$ rpki-client -vvf rpki.apnic.net/member_repository/A9118689/515ECB32C4A711EE875D082CC4F9AE02/Y_wvXeCUyDltyLyXRO1oL_SyOIE.mft File: Y_wvXeCUyDltyLyXRO1oL_SyOIE.mft (raw, json) Hash identifier: Dz/XLznKnaOVIU85+b+8t6VLUlAU6VQae8iEti5YJnU= Subject key identifier: A1:3C:70:D2:F1:BB:D5:F1:D2:DC:9A:29:1D:10:F5:E0:A7:73:FE:02 Authority key identifier: 63:FC:2F:5D:E0:94:C8:39:6D:C8:BC:97:44:ED:68:2F:F4:B2:38:81 Certificate issuer: /CN=A9118689/serialNumber=63FC2F5DE094C8396DC8BC9744ED682FF4B23881 Certificate serial: FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y_wvXeCUyDltyLyXRO1oL_SyOIE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118689/515ECB32C4A711EE875D082CC4F9AE02/Y_wvXeCUyDltyLyXRO1oL_SyOIE.mft Manifest number: FC Signing time: Mon 09 Jun 2025 04:11:37 +0000 Manifest this update: Mon 09 Jun 2025 04:11:36 +0000 Manifest next update: Mon 16 Jun 2025 04:11:36 +0000 Files and hashes: 1: Y_wvXeCUyDltyLyXRO1oL_SyOIE.crl (hash: weBRg2NUdyrX1hpVCSXM2Q63RHtUcDtQV1/oMk/GQtc=) 2: D1D880A6C4FB11EEA30ECF34C4F9AE02.roa (hash: HaM1uGW7CpLpf57Ix2SDrMkVRudstrm9oD5WtSudmS8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118689/515ECB32C4A711EE875D082CC4F9AE02/Y_wvXeCUyDltyLyXRO1oL_SyOIE.crl rsync://rpki.apnic.net/member_repository/A9118689/515ECB32C4A711EE875D082CC4F9AE02/Y_wvXeCUyDltyLyXRO1oL_SyOIE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y_wvXeCUyDltyLyXRO1oL_SyOIE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 16 Jun 2025 04:11:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 254 (0xfe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118689, serialNumber=63FC2F5DE094C8396DC8BC9744ED682FF4B23881 Validity Not Before: Jun 9 04:11:36 2025 GMT Not After : Jun 16 04:11:36 2025 GMT Subject: CN=68465ef9-e50a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:ea:ab:02:ba:23:6b:7c:8e:7a:2c:5b:b6:8d: 3b:ed:5c:5d:86:db:52:a5:35:bb:6a:4c:bd:18:e2: ff:be:f7:27:be:f6:6c:d2:76:51:e0:cb:0f:8e:5f: bf:58:44:c7:d2:20:86:56:ec:33:52:5f:90:6b:6f: 8a:fe:e4:67:cc:4b:c3:e1:f2:47:a2:2c:b1:be:ac: 80:10:d2:a7:09:1c:71:f8:7b:7e:ce:2c:bf:2a:bf: d0:2f:c5:ee:09:25:1d:db:ac:56:5f:29:21:15:34: 02:d9:2e:09:f1:42:09:e2:c4:f4:e4:99:e2:43:81: 19:04:90:08:7e:93:aa:87:29:bf:15:41:e1:a6:6e: 30:67:04:a1:e3:e6:9c:23:02:bc:4e:b8:7a:3c:bc: f9:00:b8:73:08:28:97:9e:06:7c:96:5b:bb:69:c8: f9:a8:32:fb:c1:8d:1c:93:ea:86:bb:37:32:84:8c: 86:83:32:a6:3f:ec:48:5a:f6:56:de:cb:b4:c7:e4: 94:6c:5d:b6:7e:37:4a:25:d2:e5:fd:05:ef:12:52: d3:bf:05:5f:99:4a:21:31:51:c2:bc:d4:5c:43:53: 72:5a:f7:88:a5:d3:23:d7:9d:78:ef:81:b1:fe:3c: 6c:bd:fc:55:fa:60:54:51:68:ca:a1:de:fc:05:4d: 8c:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:3C:70:D2:F1:BB:D5:F1:D2:DC:9A:29:1D:10:F5:E0:A7:73:FE:02 X509v3 Authority Key Identifier: