$ rpki-client -vvf rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.mft File: yQm9soTk3whHdmDWgrfLP1lIMeM.mft (raw, json) Hash identifier: 3OQbPXoPVKyJbu21z9mY2P4MX8Fp1rt12bTgKUeTp6g= Subject key identifier: 78:60:11:C3:98:BD:1C:EF:71:37:4E:1D:C1:20:8A:F1:DB:76:87:2E Authority key identifier: C9:09:BD:B2:84:E4:DF:08:47:76:60:D6:82:B7:CB:3F:59:48:31:E3 Certificate issuer: /CN=A912BD25/serialNumber=C909BDB284E4DF08477660D682B7CB3F594831E3 Certificate serial: 0C05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yQm9soTk3whHdmDWgrfLP1lIMeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.mft Manifest number: 0BFC Signing time: Mon 16 Jun 2025 18:39:42 +0000 Manifest this update: Mon 16 Jun 2025 18:39:42 +0000 Manifest next update: Mon 23 Jun 2025 18:39:42 +0000 Files and hashes: 1: yQm9soTk3whHdmDWgrfLP1lIMeM.crl (hash: WIK4bUhwKVv/r9r7CBeTMUnJTGEGZ6cBfG711miAAi8=) 2: CF3378E272DB11ED8483E95DC4F9AE02.roa (hash: 7P+2TWLqfeVNyGM33Rg8heOwqWfXOoMC0kS7Ev1IOzE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.crl rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yQm9soTk3whHdmDWgrfLP1lIMeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 18:39:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3077 (0xc05) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BD25, serialNumber=C909BDB284E4DF08477660D682B7CB3F594831E3 Validity Not Before: Jun 16 18:39:42 2025 GMT Not After : Jun 23 18:39:42 2025 GMT Subject: CN=685064ee-bae1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:81:f0:b5:f4:ad:6e:80:b2:61:f7:07:87:6b: 67:3e:1f:8b:18:3d:2c:c7:72:da:2b:36:3f:13:a9: 6f:1f:0f:ef:7d:c2:bd:f6:26:63:ab:35:d8:bc:e0: 29:52:51:ca:72:0a:e7:69:b4:cb:2c:a6:d3:a6:9d: e4:0b:a9:3b:87:b5:f2:c1:6e:50:19:5c:32:41:cb: 9c:1c:f2:51:d3:f5:1c:cd:bc:0f:80:82:fa:17:bf: a6:82:9d:44:02:45:43:4d:d0:c6:17:0e:0d:1a:d8: bb:03:18:ec:2a:fb:50:a7:1f:30:45:26:f8:6c:98: 6f:33:f7:6b:8d:7e:f5:4c:f5:2f:d7:0f:c7:28:37: fb:a2:2f:48:52:74:02:0b:a3:34:9b:7b:6a:0e:68: 06:22:97:7e:d2:b1:1f:f4:07:a5:df:8b:55:ba:1c: 81:9e:e0:60:3e:7b:86:4f:d4:94:45:e4:5d:e7:da: b0:d1:b8:65:13:dd:e1:07:d7:fb:7a:d7:d6:17:a4: 71:ab:59:6d:b4:49:aa:2e:85:1f:46:f9:fc:64:4b: 08:90:b4:fc:eb:68:48:54:1f:6d:c5:86:4d:58:d4: 88:74:eb:6e:b4:c8:a9:e2:8d:25:98:81:c9:22:0c: 85:d8:91:82:bf:3c:0e:0a:f0:b7:e4:80:6c:e2:f5: a5:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:60:11:C3:98:BD:1C:EF:71:37:4E:1D:C1:20:8A:F1:DB:76:87:2E X509v3 Authority Key Identifier: keyid:C9:09:BD:B2:84:E4:DF:08:47:76:60:D6:82:B7:CB:3F:59:48:31:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yQm9soTk3whHdmDWgrfLP1lIMeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:22:10:fe:ac:06:bc:9e:f3:49:a8:5d:55:65:b1:46:50:d5: 9e:c9:d9:90:43:b8:6f:b2:1b:50:e7:af:b3:2b:32:b7:c7:b3: bf:f7:2c:13:e1:1f:23:45:b8:39:ec:f4:84:2d:ae:bc:64:01: a1:16:60:f2:52:74:aa:3b:21:87:71:7f:33:24:42:5a:42:df: d4:4e:5c:79:26:50:16:38:09:8a:7f:c0:75:8c:e2:cf:33:b9: 4e:e6:99:a1:98:55:f0:5e:71:5d:da:c0:31:21:02:ad:3d:b9: 45:9e:c4:96:b0:58:9f:15:36:d5:16:b0:e5:49:c4:69:43:e6: bf:8a:fa:c0:e7:fa:3f:e4:c2:12:3d:64:af:ca:5b:a5:d1:6d: 0e:ed:7c:2c:2b:ba:09:ff:59:c3:4e:d8:f6:b8:d1:6f:af:6d: 6d:bc:5b:ec:56:f3:f1:5a:27:85:6f:2f:20:34:5b:2b:31:bd: 07:dd:10:78:84:b5:d1:f0:f6:79:f4:fa:f5:4e:5b:bd:b8:3d: 3c:03:fb:35:a1:ff:46:18:46:ad:87:67:ff:5c:63:2d:85:0b: 3b:bf:32:6e:b8:8f:d2:a4:c8:b4:56:29:16:c5:51:17:da:01: 12:fd:c1:cd:bb:e8:62:67:e4:ac:36:06:cf:7c:38:c9:75:bf: 13:10:27:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJEMjUxMTAvBgNVBAUTKEM5MDlCREIyODRFNERGMDg0Nzc2NjBENjgyQjdDQjNG NTk0ODMxRTMwHhcNMjUwNjE2MTgzOTQyWhcNMjUwNjIzMTgzOTQyWjAYMRYwFAYD VQQDEw02ODUwNjRlZS1iYWUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu4HwtfStboCyYfcHh2tnPh+LGD0sx3LaKzY/E6lvHw/vfcK99iZjqzXYvOAp UlHKcgrnabTLLKbTpp3kC6k7h7XywW5QGVwyQcucHPJR0/UczbwPgIL6F7+mgp1E AkVDTdDGFw4NGti7AxjsKvtQpx8wRSb4bJhvM/drjX71TPUv1w/HKDf7oi9IUnQC C6M0m3tqDmgGIpd+0rEf9Ael34tVuhyBnuBgPnuGT9SUReRd59qw0bhlE93hB9f7 etfWF6Rxq1lttEmqLoUfRvn8ZEsIkLT862hIVB9txYZNWNSIdOtutMip4o0lmIHJ IgyF2JGCvzwOCvC35IBs4vWlxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHhgEcOY vRzvcTdOHcEgivHbdocuMB8GA1UdIwQYMBaAFMkJvbKE5N8IR3Zg1oK3yz9ZSDHj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkQyNS8wN0Y4MjE0QTE0 RTQxMUVBODc2RTg2NDBDNEY5QUUwMi95UW05c29UazN3aEhkbURXZ3JmTFAxbElN ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lRbTlzb1RrM3doSGRtRFdncmZMUDFsSU1lTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkQyNS8wN0Y4MjE0QTE0RTQxMUVBODc2RTg2NDBDNEY5QUUwMi95UW05c29UazN3 aEhkbURXZ3JmTFAxbElNZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPIhD+rAa8nvNJqF1VZbFGUNWeydmQQ7hvshtQ56+zKzK3x7O/9ywT 4R8jRbg57PSELa68ZAGhFmDyUnSqOyGHcX8zJEJaQt/UTlx5JlAWOAmKf8B1jOLP M7lO5pmhmFXwXnFd2sAxIQKtPblFnsSWsFifFTbVFrDlScRpQ+a/ivrA5/o/5MIS PWSvylul0W0O7XwsK7oJ/1nDTtj2uNFvr21tvFvsVvPxWieFby8gNFsrMb0H3RB4 hLXR8PZ59Pr1Tlu9uD08A/s1of9GGEath2f/XGMthQs7vzJuuI/SpMi0VikWxVEX 2gES/cHNu+hiZ+SsNgbPfDjJdb8TECeU -----END CERTIFICATE-----Generated at Wed Jun 18 05:18:18 2025 by rpki-client