$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft File: YLrcBCw3e4bA3J7riVEnJc4-IzY.mft (raw, json) Hash identifier: lk8RXA8xkgZmj5JYpxPVT0rTO4xGOlZl6Tdc/E9nX9A= Subject key identifier: 1F:72:08:E8:03:C9:0D:4E:85:F7:EF:89:69:28:F1:F1:02:D2:75:DA Authority key identifier: 60:BA:DC:04:2C:37:7B:86:C0:DC:9E:EB:89:51:27:25:CE:3E:23:36 Certificate issuer: /CN=A918D0AA/serialNumber=60BADC042C377B86C0DC9EEB89512725CE3E2336 Certificate serial: 01F3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YLrcBCw3e4bA3J7riVEnJc4-IzY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft Manifest number: 01EA Signing time: Thu 03 Jul 2025 02:47:34 +0000 Manifest this update: Thu 03 Jul 2025 02:47:33 +0000 Manifest next update: Thu 10 Jul 2025 02:47:33 +0000 Files and hashes: 1: YLrcBCw3e4bA3J7riVEnJc4-IzY.crl (hash: wqcjA4jRr3Q7L7zCbUFw9pHJIATIP7SLhPmKwxZfA+s=) 2: B6C4F8787A5911EDB8C4E04FC4F9AE02.roa (hash: 7d+9V95blk3EIKh2Ixj3Euh7Ce2kReodQwZ4pY3gbnI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.crl rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YLrcBCw3e4bA3J7riVEnJc4-IzY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 02:47:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 499 (0x1f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0AA, serialNumber=60BADC042C377B86C0DC9EEB89512725CE3E2336 Validity Not Before: Jul 3 02:47:33 2025 GMT Not After : Jul 10 02:47:33 2025 GMT Subject: CN=6865ef45-0143 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:82:e7:14:98:d8:fe:5c:1e:9f:ea:ac:ad:bd: a2:4e:45:9e:58:c8:3f:c0:c5:ba:f0:76:1b:22:2b: d6:a2:42:93:04:db:43:da:d9:2d:84:1a:da:14:61: 7c:d3:f6:44:a7:8b:27:fd:9f:ce:05:3a:95:94:60: 41:69:2c:66:3a:1f:31:a0:5c:28:5e:47:98:4f:ba: 6d:f9:7f:c9:0a:0a:94:9a:8c:eb:16:5d:eb:05:4c: a8:2d:1e:88:80:7f:3f:6a:06:e2:8d:ed:d8:3c:0d: 73:21:d6:3b:e3:fa:c1:8c:76:db:a1:23:22:26:ad: cc:c9:48:ab:9b:bd:56:3b:2a:b3:d9:8a:70:c7:e5: 97:6c:7a:db:ff:fd:2a:2d:ac:b2:73:4f:90:2b:31: 57:a2:93:96:41:af:b8:9b:9a:0b:6f:96:c9:1f:96: a9:92:5e:90:d4:cd:2a:b3:7d:8d:81:ae:1f:f0:8a: 6a:2e:d8:65:a0:60:05:e4:41:37:82:be:cb:89:29: 3b:75:b0:65:99:48:a1:94:4d:2c:af:b0:5c:ed:27: 2c:6c:21:a3:3a:e7:a8:d5:32:3e:d7:ec:44:0b:27: 0d:c5:64:fc:27:34:53:b2:b5:0c:86:83:63:e5:d0: 4c:9f:60:80:40:33:47:33:16:1f:da:21:59:5b:d3: d5:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:72:08:E8:03:C9:0D:4E:85:F7:EF:89:69:28:F1:F1:02:D2:75:DA X509v3 Authority Key Identifier: keyid:60:BA:DC:04:2C:37:7B:86:C0:DC:9E:EB:89:51:27:25:CE:3E:23:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YLrcBCw3e4bA3J7riVEnJc4-IzY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:ec:f1:22:66:14:f7:1b:6c:45:4a:17:5e:a5:0f:9e:2b:bb: ca:27:01:78:26:5e:d7:e7:50:b0:0d:ac:4a:0e:09:ca:db:82: 9e:82:73:a5:de:cb:68:41:82:8e:48:06:13:c3:71:af:12:02: 66:f8:53:3b:96:fe:fe:40:50:f1:76:a4:e1:ee:be:22:9b:51: 53:66:74:46:b7:c9:6b:58:06:5e:de:11:de:25:78:f5:87:68: d6:1c:e3:63:96:9c:af:84:5f:7f:cd:e2:43:90:47:07:ab:57: 1f:4f:75:dc:9a:3e:fa:dc:20:50:61:be:db:c0:0a:f6:8b:e1: 2e:9e:86:fd:77:6e:26:27:2b:78:d0:a8:5a:4c:19:63:56:7a: bb:a0:43:27:e5:5e:32:7f:0e:e7:b9:79:0f:32:34:fd:af:e8: 21:8e:b0:90:dd:34:4c:51:d0:16:10:c1:d4:fe:aa:74:d5:2e: 0b:3f:ec:2d:d0:50:64:04:b3:b2:06:be:34:d2:46:3e:f4:65: 3b:26:1b:06:3f:b2:2b:f4:b3:69:aa:8f:74:03:a5:41:06:ed: 7e:de:41:25:d4:86:91:4d:0c:14:df:36:dd:30:2b:10:5f:76: 06:08:84:61:a0:e5:11:ac:e5:9e:e0:1f:18:89:17:ab:1a:06: 3f:6c:71:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwQUExMTAvBgNVBAUTKDYwQkFEQzA0MkMzNzdCODZDMERDOUVFQjg5NTEyNzI1 Q0UzRTIzMzYwHhcNMjUwNzAzMDI0NzMzWhcNMjUwNzEwMDI0NzMzWjAYMRYwFAYD VQQDEw02ODY1ZWY0NS0wMTQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ILnFJjY/lwen+qsrb2iTkWeWMg/wMW68HYbIivWokKTBNtD2tkthBraFGF8 0/ZEp4sn/Z/OBTqVlGBBaSxmOh8xoFwoXkeYT7pt+X/JCgqUmozrFl3rBUyoLR6I gH8/agbije3YPA1zIdY74/rBjHbboSMiJq3MyUirm71WOyqz2Ypwx+WXbHrb//0q Layyc0+QKzFXopOWQa+4m5oLb5bJH5apkl6Q1M0qs32Nga4f8IpqLthloGAF5EE3 gr7LiSk7dbBlmUihlE0sr7Bc7ScsbCGjOueo1TI+1+xECycNxWT8JzRTsrUMhoNj 5dBMn2CAQDNHMxYf2iFZW9PVbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB9yCOgD yQ1OhffviWko8fEC0nXaMB8GA1UdIwQYMBaAFGC63AQsN3uGwNye64lRJyXOPiM2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBBQS8yQzc1RkVDODdB M0MxMUVEODYxQjI5MzNDNEY5QUUwMi9ZTHJjQkN3M2U0YkEzSjdyaVZFbkpjNC1J elkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1lMcmNCQ3czZTRiQTNKN3JpVkVuSmM0LUl6WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBBQS8yQzc1RkVDODdBM0MxMUVEODYxQjI5MzNDNEY5QUUwMi9ZTHJjQkN3M2U0 YkEzSjdyaVZFbkpjNC1JelkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAb7PEiZhT3G2xFShdepQ+eK7vKJwF4Jl7X51CwDaxKDgnK24KegnOl 3stoQYKOSAYTw3GvEgJm+FM7lv7+QFDxdqTh7r4im1FTZnRGt8lrWAZe3hHeJXj1 h2jWHONjlpyvhF9/zeJDkEcHq1cfT3Xcmj763CBQYb7bwAr2i+Eunob9d24mJyt4 0KhaTBljVnq7oEMn5V4yfw7nuXkPMjT9r+ghjrCQ3TRMUdAWEMHU/qp01S4LP+wt 0FBkBLOyBr400kY+9GU7JhsGP7Ir9LNpqo90A6VBBu1+3kEl1IaRTQwU3zbdMCsQ X3YGCIRhoOURrOWe4B8YiRerGgY/bHEs -----END CERTIFICATE-----Generated at Thu Jul 3 23:02:28 2025 by rpki-client