$ rpki-client -vvf rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft File: y1sC0Pxzbip6stKIoPwzFnpLvO0.mft (raw, json) Hash identifier: sL8sz7NxhZ0DozHau0ITR+4AlYesD2VZnjRH7FT6EMA= Subject key identifier: F0:71:B3:E5:C0:55:2F:36:66:20:2D:13:85:A3:23:19:46:6A:44:78 Authority key identifier: CB:5B:02:D0:FC:73:6E:2A:7A:B2:D2:88:A0:FC:33:16:7A:4B:BC:ED Certificate issuer: /CN=A9129F1D/serialNumber=CB5B02D0FC736E2A7AB2D288A0FC33167A4BBCED Certificate serial: 01E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft Manifest number: 01E5 Signing time: Thu 07 Aug 2025 03:02:45 +0000 Manifest this update: Thu 07 Aug 2025 03:02:45 +0000 Manifest next update: Thu 14 Aug 2025 03:02:45 +0000 Files and hashes: 1: y1sC0Pxzbip6stKIoPwzFnpLvO0.crl (hash: j0ZLWRmtYCCe060cwqclt9v5S6g8JBv3aN2IXTnuUqk=) 2: 3E122AE0876011ED84335D46C4F9AE02.roa (hash: bMGYEkxmsNwyimLtEml2g/yxjeK2QwKmxudQ/0mQEOc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.crl rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 03:02:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 489 (0x1e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129F1D, serialNumber=CB5B02D0FC736E2A7AB2D288A0FC33167A4BBCED Validity Not Before: Aug 7 03:02:45 2025 GMT Not After : Aug 14 03:02:45 2025 GMT Subject: CN=68941755-71da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b9:5f:ef:7e:14:d4:ed:ba:be:9c:02:d4:2e: f5:d5:29:2e:a0:ef:4f:9f:a0:3a:91:95:99:80:cf: e3:69:e0:65:d4:a0:62:75:11:b6:63:2f:c4:c1:c6: 5c:b6:9a:e6:24:f2:e9:eb:25:17:b9:0d:41:07:94: 98:28:50:cb:09:f8:5c:6f:06:8d:40:85:02:15:48: 05:0b:6e:d1:7e:20:ce:c4:3f:da:97:1a:73:ff:da: 8b:43:de:9a:d3:9f:a7:60:b9:7f:00:57:0d:06:1e: f6:b0:f6:8b:b6:8c:b9:16:e7:67:31:e0:e1:14:8d: 24:d9:27:d2:45:e5:03:9e:e0:34:89:5a:18:16:09: 7a:91:53:f7:fa:fb:6d:5b:c5:77:07:22:c4:b1:1c: 4a:54:45:44:03:a9:e6:e5:d5:46:b5:3e:8d:ad:35: 8c:31:cb:08:5a:25:66:0b:2e:29:0f:24:ac:f7:b0: a6:d4:e2:7d:88:59:d6:e0:17:43:a9:a0:02:48:ba: b4:0d:ae:ec:ee:1f:6c:89:4c:64:fe:df:ad:b7:29: c0:ed:02:b1:ea:97:30:4d:81:fc:8b:3f:30:e1:3d: 8a:1c:ed:6b:96:71:2d:ad:f2:44:8d:de:da:b4:ef: 96:e1:01:1d:be:6c:2a:93:bc:ac:06:e9:a3:be:50: dc:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:71:B3:E5:C0:55:2F:36:66:20:2D:13:85:A3:23:19:46:6A:44:78 X509v3 Authority Key Identifier: keyid:CB:5B:02:D0:FC:73:6E:2A:7A:B2:D2:88:A0:FC:33:16:7A:4B:BC:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:22:35:b9:6e:b8:ac:cd:5e:5b:0d:43:a7:c6:1a:78:f1:5f: 