$ rpki-client -vvf rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft File: yZ1gB81HfYmzWcM8k8qptbsQYBo.mft (raw, json) Hash identifier: SMNm2IEVOFD2Rd+2tfsBiVw/4LiYaBrynZ1KxNyOZ5w= Subject key identifier: BE:95:9F:58:1C:3A:60:29:8A:A4:E2:29:51:1E:34:0F:C7:5A:AC:CC Authority key identifier: C9:9D:60:07:CD:47:7D:89:B3:59:C3:3C:93:CA:A9:B5:BB:10:60:1A Certificate issuer: /CN=A9173F03/serialNumber=C99D6007CD477D89B359C33C93CAA9B5BB10601A Certificate serial: 0C40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ1gB81HfYmzWcM8k8qptbsQYBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft Manifest number: 0C30 Signing time: Wed 02 Jul 2025 18:51:53 +0000 Manifest this update: Wed 02 Jul 2025 18:51:53 +0000 Manifest next update: Wed 09 Jul 2025 18:51:53 +0000 Files and hashes: 1: yZ1gB81HfYmzWcM8k8qptbsQYBo.crl (hash: IVONMhm0hQnwILNthAaRtSLYPcZibAw6Cb8idkcBNDg=) 2: 1F3C6E3C6E6811EF93F0A64EC4F9AE02.roa (hash: KCbvW2+iTb2FhCUJSCAthuyvDnx7MU5+U8PZ8z1pu+g=) 3: 7D16D03C861A11EF99D32B66C4F9AE02.roa (hash: LFZ6uBkW6voau17buZXmD8B1WuozeZe536RV9ixDxuw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.crl rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ1gB81HfYmzWcM8k8qptbsQYBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3136 (0xc40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173F03, serialNumber=C99D6007CD477D89B359C33C93CAA9B5BB10601A Validity Not Before: Jul 2 18:51:53 2025 GMT Not After : Jul 9 18:51:53 2025 GMT Subject: CN=68657fc9-103d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:2c:c4:b7:74:3f:26:49:9a:c3:71:fc:3d:37: 81:bf:7d:7c:d6:d5:74:03:04:35:07:82:dc:e3:48: c5:a9:13:f0:5c:35:b5:a5:9e:33:ec:1b:78:ac:22: 59:9e:1a:88:03:2f:64:19:e7:47:fb:6f:bb:75:db: 18:82:06:0d:67:5a:37:4a:8d:4e:e7:07:85:33:5b: 21:0d:cc:e0:9a:b2:c6:e4:a1:5b:7c:63:74:66:c3: 49:d9:f2:97:ed:0f:fd:9b:2e:71:40:aa:1c:5d:c1: a1:bf:5c:96:46:5e:22:4e:3f:a7:e7:9a:b1:8f:2a: 75:b2:74:26:18:cf:a6:7a:c4:02:fb:39:b7:fe:18: d7:bf:92:fb:65:bd:e8:3e:0f:66:90:f3:0f:fa:44: a1:69:30:3c:8c:f2:f7:b2:b5:e4:d0:b9:84:68:88: 14:d7:95:09:2f:d4:79:8f:55:6e:30:61:3f:57:4b: 93:5d:eb:b3:1e:7a:ba:d6:28:d9:ef:c2:be:1d:47: c0:e6:cb:b7:a3:2b:d4:94:6e:e4:5a:c5:4a:50:63: 13:14:20:f2:7b:10:9d:39:4b:39:c7:7c:0a:e3:79: d7:17:d4:fb:4c:b9:0f:2e:b6:bc:3a:bd:15:97:bb: 4a:65:37:f1:25:a3:61:60:93:fe:5f:05:7d:4c:db: 4f:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:95:9F:58:1C:3A:60:29:8A:A4:E2:29:51:1E:34:0F:C7:5A:AC:CC X509v3 Authority Key Identifier: keyid:C9:9D:60:07:CD:47:7D:89:B3:59:C3:3C:93:CA:A9:B5:BB:10:60:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ1gB81HfYmzWcM8k8qptbsQYBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:b7:af:08:1b:8c:e7:45:04:ca:38:00:ee:4f:89:19:7d:38: 4a:f1:d7:78:cd:89:b0:12:1f:7b:4c:c3:bd:f3:d0:6a:db:6c: b0:5f:bd:a3:24:8f:a1:6d:34:27:06:59:ea:8b:bc:3b:3b:5f: 41:e3:ba:8e:ba:14:75:f0:c2:86:ae:d1:ed:fb:fc:95:99:ee: 38:b3:44:28:33:25:86:fa:56:60:22:8a:ed:b4:d5:25:83:00: b3:69:e0:44:ee:c1:06:c9:1e:50:2b:db:5c:e8:65:cb:cd:aa: fe:5c:73:01:c7:bd:83:7c:c5:55:a0:9c:d3:61:50:de:2b:9b: 55:f8:3a:41:a4:6f:f6:47:b7:6c:13:74:51:29:02:46:43:de: 9a:ce:ed:90:7e:ac:7a:f6:66:b5:d4:99:12:29:2e:47:d0:8b: b3:3f:1c:fc:29:80:7d:4e:cd:40:1f:93:e0:8d:a4:29:55:85: 62:f8:b8:4f:23:d6:88:79:8d:6b:12:35:86:c0:19:05:a6:5e: 58:0d:e0:c2:cf:42:d2:e1:ea:5a:45:88:86:5a:4e:1f:27:65: 79:b3:64:ab:07:45:7a:bb:8a:42:58:e2:b5:b9:df:ca:5d:62: 37:4f:bc:66:c1:48:e9:38:ca:75:d6:c1:fd:4b:7f:af:98:56: df:8f:b1:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNGMDMxMTAvBgNVBAUTKEM5OUQ2MDA3Q0Q0NzdEODlCMzU5QzMzQzkzQ0FBOUI1 QkIxMDYwMUEwHhcNMjUwNzAyMTg1MTUzWhcNMjUwNzA5MTg1MTUzWjAYMRYwFAYD VQQDEw02ODY1N2ZjOS0xMDNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuCzEt3Q/Jkmaw3H8PTeBv3181tV0AwQ1B4Lc40jFqRPwXDW1pZ4z7Bt4rCJZ nhqIAy9kGedH+2+7ddsYggYNZ1o3So1O5weFM1shDczgmrLG5KFbfGN0ZsNJ2fKX 7Q/9my5xQKocXcGhv1yWRl4iTj+n55qxjyp1snQmGM+mesQC+zm3/hjXv5L7Zb3o Pg9mkPMP+kShaTA8jPL3srXk0LmEaIgU15UJL9R5j1VuMGE/V0uTXeuzHnq61ijZ 78K+HUfA5su3oyvUlG7kWsVKUGMTFCDyexCdOUs5x3wK43nXF9T7TLkPLra8Or0V l7tKZTfxJaNhYJP+XwV9TNtP5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL6Vn1gc OmApiqTiKVEeNA/HWqzMMB8GA1UdIwQYMBaAFMmdYAfNR32Js1nDPJPKqbW7EGAa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0YwMy82NEY2QzI4RTBE RTExMUVBOTk2Njk4ODVDNEY5QUUwMi95WjFnQjgxSGZZbXpXY004azhxcHRic1FZ Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3laMWdCODFIZllteldjTThrOHFwdGJzUVlCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0YwMy82NEY2QzI4RTBERTExMUVBOTk2Njk4ODVDNEY5QUUwMi95WjFnQjgxSGZZ bXpXY004azhxcHRic1FZQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkt68IG4znRQTKOADuT4kZfThK8dd4zYmwEh97TMO989Bq22ywX72j JI+hbTQnBlnqi7w7O19B47qOuhR18MKGrtHt+/yVme44s0QoMyWG+lZgIorttNUl gwCzaeBE7sEGyR5QK9tc6GXLzar+XHMBx72DfMVVoJzTYVDeK5tV+DpBpG/2R7ds E3RRKQJGQ96azu2Qfqx69ma11JkSKS5H0IuzPxz8KYB9Ts1AH5PgjaQpVYVi+LhP I9aIeY1rEjWGwBkFpl5YDeDCz0LS4epaRYiGWk4fJ2V5s2SrB0V6u4pCWOK1ud/K XWI3T7xmwUjpOMp11sH9S3+vmFbfj7GU -----END CERTIFICATE-----Generated at Fri Jul 4 18:44:02 2025 by rpki-client