$ rpki-client -vvf rpki.apnic.net/member_repository/A9153675/915A28660EB311EF89CAD12CC4F9AE02/yiRYMQb7VJhMeBWJXj4Z7fecmL8.mft File: yiRYMQb7VJhMeBWJXj4Z7fecmL8.mft (raw, json) Hash identifier: Oxp61UkHlYOMw2Nr0q8el3ZX6avs9sx6r5cSg2ChBs4= Subject key identifier: 21:82:A7:F0:F0:3A:EE:34:DF:1E:66:4A:54:37:4A:15:70:EA:AC:E5 Authority key identifier: CA:24:58:31:06:FB:54:98:4C:78:15:89:5E:3E:19:ED:F7:9C:98:BF Certificate issuer: /CN=A9153675/serialNumber=CA24583106FB54984C7815895E3E19EDF79C98BF Certificate serial: D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yiRYMQb7VJhMeBWJXj4Z7fecmL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153675/915A28660EB311EF89CAD12CC4F9AE02/yiRYMQb7VJhMeBWJXj4Z7fecmL8.mft Manifest number: D3 Signing time: Sat 21 Jun 2025 04:44:24 +0000 Manifest this update: Sat 21 Jun 2025 04:44:24 +0000 Manifest next update: Sat 28 Jun 2025 04:44:23 +0000 Files and hashes: 1: yiRYMQb7VJhMeBWJXj4Z7fecmL8.crl (hash: fgfioSX8g666yhNby/icV/ZoQ34/H2f4gUtiSgQWmys=) 2: F8636CC60F9D11EFA1E14343C4F9AE02.roa (hash: tBki4iy/q8HliVYsXbIzEJgcPuIm2NjXgIYSPz8ugw8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153675/915A28660EB311EF89CAD12CC4F9AE02/yiRYMQb7VJhMeBWJXj4Z7fecmL8.crl rsync://rpki.apnic.net/member_repository/A9153675/915A28660EB311EF89CAD12CC4F9AE02/yiRYMQb7VJhMeBWJXj4Z7fecmL8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yiRYMQb7VJhMeBWJXj4Z7fecmL8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153675, serialNumber=CA24583106FB54984C7815895E3E19EDF79C98BF Validity Not Before: Jun 21 04:44:24 2025 GMT Not After : Jun 28 04:44:23 2025 GMT Subject: CN=685638a8-0e16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:86:2d:98:ee:e5:c4:62:ba:60:9d:f0:3c:07: 7e:c8:53:c1:ca:c2:9d:fd:25:70:77:96:3a:16:59: da:dc:9a:05:13:27:07:13:4b:06:59:7c:f3:d8:d5: 19:2e:ef:b3:89:c7:0e:b2:90:19:22:32:7c:4b:6c: 06:ab:d9:8f:5a:a5:26:97:6d:7c:8e:1a:07:bd:ca: 12:86:f5:35:4a:68:de:f0:54:87:b4:15:c7:fb:a2: 65:ab:fe:14:f8:f5:57:38:c6:dc:69:9d:e5:1a:ba: 6e:6c:5f:11:12:a0:2d:db:f2:a3:05:20:4c:d0:09: ba:53:23:20:4a:0d:69:ad:0d:b5:04:90:2d:75:55: 25:93:f4:3b:df:47:b3:de:9a:bc:23:c0:68:87:29: 99:47:fb:20:76:a4:2b:08:6b:60:5d:3b:ac:93:1c: 0c:d8:bc:54:a3:ff:1c:db:f2:8e:3f:2f:c9:02:c4: b2:44:4e:1a:77:1d:11:a5:12:f9:1b:bc:db:7e:c3: 42:19:c0:76:91:33:7d:10:21:fb:7f:9f:54:7b:3f: a6:04:3c:16:75:a2:42:01:54:86:f7:cf:0c:d8:38: bf:83:76:b5:50:84:80:c7:fb:b5:2d:7a:99:c0:ac: 5c:97:f0:79:e0:e1:d6:63:91:76:3e:f7:0b:bd:b2: 94:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:82:A7:F0:F0:3A:EE:34:DF:1E:66:4A:54:37:4A:15:70:EA:AC:E5 X509v3 Authority Key Identifier: keyid:CA:24:58:31:06:FB:54:98:4C:78:15:89:5E:3E:19:ED:F7:9C:98:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153675/915A28660EB311EF89CAD12CC4F9AE02/yiRYMQb7VJhMeBWJXj4Z7fecmL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yiRYMQb7VJhMeBWJXj4Z7fecmL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153675/915A28660EB311EF89CAD12CC4F9AE02/yiRYMQb7VJhMeBWJXj4Z7fecmL8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:ea:05:02:fd:9b:a2:ea:63:e7:f0:23:2f:e9:29:cc:56:0f: a3:0c:67:a4:59:ff:79:d5:ba:5d:cc:a9:89:c5:ea:a7:80:53: 72:0f:47:67:16:0a:b9:34:bd:d9:33:82:81:d9:b6:de:4e:1a: 93:74:8d:bb:a8:70:f6:fe:5f:1c:58:77:06:f1:b6:8a:40:af: 9d:2c:46:d2:f0:9c:a9:f7:89:93:56:59:be:04:f6:bc:ec:22: 7b:2d:0d:ad:d9:31:d6:ca:4c:87:55:41:e5:8c:b5:ae:5f:b9: bc:5e:0d:03:8d:66:7e:97:12:62:b0:d3:a7:0b:71:4c:f0:3e: a2:37:f3:29:51:a9:75:01:f3:c0:55:15:44:1c:92:e0:19:c8: 97:86:58:33:cd:b9:2e:5f:b4:03:ca:c1:12:46:31:cf:3b:94: 29:5e:7b:cd:49:9b:c5:f5:6c:3c:1a:5b:94:98:ba:76:8d:53: 0b:90:90:64:4a:22:1a:4d:3d:6e:7f:b4:be:9a:65:fa:64:d5: 41:0a:ca:ed:b7:a6:17:be:5d:e0:ec:b6:95:ba:37:2b:df:cc: 72:7b:7f:34:ce:ff:b7:f2:80:4a:81:2e:89:df:52:d4:08:cd: 8a:a8:f5:40:95:8d:bd:4d:ae:87:fc:f3:cc:64:b8:aa:e2:d6: ab:24:6b:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM2NzUxMTAvBgNVBAUTKENBMjQ1ODMxMDZGQjU0OTg0Qzc4MTU4OTVFM0UxOUVE Rjc5Qzk4QkYwHhcNMjUwNjIxMDQ0NDI0WhcNMjUwNjI4MDQ0NDIzWjAYMRYwFAYD VQQDEw02ODU2MzhhOC0wZTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuIYtmO7lxGK6YJ3wPAd+yFPBysKd/SVwd5Y6Flna3JoFEycHE0sGWXzz2NUZ Lu+ziccOspAZIjJ8S2wGq9mPWqUml218jhoHvcoShvU1Smje8FSHtBXH+6Jlq/4U +PVXOMbcaZ3lGrpubF8REqAt2/KjBSBM0Am6UyMgSg1prQ21BJAtdVUlk/Q730ez 3pq8I8BohymZR/sgdqQrCGtgXTuskxwM2LxUo/8c2/KOPy/JAsSyRE4adx0RpRL5 G7zbfsNCGcB2kTN9ECH7f59Uez+mBDwWdaJCAVSG988M2Di/g3a1UISAx/u1LXqZ wKxcl/B54OHWY5F2PvcLvbKU6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCGCp/Dw Ou403x5mSlQ3ShVw6qzlMB8GA1UdIwQYMBaAFMokWDEG+1SYTHgViV4+Ge33nJi/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzY3NS85MTVBMjg2NjBF QjMxMUVGODlDQUQxMkNDNEY5QUUwMi95aVJZTVFiN1ZKaE1lQldKWGo0WjdmZWNt TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lpUllNUWI3VkpoTWVCV0pYajRaN2ZlY21MOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzY3NS85MTVBMjg2NjBFQjMxMUVGODlDQUQxMkNDNEY5QUUwMi95aVJZTVFiN1ZK aE1lQldKWGo0WjdmZWNtTDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCS6gUC/Zui6mPn8CMv6SnMVg+jDGekWf951bpdzKmJxeqngFNyD0dn Fgq5NL3ZM4KB2bbeThqTdI27qHD2/l8cWHcG8baKQK+dLEbS8Jyp94mTVlm+BPa8 7CJ7LQ2t2THWykyHVUHljLWuX7m8Xg0DjWZ+lxJisNOnC3FM8D6iN/MpUal1AfPA VRVEHJLgGciXhlgzzbkuX7QDysESRjHPO5QpXnvNSZvF9Ww8GluUmLp2jVMLkJBk SiIaTT1uf7S+mmX6ZNVBCsrtt6YXvl3g7LaVujcr38xye380zv+38oBKgS6J31LU CM2KqPVAlY29Ta6H/PPMZLiq4tarJGu1 -----END CERTIFICATE-----Generated at Sat Jun 21 07:35:51 2025 by rpki-client