyzqndG6L3HwlZCJP599egC4Fcp+yCtIQpXhxFkMc6Axq1TcE KU02KWspJ4gc2d4lBodOeoVxi+qnQKWObmtBiwv04V7hiTg5YGErsN0ft+q5Cx+g yOBfdPUmRQ1t7/owLIKW+FtVsTYDHEsnx3CMe3pbZRsOqwFg+3FsivOJBe8RfPX2 aAwXqzJhh6gr/NW1RJQTHkac/CjgTo5eSWCTsiW/FAiz+UpeGCIW8Q6VJ+X7ZHRC do8FfbrAXh3ebxsNhfSstPussTBpijbswVC3NEnQxieZqvj14+GV3+vAuRf7nf7t 4jdzlUk1Wfw91i+7a1M2FX1O7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMaTmtU/ sis3uFeaMNE0vfFQfscTMB8GA1UdIwQYMBaAFGEctVbIe8BJpaQ+sfKXEH7/G3lA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjdGMC9DNzRFQjY5QTU5 RDUxMUVGODNEMjhCNEJDNEY5QUUwMi9ZUnkxVnNoN3dFbWxwRDZ4OHBjUWZ2OGJl VUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lSeTFWc2g3d0VtbHBENng4cGNRZnY4YmVVQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjdGMC9DNzRFQjY5QTU5RDUxMUVGODNEMjhCNEJDNEY5QUUwMi9ZUnkxVnNoN3dF bWxwRDZ4OHBjUWZ2OGJlVUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJEPlc35+1N2rYxhq+0tz5GhTR0l0CvhYEzyrBdp1uQi2xzsP9dV8z ZkQhEE3Ebdgn5l8/Ez2OQLHWgdl3xEblOURcNuGfiF2ylLQTrdQi6X8lyvx7zcX0 uTxxnM1LXHvZc6I611D5yDOYN8AhVkbzz+rx/D8Ne8I/Moc+24fawTWoqoHFQaTU SjEMp9v2nYY8ux2uV0dq7IR/wSLMIDVnXpJox3gVzZ3IEZZvxZm2viO9Wd9d9QNZ oOMGHWAUIr4WOL5y4Zvq+pAwNf+Zn+HVtr1z1APBFt7hjoXA9ggbIjQOPEK6QtDn OKF2sFhDlZDDBQmaMUErmNwm6GVln2dK -----END CERTIFICATE-----Generated at Thu Jul 3 00:51:24 2025 by rpki-client