$ rpki-client -vvf rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.mft File: yQm9soTk3whHdmDWgrfLP1lIMeM.mft (raw, json) Hash identifier: hclfI9ZrEfC3GypUTFmkHyg2bmoOyIW/dzrU/EZ6wXw= Subject key identifier: 69:CB:77:B5:A9:5A:1D:B9:0C:28:4A:69:30:07:CC:12:0E:6E:B5:0C Authority key identifier: C9:09:BD:B2:84:E4:DF:08:47:76:60:D6:82:B7:CB:3F:59:48:31:E3 Certificate issuer: /CN=A912BD25/serialNumber=C909BDB284E4DF08477660D682B7CB3F594831E3 Certificate serial: 0C20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yQm9soTk3whHdmDWgrfLP1lIMeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.mft Manifest number: 0C17 Signing time: Fri 08 Aug 2025 18:57:00 +0000 Manifest this update: Fri 08 Aug 2025 18:57:00 +0000 Manifest next update: Fri 15 Aug 2025 18:57:00 +0000 Files and hashes: 1: yQm9soTk3whHdmDWgrfLP1lIMeM.crl (hash: onB4tsa8PFEsRKB4nQ0SZ9Tww5bZ0U6+lQBF8Gr1J98=) 2: CF3378E272DB11ED8483E95DC4F9AE02.roa (hash: 7P+2TWLqfeVNyGM33Rg8heOwqWfXOoMC0kS7Ev1IOzE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.crl rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yQm9soTk3whHdmDWgrfLP1lIMeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3104 (0xc20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BD25, serialNumber=C909BDB284E4DF08477660D682B7CB3F594831E3 Validity Not Before: Aug 8 18:57:00 2025 GMT Not After : Aug 15 18:57:00 2025 GMT Subject: CN=6896487c-2043 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:a1:d9:cc:01:19:b3:a4:05:bc:01:82:52:ee: 91:57:13:7b:e1:25:b7:ff:c1:9c:cf:f8:9a:60:b0: 05:6a:ad:b2:4c:f2:29:5a:43:75:94:51:38:b5:a8: 97:3c:2a:69:e5:80:cb:b9:4a:fc:0e:36:30:4a:be: 67:51:c4:34:d2:88:94:14:35:ea:a3:bc:f6:b7:69: 2d:87:9d:d5:ed:bf:b2:e1:e2:50:62:4e:30:a9:dc: 6f:15:7c:07:f0:c3:b3:bb:ba:95:53:a8:54:4f:59: f4:9a:91:be:3b:1b:ba:c5:03:7f:0a:1e:1c:0f:a8: c0:b1:ff:96:75:bb:72:dc:23:27:90:3b:77:fb:6e: a9:d2:c5:3c:c0:5a:23:ed:b8:a2:7a:7d:0a:43:ff: 80:8c:9a:ab:39:f1:bf:43:59:06:25:53:16:9d:64: 38:3f:ad:f4:81:1f:c6:a5:c7:f7:13:97:0d:f2:e5: ac:83:2b:0e:f4:7a:b1:2f:dc:22:3a:26:6c:fb:c4: ef:4b:47:84:89:79:f8:c8:a9:7a:27:f2:a8:ee:c0: 83:6c:1c:dd:c0:c1:f6:06:9a:df:e8:49:ac:a1:b5: 2a:12:04:b2:6c:31:b9:ca:88:fc:bc:b1:26:06:a7: 25:d7:fb:13:a8:48:22:83:eb:33:5e:31:00:63:b8: 4c:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:CB:77:B5:A9:5A:1D:B9:0C:28:4A:69:30:07:CC:12:0E:6E:B5:0C X509v3 Authority Key Identifier: