$ rpki-client -vvf rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft File: P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft (raw, json) Hash identifier: cXjWvatRxdv/xil+1ER2Hed/V7tIPehVBugNxw2wt3U= Subject key identifier: 78:A1:3C:20:E8:00:36:F2:01:32:BC:79:21:CC:1E:3C:D2:01:5F:1B Authority key identifier: 3F:E6:03:1F:25:56:7A:45:47:CD:E1:73:1A:2D:81:4D:B8:6E:20:94 Certificate issuer: /CN=A914988F/serialNumber=3FE6031F25567A4547CDE1731A2D814DB86E2094 Certificate serial: 07E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-YDHyVWekVHzeFzGi2BTbhuIJQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft Manifest number: 07DF Signing time: Tue 12 Aug 2025 21:24:04 +0000 Manifest this update: Tue 12 Aug 2025 21:24:04 +0000 Manifest next update: Tue 19 Aug 2025 21:24:04 +0000 Files and hashes: 1: P-YDHyVWekVHzeFzGi2BTbhuIJQ.crl (hash: n4PZYfN5hX6mBXj5OOguGEvLWpAObNBV3CLdeZqqMZg=) 2: 4ED5A00CFE2611EAA4F3424DC4F9AE02.roa (hash: jObAEaW9jlDTMyIb6A8JZqjslqhvlPIsAzJOzv+NnRY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.crl rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-YDHyVWekVHzeFzGi2BTbhuIJQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 21:24:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2023 (0x7e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914988F, serialNumber=3FE6031F25567A4547CDE1731A2D814DB86E2094 Validity Not Before: Aug 12 21:24:04 2025 GMT Not After : Aug 19 21:24:04 2025 GMT Subject: CN=689bb0f4-670e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:6b:3a:95:5a:33:51:6f:c7:74:40:a3:54:ff: f0:ad:20:03:3c:29:af:6d:46:8c:60:d0:7f:60:19: 3c:e3:66:e7:6b:f9:ad:c7:1d:4c:06:a7:c5:3d:ed: 2c:ab:9e:24:9f:87:c5:03:72:ba:87:30:7f:68:f8: 03:83:38:35:56:2a:79:79:03:81:0d:c8:99:33:f2: c2:65:1f:18:66:0e:34:8c:96:44:1a:7e:e8:28:f3: 9f:d9:b5:72:5a:e2:04:04:fe:de:57:a5:35:6a:35: 6b:81:97:e6:fd:2f:fd:f4:77:02:c7:25:45:4c:74: 1c:d1:50:2e:6b:0e:18:d8:05:45:0b:02:36:48:ac: d3:7e:fe:93:33:d5:42:3d:05:48:b3:9c:78:9d:ab: b0:40:01:fb:19:7f:4f:22:65:2f:96:e2:00:9e:3b: ca:f9:d7:ce:4b:4d:49:46:15:81:79:31:9f:b9:f4: cd:74:be:08:3a:d6:a1:a0:38:9a:82:b9:12:65:90: ae:00:b2:5e:33:61:18:6c:05:74:9a:b5:09:4c:8f: dc:ff:4a:29:95:84:80:c3:d9:a4:94:8c:1c:6c:ab: b2:f0:f8:2d:c6:2a:57:48:ef:dc:55:fb:38:70:b2: 00:9a:d2:a4:74:8a:1c:40:9c:a7:5a:86:c2:15:8e: af:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:A1:3C:20:E8:00:36:F2:01:32:BC:79:21:CC:1E:3C:D2:01:5F:1B X509v3 Authority Key Identifier: