$ rpki-client -vvf rpki.apnic.net/member_repository/A917F116/8BCFFF066EDE11F091E02A21C4F9AE02/2y3U_v83CRJX9gGdUKI5MOxG4fs.mft File: 2y3U_v83CRJX9gGdUKI5MOxG4fs.mft (raw, json) Hash identifier: 5OtaNsrfVaeNxi//HCfmKVBQqNF3tanC+jZn+W3Qpbc= Subject key identifier: AA:BB:39:52:70:4A:AA:AE:57:FB:AA:E1:04:A6:DA:7F:83:80:34:4F Authority key identifier: DB:2D:D4:FE:FF:37:09:12:57:F6:01:9D:50:A2:39:30:EC:46:E1:FB Certificate issuer: /CN=A917F116/serialNumber=DB2DD4FEFF37091257F6019D50A23930EC46E1FB Certificate serial: 07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2y3U_v83CRJX9gGdUKI5MOxG4fs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F116/8BCFFF066EDE11F091E02A21C4F9AE02/2y3U_v83CRJX9gGdUKI5MOxG4fs.mft Manifest number: 06 Signing time: Sat 09 Aug 2025 08:43:08 +0000 Manifest this update: Sat 09 Aug 2025 08:43:07 +0000 Manifest next update: Sat 16 Aug 2025 08:43:07 +0000 Files and hashes: 1: 2y3U_v83CRJX9gGdUKI5MOxG4fs.crl (hash: psayD7F7LNcP4hagmT9d0dYCBWqJl+Q3lJmJ6sxUumo=) 2: 2D49C7EE6EE011F0AE7C9D10C4F9AE02.roa (hash: 5ZM/AYD4IyE3xPKkbT4wkcwofrzRE8wCJAqTsHSEAPk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F116/8BCFFF066EDE11F091E02A21C4F9AE02/2y3U_v83CRJX9gGdUKI5MOxG4fs.crl rsync://rpki.apnic.net/member_repository/A917F116/8BCFFF066EDE11F091E02A21C4F9AE02/2y3U_v83CRJX9gGdUKI5MOxG4fs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2y3U_v83CRJX9gGdUKI5MOxG4fs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F116, serialNumber=DB2DD4FEFF37091257F6019D50A23930EC46E1FB Validity Not Before: Aug 9 08:43:07 2025 GMT Not After : Aug 16 08:43:07 2025 GMT Subject: CN=68970a1b-b02c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:d6:8c:d9:6f:c8:dd:1b:d8:0f:2c:4c:6c:00: 9c:f9:d0:1f:b3:89:18:0f:02:31:f4:e2:7a:69:e3: 84:64:2c:04:1d:45:65:c2:e6:e1:24:a6:b7:7b:4f: 09:13:29:42:58:40:14:49:fd:8e:82:a7:42:0c:e7: 20:34:22:51:6d:90:95:b1:28:3a:2e:6a:01:14:76: 04:bb:d9:f4:c2:ba:20:4a:cb:00:33:2c:6a:fb:77: 3d:98:5b:d2:65:24:2b:28:e0:d1:0d:3f:5d:dc:57: f6:d5:16:13:9b:d4:45:9f:79:a4:78:17:19:f5:4c: 20:bd:47:dd:66:84:d6:38:44:db:85:8c:84:45:66: 3d:6e:70:5c:ea:ff:e5:47:c8:b8:9f:b6:84:21:6f: cc:98:2b:a3:1e:20:bf:b5:9d:91:26:80:3f:f7:e8: 50:87:96:57:d8:a9:e0:cf:dc:8b:83:1e:4f:da:18: 88:5c:3c:4e:4c:a2:1a:c9:e4:1c:35:0c:20:fc:d2: d3:7a:e9:aa:41:cd:95:14:88:2b:a7:44:88:d0:d3: 81:9f:30:e1:d2:24:f0:b6:0c:90:4f:a3:24:90:5d: 16:61:b6:2c:b6:11:6c:e4:ba:66:38:f3:48:99:2f: ba:fb:05:4e:ba:d7:af:a3:ad:f4:07:77:ff:d4:cd: 39:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:BB:39:52:70:4A:AA:AE:57:FB:AA:E1:04:A6:DA:7F:83:80:34:4F X509v3 Authority Key Identifier: