$ rpki-client -vvf rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft File: y6GXwEyqm9KV9XiEcqahCqP773A.mft (raw, json) Hash identifier: V6nn4zQtFtUM24++rK2BlHCihIUQI/MeJ9YR8ez8Z/E= Subject key identifier: 19:AB:CE:A1:83:55:E8:AC:73:D0:31:92:CB:49:30:EC:36:28:8F:02 Authority key identifier: CB:A1:97:C0:4C:AA:9B:D2:95:F5:78:84:72:A6:A1:0A:A3:FB:EF:70 Certificate issuer: /CN=A9143CB3/serialNumber=CBA197C04CAA9BD295F5788472A6A10AA3FBEF70 Certificate serial: 1B2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft Manifest number: 1AFF Signing time: Fri 30 May 2025 16:29:43 +0000 Manifest this update: Fri 30 May 2025 16:29:43 +0000 Manifest next update: Fri 06 Jun 2025 16:29:43 +0000 Files and hashes: 1: y6GXwEyqm9KV9XiEcqahCqP773A.crl (hash: kzqlQrr93pteX1aHIngLpNmCxUjpbLvgVD5Cco2tCfs=) 2: D90961489C1311EFA0BF1480C4F9AE02.roa (hash: Jv1d6fF3qu1qMz0c/kGUVQ3xOsIZk2UWH2dC2+4vagE=) 3: DE0A76C805B511EE95562E2AC4F9AE02.roa (hash: hMIakiTTivB+fRa4Rnc2jL//XFH58YMCoj5LWIbNoBM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.crl rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:29:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6955 (0x1b2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143CB3, serialNumber=CBA197C04CAA9BD295F5788472A6A10AA3FBEF70 Validity Not Before: May 30 16:29:43 2025 GMT Not After : Jun 6 16:29:43 2025 GMT Subject: CN=6839dcf7-f065 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:e1:3b:c7:52:71:28:f0:9f:85:dd:cc:5f:74: f1:0f:56:ff:ef:dc:8e:38:dd:30:e7:f8:bc:e2:68: 55:bc:fc:dd:ed:71:cf:7c:9c:ce:81:48:88:e7:be: ed:60:78:4d:3d:ac:0b:ba:3e:6d:16:88:4e:13:91: 63:80:6f:53:8d:9e:59:51:ab:7f:d2:a8:41:8b:b0: ed:98:62:fe:e4:81:36:8b:d2:2b:2b:72:59:ad:4e: 7a:de:57:f7:2d:13:d4:08:2f:a9:68:2c:65:f6:cb: da:8c:9f:12:18:4a:0c:6a:12:4a:ed:20:f7:67:ca: 8a:62:6b:53:84:00:6b:28:af:44:3e:d2:81:1f:b6: d1:a0:38:17:c9:0c:b0:b4:d2:2d:16:08:1c:26:57: 7f:7d:4c:f2:9c:07:4e:02:e1:60:c9:77:10:c7:27: 5a:9d:8b:32:e6:0a:53:e8:df:65:4c:89:bc:cd:af: 35:e6:69:ce:89:6b:95:12:de:a0:b0:ad:40:2a:ef: 61:73:a4:a1:57:25:d4:1e:e4:c3:88:47:f6:cb:9c: e2:b5:9e:ef:72:e1:58:53:f4:e1:71:c7:48:34:a7: 80:e1:1d:63:89:58:1e:ce:12:84:d3:59:d8:91:71: 4d:79:c2:1b:49:b2:8f:4a:6f:97:dd:88:cf:72:ac: fc:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:AB:CE:A1:83:55:E8:AC:73:D0:31:92:CB:49:30:EC:36:28:8F:02 X509v3 Authority Key Identifier: keyid:CB:A1:97:C0:4C:AA:9B:D2:95:F5:78:84:72:A6:A1:0A:A3:FB:EF:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:ce:c4:9e:b7:5e:bc:df:60:94:1c:44:77:59:a5:fb:64:c1: da:cf:b1:7d:c3:be:35:62:59:c2:24:e2:d1:4a:3c:26:d6:77: 64:9d:2a:c9:d1:39:08:59:e2:b5:96:93:f5:ad:2b:d8:15:1a: d8:9e:0a:9f:75:12:0a:66:ab:7f:bd:e6:ef:b4:9c:91:6a:25: a5:ea:10:54:ba:4d:f9:4a:51:72:2b:3f:53:ab:a7:d8:7a:0f: a7:ce:a7:4b:c9:4a:50:f8:4e:45:8e:17:d1:f9:eb:fb:81:e4: 1a:40:1b:ac:84:10:a2:b8:2c:dd:25:7c:b0:d1:4c:ff:8d:c2: ed:46:4a:f8:c0:84:74:84:ac:fb:bc:4f:51:ce:62:4e:f8:cf: 37:00:b7:7e:f4:69:8b:f0:49:b5:23:2a:80:cf:9d:e3:59:d3: a7:60:8c:59:32:47:a0:eb:66:08:2a:53:d7:30:2c:a3:e6:ae: 9f:34:97:ae:9c:92:2a:82:ae:77:64:56:5f:64:4f:b3:ab:5e: 65:37:d2:10:1a:2e:1e:4d:e0:86:cc:05:11:1e:38:cb:88:84: b2:b7:5d:68:19:05:6c:b5:a9:a2:41:32:cd:8c:53:c3:7c:e9: 25:df:5c:f7:28:6b:bb:43:71:a3:20:65:58:94:67:e7:96:9c: 0f:fc:82:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGyswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNDQjMxMTAvBgNVBAUTKENCQTE5N0MwNENBQTlCRDI5NUY1Nzg4NDcyQTZBMTBB QTNGQkVGNzAwHhcNMjUwNTMwMTYyOTQzWhcNMjUwNjA2MTYyOTQzWjAYMRYwFAYD VQQDEw02ODM5ZGNmNy1mMDY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz+E7x1JxKPCfhd3MX3TxD1b/79yOON0w5/i84mhVvPzd7XHPfJzOgUiI577t YHhNPawLuj5tFohOE5FjgG9TjZ5ZUat/0qhBi7DtmGL+5IE2i9IrK3JZrU563lf3 LRPUCC+paCxl9svajJ8SGEoMahJK7SD3Z8qKYmtThABrKK9EPtKBH7bRoDgXyQyw tNItFggcJld/fUzynAdOAuFgyXcQxydanYsy5gpT6N9lTIm8za815mnOiWuVEt6g sK1AKu9hc6ShVyXUHuTDiEf2y5zitZ7vcuFYU/ThccdINKeA4R1jiVgezhKE01nY kXFNecIbSbKPSm+X3YjPcqz8EQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBmrzqGD Veisc9AxkstJMOw2KI8CMB8GA1UdIwQYMBaAFMuhl8BMqpvSlfV4hHKmoQqj++9w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0NCMy8xREI3OTgzQzI1 OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi95NkdYd0V5cW05S1Y5WGlFY3FhaENxUDc3 M0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3k2R1h3RXlxbTlLVjlYaUVjcWFoQ3FQNzczQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0NCMy8xREI3OTgzQzI1OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi95NkdYd0V5cW05 S1Y5WGlFY3FhaENxUDc3M0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwzsSet16832CUHER3WaX7ZMHaz7F9w741YlnCJOLRSjwm1ndknSrJ 0TkIWeK1lpP1rSvYFRrYngqfdRIKZqt/vebvtJyRaiWl6hBUuk35SlFyKz9Tq6fY eg+nzqdLyUpQ+E5FjhfR+ev7geQaQBushBCiuCzdJXyw0Uz/jcLtRkr4wIR0hKz7 vE9RzmJO+M83ALd+9GmL8Em1IyqAz53jWdOnYIxZMkeg62YIKlPXMCyj5q6fNJeu nJIqgq53ZFZfZE+zq15lN9IQGi4eTeCGzAURHjjLiISyt11oGQVstamiQTLNjFPD fOkl31z3KGu7Q3GjIGVYlGfnlpwP/IJE -----END CERTIFICATE-----Generated at Sat May 31 17:06:31 2025 by rpki-client