$ rpki-client -vvf rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft File: P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft (raw, json) Hash identifier: AjvnNiW4jd/EJS3Q9wiUH7+4wzrrZ3XuK+KSQXzRzLQ= Subject key identifier: 4F:85:9F:70:9E:7E:87:51:5A:68:4B:59:41:5D:FE:F0:F2:74:53:E8 Authority key identifier: 3F:E6:03:1F:25:56:7A:45:47:CD:E1:73:1A:2D:81:4D:B8:6E:20:94 Certificate issuer: /CN=A914988F/serialNumber=3FE6031F25567A4547CDE1731A2D814DB86E2094 Certificate serial: 07C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-YDHyVWekVHzeFzGi2BTbhuIJQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft Manifest number: 07BE Signing time: Thu 12 Jun 2025 20:53:05 +0000 Manifest this update: Thu 12 Jun 2025 20:53:05 +0000 Manifest next update: Thu 19 Jun 2025 20:53:05 +0000 Files and hashes: 1: P-YDHyVWekVHzeFzGi2BTbhuIJQ.crl (hash: FyL4V93BMf7aYdn8xJc3zE8PFTca5AkDug8+uqvgtoQ=) 2: 4ED5A00CFE2611EAA4F3424DC4F9AE02.roa (hash: qdn4Rx6KYVWRsCXtm49GAL/TWxFXG2srvh1gEG2saCQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.crl rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-YDHyVWekVHzeFzGi2BTbhuIJQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 20:53:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1989 (0x7c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914988F, serialNumber=3FE6031F25567A4547CDE1731A2D814DB86E2094 Validity Not Before: Jun 12 20:53:05 2025 GMT Not After : Jun 19 20:53:05 2025 GMT Subject: CN=684b3e31-3db5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:de:e4:3f:04:9a:a7:55:db:fa:95:78:26:2c: 2d:63:07:ad:f1:02:4c:ec:be:3b:41:c6:ee:10:79: 52:80:b0:8c:35:12:c8:6e:53:80:07:46:ae:59:f6: 27:9c:dd:2d:7f:27:d0:d6:3d:1e:e0:eb:72:eb:45: 00:f0:33:86:6a:8e:18:be:61:5a:08:67:99:a6:74: 26:2d:d0:bc:18:3e:94:d1:60:40:af:1b:8d:9d:a9: 8d:a8:8d:38:2c:d2:5b:b8:72:d3:34:68:29:7f:1b: 8d:84:87:14:26:0e:08:61:1d:57:cb:42:da:76:37: 18:9d:ec:0a:6b:17:f3:0c:04:e9:8f:38:17:38:ed: 6d:33:21:ef:0d:39:fb:9b:6b:4d:07:d9:23:1f:40: 42:53:20:9b:4e:c8:47:23:0e:35:19:74:51:56:a0: 43:f5:f9:97:fe:12:17:f2:0a:5b:62:0d:94:89:ab: c0:89:0b:07:36:cc:08:46:45:de:b4:c4:54:fa:c7: a9:21:b1:f2:a9:63:5a:31:cd:0f:a7:b9:d1:81:9b: 8d:ab:0e:1c:cf:bf:de:46:bb:ac:ea:12:35:e3:ae: 0f:09:0a:67:0f:ac:79:f9:83:a2:0e:03:26:7c:a1: 49:c5:45:f1:70:11:42:81:a7:34:c3:9f:05:fa:4d: c6:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:85:9F:70:9E:7E:87:51:5A:68:4B:59:41:5D:FE:F0:F2:74:53:E8 X509v3 Authority Key Identifier: keyid:3F:E6:03:1F:25:56:7A:45:47:CD:E1:73:1A:2D:81:4D:B8:6E:20:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-YDHyVWekVHzeFzGi2BTbhuIJQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:d1:9d:00:04:a2:31:9c:fd:65:71:cc:1b:21:ed:31:1c:d3: 9e:46:ac:6b:ed:c6:0b:83:dc:3d:5b:a0:60:75:cc:78:e3:27: 2b:d2:2c:77:1d:6c:aa:b9:b6:0a:31:c9:b4:cd:bd:e4:80:1c: 9b:91:85:e0:eb:01:01:90:30:26:ee:9f:90:ec:2e:ba:8e:e9: fb:d2:d2:68:d3:29:e0:cb:0d:ec:ae:b3:37:4d:0a:3a:64:48: b8:22:48:a4:e8:4d:37:4a:de:97:95:b1:e5:d9:de:32:bc:4a: 17:5f:0e:7b:d2:8c:1d:09:35:ae:bd:a6:35:83:74:57:c9:6c: 21:cd:77:3f:f1:d7:e9:39:01:d2:3a:ed:fa:d1:cd:d1:52:13: 95:56:a1:a4:98:e3:9a:c7:04:92:3d:84:c4:e4:56:a9:bf:6e: ba:1e:cb:30:56:b4:1b:e5:d5:75:fe:bf:86:cd:71:90:5c:1d: da:fd:dd:f4:ce:ac:5f:5b:a3:27:f4:b4:d1:82:e1:4c:e0:a6: fa:7f:21:30:5f:c1:9a:1d:1c:cc:88:eb:10:a4:54:77:d9:db: b5:fb:e0:60:9a:ee:95:92:c4:ca:72:88:9e:70:bf:ad:72:99: 91:91:05:6b:26:ce:14:ad:bc:3f:6b:bb:c2:78:d9:3f:88:86: 5b:eb:11:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDk4OEYxMTAvBgNVBAUTKDNGRTYwMzFGMjU1NjdBNDU0N0NERTE3MzFBMkQ4MTRE Qjg2RTIwOTQwHhcNMjUwNjEyMjA1MzA1WhcNMjUwNjE5MjA1MzA1WjAYMRYwFAYD VQQDEw02ODRiM2UzMS0zZGI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA397kPwSap1Xb+pV4JiwtYwet8QJM7L47QcbuEHlSgLCMNRLIblOAB0auWfYn nN0tfyfQ1j0e4Oty60UA8DOGao4YvmFaCGeZpnQmLdC8GD6U0WBArxuNnamNqI04 LNJbuHLTNGgpfxuNhIcUJg4IYR1Xy0LadjcYnewKaxfzDATpjzgXOO1tMyHvDTn7 m2tNB9kjH0BCUyCbTshHIw41GXRRVqBD9fmX/hIX8gpbYg2UiavAiQsHNswIRkXe tMRU+sepIbHyqWNaMc0Pp7nRgZuNqw4cz7/eRrus6hI1464PCQpnD6x5+YOiDgMm fKFJxUXxcBFCgac0w58F+k3GSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE+Fn3Ce fodRWmhLWUFd/vDydFPoMB8GA1UdIwQYMBaAFD/mAx8lVnpFR83hcxotgU24biCU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OTg4Ri8xOTI0N0ZCQUZF MjUxMUVBOUNDMTBDNENDNEY5QUUwMi9QLVlESHlWV2VrVkh6ZUZ6R2kyQlRiaHVJ SlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1AtWURIeVZXZWtWSHplRnpHaTJCVGJodUlKUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OTg4Ri8xOTI0N0ZCQUZFMjUxMUVBOUNDMTBDNENDNEY5QUUwMi9QLVlESHlWV2Vr Vkh6ZUZ6R2kyQlRiaHVJSlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBw0Z0ABKIxnP1lccwbIe0xHNOeRqxr7cYLg9w9W6Bgdcx44ycr0ix3 HWyqubYKMcm0zb3kgBybkYXg6wEBkDAm7p+Q7C66jun70tJo0yngyw3srrM3TQo6 ZEi4Ikik6E03St6XlbHl2d4yvEoXXw570owdCTWuvaY1g3RXyWwhzXc/8dfpOQHS Ou360c3RUhOVVqGkmOOaxwSSPYTE5Fapv266HsswVrQb5dV1/r+GzXGQXB3a/d30 zqxfW6Mn9LTRguFM4Kb6fyEwX8GaHRzMiOsQpFR32du1++Bgmu6VksTKcoiecL+t cpmRkQVrJs4Urbw/a7vCeNk/iIZb6xEh -----END CERTIFICATE-----Generated at Sat Jun 14 19:23:07 2025 by rpki-client