$ rpki-client -vvf rpki.apnic.net/member_repository/A9118689/515ECB32C4A711EE875D082CC4F9AE02/Y_wvXeCUyDltyLyXRO1oL_SyOIE.mft File: Y_wvXeCUyDltyLyXRO1oL_SyOIE.mft (raw, json) Hash identifier: Gn0LLzYocbYBkdYeiE4TjRFe+gGKSoN534k/TkyC0+4= Subject key identifier: B4:83:C2:B9:00:A9:FC:CE:7B:96:70:F1:6D:16:62:E8:0A:F9:B9:26 Authority key identifier: 63:FC:2F:5D:E0:94:C8:39:6D:C8:BC:97:44:ED:68:2F:F4:B2:38:81 Certificate issuer: /CN=A9118689/serialNumber=63FC2F5DE094C8396DC8BC9744ED682FF4B23881 Certificate serial: 0100 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y_wvXeCUyDltyLyXRO1oL_SyOIE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118689/515ECB32C4A711EE875D082CC4F9AE02/Y_wvXeCUyDltyLyXRO1oL_SyOIE.mft Manifest number: FE Signing time: Fri 13 Jun 2025 04:05:52 +0000 Manifest this update: Fri 13 Jun 2025 04:05:52 +0000 Manifest next update: Fri 20 Jun 2025 04:05:52 +0000 Files and hashes: 1: Y_wvXeCUyDltyLyXRO1oL_SyOIE.crl (hash: cGAPCKF4gtfoOM9r5V5gn1G1yUyPkNdRBP/G3a5ab64=) 2: D1D880A6C4FB11EEA30ECF34C4F9AE02.roa (hash: HaM1uGW7CpLpf57Ix2SDrMkVRudstrm9oD5WtSudmS8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118689/515ECB32C4A711EE875D082CC4F9AE02/Y_wvXeCUyDltyLyXRO1oL_SyOIE.crl rsync://rpki.apnic.net/member_repository/A9118689/515ECB32C4A711EE875D082CC4F9AE02/Y_wvXeCUyDltyLyXRO1oL_SyOIE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y_wvXeCUyDltyLyXRO1oL_SyOIE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 04:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 256 (0x100) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118689, serialNumber=63FC2F5DE094C8396DC8BC9744ED682FF4B23881 Validity Not Before: Jun 13 04:05:52 2025 GMT Not After : Jun 20 04:05:52 2025 GMT Subject: CN=684ba3a0-ec7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:0f:46:d1:97:3c:96:97:03:93:4e:20:1a:4c: 05:e2:ea:6f:77:5f:bb:32:99:e1:62:1a:bf:ff:e9: 58:d3:67:85:30:35:09:a9:54:c5:1a:8d:6a:03:86: c8:13:84:e0:ca:56:b1:a6:be:d0:6c:79:5b:7e:b3: ed:c5:c2:cf:18:73:2a:45:cf:d4:ca:4f:01:92:da: 06:83:53:fe:28:f3:65:b9:5c:e5:89:b6:17:53:1a: 51:c3:76:a0:23:7d:e5:1d:a6:e7:d1:f8:d1:1d:12: d6:31:78:79:a2:86:32:2c:ec:93:68:c5:5c:e2:08: c4:9d:00:96:dd:ad:9e:f0:da:4c:80:cb:3e:dc:1e: 68:62:37:fe:e6:34:4d:b2:d1:18:e5:20:ea:e3:c5: c7:95:b9:c8:ca:0a:af:8b:86:11:54:5f:aa:1a:01: 13:bf:8d:95:17:7c:4f:b4:67:7d:46:a8:1c:69:43: 2b:b1:c8:78:fa:6e:35:57:50:1d:d5:76:3a:66:97: cb:ee:62:b4:66:99:34:47:f4:48:2c:01:26:fc:80: 6f:5f:b0:65:c0:ba:19:41:e6:b9:43:23:0a:89:53: 57:fc:8d:83:91:b2:4b:c4:f7:3d:e3:26:9c:8d:8e: 84:46:9d:94:7f:94:e1:10:ad:46:45:c1:3e:38:e8: 09:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:83:C2:B9:00:A9:FC:CE:7B:96:70:F1:6D:16:62:E8:0A:F9:B9:26 X509v3 Authority Key Identifier: