$ rpki-client -vvf rpki.apnic.net/member_repository/A919130F/72E2C4242A4111F08321934CC4F9AE02/y7Nb36Nai-snCaTbsy49IWLsH6g.mft File: y7Nb36Nai-snCaTbsy49IWLsH6g.mft (raw, json) Hash identifier: 9M9Unv7hhKs4Mrbo4Cci7knXg4GmXJ3j/8DMTLuEnLU= Subject key identifier: 98:3F:87:D7:96:91:D2:5B:3E:B8:5F:8D:68:3C:4D:48:CC:21:4C:86 Authority key identifier: CB:B3:5B:DF:A3:5A:8B:EB:27:09:A4:DB:B3:2E:3D:21:62:EC:1F:A8 Certificate issuer: /CN=A919130F/serialNumber=CBB35BDFA35A8BEB2709A4DBB32E3D2162EC1FA8 Certificate serial: 18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7Nb36Nai-snCaTbsy49IWLsH6g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919130F/72E2C4242A4111F08321934CC4F9AE02/y7Nb36Nai-snCaTbsy49IWLsH6g.mft Manifest number: 17 Signing time: Thu 19 Jun 2025 07:19:19 +0000 Manifest this update: Thu 19 Jun 2025 07:19:18 +0000 Manifest next update: Thu 26 Jun 2025 07:19:18 +0000 Files and hashes: 1: y7Nb36Nai-snCaTbsy49IWLsH6g.crl (hash: XhlcUHXUsxMmVlZH2RUnTAc9BLQa3ogmZRetDRkqDbE=) 2: 26B1D24C2A4211F08783A40EC4F9AE02.roa (hash: 3bcDVvnCHw6LlppchOqrgSyXHliARmZhxXNaF8dSpvk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919130F/72E2C4242A4111F08321934CC4F9AE02/y7Nb36Nai-snCaTbsy49IWLsH6g.crl rsync://rpki.apnic.net/member_repository/A919130F/72E2C4242A4111F08321934CC4F9AE02/y7Nb36Nai-snCaTbsy49IWLsH6g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7Nb36Nai-snCaTbsy49IWLsH6g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 07:19:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24 (0x18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919130F, serialNumber=CBB35BDFA35A8BEB2709A4DBB32E3D2162EC1FA8 Validity Not Before: Jun 19 07:19:18 2025 GMT Not After : Jun 26 07:19:18 2025 GMT Subject: CN=6853b9f6-020d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:2f:d4:81:0f:7e:cd:aa:2b:ef:38:cf:20:56: 1b:66:e4:9b:e4:9c:43:60:8d:4f:58:d7:d4:1f:c4: 6e:bd:fc:1f:c0:2f:77:87:a0:2d:c1:40:47:f0:f1: 68:6b:57:f6:94:8b:50:4c:72:35:17:0e:0b:ad:a4: cb:18:a2:6c:b3:b8:3e:fe:dc:bb:1a:9f:95:36:21: 1b:c0:0b:8b:50:74:32:b3:1a:f8:aa:a3:46:47:8f: 0e:e6:fc:f0:52:2c:cd:80:de:5b:6c:6f:73:1f:19: be:cc:9e:54:d8:8f:d0:99:4e:88:48:7f:b1:a3:28: 19:32:ad:a7:ba:12:ce:d8:ce:8e:08:87:7a:21:ce: 27:8f:9e:00:16:58:42:c1:d8:ab:0e:ab:b3:0e:95: 28:63:ff:62:bf:e3:51:6e:3c:81:8e:d5:00:2d:5d: ae:db:51:ef:3a:28:10:71:a8:78:78:a9:84:8a:66: 52:af:0f:1d:9e:48:57:26:af:ac:df:ca:d6:e6:21: d0:0a:59:fd:25:c5:b9:26:46:0e:79:8e:8e:4b:89: 6e:c1:d0:f1:2f:27:54:f7:fc:f5:23:95:de:7f:6a: d9:46:52:6b:72:42:f2:6a:cd:bf:17:26:1c:10:5c: 4f:9b:46:55:01:37:89:16:9f:6e:78:79:3e:2e:ba: 19:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:3F:87:D7:96:91:D2:5B:3E:B8:5F:8D:68:3C:4D:48:CC:21:4C:86 X509v3 Authority Key Identifier: keyid:CB:B3:5B:DF:A3:5A:8B:EB:27:09:A4:DB:B3:2E:3D:21:62:EC:1F:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919130F/72E2C4242A4111F08321934CC4F9AE02/y7Nb36Nai-snCaTbsy49IWLsH6g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7Nb36Nai-snCaTbsy49IWLsH6g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919130F/72E2C4242A4111F08321934CC4F9AE02/y7Nb36Nai-snCaTbsy49IWLsH6g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:11:99:68:25:ea:3f:e3:44:5b:af:50:3f:c7:77:19:65:41: 3a:d8:c4:da:bd:72:01:f2:87:f0:cb:c9:20:09:1b:c1:32:6d: 5a:ae:6c:c1:d4:37:80:c5:09:63:50:7c:1f:c2:e9:57:61:50: 0b:24:7c:c5:a8:db:73:f7:48:40:85:7e:60:84:40:c1:32:e2: bf:ae:b3:e3:8d:66:cf:4b:26:e9:90:b8:0a:bc:09:b4:6e:be: 30:61:70:6a:ca:86:3c:8b:30:f1:95:bf:4f:0e:95:86:4d:df: 5e:d0:39:45:44:4f:b1:74:b4:e2:f1:22:62:c5:f6:f9:ad:97: 8b:dc:1c:77:df:80:2b:a1:25:9f:45:4b:ba:85:32:ac:a2:0d: 84:9c:b2:fe:9e:6d:2a:d4:7b:a6:89:7e:fb:08:52:18:f3:25: f6:26:7d:f0:b4:98:b8:98:19:5d:5e:7e:4b:5d:28:1b:db:d1: c7:c0:00:39:54:36:2c:b9:f8:8e:e0:a4:a5:84:9f:f4:9f:df: 78:89:1e:64:bd:f0:00:9f:68:79:d3:25:23:4b:69:e5:6b:e7: 92:6f:51:5b:18:2e:f6:e7:9d:7c:ed:f0:d4:21:bd:d1:7f:66: 4d:1a:69:81:23:17:f8:bf:a5:51:6f:93:8b:5b:50:a6:3f:f8: a1:42:21:f8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 MTMwRjExMC8GA1UEBRMoQ0JCMzVCREZBMzVBOEJFQjI3MDlBNERCQjMyRTNEMjE2 MkVDMUZBODAeFw0yNTA2MTkwNzE5MThaFw0yNTA2MjYwNzE5MThaMBgxFjAUBgNV BAMTDTY4NTNiOWY2LTAyMGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTL9SBD37NqivvOM8gVhtm5JvknENgjU9Y19QfxG69/B/AL3eHoC3BQEfw8Whr V/aUi1BMcjUXDgutpMsYomyzuD7+3Lsan5U2IRvAC4tQdDKzGviqo0ZHjw7m/PBS LM2A3ltsb3MfGb7MnlTYj9CZTohIf7GjKBkyrae6Es7Yzo4Ih3ohziePngAWWELB 2KsOq7MOlShj/2K/41FuPIGO1QAtXa7bUe86KBBxqHh4qYSKZlKvDx2eSFcmr6zf ytbmIdAKWf0lxbkmRg55jo5LiW7B0PEvJ1T3/PUjld5/atlGUmtyQvJqzb8XJhwQ XE+bRlUBN4kWn254eT4uuhnDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUmD+H15aR 0ls+uF+NaDxNSMwhTIYwHwYDVR0jBBgwFoAUy7Nb36Nai+snCaTbsy49IWLsH6gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkxMzBGLzcyRTJDNDI0MkE0 MTExRjA4MzIxOTM0Q0M0RjlBRTAyL3k3TmIzNk5haS1zbkNhVGJzeTQ5SVdMc0g2 Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveTdOYjM2TmFpLXNuQ2FUYnN5NDlJV0xzSDZnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkx MzBGLzcyRTJDNDI0MkE0MTExRjA4MzIxOTM0Q0M0RjlBRTAyL3k3TmIzNk5haS1z bkNhVGJzeTQ5SVdMc0g2Zy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAH0RmWgl6j/jRFuvUD/HdxllQTrYxNq9cgHyh/DLySAJG8EybVqubMHU N4DFCWNQfB/C6VdhUAskfMWo23P3SECFfmCEQMEy4r+us+ONZs9LJumQuAq8CbRu vjBhcGrKhjyLMPGVv08OlYZN317QOUVET7F0tOLxImLF9vmtl4vcHHffgCuhJZ9F S7qFMqyiDYScsv6ebSrUe6aJfvsIUhjzJfYmffC0mLiYGV1efktdKBvb0cfAADlU Niy5+I7gpKWEn/Sf33iJHmS98ACfaHnTJSNLaeVr55JvUVsYLvbnnXzt8NQhvdF/ Zk0aaYEjF/i/pVFvk4tbUKY/+KFCIfg= -----END CERTIFICATE-----Generated at Thu Jun 19 21:27:28 2025 by rpki-client