$ rpki-client -vvf rpki.apnic.net/member_repository/A919130F/72E2C4242A4111F08321934CC4F9AE02/y7Nb36Nai-snCaTbsy49IWLsH6g.mft File: y7Nb36Nai-snCaTbsy49IWLsH6g.mft (raw, json) Hash identifier: GOwJWH66DuWzfk6ganuTJVv9nkvoQTgWQ9snPGunTds= Subject key identifier: 61:E1:68:FD:2D:33:32:1D:72:5B:FA:68:61:EA:53:10:53:9E:1F:08 Authority key identifier: CB:B3:5B:DF:A3:5A:8B:EB:27:09:A4:DB:B3:2E:3D:21:62:EC:1F:A8 Certificate issuer: /CN=A919130F/serialNumber=CBB35BDFA35A8BEB2709A4DBB32E3D2162EC1FA8 Certificate serial: 32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7Nb36Nai-snCaTbsy49IWLsH6g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919130F/72E2C4242A4111F08321934CC4F9AE02/y7Nb36Nai-snCaTbsy49IWLsH6g.mft Manifest number: 31 Signing time: Sat 09 Aug 2025 08:08:52 +0000 Manifest this update: Sat 09 Aug 2025 08:08:51 +0000 Manifest next update: Sat 16 Aug 2025 08:08:51 +0000 Files and hashes: 1: y7Nb36Nai-snCaTbsy49IWLsH6g.crl (hash: mmp77cWLEreXkssUOsGGijGlf3D0hyp3w8ROr2ykOD8=) 2: 26B1D24C2A4211F08783A40EC4F9AE02.roa (hash: 3bcDVvnCHw6LlppchOqrgSyXHliARmZhxXNaF8dSpvk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919130F/72E2C4242A4111F08321934CC4F9AE02/y7Nb36Nai-snCaTbsy49IWLsH6g.crl rsync://rpki.apnic.net/member_repository/A919130F/72E2C4242A4111F08321934CC4F9AE02/y7Nb36Nai-snCaTbsy49IWLsH6g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7Nb36Nai-snCaTbsy49IWLsH6g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50 (0x32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919130F, serialNumber=CBB35BDFA35A8BEB2709A4DBB32E3D2162EC1FA8 Validity Not Before: Aug 9 08:08:51 2025 GMT Not After : Aug 16 08:08:51 2025 GMT Subject: CN=68970213-2f03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f5:bc:99:7a:68:39:06:8e:79:c2:9f:96:c6: a9:9b:cc:1b:2c:82:2c:ee:7a:10:b2:dd:eb:9b:8b: 06:8b:af:cf:a9:a0:77:ef:83:b9:37:95:53:b4:75: f6:be:72:72:b6:3a:db:c9:2b:e3:e5:7f:51:2b:58: 45:7d:81:68:df:66:21:b7:ae:ce:b1:5a:90:da:e5: 48:d8:67:62:a1:cc:00:a4:a6:fe:85:81:f0:6f:87: f4:c5:2d:fa:7c:9a:1d:d0:f4:41:23:85:71:26:45: 65:c5:0f:38:2c:e1:78:30:be:1b:c4:13:a3:a6:94: 1c:4d:95:55:60:42:e8:84:71:58:b2:d6:be:39:6b: d5:2e:4c:ea:7d:ad:4a:92:de:d7:80:f6:da:fc:81: f9:f5:0f:87:bf:63:fa:79:90:d3:ed:08:3c:06:f3: 43:99:f0:bd:51:60:5d:74:5e:cc:ee:b5:16:97:17: 58:ea:60:2a:ca:50:ae:26:9c:0e:f0:bb:94:71:1e: 73:48:e7:57:dd:2b:bc:e6:07:61:cb:77:0c:07:aa: 80:37:fd:19:2e:d2:2a:a9:c8:5f:5d:15:b4:33:d0: ec:a5:9f:64:3e:6a:d1:24:5e:d6:b5:d2:d6:d1:e6: 24:7f:d2:67:55:f2:39:ee:74:7a:ee:25:21:8d:6e: 73:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:E1:68:FD:2D:33:32:1D:72:5B:FA:68:61:EA:53:10:53:9E:1F:08 X509v3 Authority Key Identifier: keyid:CB:B3:5B:DF:A3:5A:8B:EB:27:09:A4:DB:B3:2E:3D:21:62:EC:1F:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919130F/72E2C4242A4111F08321934CC4F9AE02/y7Nb36Nai-snCaTbsy49IWLsH6g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7Nb36Nai-snCaTbsy49IWLsH6g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919130F/72E2C4242A4111F08321934CC4F9AE02/y7Nb36Nai-snCaTbsy49IWLsH6g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:e7:1a:81:a7:17:4c:a9:d8:01:da:c4:6d:01:b1:06:dd:9e: be:af:57:f4:2c:fa:66:d6:c1:44:62:dc:82:ee:ef:38:58:51: 7a:25:cc:d5:33:27:b6:4a:1f:6f:e1:e0:0a:c7:91:fc:ab:1b: d3:c4:9b:be:00:67:c6:22:f0:e4:57:0c:52:75:e2:5d:3f:51: 13:3b:44:a1:e4:61:99:3d:fa:39:59:0b:fc:8e:7c:b2:6e:70: f9:34:7b:79:52:51:b5:b2:53:c5:ad:45:df:ea:07:01:97:28: a7:f1:4b:c9:06:fd:5a:bd:5c:e2:f4:ef:6b:72:26:1d:ed:c8: 95:75:30:ca:0f:52:1a:f2:09:56:33:8e:12:ee:5a:b9:bc:40: 5c:b4:14:11:50:55:68:51:7e:11:76:07:27:96:71:09:fa:07: 26:af:d2:34:07:df:c4:1f:76:ca:f5:c4:be:cc:fe:98:57:c8: 56:e4:87:5f:13:80:cc:4d:d2:80:65:2c:f1:f9:3b:e7:e6:d5: dc:d0:76:c0:e9:3a:3c:4d:da:00:a0:f1:0a:e6:25:b8:5d:94: d7:51:ea:82:87:f2:34:2e:8c:e8:4b:7f:59:3b:ef:dd:25:c6: 0c:7c:37:3d:9f:43:36:be:c4:ac:2b:f9:a4:77:59:db:c4:fb: fc:40:d9:a8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 MTMwRjExMC8GA1UEBRMoQ0JCMzVCREZBMzVBOEJFQjI3MDlBNERCQjMyRTNEMjE2 MkVDMUZBODAeFw0yNTA4MDkwODA4NTFaFw0yNTA4MTYwODA4NTFaMBgxFjAUBgNV BAMTDTY4OTcwMjEzLTJmMDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC79byZemg5Bo55wp+WxqmbzBssgizuehCy3eubiwaLr8+poHfvg7k3lVO0dfa+ cnK2OtvJK+Plf1ErWEV9gWjfZiG3rs6xWpDa5UjYZ2KhzACkpv6FgfBvh/TFLfp8 mh3Q9EEjhXEmRWXFDzgs4XgwvhvEE6OmlBxNlVVgQuiEcViy1r45a9UuTOp9rUqS 3teA9tr8gfn1D4e/Y/p5kNPtCDwG80OZ8L1RYF10XszutRaXF1jqYCrKUK4mnA7w u5RxHnNI51fdK7zmB2HLdwwHqoA3/Rku0iqpyF9dFbQz0Oyln2Q+atEkXta10tbR 5iR/0mdV8jnudHruJSGNbnMdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUYeFo/S0z Mh1yW/poYepTEFOeHwgwHwYDVR0jBBgwFoAUy7Nb36Nai+snCaTbsy49IWLsH6gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkxMzBGLzcyRTJDNDI0MkE0 MTExRjA4MzIxOTM0Q0M0RjlBRTAyL3k3TmIzNk5haS1zbkNhVGJzeTQ5SVdMc0g2 Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveTdOYjM2TmFpLXNuQ2FUYnN5NDlJV0xzSDZnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkx MzBGLzcyRTJDNDI0MkE0MTExRjA4MzIxOTM0Q0M0RjlBRTAyL3k3TmIzNk5haS1z bkNhVGJzeTQ5SVdMc0g2Zy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFvnGoGnF0yp2AHaxG0BsQbdnr6vV/Qs+mbWwURi3ILu7zhYUXolzNUz J7ZKH2/h4ArHkfyrG9PEm74AZ8Yi8ORXDFJ14l0/URM7RKHkYZk9+jlZC/yOfLJu cPk0e3lSUbWyU8WtRd/qBwGXKKfxS8kG/Vq9XOL072tyJh3tyJV1MMoPUhryCVYz jhLuWrm8QFy0FBFQVWhRfhF2ByeWcQn6Byav0jQH38Qfdsr1xL7M/phXyFbkh18T gMxN0oBlLPH5O+fm1dzQdsDpOjxN2gCg8QrmJbhdlNdR6oKH8jQujOhLf1k7790l xgx8Nz2fQza+xKwr+aR3WdvE+/xA2ag= -----END CERTIFICATE-----Generated at Sun Aug 10 10:35:49 2025 by rpki-client