keyid:3F:E6:03:1F:25:56:7A:45:47:CD:E1:73:1A:2D:81:4D:B8:6E:20:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-YDHyVWekVHzeFzGi2BTbhuIJQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:e9:2d:53:fc:96:cc:e7:84:3d:52:38:74:4d:e3:67:0a:8e: 35:76:7e:14:13:2a:05:c9:95:b9:63:2e:02:71:78:e1:a2:45: ef:fd:ae:dd:b1:96:9e:b9:c8:0b:68:ec:c5:6c:b1:ed:c2:9b: cb:e2:89:b7:8c:bd:58:87:ae:23:d8:d6:a2:2d:d4:0d:c2:ab: af:4c:c9:4f:8a:b4:42:31:50:fb:11:81:f1:68:28:8a:11:04: b8:00:d6:e6:0b:80:6e:2f:31:a2:f7:f7:d0:54:c1:52:7d:b4: 1f:29:d3:2f:0d:27:ae:00:46:26:f5:27:a0:9a:45:de:c2:27: 73:f2:0e:3c:f4:7e:6f:ba:1f:0a:ac:6f:5f:69:6d:00:f0:65: da:83:28:1e:50:45:c4:a7:fe:dc:a3:c7:c1:37:bb:72:1b:b0: 40:83:9a:ac:ee:43:af:92:d7:8d:99:d0:69:6a:28:33:00:70: 1c:60:8e:81:da:e1:76:61:82:4b:1d:b6:6e:78:b8:3c:da:60: 26:a3:1e:f5:29:68:ba:a7:ce:06:d0:e0:ad:54:69:dc:1a:90: cb:d6:e3:fb:65:e7:3e:95:61:3e:22:26:3b:ce:fd:0c:39:de: bc:3a:c6:04:a7:c6:5b:f5:cb:99:09:f6:2a:86:f0:f8:ff:85: b7:1b:31:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDk4OEYxMTAvBgNVBAUTKDNGRTYwMzFGMjU1NjdBNDU0N0NERTE3MzFBMkQ4MTRE Qjg2RTIwOTQwHhcNMjUwODEyMjEyNDA0WhcNMjUwODE5MjEyNDA0WjAYMRYwFAYD VQQDEw02ODliYjBmNC02NzBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ms6lVozUW/HdECjVP/wrSADPCmvbUaMYNB/YBk842bna/mtxx1MBqfFPe0s q54kn4fFA3K6hzB/aPgDgzg1Vip5eQOBDciZM/LCZR8YZg40jJZEGn7oKPOf2bVy WuIEBP7eV6U1ajVrgZfm/S/99HcCxyVFTHQc0VAuaw4Y2AVFCwI2SKzTfv6TM9VC PQVIs5x4nauwQAH7GX9PImUvluIAnjvK+dfOS01JRhWBeTGfufTNdL4IOtahoDia grkSZZCuALJeM2EYbAV0mrUJTI/c/0oplYSAw9mklIwcbKuy8PgtxipXSO/cVfs4 cLIAmtKkdIocQJynWobCFY6vfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHihPCDo ADbyATK8eSHMHjzSAV8bMB8GA1UdIwQYMBaAFD/mAx8lVnpFR83hcxotgU24biCU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OTg4Ri8xOTI0N0ZCQUZF MjUxMUVBOUNDMTBDNENDNEY5QUUwMi9QLVlESHlWV2VrVkh6ZUZ6R2kyQlRiaHVJ SlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1AtWURIeVZXZWtWSHplRnpHaTJCVGJodUlKUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OTg4Ri8xOTI0N0ZCQUZFMjUxMUVBOUNDMTBDNENDNEY5QUUwMi9QLVlESHlWV2Vr Vkh6ZUZ6R2kyQlRiaHVJSlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCV6S1T/JbM54Q9Ujh0TeNnCo41dn4UEyoFyZW5Yy4CcXjhokXv/a7d sZaeucgLaOzFbLHtwpvL4om3jL1Yh64j2NaiLdQNwquvTMlPirRCMVD7EYHxaCiK EQS4ANbmC4BuLzGi9/fQVMFSfbQfKdMvDSeuAEYm9SegmkXewidz8g489H5vuh8K rG9faW0A8GXagygeUEXEp/7co8fBN7tyG7BAg5qs7kOvkteNmdBpaigzAHAcYI6B 2uF2YYJLHbZueLg82mAmox71KWi6p84G0OCtVGncGpDL1uP7Zec+lWE+IiY7zv0M Od68OsYEp8Zb9cuZCfYqhvD4/4W3GzHb -----END CERTIFICATE-----Generated at Wed Aug 13 02:45:08 2025 by rpki-client