73:d0:e5:e2:87:5a:74:08:04:19:6b:78:11:40:85:72:76:bd: f1:05:6a:68:de:7b:36:e2:82:b6:d5:42:1a:95:77:5b:fb:af: 87:28:7e:91:9c:ae:d7:39:e9:f4:e2:35:25:36:03:eb:37:00: 8b:35:c8:d3:5c:c2:8e:08:c4:b7:1b:72:01:52:27:55:e5:08: e2:48:20:3d:fc:f7:6b:f0:a6:0e:a1:45:4e:67:36:c7:60:97: b4:ba:9a:27:15:04:89:e0:4e:fa:41:57:c5:ed:84:d9:23:5a: f1:df:98:11:96:0f:d8:13:f4:6a:90:1f:41:34:02:e9:7a:d5: 8b:11:c7:c0:d3:3e:87:ba:58:53:c3:28:6d:6c:e0:85:e6:b1: f5:e6:60:7c:14:7e:ae:53:3a:98:9e:a1:93:ed:c4:6a:d0:c9: 32:77:5c:c9:a1:c7:d5:34:54:bf:29:3a:90:3a:93:08:41:b7: c8:e7:ec:de:d2:61:9a:08:36:7a:10:cb:cc:19:7b:57:93:5e: 64:ac:37:57:e6:ee:03:e2:09:77:12:57:6d:43:3c:a9:62:37: 31:33:a2:26:e8:8d:e0:dc:b5:4c:4c:fa:c3:c0:f1:7d:91:67: 78:b3:e0:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAekwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlGMUQxMTAvBgNVBAUTKENCNUIwMkQwRkM3MzZFMkE3QUIyRDI4OEEwRkMzMzE2 N0E0QkJDRUQwHhcNMjUwODA3MDMwMjQ1WhcNMjUwODE0MDMwMjQ1WjAYMRYwFAYD VQQDEw02ODk0MTc1NS03MWRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsblf734U1O26vpwC1C711SkuoO9Pn6A6kZWZgM/jaeBl1KBidRG2Yy/EwcZc tprmJPLp6yUXuQ1BB5SYKFDLCfhcbwaNQIUCFUgFC27RfiDOxD/alxpz/9qLQ96a 05+nYLl/AFcNBh72sPaLtoy5FudnMeDhFI0k2SfSReUDnuA0iVoYFgl6kVP3+vtt W8V3ByLEsRxKVEVEA6nm5dVGtT6NrTWMMcsIWiVmCy4pDySs97Cm1OJ9iFnW4BdD qaACSLq0Da7s7h9siUxk/t+ttynA7QKx6pcwTYH8iz8w4T2KHO1rlnEtrfJEjd7a tO+W4QEdvmwqk7ysBumjvlDc2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPBxs+XA VS82ZiAtE4WjIxlGakR4MB8GA1UdIwQYMBaAFMtbAtD8c24qerLSiKD8MxZ6S7zt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUYxRC8yMUNBQkE1Qzg3 NUUxMUVEQkRDNjQ5NDZDNEY5QUUwMi95MXNDMFB4emJpcDZzdEtJb1B3ekZucEx2 TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kxc0MwUHh6YmlwNnN0S0lvUHd6Rm5wTHZPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OUYxRC8yMUNBQkE1Qzg3NUUxMUVEQkRDNjQ5NDZDNEY5QUUwMi95MXNDMFB4emJp cDZzdEtJb1B3ekZucEx2TzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwIjW5briszV5bDUOnxhp48V9z0OXih1p0CAQZa3gRQIVydr3xBWpo 3ns24oK21UIalXdb+6+HKH6RnK7XOen04jUlNgPrNwCLNcjTXMKOCMS3G3IBUidV 5QjiSCA9/Pdr8KYOoUVOZzbHYJe0uponFQSJ4E76QVfF7YTZI1rx35gRlg/YE/Rq kB9BNALpetWLEcfA0z6HulhTwyhtbOCF5rH15mB8FH6uUzqYnqGT7cRq0Mkyd1zJ ocfVNFS/KTqQOpMIQbfI5+ze0mGaCDZ6EMvMGXtXk15krDdX5u4D4gl3EldtQzyp YjcxM6Im6I3g3LVMTPrDwPF9kWd4s+Dw -----END CERTIFICATE-----Generated at Sat Aug 9 02:52:08 2025 by rpki-client