$ rpki-client -vvf rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.mft File: y3TVYT1zQs-5t_ed7wyfrYhceCI.mft (raw, json) Hash identifier: DwqamrZvq1qEAUo4Msxrk4oSq4ZvYDZvKV+CZXYKKD0= Subject key identifier: BA:C3:34:F1:26:73:EC:C0:5F:E0:FB:96:F7:57:2E:BC:2C:C9:53:8A Authority key identifier: CB:74:D5:61:3D:73:42:CF:B9:B7:F7:9D:EF:0C:9F:AD:88:5C:78:22 Certificate issuer: /CN=A917845B/serialNumber=CB74D5613D7342CFB9B7F79DEF0C9FAD885C7822 Certificate serial: 0188 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y3TVYT1zQs-5t_ed7wyfrYhceCI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.mft Manifest number: 0185 Signing time: Sat 09 Aug 2025 03:57:36 +0000 Manifest this update: Sat 09 Aug 2025 03:57:35 +0000 Manifest next update: Sat 16 Aug 2025 03:57:35 +0000 Files and hashes: 1: y3TVYT1zQs-5t_ed7wyfrYhceCI.crl (hash: SoqZqYRQrX1lh+5QgKZ+M4ac5i+3jpgivfxsCBwBk3I=) 2: D5981734217611EE9EBE2F70C4F9AE02.roa (hash: Ae2kzkiPbHsneEUo3gobHEERA3S8mH2dAIJpdvxeRck=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.crl rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y3TVYT1zQs-5t_ed7wyfrYhceCI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 392 (0x188) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917845B, serialNumber=CB74D5613D7342CFB9B7F79DEF0C9FAD885C7822 Validity Not Before: Aug 9 03:57:35 2025 GMT Not After : Aug 16 03:57:35 2025 GMT Subject: CN=6896c730-c2f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:2d:0a:d9:dd:35:6a:d3:07:2a:35:d1:57:dc: 36:e4:36:80:1b:3a:8b:ad:8d:9c:9f:75:8c:b4:1c: 83:c1:e5:a8:5a:8a:66:a2:df:17:fa:db:c3:76:89: 79:83:c6:07:6c:e8:56:fa:0a:80:ee:bc:5f:0e:11: 85:ff:88:18:66:5c:2b:4d:0e:7c:e2:33:3e:cd:72: f5:5c:43:c0:af:98:79:e3:a4:bc:49:28:c8:41:b2: fb:f7:9a:65:21:75:49:32:b6:8c:14:71:9e:4a:02: 32:5a:c2:95:be:50:06:f2:c9:43:95:0e:5e:dc:2c: 1f:e3:05:db:5c:68:d3:52:2c:40:a1:6b:2a:15:c1: fa:9a:55:81:73:98:e1:4a:bb:f0:a3:c6:99:66:43: 27:53:69:cd:e2:b4:4a:8a:f0:a8:04:8d:21:a0:d0: ba:17:71:e9:c5:72:a2:55:11:31:37:70:43:00:a6: 1e:4b:e9:e6:d7:0c:6b:41:05:2d:20:78:3e:eb:b1: f5:4c:c2:8c:7c:b0:53:e4:75:5a:82:7c:13:97:19: 31:1f:64:50:29:42:e1:ce:81:04:4c:ac:a8:1e:0a: d3:e6:5b:b8:6c:18:f2:4e:da:2a:71:22:bd:a0:c9: 20:2c:bc:79:a3:84:c7:1c:bb:37:eb:c4:04:02:23: 1d:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:C3:34:F1:26:73:EC:C0:5F:E0:FB:96:F7:57:2E:BC:2C:C9:53:8A X509v3 Authority Key Identifier: keyid:CB:74:D5:61:3D:73:42:CF:B9:B7:F7:9D:EF:0C:9F:AD:88:5C:78:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y3TVYT1zQs-5t_ed7wyfrYhceCI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:1e:d8:96:dc:36:dc:4c:f2:4d:52:9d:56:4a:ca:86:d2:47: d5:1e:42:fb:c0:97:db:92:dd:4b:88:9e:66:03:4a:d9:9f:d2: aa:1f:5e:18:0f:84:c0:ff:07:1c:29:cf:d6:7d:b2:bf:97:4e: 87:f3:da:3b:72:f2:dd:e0:96:4c:a3:14:50:39:51:ba:a9:e5: 8e:e5:a1:30:5c:f2:09:9d:47:6b:2c:d8:ac:46:e3:be:b5:f6: c5:16:3d:04:0c:82:9b:1f:7e:5a:67:88:0b:eb:3d:c4:97:34: 1b:ee:32:fc:32:4a:aa:44:d6:66:72:72:25:5c:cf:9d:31:51: 90:0c:21:38:21:35:02:a4:2d:1d:d3:5c:0d:15:d2:26:45:7e: 8e:4d:e4:94:a1:30:58:92:8b:5f:2f:6b:17:0a:44:22:63:fa: d4:b6:9d:b2:90:70:78:a2:28:3c:88:9c:5c:b0:d1:f9:5f:20: ac:2d:cb:71:55:0f:9a:f9:e9:d1:58:b0:e7:27:e8:7e:19:86: 6e:2d:1a:72:9a:9c:da:ed:de:45:f1:25:6e:d7:00:5f:7b:9d: 9a:0f:68:1e:43:69:3e:9b:d5:21:b9:f7:81:cd:58:a2:0a:41: 09:7e:87:69:85:81:66:89:5d:ba:34:32:56:f5:9c:59:a6:73: 93:0d:39:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzg0NUIxMTAvBgNVBAUTKENCNzRENTYxM0Q3MzQyQ0ZCOUI3Rjc5REVGMEM5RkFE ODg1Qzc4MjIwHhcNMjUwODA5MDM1NzM1WhcNMjUwODE2MDM1NzM1WjAYMRYwFAYD VQQDEw02ODk2YzczMC1jMmYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyS0K2d01atMHKjXRV9w25DaAGzqLrY2cn3WMtByDweWoWopmot8X+tvDdol5 g8YHbOhW+gqA7rxfDhGF/4gYZlwrTQ584jM+zXL1XEPAr5h546S8SSjIQbL795pl IXVJMraMFHGeSgIyWsKVvlAG8slDlQ5e3Cwf4wXbXGjTUixAoWsqFcH6mlWBc5jh Srvwo8aZZkMnU2nN4rRKivCoBI0hoNC6F3HpxXKiVRExN3BDAKYeS+nm1wxrQQUt IHg+67H1TMKMfLBT5HVagnwTlxkxH2RQKULhzoEETKyoHgrT5lu4bBjyTtoqcSK9 oMkgLLx5o4THHLs368QEAiMdpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLrDNPEm c+zAX+D7lvdXLrwsyVOKMB8GA1UdIwQYMBaAFMt01WE9c0LPubf3ne8Mn62IXHgi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3ODQ1Qi85NzM2OUI0NjIx NzYxMUVFQjRGM0FENkZDNEY5QUUwMi95M1RWWVQxelFzLTV0X2VkN3d5ZnJZaGNl Q0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kzVFZZVDF6UXMtNXRfZWQ3d3lmclloY2VDSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 ODQ1Qi85NzM2OUI0NjIxNzYxMUVFQjRGM0FENkZDNEY5QUUwMi95M1RWWVQxelFz LTV0X2VkN3d5ZnJZaGNlQ0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjHtiW3DbcTPJNUp1WSsqG0kfVHkL7wJfbkt1LiJ5mA0rZn9KqH14Y D4TA/wccKc/WfbK/l06H89o7cvLd4JZMoxRQOVG6qeWO5aEwXPIJnUdrLNisRuO+ tfbFFj0EDIKbH35aZ4gL6z3ElzQb7jL8MkqqRNZmcnIlXM+dMVGQDCE4ITUCpC0d 01wNFdImRX6OTeSUoTBYkotfL2sXCkQiY/rUtp2ykHB4oig8iJxcsNH5XyCsLctx VQ+a+enRWLDnJ+h+GYZuLRpympza7d5F8SVu1wBfe52aD2geQ2k+m9UhufeBzVii CkEJfodphYFmiV26NDJW9ZxZpnOTDTkl -----END CERTIFICATE-----Generated at Sun Aug 10 16:09:20 2025 by rpki-client