keyid:C9:09:BD:B2:84:E4:DF:08:47:76:60:D6:82:B7:CB:3F:59:48:31:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yQm9soTk3whHdmDWgrfLP1lIMeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:1b:99:47:51:af:58:e2:99:76:f1:fb:ba:5c:4f:e3:09:a0: 70:af:15:c2:5e:ce:b8:80:cd:02:8e:76:f0:64:93:5c:6f:49: 8a:0c:35:71:a8:b2:57:4b:da:bf:4b:e5:62:36:d4:26:46:83: 7f:b7:89:7d:51:29:4f:be:ab:54:f7:4a:dc:45:2e:05:2b:ac: 83:77:db:2c:37:f1:e6:b7:95:47:aa:8a:80:28:78:bc:2a:d2: 8b:fd:2a:0c:80:02:ee:2b:04:35:d3:75:8f:be:01:1c:4f:b8: e4:2c:c6:8c:c0:03:e1:0d:39:5c:d5:5c:b6:ad:1d:93:21:8a: 97:9e:f2:25:5a:6a:8f:79:a7:27:cc:75:b0:db:f4:04:fd:47: 17:00:bb:9f:83:5d:f5:0e:ef:1e:49:1c:31:f5:1f:05:ba:7a: b1:35:36:c5:a4:c0:8c:ff:2c:bb:5d:fd:99:9e:c8:f5:07:0d: 14:2a:52:c7:01:97:f9:82:8c:b9:5f:95:64:24:9c:82:5d:01: 29:1f:71:b0:f7:12:89:e1:c1:52:ef:db:e1:d8:06:d4:dd:70: d6:32:23:5d:a2:6b:7a:eb:2d:6a:ab:c7:02:56:62:cf:a4:2a: 29:9d:0e:f5:2e:2c:27:1a:cd:3a:f1:58:30:85:82:36:c1:f0: b4:e9:c4:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJEMjUxMTAvBgNVBAUTKEM5MDlCREIyODRFNERGMDg0Nzc2NjBENjgyQjdDQjNG NTk0ODMxRTMwHhcNMjUwODA4MTg1NzAwWhcNMjUwODE1MTg1NzAwWjAYMRYwFAYD VQQDEw02ODk2NDg3Yy0yMDQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyKHZzAEZs6QFvAGCUu6RVxN74SW3/8Gcz/iaYLAFaq2yTPIpWkN1lFE4taiX PCpp5YDLuUr8DjYwSr5nUcQ00oiUFDXqo7z2t2kth53V7b+y4eJQYk4wqdxvFXwH 8MOzu7qVU6hUT1n0mpG+Oxu6xQN/Ch4cD6jAsf+Wdbty3CMnkDt3+26p0sU8wFoj 7biien0KQ/+AjJqrOfG/Q1kGJVMWnWQ4P630gR/Gpcf3E5cN8uWsgysO9HqxL9wi OiZs+8TvS0eEiXn4yKl6J/Ko7sCDbBzdwMH2Bprf6EmsobUqEgSybDG5yoj8vLEm Bqcl1/sTqEgig+szXjEAY7hMAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGnLd7Wp Wh25DChKaTAHzBIObrUMMB8GA1UdIwQYMBaAFMkJvbKE5N8IR3Zg1oK3yz9ZSDHj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkQyNS8wN0Y4MjE0QTE0 RTQxMUVBODc2RTg2NDBDNEY5QUUwMi95UW05c29UazN3aEhkbURXZ3JmTFAxbElN ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lRbTlzb1RrM3doSGRtRFdncmZMUDFsSU1lTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkQyNS8wN0Y4MjE0QTE0RTQxMUVBODc2RTg2NDBDNEY5QUUwMi95UW05c29UazN3 aEhkbURXZ3JmTFAxbElNZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkG5lHUa9Y4pl28fu6XE/jCaBwrxXCXs64gM0CjnbwZJNcb0mKDDVx qLJXS9q/S+ViNtQmRoN/t4l9USlPvqtU90rcRS4FK6yDd9ssN/Hmt5VHqoqAKHi8 KtKL/SoMgALuKwQ103WPvgEcT7jkLMaMwAPhDTlc1Vy2rR2TIYqXnvIlWmqPeacn zHWw2/QE/UcXALufg131Du8eSRwx9R8FunqxNTbFpMCM/yy7Xf2Znsj1Bw0UKlLH AZf5goy5X5VkJJyCXQEpH3Gw9xKJ4cFS79vh2AbU3XDWMiNdomt66y1qq8cCVmLP pCopnQ71LiwnGs068VgwhYI2wfC06cQR -----END CERTIFICATE-----Generated at Sat Aug 9 05:47:12 2025 by rpki-client