$ rpki-client -vvf rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.mft File: Y4g-TKLI593aw5h-SE_R1nLZOUk.mft (raw, json) Hash identifier: D9irO2yFHwD757AwuEdzaRgesXhHiuw/u2FhV/Hk37s= Subject key identifier: 06:82:DE:ED:47:0F:66:23:3C:5B:85:34:2A:CC:31:10:0A:A3:44:91 Authority key identifier: 63:88:3E:4C:A2:C8:E7:DD:DA:C3:98:7E:48:4F:D1:D6:72:D9:39:49 Certificate issuer: /CN=A913E4AA/serialNumber=63883E4CA2C8E7DDDAC3987E484FD1D672D93949 Certificate serial: 0C24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4g-TKLI593aw5h-SE_R1nLZOUk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.mft Manifest number: 0C1D Signing time: Thu 24 Jul 2025 18:49:01 +0000 Manifest this update: Thu 24 Jul 2025 18:49:00 +0000 Manifest next update: Thu 31 Jul 2025 18:49:00 +0000 Files and hashes: 1: Y4g-TKLI593aw5h-SE_R1nLZOUk.crl (hash: 6mYAFz+bvi2BaNTqChn1Ykba5ugYRN8ThwYHJn9JiAo=) 2: 9D9E8D0C11DC11EABC4FB55AC4F9AE02.roa (hash: E2q/ZEHSPXl1Ew87PC9tVYqM/dotHBquWrnE6mAYEbI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.crl rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4g-TKLI593aw5h-SE_R1nLZOUk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 18:48:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3108 (0xc24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E4AA, serialNumber=63883E4CA2C8E7DDDAC3987E484FD1D672D93949 Validity Not Before: Jul 24 18:49:00 2025 GMT Not After : Jul 31 18:49:00 2025 GMT Subject: CN=6882801c-a28f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:34:35:03:ad:d8:56:72:00:73:da:70:33:f5: 02:db:3a:85:b7:cf:7c:d4:c8:23:70:b3:bc:ff:d7: a3:32:ae:09:16:53:a8:de:2e:95:12:dd:55:eb:26: 36:e0:01:6f:c7:34:16:c7:48:fe:75:8c:fe:2a:06: 92:d4:23:55:70:a8:3a:c0:be:37:6b:a7:57:13:e7: f9:85:ea:71:48:53:5a:f6:ab:17:74:10:1b:d9:3e: dc:83:87:e0:9d:68:19:be:58:5d:13:ec:ff:a4:ce: bb:90:d5:4f:ed:e2:20:28:89:d3:61:51:28:22:07: 58:ad:80:a6:54:48:e7:bc:ba:bc:b2:54:98:34:40: 4b:53:a7:d5:19:84:aa:dd:38:18:1d:cf:d2:d0:5b: 4c:df:db:85:16:7f:fc:b2:b5:d6:5c:8c:20:d2:3f: ac:53:84:22:65:ae:b2:ba:42:8e:1b:21:e4:6a:ac: c1:01:0e:31:0c:62:bd:dc:bc:26:4a:b3:7d:4b:a0: 27:c6:ef:92:58:dc:07:21:b7:04:87:68:16:92:c2: ac:76:d9:53:f3:0d:c6:a0:3a:c0:27:d9:c1:bc:59: f9:0e:f6:74:41:f8:b2:5f:9c:3f:40:de:d4:e4:42: a6:73:73:fe:03:83:6f:a4:a9:d6:c9:6b:7f:e9:37: 90:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:82:DE:ED:47:0F:66:23:3C:5B:85:34:2A:CC:31:10:0A:A3:44:91 X509v3 Authority Key Identifier: keyid:63:88:3E:4C:A2:C8:E7:DD:DA:C3:98:7E:48:4F:D1:D6:72:D9:39:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4g-TKLI593aw5h-SE_R1nLZOUk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:5a:66:c7:97:32:63:e1:d6:f7:c6:09:52:79:e7:5a:cb:2e: 51:26:70:62:56:17:8e:93:f5:7f:e6:d2:bc:5b:88:2b:40:77: 1c:b9:c7:2e:ff:76:85:2c:4f:c7:21:4a:59:da:cb:13:e0:2c: 59:5f:aa:ac:91:c6:bd:24:e7:61:76:6e:3b:8e:2e:83:71:13: 81:bf:a2:58:e3:67:94:70:14:7b:b0:ad:ea:0e:80:87:eb:16: 5a:d6:0f:4d:53:d8:f9:00:fd:09:4d:1b:18:a2:32:1a:51:8d: 89:73:b7:6c:f1:64:3a:94:84:5b:ba:17:f0:a8:42:05:76:9a: b7:0a:a9:62:18:d4:20:af:1d:e1:5d:e4:53:fe:ef:46:28:17: 5b:e2:39:15:18:27:e2:66:4a:06:91:b9:97:aa:7d:8e:e9:52: a4:27:d6:4a:1b:5c:32:d3:93:35:6e:a4:6c:ca:0b:1f:8c:90: 22:0f:bf:c3:0c:37:6a:c0:5a:5a:50:cc:0c:b0:ec:1f:8b:f8: 64:18:69:a2:8e:f0:e9:37:04:5f:e1:ca:87:36:55:d1:73:e8: 2c:f3:86:b2:c1:7a:c5:6c:62:30:c6:5d:b9:b0:4b:1b:d1:35: 72:35:3c:92:60:e3:03:75:82:37:5f:6d:ca:44:24:36:e0:3f: ed:53:60:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0U0QUExMTAvBgNVBAUTKDYzODgzRTRDQTJDOEU3REREQUMzOTg3RTQ4NEZEMUQ2 NzJEOTM5NDkwHhcNMjUwNzI0MTg0OTAwWhcNMjUwNzMxMTg0OTAwWjAYMRYwFAYD VQQDEw02ODgyODAxYy1hMjhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzTQ1A63YVnIAc9pwM/UC2zqFt8981MgjcLO8/9ejMq4JFlOo3i6VEt1V6yY2 4AFvxzQWx0j+dYz+KgaS1CNVcKg6wL43a6dXE+f5hepxSFNa9qsXdBAb2T7cg4fg nWgZvlhdE+z/pM67kNVP7eIgKInTYVEoIgdYrYCmVEjnvLq8slSYNEBLU6fVGYSq 3TgYHc/S0FtM39uFFn/8srXWXIwg0j+sU4QiZa6yukKOGyHkaqzBAQ4xDGK93Lwm SrN9S6Anxu+SWNwHIbcEh2gWksKsdtlT8w3GoDrAJ9nBvFn5DvZ0QfiyX5w/QN7U 5EKmc3P+A4NvpKnWyWt/6TeQbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAaC3u1H D2YjPFuFNCrMMRAKo0SRMB8GA1UdIwQYMBaAFGOIPkyiyOfd2sOYfkhP0dZy2TlJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTRBQS82NzRDQTI5RTEx REIxMUVBQkY0NURBNTVDNEY5QUUwMi9ZNGctVEtMSTU5M2F3NWgtU0VfUjFuTFpP VWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1k0Zy1US0xJNTkzYXc1aC1TRV9SMW5MWk9Vay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTRBQS82NzRDQTI5RTExREIxMUVBQkY0NURBNTVDNEY5QUUwMi9ZNGctVEtMSTU5 M2F3NWgtU0VfUjFuTFpPVWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUWmbHlzJj4db3xglSeedayy5RJnBiVheOk/V/5tK8W4grQHccuccu /3aFLE/HIUpZ2ssT4CxZX6qskca9JOdhdm47ji6DcROBv6JY42eUcBR7sK3qDoCH 6xZa1g9NU9j5AP0JTRsYojIaUY2Jc7ds8WQ6lIRbuhfwqEIFdpq3CqliGNQgrx3h XeRT/u9GKBdb4jkVGCfiZkoGkbmXqn2O6VKkJ9ZKG1wy05M1bqRsygsfjJAiD7/D DDdqwFpaUMwMsOwfi/hkGGmijvDpNwRf4cqHNlXRc+gs84aywXrFbGIwxl25sEsb 0TVyNTySYOMDdYI3X23KRCQ24D/tU2Cz -----END CERTIFICATE-----Generated at Fri Jul 25 01:45:33 2025 by rpki-client