keyid:63:FC:2F:5D:E0:94:C8:39:6D:C8:BC:97:44:ED:68:2F:F4:B2:38:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118689/515ECB32C4A711EE875D082CC4F9AE02/Y_wvXeCUyDltyLyXRO1oL_SyOIE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y_wvXeCUyDltyLyXRO1oL_SyOIE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118689/515ECB32C4A711EE875D082CC4F9AE02/Y_wvXeCUyDltyLyXRO1oL_SyOIE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:2c:2a:5a:ac:c9:6c:83:bd:7e:9a:86:ef:b6:ea:a6:c2:f4: f9:4e:96:80:e5:d1:a7:e4:29:7f:37:96:23:bb:ea:4b:ea:de: 87:3c:3b:00:f2:fa:7e:55:ff:c9:b2:38:d5:7b:ca:c9:05:42: 09:c3:13:8a:81:3f:7d:2a:fa:a9:52:0d:14:2e:47:83:31:2a: 73:6d:e8:9c:62:7d:f1:89:6b:67:f2:43:f0:f5:96:a4:ab:da: 3c:a5:42:0e:82:36:e5:40:a5:08:5e:6e:79:8d:85:d6:3b:30: 08:e1:8c:b5:c2:9b:d3:2e:4c:2c:b8:54:29:8f:e7:26:ae:d2: e4:28:96:99:0c:0c:70:0b:9a:c7:bb:10:30:21:f8:4b:66:4a: d3:c7:98:13:06:9c:09:ae:dc:60:95:9a:ae:8a:cf:db:60:34: c4:fc:e3:ef:e8:aa:f7:14:9c:fe:cf:fc:08:24:ec:52:90:19: 19:dd:bb:aa:92:a9:25:ed:cd:b3:e5:0a:54:78:da:7f:e9:e5: 46:e4:a5:0b:9c:c0:1e:3d:f7:18:71:9e:26:eb:7e:0e:80:c5: 07:aa:f6:c9:91:b4:0f:81:63:6a:9d:0d:14:f7:a7:e6:35:32: 46:22:ab:ec:d1:10:e3:85:c0:85:bf:ad:30:8d:db:ea:0e:d1: 4d:1d:a1:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg2ODkxMTAvBgNVBAUTKDYzRkMyRjVERTA5NEM4Mzk2REM4QkM5NzQ0RUQ2ODJG RjRCMjM4ODEwHhcNMjUwNjA5MDQxMTM2WhcNMjUwNjE2MDQxMTM2WjAYMRYwFAYD VQQDEw02ODQ2NWVmOS1lNTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9OqrAroja3yOeixbto077VxdhttSpTW7aky9GOL/vvcnvvZs0nZR4MsPjl+/ WETH0iCGVuwzUl+Qa2+K/uRnzEvD4fJHoiyxvqyAENKnCRxx+Ht+ziy/Kr/QL8Xu CSUd26xWXykhFTQC2S4J8UIJ4sT05JniQ4EZBJAIfpOqhym/FUHhpm4wZwSh4+ac IwK8Trh6PLz5ALhzCCiXngZ8llu7acj5qDL7wY0ck+qGuzcyhIyGgzKmP+xIWvZW 3su0x+SUbF22fjdKJdLl/QXvElLTvwVfmUohMVHCvNRcQ1NyWveIpdMj151474Gx /jxsvfxV+mBUUWjKod78BU2MRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKE8cNLx u9Xx0tyaKR0Q9eCnc/4CMB8GA1UdIwQYMBaAFGP8L13glMg5bci8l0TtaC/0sjiB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODY4OS81MTVFQ0IzMkM0 QTcxMUVFODc1RDA4MkNDNEY5QUUwMi9ZX3d2WGVDVXlEbHR5THlYUk8xb0xfU3lP SUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lfd3ZYZUNVeURsdHlMeVhSTzFvTF9TeU9JRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODY4OS81MTVFQ0IzMkM0QTcxMUVFODc1RDA4MkNDNEY5QUUwMi9ZX3d2WGVDVXlE bHR5THlYUk8xb0xfU3lPSUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDLLCparMlsg71+mobvtuqmwvT5TpaA5dGn5Cl/N5Yju+pL6t6HPDsA 8vp+Vf/JsjjVe8rJBUIJwxOKgT99KvqpUg0ULkeDMSpzbeicYn3xiWtn8kPw9Zak q9o8pUIOgjblQKUIXm55jYXWOzAI4Yy1wpvTLkwsuFQpj+cmrtLkKJaZDAxwC5rH uxAwIfhLZkrTx5gTBpwJrtxglZquis/bYDTE/OPv6Kr3FJz+z/wIJOxSkBkZ3buq kqkl7c2z5QpUeNp/6eVG5KULnMAePfcYcZ4m634OgMUHqvbJkbQPgWNqnQ0U96fm NTJGIqvs0RDjhcCFv60wjdvqDtFNHaHx -----END CERTIFICATE-----Generated at Wed Jun 11 00:23:44 2025 by rpki-client