$ rpki-client -vvf rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/6Y7stzDxqUpmqbUS_HdXeMYAgw0.mft File: 6Y7stzDxqUpmqbUS_HdXeMYAgw0.mft (raw, json) Hash identifier: GWM95NvM+KNnwEAQP/A3GSbZDNgqsbr+GMLkeqS3WB0= Subject key identifier: 1A:D2:27:6B:03:EA:5B:CA:55:AB:A8:3A:0B:C7:A4:21:98:45:7D:1C Authority key identifier: E9:8E:EC:B7:30:F1:A9:4A:66:A9:B5:12:FC:77:57:78:C6:00:83:0D Certificate issuer: /CN=A911954F/serialNumber=E98EECB730F1A94A66A9B512FC775778C600830D Certificate serial: 0128 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6Y7stzDxqUpmqbUS_HdXeMYAgw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/6Y7stzDxqUpmqbUS_HdXeMYAgw0.mft Manifest number: 01D7 Signing time: Sun 01 Jun 2025 04:30:54 +0000 Manifest this update: Sun 01 Jun 2025 04:30:53 +0000 Manifest next update: Sun 08 Jun 2025 04:30:53 +0000 Files and hashes: 1: 6Y7stzDxqUpmqbUS_HdXeMYAgw0.crl (hash: Gsa3Jb78jcAbs4DHhoR/yNO24iEed5GK2Uibv5dEsls=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/6Y7stzDxqUpmqbUS_HdXeMYAgw0.crl rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/6Y7stzDxqUpmqbUS_HdXeMYAgw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6Y7stzDxqUpmqbUS_HdXeMYAgw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 04:30:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 296 (0x128) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911954F, serialNumber=E98EECB730F1A94A66A9B512FC775778C600830D Validity Not Before: Jun 1 04:30:53 2025 GMT Not After : Jun 8 04:30:53 2025 GMT Subject: CN=683bd77e-8616 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b3:7b:9b:da:af:a6:c7:8e:57:b2:28:f3:54: 06:df:79:1b:d5:df:38:f5:e1:01:4b:c6:4a:7d:ee: f7:17:8d:19:43:b6:f3:bb:7c:4b:78:44:7b:5a:72: 35:84:a5:bb:eb:3d:e1:4b:69:b3:cb:41:39:f5:80: 9f:70:b4:e4:80:04:7d:07:ce:aa:fd:f9:1f:93:ca: 8c:29:47:7a:f4:d3:0e:e7:ef:1d:9d:c7:2d:85:6f: b7:76:ea:f5:e2:c2:43:41:3f:98:99:86:0d:81:fc: 70:9d:06:fa:66:3a:da:29:a4:d5:1e:81:91:50:89: 24:64:0c:83:24:52:db:31:66:f7:17:07:34:9d:02: c0:54:7b:d8:f8:b8:95:bb:b7:c1:76:81:07:43:0b: b5:73:30:92:87:ac:ad:0d:04:1b:49:15:56:4e:16: 31:02:49:5a:96:fc:8a:b7:95:84:b8:b4:03:31:29: 0f:69:5a:49:b2:79:04:27:fb:0a:31:53:75:46:c1: e8:de:47:73:dc:da:54:e4:64:94:75:e9:67:62:13: 5f:c0:14:dd:99:6e:e0:8c:7a:ce:59:76:5e:44:0c: d2:1b:97:c0:9a:01:eb:eb:06:0b:88:12:0e:63:a2: 72:2d:4e:31:a2:8e:ab:10:fc:69:d5:a3:df:4c:7e: b2:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:D2:27:6B:03:EA:5B:CA:55:AB:A8:3A:0B:C7:A4:21:98:45:7D:1C X509v3 Authority Key Identifier: keyid:E9:8E:EC:B7:30:F1:A9:4A:66:A9:B5:12:FC:77:57:78:C6:00:83:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/6Y7stzDxqUpmqbUS_HdXeMYAgw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6Y7stzDxqUpmqbUS_HdXeMYAgw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/6Y7stzDxqUpmqbUS_HdXeMYAgw0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:88:06:e1:fa:8a:9c:ca:f1:00:ea:ea:20:65:ea:04:50:35: 6f:86:27:e7:72:af:82:f6:37:b4:41:05:2d:2c:5c:3c:2e:f8: 02:9b:c4:dc:7b:fb:48:d5:7a:c9:62:19:5a:1e:bf:b9:11:a6: 7b:9f:4f:c3:0f:81:b7:f4:2e:80:e7:93:63:bc:2a:f3:47:ce: 9f:0a:30:46:b2:7e:b0:2c:ee:70:83:e6:4f:c9:05:1f:9c:0f: a0:76:08:2e:25:f8:62:2c:7a:e7:e5:cd:f4:89:d4:73:66:7b: 37:e4:5f:23:34:70:6c:0f:74:38:18:e6:57:8b:8e:48:f8:3a: 9e:e8:55:35:4a:7c:1b:0b:f7:df:a9:30:ae:81:8c:60:70:15: d3:37:67:01:22:f4:ca:b8:ea:90:3c:fd:b6:2b:45:b7:47:50: c0:a7:61:f1:ca:07:4a:79:7e:43:a1:7a:94:8d:15:9f:63:a4: 49:c3:d5:94:8b:92:27:b0:39:76:c2:c1:a6:7f:3f:f2:aa:48: e9:25:8e:34:d4:9b:23:10:df:a6:8d:3c:d5:09:b9:e1:f4:e6: db:2e:cb:90:1b:93:0a:cb:2c:04:92:bb:ea:c3:bb:4c:52:8b: bb:42:f2:ce:08:ff:a7:06:b0:54:80:97:0c:ef:3a:4b:a2:b6: 43:03:81:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk1NEYxMTAvBgNVBAUTKEU5OEVFQ0I3MzBGMUE5NEE2NkE5QjUxMkZDNzc1Nzc4 QzYwMDgzMEQwHhcNMjUwNjAxMDQzMDUzWhcNMjUwNjA4MDQzMDUzWjAYMRYwFAYD VQQDEw02ODNiZDc3ZS04NjE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvbN7m9qvpseOV7Io81QG33kb1d849eEBS8ZKfe73F40ZQ7bzu3xLeER7WnI1 hKW76z3hS2mzy0E59YCfcLTkgAR9B86q/fkfk8qMKUd69NMO5+8dnccthW+3dur1 4sJDQT+YmYYNgfxwnQb6ZjraKaTVHoGRUIkkZAyDJFLbMWb3Fwc0nQLAVHvY+LiV u7fBdoEHQwu1czCSh6ytDQQbSRVWThYxAklalvyKt5WEuLQDMSkPaVpJsnkEJ/sK MVN1RsHo3kdz3NpU5GSUdelnYhNfwBTdmW7gjHrOWXZeRAzSG5fAmgHr6wYLiBIO Y6JyLU4xoo6rEPxp1aPfTH6yjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBrSJ2sD 6lvKVauoOgvHpCGYRX0cMB8GA1UdIwQYMBaAFOmO7Lcw8alKZqm1Evx3V3jGAIMN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTU0Ri81OTFBMzIyMDkx NEExMUVFOTQyQ0M4NzFDNEY5QUUwMi82WTdzdHpEeHFVcG1xYlVTX0hkWGVNWUFn dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZZN3N0ekR4cVVwbXFiVVNfSGRYZU1ZQWd3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTU0Ri81OTFBMzIyMDkxNEExMUVFOTQyQ0M4NzFDNEY5QUUwMi82WTdzdHpEeHFV cG1xYlVTX0hkWGVNWUFndzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCiAbh+oqcyvEA6uogZeoEUDVvhifncq+C9je0QQUtLFw8LvgCm8Tc e/tI1XrJYhlaHr+5EaZ7n0/DD4G39C6A55NjvCrzR86fCjBGsn6wLO5wg+ZPyQUf nA+gdgguJfhiLHrn5c30idRzZns35F8jNHBsD3Q4GOZXi45I+Dqe6FU1SnwbC/ff qTCugYxgcBXTN2cBIvTKuOqQPP22K0W3R1DAp2HxygdKeX5DoXqUjRWfY6RJw9WU i5InsDl2wsGmfz/yqkjpJY401JsjEN+mjTzVCbnh9ObbLsuQG5MKyywEkrvqw7tM Uou7QvLOCP+nBrBUgJcM7zpLorZDA4H1 -----END CERTIFICATE-----Generated at Mon Jun 2 05:50:04 2025 by rpki-client