$ rpki-client -vvf rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft File: Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft (raw, json) Hash identifier: CtxGgkAAmIbXSMekG7i0DDWJ2efK2njn3Wo/F13Tkbc= Subject key identifier: 50:05:4F:E8:6A:12:76:9E:B1:F5:A6:26:CB:7D:D6:8F:EF:ED:AF:03 Authority key identifier: 63:E4:87:62:A8:93:08:09:67:73:D9:E1:C9:D1:A9:99:80:35:67:0D Certificate issuer: /CN=A9147B58/serialNumber=63E48762A89308096773D9E1C9D1A9998035670D Certificate serial: 05CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft Manifest number: 05C5 Signing time: Fri 18 Jul 2025 23:25:23 +0000 Manifest this update: Fri 18 Jul 2025 23:25:22 +0000 Manifest next update: Fri 25 Jul 2025 23:25:22 +0000 Files and hashes: 1: Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl (hash: +7mNMuyLxvO1n+pizUzXis7YeyNSlHH6uGlte6bmx3A=) 2: 657BCA62CABC11EB8D6D063BC4F9AE02.roa (hash: tl2kppVQ05tVhEGA0iZghAdvk5il8hkt04HkORheCWE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 23:25:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1483 (0x5cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147B58, serialNumber=63E48762A89308096773D9E1C9D1A9998035670D Validity Not Before: Jul 18 23:25:22 2025 GMT Not After : Jul 25 23:25:22 2025 GMT Subject: CN=687ad7e3-14da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:51:f7:78:63:c1:b1:ff:bb:cf:39:f2:5c:83: 72:8d:7e:b4:b8:da:cf:69:e3:ad:6a:95:ef:81:54: 2f:19:d9:83:9d:2b:81:68:ae:5f:b2:c9:46:67:a0: ab:45:53:30:fc:9a:1b:0b:0f:5f:04:6e:fd:a3:ff: 33:0e:4d:de:17:a3:8d:36:04:52:05:36:93:2f:23: 8b:0b:b0:cb:6d:52:84:a7:2f:9a:9f:02:48:58:20: 3f:80:c4:37:29:6c:6a:4e:dd:e1:43:d3:cc:3c:d0: 4e:0e:87:eb:47:9a:0b:2d:02:d7:6d:ca:ce:d9:0a: cf:76:0c:51:8e:eb:28:f9:24:f5:dd:06:94:68:57: ed:09:d2:9f:ee:31:e1:a1:c0:45:12:a4:4d:67:2d: f6:83:e5:02:d7:ed:64:26:c4:1a:39:5d:5d:6d:bb: 72:83:03:d2:f0:e0:3e:f0:26:5a:69:3d:35:ab:7c: 54:99:4c:76:9f:74:32:52:d3:77:1b:90:5e:3a:e9: e4:68:6b:d4:ff:d5:af:bd:84:98:53:f7:61:77:53: 60:d2:4a:84:b9:9d:17:49:17:ba:70:a3:55:b8:62: ac:8b:35:c2:42:21:f6:89:96:25:f4:05:77:3a:4e: 1d:5e:40:cc:89:59:b3:8b:85:59:91:99:5c:4f:69: 06:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:05:4F:E8:6A:12:76:9E:B1:F5:A6:26:CB:7D:D6:8F:EF:ED:AF:03 X509v3 Authority Key Identifier: keyid:63:E4:87:62:A8:93:08:09:67:73:D9:E1:C9:D1:A9:99:80:35:67:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:98:1c:b6:52:42:4f:69:05:8d:37:6b:8d:76:b4:cc:1a:9c: 