$ rpki-client -vvf rpki.apnic.net/member_repository/A9177562/6A3F921C073011ECB1249841C4F9AE02/yizBAkNd6FHdppmDFZEvBvQQTrE.mft File: yizBAkNd6FHdppmDFZEvBvQQTrE.mft (raw, json) Hash identifier: AJV7TuZ7luESMgBYghh0L4L5ZWQdoMXcpUPAYNF0yQ8= Subject key identifier: 2B:92:60:4B:E7:07:94:99:09:F4:F9:17:D0:6C:AF:8F:9F:FC:02:45 Authority key identifier: CA:2C:C1:02:43:5D:E8:51:DD:A6:99:83:15:91:2F:06:F4:10:4E:B1 Certificate issuer: /CN=A9177562/serialNumber=CA2CC102435DE851DDA6998315912F06F4104EB1 Certificate serial: 0527 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yizBAkNd6FHdppmDFZEvBvQQTrE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9177562/6A3F921C073011ECB1249841C4F9AE02/yizBAkNd6FHdppmDFZEvBvQQTrE.mft Manifest number: 0522 Signing time: Wed 02 Jul 2025 23:54:13 +0000 Manifest this update: Wed 02 Jul 2025 23:54:11 +0000 Manifest next update: Wed 09 Jul 2025 23:54:11 +0000 Files and hashes: 1: yizBAkNd6FHdppmDFZEvBvQQTrE.crl (hash: RHytfs0CiVvP8Ls4HTUaIWxy1omXGg/IzV0rn6Xm9O0=) 2: 973E6B76107C11ECB1F7DE5DC4F9AE02.roa (hash: SQGdKb1vFGjNIUOuBUka92JYyHUgvE8twdlpTLjrdUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9177562/6A3F921C073011ECB1249841C4F9AE02/yizBAkNd6FHdppmDFZEvBvQQTrE.crl rsync://rpki.apnic.net/member_repository/A9177562/6A3F921C073011ECB1249841C4F9AE02/yizBAkNd6FHdppmDFZEvBvQQTrE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yizBAkNd6FHdppmDFZEvBvQQTrE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:54:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1319 (0x527) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9177562, serialNumber=CA2CC102435DE851DDA6998315912F06F4104EB1 Validity Not Before: Jul 2 23:54:11 2025 GMT Not After : Jul 9 23:54:11 2025 GMT Subject: CN=6865c6a4-b0ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:08:a4:29:fe:92:55:f8:29:4b:e9:86:bb:2f: 97:8a:95:84:09:90:4c:ef:5b:7b:4e:05:4d:d0:df: c8:c8:ad:61:8b:2f:a2:85:28:51:dc:ae:9f:b1:54: 1a:04:4b:bc:82:15:1d:47:6e:52:b3:77:9c:ed:84: 48:49:92:91:14:19:14:e9:03:ec:d5:8a:7f:23:bd: 4b:42:c5:6b:bf:5c:70:30:39:2d:7a:6c:1a:90:38: b5:e8:55:93:cf:cd:82:cd:43:46:52:1f:86:e1:97: 3f:d0:b8:db:5f:6b:ca:2b:c4:e7:88:46:24:f7:39: 74:00:c8:ed:92:e7:2f:69:ee:c7:e1:2a:13:e4:54: ed:eb:28:24:12:99:06:0d:ee:e2:16:89:c8:c7:b1: 1b:d5:cd:db:cc:e4:7e:04:61:30:4d:b1:ff:83:0d: d6:47:6f:29:bf:34:62:77:e7:bf:08:ff:fc:d7:5d: fc:56:8e:5a:1a:92:9f:92:0c:f5:d8:17:91:b4:31: 5d:78:fb:46:60:19:4e:34:d7:98:fa:20:18:19:03: 9e:dc:c2:9a:66:3d:0f:94:b9:2f:90:b0:78:c3:07: 43:9d:ec:56:e3:56:5c:4e:0b:ca:ee:3f:9e:67:a0: 82:cf:96:21:dc:d8:5c:3e:c9:fa:21:e9:52:c8:7b: dc:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:92:60:4B:E7:07:94:99:09:F4:F9:17:D0:6C:AF:8F:9F:FC:02:45 X509v3 Authority Key Identifier: keyid:CA:2C:C1:02:43:5D:E8:51:DD:A6:99:83:15:91:2F:06:F4:10:4E:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9177562/6A3F921C073011ECB1249841C4F9AE02/yizBAkNd6FHdppmDFZEvBvQQTrE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yizBAkNd6FHdppmDFZEvBvQQTrE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9177562/6A3F921C073011ECB1249841C4F9AE02/yizBAkNd6FHdppmDFZEvBvQQTrE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:87:d7:5b:40:19:5d:95:d6:3f:a8:1e:a7:ff:2e:ee:2b:f6: 0d:34:bc:d6:01:de:6b:e2:4a:fd:ec:52:ad:e0:ac:d7:d1:74: 0b:95:07:1d:46:d3:3a:ae:04:3f:a4:f4:20:8f:bb:37:a2:7d: 69:da:eb:0d:90:c7:f8:63:f8:bb:cf:2a:97:c8:ff:83:94:f9: f1:2e:d6:2a:0d:8e:1e:c8:e7:41:ac:3a:64:ad:f1:62:ce:c9: f2:e7:08:10:24:42:db:cd:58:1a:eb:ca:e3:d2:f3:30:2f:84: 2d:ab:2a:1c:2d:aa:aa:3e:b9:70:58:db:38:9c:10:56:42:bd: 2d:ce:b3:b9:91:f7:2f:5e:58:ec:98:9b:9f:a8:5b:93:bc:25: f3:23:6f:53:d3:7d:68:be:c2:2f:32:7b:09:58:07:a2:da:58: 86:bc:86:c1:90:96:e4:b6:cc:26:23:fe:bd:51:42:7c:24:68: 22:e0:92:52:45:ac:a6:3b:3f:35:b0:82:f8:03:50:e9:d8:3e: 34:5f:86:0d:67:cf:57:3e:6c:ef:6b:bd:2a:d9:3b:37:2a:35: 69:f8:28:09:c7:16:15:4e:c8:57:c2:b6:cc:b2:08:6d:c6:b6: fe:d0:42:78:02:f3:3c:6d:f5:a0:5a:b7:aa:85:3e:ef:3c:06: 49:3c:58:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc1NjIxMTAvBgNVBAUTKENBMkNDMTAyNDM1REU4NTFEREE2OTk4MzE1OTEyRjA2 RjQxMDRFQjEwHhcNMjUwNzAyMjM1NDExWhcNMjUwNzA5MjM1NDExWjAYMRYwFAYD VQQDEw02ODY1YzZhNC1iMGVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0gikKf6SVfgpS+mGuy+XipWECZBM71t7TgVN0N/IyK1hiy+ihShR3K6fsVQa BEu8ghUdR25Ss3ec7YRISZKRFBkU6QPs1Yp/I71LQsVrv1xwMDktemwakDi16FWT z82CzUNGUh+G4Zc/0LjbX2vKK8TniEYk9zl0AMjtkucvae7H4SoT5FTt6ygkEpkG De7iFonIx7Eb1c3bzOR+BGEwTbH/gw3WR28pvzRid+e/CP/81138Vo5aGpKfkgz1 2BeRtDFdePtGYBlONNeY+iAYGQOe3MKaZj0PlLkvkLB4wwdDnexW41ZcTgvK7j+e Z6CCz5Yh3NhcPsn6IelSyHvcswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCuSYEvn B5SZCfT5F9Bsr4+f/AJFMB8GA1UdIwQYMBaAFMoswQJDXehR3aaZgxWRLwb0EE6x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzU2Mi82QTNGOTIxQzA3 MzAxMUVDQjEyNDk4NDFDNEY5QUUwMi95aXpCQWtOZDZGSGRwcG1ERlpFdkJ2UVFU ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lpekJBa05kNkZIZHBwbURGWkV2QnZRUVRyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzU2Mi82QTNGOTIxQzA3MzAxMUVDQjEyNDk4NDFDNEY5QUUwMi95aXpCQWtOZDZG SGRwcG1ERlpFdkJ2UVFUckUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDh9dbQBldldY/qB6n/y7uK/YNNLzWAd5r4kr97FKt4KzX0XQLlQcd RtM6rgQ/pPQgj7s3on1p2usNkMf4Y/i7zyqXyP+DlPnxLtYqDY4eyOdBrDpkrfFi zsny5wgQJELbzVga68rj0vMwL4QtqyocLaqqPrlwWNs4nBBWQr0tzrO5kfcvXljs mJufqFuTvCXzI29T031ovsIvMnsJWAei2liGvIbBkJbktswmI/69UUJ8JGgi4JJS RaymOz81sIL4A1Dp2D40X4YNZ89XPmzva70q2Ts3KjVp+CgJxxYVTshXwrbMsght xrb+0EJ4AvM8bfWgWreqhT7vPAZJPFgC -----END CERTIFICATE-----Generated at Thu Jul 3 06:16:17 2025 by rpki-client