$ rpki-client -vvf rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft File: ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft (raw, json) Hash identifier: 9uReQMaWw5R8XPyMERINVueJX1Vd3iVxRjxTp9pGVks= Subject key identifier: B0:78:18:2B:72:48:36:B2:DA:78:D5:10:55:A8:1D:5B:DB:2F:C5:D7 Authority key identifier: CA:C4:47:8F:0F:DD:9A:E4:1E:24:E9:FC:67:F8:51:FF:43:C3:33:09 Certificate issuer: /CN=A919B5BB/serialNumber=CAC4478F0FDD9AE41E24E9FC67F851FF43C33309 Certificate serial: 20E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft Manifest number: 20D8 Signing time: Mon 30 Jun 2025 16:01:47 +0000 Manifest this update: Mon 30 Jun 2025 16:01:46 +0000 Manifest next update: Mon 07 Jul 2025 16:01:46 +0000 Files and hashes: 1: ysRHjw_dmuQeJOn8Z_hR_0PDMwk.crl (hash: XJvhV6JhbV6/AglX1xHPsXri9mO5SOfqP/DiXzfyDJg=) 2: C49E2E22FF0111E591C15659C4F9AE02.roa (hash: 8rysbZt21FvuQ0omuoFXFp8YfdP5EnJpmuu61zguRxM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.crl rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 16:01:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8419 (0x20e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B5BB, serialNumber=CAC4478F0FDD9AE41E24E9FC67F851FF43C33309 Validity Not Before: Jun 30 16:01:46 2025 GMT Not After : Jul 7 16:01:46 2025 GMT Subject: CN=6862b4ea-ca89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:88:80:20:48:6e:13:00:2d:fd:3e:d9:eb:0d: 33:a0:7e:9e:aa:34:8f:20:91:fb:94:95:46:68:1c: c4:e2:86:3d:2b:cd:50:f9:39:d4:a7:82:2a:37:c1: 22:75:44:16:9b:c6:22:00:df:27:7e:6a:3d:5b:a6: 66:72:d6:7c:9b:6b:6b:4f:21:26:a6:d9:85:d7:ce: df:95:b2:95:e7:da:f0:53:5c:5e:48:6e:ec:ff:50: 8d:29:55:f4:5f:22:13:34:00:90:f1:1c:8c:95:da: 6b:38:da:4b:71:f2:67:52:04:8c:27:cf:76:08:c2: 03:5c:bf:97:48:22:32:2a:2e:6a:f7:21:02:4f:98: f3:ef:83:c1:af:1f:34:e3:70:55:8e:cf:80:aa:ba: b7:df:bf:26:77:68:67:6c:1d:73:8d:aa:7c:a7:d3: 83:58:5c:ac:18:c5:72:72:9c:a2:aa:18:89:0c:7f: 2b:28:3b:4c:a4:5d:59:a6:f0:a2:f8:10:0e:9c:36: 5e:cb:2c:bc:f3:a0:48:fb:63:71:48:b3:69:b3:9c: 7c:01:da:64:49:dc:75:83:2b:bd:c6:66:29:7c:f3: ab:33:01:29:98:1e:11:63:c3:1e:4e:b1:dd:54:18: 3c:46:de:2c:4f:fa:e2:45:a7:11:b6:81:e7:36:60: ec:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:78:18:2B:72:48:36:B2:DA:78:D5:10:55:A8:1D:5B:DB:2F:C5:D7 X509v3 Authority Key Identifier: keyid:CA:C4:47:8F:0F:DD:9A:E4:1E:24:E9:FC:67:F8:51:FF:43:C3:33:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:30:c5:76:42:2c:d7:a1:87:d7:c9:00:9c:d5:7c:0d:12:2c: 9e:79:dd:77:be:9f:7b:38:2d:61:64:7f:12:5b:ac:16:9c:ed: 59:67:52:a9:b6:82:8d:45:c0:dd:ee:ae:53:1e:c2:8b:40:61: 8b:f5:36:77:f0:36:bf:df:fb:f3:7c:28:d6:9a:a4:54:5f:48: 7b:dd:56:10:ba:22:a4:2f:65:98:e7:68:16:94:97:2a:8c:93: 8e:99:f2:1e:e3:25:b3:f3:ed:29:39:b1:9e:0f:fe:25:d6:b9: 90:44:ef:e5:f8:33:20:50:fa:dd:7d:fa:dc:ec:3b:39:00:dc: 3c:6d:29:f8:b3:14:3a:d3:24:ad:cd:96:a4:80:41:55:08:b9: 97:50:72:a5:0a:26:2d:d3:93:00:51:17:ec:d0:ed:62:50:de: 02:af:e7:33:20:2e:58:d2:17:08:98:3c:5f:a2:e7:49:8f:2e: 0e:b4:2f:cf:ab:c9:7c:ad:70:d8:8f:29:ba:79:1b:e7:60:60: b7:1d:c1:5c:7b:cf:8c:34:f4:dd:af:9e:12:31:98:30:cb:ac: 6f:65:cf:fb:42:e3:0e:39:5b:46:2a:92:32:3e:f2:fe:7a:89: 72:60:2e:3d:f8:ca:77:3b:53:43:f7:bc:b0:15:03:b5:67:7b: d5:32:30:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUI1QkIxMTAvBgNVBAUTKENBQzQ0NzhGMEZERDlBRTQxRTI0RTlGQzY3Rjg1MUZG NDNDMzMzMDkwHhcNMjUwNjMwMTYwMTQ2WhcNMjUwNzA3MTYwMTQ2WjAYMRYwFAYD VQQDEw02ODYyYjRlYS1jYTg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz4iAIEhuEwAt/T7Z6w0zoH6eqjSPIJH7lJVGaBzE4oY9K81Q+TnUp4IqN8Ei dUQWm8YiAN8nfmo9W6ZmctZ8m2trTyEmptmF187flbKV59rwU1xeSG7s/1CNKVX0 XyITNACQ8RyMldprONpLcfJnUgSMJ892CMIDXL+XSCIyKi5q9yECT5jz74PBrx80 43BVjs+Aqrq3378md2hnbB1zjap8p9ODWFysGMVycpyiqhiJDH8rKDtMpF1ZpvCi +BAOnDZeyyy886BI+2NxSLNps5x8AdpkSdx1gyu9xmYpfPOrMwEpmB4RY8MeTrHd VBg8Rt4sT/riRacRtoHnNmDskwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLB4GCty SDay2njVEFWoHVvbL8XXMB8GA1UdIwQYMBaAFMrER48P3ZrkHiTp/Gf4Uf9DwzMJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjVCQi80NEJCQzE0Q0ZG MDExMUU1QjFDRkIwNThDNEY5QUUwMi95c1JIandfZG11UWVKT244Wl9oUl8wUERN d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lzUkhqd19kbXVRZUpPbjhaX2hSXzBQRE13ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QjVCQi80NEJCQzE0Q0ZGMDExMUU1QjFDRkIwNThDNEY5QUUwMi95c1JIandfZG11 UWVKT244Wl9oUl8wUERNd2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEMMV2QizXoYfXyQCc1XwNEiyeed13vp97OC1hZH8SW6wWnO1ZZ1Kp toKNRcDd7q5THsKLQGGL9TZ38Da/3/vzfCjWmqRUX0h73VYQuiKkL2WY52gWlJcq jJOOmfIe4yWz8+0pObGeD/4l1rmQRO/l+DMgUPrdffrc7Ds5ANw8bSn4sxQ60ySt zZakgEFVCLmXUHKlCiYt05MAURfs0O1iUN4Cr+czIC5Y0hcImDxfoudJjy4OtC/P q8l8rXDYjym6eRvnYGC3HcFce8+MNPTdr54SMZgwy6xvZc/7QuMOOVtGKpIyPvL+ eolyYC49+Mp3O1ND97ywFQO1Z3vVMjAT -----END CERTIFICATE-----Generated at Tue Jul 1 05:08:16 2025 by rpki-client