4a:8f:7d:cd:62:2b:88:a9:53:ad:5e:63:0b:bc:08:cb:b5:7e: 53:60:6f:e9:95:e4:9e:28:b0:90:e9:0a:a0:d9:e0:94:96:22: 0f:ff:0e:4d:36:2d:1b:c8:36:db:0d:30:c9:7b:29:f7:c9:10: 03:11:60:08:af:d4:6b:c9:43:f0:2c:82:1b:77:ee:94:a8:19: fc:61:80:6c:9a:59:86:1c:93:8b:c9:18:14:0e:95:70:d0:58: cc:32:31:3b:3b:04:02:74:30:41:b7:36:a1:15:d2:3b:71:88: 0e:38:5e:9f:32:b5:2d:4a:72:8d:96:34:c6:c1:f4:53:82:9a: 57:d8:bc:58:8e:b1:f4:62:6d:cf:4e:3a:ca:0a:76:6c:63:28: b1:f6:31:37:f5:64:28:02:64:49:28:df:44:03:12:72:ba:c1: 34:56:ea:1c:04:9b:cf:8f:a7:db:5a:75:66:d0:1c:f8:fc:c8: e6:8d:ab:f4:b2:c2:f2:49:db:85:3e:23:06:ba:22:53:a2:cd: 68:6a:ad:8f:c4:df:d5:fa:30:26:0c:e7:c7:73:50:bc:87:96: 84:d1:b1:b5:d7:22:4a:86:b7:62:eb:b4:65:a5:0b:4a:4c:60: 76:66:dc:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBcswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdCNTgxMTAvBgNVBAUTKDYzRTQ4NzYyQTg5MzA4MDk2NzczRDlFMUM5RDFBOTk5 ODAzNTY3MEQwHhcNMjUwNzE4MjMyNTIyWhcNMjUwNzI1MjMyNTIyWjAYMRYwFAYD VQQDEw02ODdhZDdlMy0xNGRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvlH3eGPBsf+7zznyXINyjX60uNrPaeOtapXvgVQvGdmDnSuBaK5fsslGZ6Cr RVMw/JobCw9fBG79o/8zDk3eF6ONNgRSBTaTLyOLC7DLbVKEpy+anwJIWCA/gMQ3 KWxqTt3hQ9PMPNBODofrR5oLLQLXbcrO2QrPdgxRjuso+ST13QaUaFftCdKf7jHh ocBFEqRNZy32g+UC1+1kJsQaOV1dbbtygwPS8OA+8CZaaT01q3xUmUx2n3QyUtN3 G5BeOunkaGvU/9WvvYSYU/dhd1Ng0kqEuZ0XSRe6cKNVuGKsizXCQiH2iZYl9AV3 Ok4dXkDMiVmzi4VZkZlcT2kGpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFAFT+hq EnaesfWmJst91o/v7a8DMB8GA1UdIwQYMBaAFGPkh2KokwgJZ3PZ4cnRqZmANWcN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0I1OC9BQUMyMUM3RUNB QjgxMUVCODQxNTUzMzZDNEY5QUUwMi9ZLVNIWXFpVENBbG5jOW5oeWRHcG1ZQTFa dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ktU0hZcWlUQ0FsbmM5bmh5ZEdwbVlBMVp3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0I1OC9BQUMyMUM3RUNBQjgxMUVCODQxNTUzMzZDNEY5QUUwMi9ZLVNIWXFpVENB bG5jOW5oeWRHcG1ZQTFadzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjmBy2UkJPaQWNN2uNdrTMGpxKj33NYiuIqVOtXmMLvAjLtX5TYG/p leSeKLCQ6Qqg2eCUliIP/w5NNi0byDbbDTDJeyn3yRADEWAIr9RryUPwLIIbd+6U qBn8YYBsmlmGHJOLyRgUDpVw0FjMMjE7OwQCdDBBtzahFdI7cYgOOF6fMrUtSnKN ljTGwfRTgppX2LxYjrH0Ym3PTjrKCnZsYyix9jE39WQoAmRJKN9EAxJyusE0Vuoc BJvPj6fbWnVm0Bz4/Mjmjav0ssLySduFPiMGuiJTos1oaq2PxN/V+jAmDOfHc1C8 h5aE0bG11yJKhrdi67RlpQtKTGB2Ztyw -----END CERTIFICATE-----Generated at Sun Jul 20 10:04:18 2025 by rpki-client