$ rpki-client -vvf rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.mft File: yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.mft (raw, json) Hash identifier: rg2iujxnU3tmoHPVP86gpNF4GHxchkNWQDs7CK1Pm0g= Subject key identifier: F1:C2:8E:4C:D8:87:10:B7:C8:D9:07:A6:DD:9F:B3:91:0C:0D:39:0E Authority key identifier: C8:24:34:74:25:BA:C8:AF:59:B4:E1:96:6B:C1:0D:BF:A8:BD:AB:82 Certificate issuer: /CN=A912B2EE/serialNumber=C824347425BAC8AF59B4E1966BC10DBFA8BDAB82 Certificate serial: 0F81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.mft Manifest number: 0F6C Signing time: Sat 14 Jun 2025 17:30:09 +0000 Manifest this update: Sat 14 Jun 2025 17:30:08 +0000 Manifest next update: Sat 21 Jun 2025 17:30:08 +0000 Files and hashes: 1: yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.crl (hash: Lbfu0MEB10cYgbAZcddM6d+yGJCSBN0mCmQxwA3bnss=) 2: 05449490E17B11EC93AB7473C4F9AE02.roa (hash: TQO7DA2C+52oraPsdnjGz3A009856ZzetwGGv8/CUtg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.crl rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:30:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3969 (0xf81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B2EE, serialNumber=C824347425BAC8AF59B4E1966BC10DBFA8BDAB82 Validity Not Before: Jun 14 17:30:08 2025 GMT Not After : Jun 21 17:30:08 2025 GMT Subject: CN=684db1a0-00b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:e9:df:6a:8b:35:53:77:ef:6e:4d:f5:06:af: 83:ac:f8:15:11:07:e9:9d:00:7e:ac:5a:4c:43:f9: 00:65:21:a5:35:94:04:dc:6f:1a:e4:c2:6d:b9:28: 94:ef:75:ee:90:14:69:ef:9e:49:a0:32:4e:4f:7e: a1:16:c8:a2:fc:e2:6a:ab:69:e1:5d:d3:a9:d4:65: bf:8c:4f:e6:ad:50:7a:a7:d8:25:b7:70:9c:83:8d: 94:95:f6:3a:d2:dc:c3:ba:35:9a:0f:2c:9b:37:e1: d3:09:84:af:53:e9:f2:74:b9:ab:53:bc:57:84:38: cb:81:b9:e7:ea:a9:a0:a6:d6:d4:d4:ac:e0:ec:8f: 00:ff:b3:73:bd:50:86:bb:9e:74:20:2c:2d:88:eb: af:8f:f4:95:66:69:ec:00:40:a8:f8:f0:eb:bf:ac: 11:4e:4f:27:00:91:a8:c2:37:c5:3d:a2:33:1a:79: 2b:77:79:46:28:17:aa:02:18:84:57:4c:6e:10:cf: a8:74:56:86:ef:16:bb:68:4a:5b:14:f6:60:dc:1c: b0:02:21:cd:e4:fd:4a:f5:c0:05:34:25:0c:ac:cb: 00:ec:f2:96:e1:64:12:71:51:9f:34:96:85:8d:2f: 61:d3:bf:12:db:f6:9b:e3:a2:3f:73:a6:b5:a6:ab: bb:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:C2:8E:4C:D8:87:10:B7:C8:D9:07:A6:DD:9F:B3:91:0C:0D:39:0E X509v3 Authority Key Identifier: keyid:C8:24:34:74:25:BA:C8:AF:59:B4:E1:96:6B:C1:0D:BF:A8:BD:AB:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:df:a9:f9:54:56:3d:70:a3:57:6b:57:2d:b5:53:9e:c7:96: cd:82:de:47:d2:b1:97:61:c0:b4:f0:dc:8a:38:7e:58:07:51: 2f:81:96:cb:75:75:fb:38:61:ea:61:59:d0:a5:39:ee:53:2a: 16:d4:f5:e6:9b:7a:d4:8b:1e:cd:04:ce:b4:96:1e:ba:8e:a2: c8:aa:75:2e:89:71:ec:42:94:d8:49:ab:30:8e:17:05:63:a6: 4e:ab:cb:08:b2:a6:dc:68:d2:ea:6d:63:cb:a5:f0:74:0d:09: b5:9d:35:ec:f0:a1:8a:92:ab:1e:84:e5:d4:50:0b:66:33:f0: de:06:08:9b:8f:05:d8:4d:0a:7c:27:60:a9:72:f1:99:4b:8c: 70:8c:6e:3c:5c:2c:3c:35:43:02:52:44:c4:e9:cc:f2:33:79: 29:05:31:85:06:94:86:cd:88:f7:97:37:93:97:8d:44:b5:f6: cd:c7:26:38:44:89:21:5f:01:4a:82:4e:83:d2:eb:14:d1:c8: 78:84:7c:ee:81:64:3b:4c:2d:18:da:78:a9:7b:ee:fd:0d:85: 6a:33:49:63:7a:af:b7:4c:50:2e:73:ca:bf:f4:eb:93:a1:d3: 8e:de:4e:ed:14:e9:d7:2e:dc:bd:fb:48:4b:73:fa:16:1a:3f: bd:ba:ef:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD4EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkIyRUUxMTAvBgNVBAUTKEM4MjQzNDc0MjVCQUM4QUY1OUI0RTE5NjZCQzEwREJG QThCREFCODIwHhcNMjUwNjE0MTczMDA4WhcNMjUwNjIxMTczMDA4WjAYMRYwFAYD VQQDEw02ODRkYjFhMC0wMGI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8+nfaos1U3fvbk31Bq+DrPgVEQfpnQB+rFpMQ/kAZSGlNZQE3G8a5MJtuSiU 73XukBRp755JoDJOT36hFsii/OJqq2nhXdOp1GW/jE/mrVB6p9glt3Ccg42UlfY6 0tzDujWaDyybN+HTCYSvU+nydLmrU7xXhDjLgbnn6qmgptbU1Kzg7I8A/7NzvVCG u550ICwtiOuvj/SVZmnsAECo+PDrv6wRTk8nAJGowjfFPaIzGnkrd3lGKBeqAhiE V0xuEM+odFaG7xa7aEpbFPZg3BywAiHN5P1K9cAFNCUMrMsA7PKW4WQScVGfNJaF jS9h078S2/ab46I/c6a1pqu7yQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPHCjkzY hxC3yNkHpt2fs5EMDTkOMB8GA1UdIwQYMBaAFMgkNHQlusivWbThlmvBDb+ovauC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjJFRS8xRjQxMUY1ODZD MjExMUU5Qjc2RkE5MDlDNEY5QUUwMi95Q1EwZENXNnlLOVp0T0dXYThFTnY2aTlx NEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lDUTBkQ1c2eUs5WnRPR1dhOEVOdjZpOXE0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QjJFRS8xRjQxMUY1ODZDMjExMUU5Qjc2RkE5MDlDNEY5QUUwMi95Q1EwZENXNnlL OVp0T0dXYThFTnY2aTlxNEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBp36n5VFY9cKNXa1cttVOex5bNgt5H0rGXYcC08NyKOH5YB1EvgZbL dXX7OGHqYVnQpTnuUyoW1PXmm3rUix7NBM60lh66jqLIqnUuiXHsQpTYSaswjhcF Y6ZOq8sIsqbcaNLqbWPLpfB0DQm1nTXs8KGKkqsehOXUUAtmM/DeBgibjwXYTQp8 J2CpcvGZS4xwjG48XCw8NUMCUkTE6czyM3kpBTGFBpSGzYj3lzeTl41EtfbNxyY4 RIkhXwFKgk6D0usU0ch4hHzugWQ7TC0Y2nipe+79DYVqM0ljeq+3TFAuc8q/9OuT odOO3k7tFOnXLty9+0hLc/oWGj+9uu9J -----END CERTIFICATE-----Generated at Sun Jun 15 08:38:05 2025 by rpki-client