keyid:DB:2D:D4:FE:FF:37:09:12:57:F6:01:9D:50:A2:39:30:EC:46:E1:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F116/8BCFFF066EDE11F091E02A21C4F9AE02/2y3U_v83CRJX9gGdUKI5MOxG4fs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2y3U_v83CRJX9gGdUKI5MOxG4fs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F116/8BCFFF066EDE11F091E02A21C4F9AE02/2y3U_v83CRJX9gGdUKI5MOxG4fs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:68:08:74:42:20:d8:03:bf:2b:b8:ab:85:b7:f6:41:ef:7e: ac:24:17:fa:48:0c:d6:7a:03:f0:e6:18:ca:0c:ad:c6:c3:09: 66:11:a2:ac:ef:4a:e5:7e:70:ed:fa:31:c2:d0:18:e8:41:f6: 14:20:8d:d2:36:79:1f:7b:bb:f0:09:16:3c:cb:fd:46:b2:dc: 06:9a:76:72:79:b9:df:67:40:47:0b:ed:7b:e4:d5:3c:6a:76: d9:72:f0:f6:f7:98:84:59:f0:7f:14:87:8b:18:52:4e:41:34: db:f0:40:09:61:0e:83:96:06:e6:54:6e:0a:80:22:aa:88:e6: 1c:8d:7e:10:8c:8e:30:62:eb:7b:0e:16:b2:10:b6:5f:ea:d3: be:c7:fd:76:b5:70:44:04:d8:45:e5:ec:11:4b:8b:27:6e:30: 8f:86:0f:4b:1b:ed:02:ad:74:9a:14:b1:6c:81:8e:91:4a:0d: 01:2c:13:44:2b:53:00:b0:12:39:e4:72:19:48:89:1d:3d:3c: 86:f0:e9:08:fd:aa:e6:67:69:26:b1:15:2e:22:41:05:65:db: d2:37:f7:48:76:32:44:24:8d:ca:e1:51:50:02:96:db:18:3e: 13:bd:b9:82:57:1c:8f:46:de:64:cc:b6:30:88:f5:b8:ad:60: bf:af:38:5f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RjExNjExMC8GA1UEBRMoREIyREQ0RkVGRjM3MDkxMjU3RjYwMTlENTBBMjM5MzBF QzQ2RTFGQjAeFw0yNTA4MDkwODQzMDdaFw0yNTA4MTYwODQzMDdaMBgxFjAUBgNV BAMTDTY4OTcwYTFiLWIwMmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQ1ozZb8jdG9gPLExsAJz50B+ziRgPAjH04npp44RkLAQdRWXC5uEkprd7TwkT KUJYQBRJ/Y6Cp0IM5yA0IlFtkJWxKDouagEUdgS72fTCuiBKywAzLGr7dz2YW9Jl JCso4NENP13cV/bVFhOb1EWfeaR4Fxn1TCC9R91mhNY4RNuFjIRFZj1ucFzq/+VH yLiftoQhb8yYK6MeIL+1nZEmgD/36FCHllfYqeDP3IuDHk/aGIhcPE5MohrJ5Bw1 DCD80tN66apBzZUUiCunRIjQ04GfMOHSJPC2DJBPoySQXRZhtiy2EWzkumY480iZ L7r7BU6616+jrfQHd//UzTk9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUqrs5UnBK qq5X+6rhBKbaf4OANE8wHwYDVR0jBBgwFoAU2y3U/v83CRJX9gGdUKI5MOxG4fsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdGMTE2LzhCQ0ZGRjA2NkVE RTExRjA5MUUwMkEyMUM0RjlBRTAyLzJ5M1VfdjgzQ1JKWDlnR2RVS0k1TU94RzRm cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMnkzVV92ODNDUkpYOWdHZFVLSTVNT3hHNGZzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdG MTE2LzhCQ0ZGRjA2NkVERTExRjA5MUUwMkEyMUM0RjlBRTAyLzJ5M1VfdjgzQ1JK WDlnR2RVS0k1TU94RzRmcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKRoCHRCINgDvyu4q4W39kHvfqwkF/pIDNZ6A/DmGMoMrcbDCWYRoqzv SuV+cO36McLQGOhB9hQgjdI2eR97u/AJFjzL/Uay3AaadnJ5ud9nQEcL7Xvk1Txq dtly8Pb3mIRZ8H8Uh4sYUk5BNNvwQAlhDoOWBuZUbgqAIqqI5hyNfhCMjjBi63sO FrIQtl/q077H/Xa1cEQE2EXl7BFLiyduMI+GD0sb7QKtdJoUsWyBjpFKDQEsE0Qr UwCwEjnkchlIiR09PIbw6Qj9quZnaSaxFS4iQQVl29I390h2MkQkjcrhUVACltsY PhO9uYJXHI9G3mTMtjCI9bitYL+vOF8= -----END CERTIFICATE-----Generated at Sun Aug 10 10:45:41 2025 by rpki-client