keyid:63:FC:2F:5D:E0:94:C8:39:6D:C8:BC:97:44:ED:68:2F:F4:B2:38:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118689/515ECB32C4A711EE875D082CC4F9AE02/Y_wvXeCUyDltyLyXRO1oL_SyOIE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y_wvXeCUyDltyLyXRO1oL_SyOIE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118689/515ECB32C4A711EE875D082CC4F9AE02/Y_wvXeCUyDltyLyXRO1oL_SyOIE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:7d:e0:fe:af:d3:05:06:d3:d9:1a:a1:60:be:74:0d:d4:06: 50:a0:58:7d:13:bc:58:6c:71:ce:78:94:d0:86:41:b9:39:68: 54:88:ee:aa:7c:07:bb:79:17:a0:76:7d:69:f4:04:5f:40:ba: 56:9b:bd:49:72:50:06:fc:18:e5:e2:21:ba:7e:83:79:ea:4e: 30:db:0b:f7:d2:a8:1f:9b:16:b4:cd:22:ce:6d:5f:48:81:50: 85:47:d7:c7:09:b8:56:c2:e2:a3:53:36:64:ec:42:78:b6:fe: f3:90:5a:c9:77:71:84:aa:85:a9:be:c8:b1:7f:e2:db:bc:6f: 9d:49:41:fb:4d:f7:3f:43:5f:1d:d0:eb:c7:ee:5e:f7:d9:d7: 0c:f2:32:37:29:cf:63:cc:b3:e5:c7:5a:3f:9f:b6:40:87:ad: 26:99:bf:f5:74:8e:be:d0:8c:d8:1d:30:09:63:b2:62:e7:3b: aa:3e:9f:03:8a:92:09:ca:2a:9a:3f:95:ab:c2:38:56:a8:00: 91:8f:94:99:55:5d:59:de:c2:2f:bb:90:a6:d6:d3:a9:0f:27: 1c:71:6a:de:16:c0:97:0a:51:7b:07:ec:70:51:31:74:77:f1: d4:3d:eb:75:f8:b3:01:a4:c7:ef:ca:a0:c6:51:ab:fe:45:bd: 8b:63:8d:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg2ODkxMTAvBgNVBAUTKDYzRkMyRjVERTA5NEM4Mzk2REM4QkM5NzQ0RUQ2ODJG RjRCMjM4ODEwHhcNMjUwNjEzMDQwNTUyWhcNMjUwNjIwMDQwNTUyWjAYMRYwFAYD VQQDEw02ODRiYTNhMC1lYzdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtw9G0Zc8lpcDk04gGkwF4upvd1+7MpnhYhq//+lY02eFMDUJqVTFGo1qA4bI E4Tgylaxpr7QbHlbfrPtxcLPGHMqRc/Uyk8BktoGg1P+KPNluVzlibYXUxpRw3ag I33lHabn0fjRHRLWMXh5ooYyLOyTaMVc4gjEnQCW3a2e8NpMgMs+3B5oYjf+5jRN stEY5SDq48XHlbnIygqvi4YRVF+qGgETv42VF3xPtGd9RqgcaUMrsch4+m41V1Ad 1XY6ZpfL7mK0Zpk0R/RILAEm/IBvX7BlwLoZQea5QyMKiVNX/I2DkbJLxPc94yac jY6ERp2Uf5ThEK1GRcE+OOgJCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLSDwrkA qfzOe5Zw8W0WYugK+bkmMB8GA1UdIwQYMBaAFGP8L13glMg5bci8l0TtaC/0sjiB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODY4OS81MTVFQ0IzMkM0 QTcxMUVFODc1RDA4MkNDNEY5QUUwMi9ZX3d2WGVDVXlEbHR5THlYUk8xb0xfU3lP SUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lfd3ZYZUNVeURsdHlMeVhSTzFvTF9TeU9JRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODY4OS81MTVFQ0IzMkM0QTcxMUVFODc1RDA4MkNDNEY5QUUwMi9ZX3d2WGVDVXlE bHR5THlYUk8xb0xfU3lPSUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCfeD+r9MFBtPZGqFgvnQN1AZQoFh9E7xYbHHOeJTQhkG5OWhUiO6q fAe7eRegdn1p9ARfQLpWm71JclAG/Bjl4iG6foN56k4w2wv30qgfmxa0zSLObV9I gVCFR9fHCbhWwuKjUzZk7EJ4tv7zkFrJd3GEqoWpvsixf+LbvG+dSUH7Tfc/Q18d 0OvH7l732dcM8jI3Kc9jzLPlx1o/n7ZAh60mmb/1dI6+0IzYHTAJY7Ji5zuqPp8D ipIJyiqaP5WrwjhWqACRj5SZVV1Z3sIvu5Cm1tOpDycccWreFsCXClF7B+xwUTF0 d/HUPet1+LMBpMfvyqDGUav+Rb2LY42I -----END CERTIFICATE-----Generated at Sat Jun 14 13:51:34 2025 by rpki-client