$ rpki-client -vvf rpki.apnic.net/member_repository/A91479A7/8BA963D443F511EE9A8E4E16C4F9AE02/LyR3675WsNegrUTCcX21_ggNyug.mft File: LyR3675WsNegrUTCcX21_ggNyug.mft (raw, json) Hash identifier: B3qpVUJ2AwrNwh28EhH6uHcqEVLIKBdPWM7X75JMehw= Subject key identifier: 85:28:77:00:07:68:A3:BE:DC:DE:FC:68:D6:92:4E:07:8F:74:FD:62 Authority key identifier: 2F:24:77:EB:BE:56:B0:D7:A0:AD:44:C2:71:7D:B5:FE:08:0D:CA:E8 Certificate issuer: /CN=A91479A7/serialNumber=2F2477EBBE56B0D7A0AD44C2717DB5FE080DCAE8 Certificate serial: 0194 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LyR3675WsNegrUTCcX21_ggNyug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91479A7/8BA963D443F511EE9A8E4E16C4F9AE02/LyR3675WsNegrUTCcX21_ggNyug.mft Manifest number: 017C Signing time: Tue 01 Jul 2025 04:30:38 +0000 Manifest this update: Tue 01 Jul 2025 04:30:37 +0000 Manifest next update: Tue 08 Jul 2025 04:30:37 +0000 Files and hashes: 1: LyR3675WsNegrUTCcX21_ggNyug.crl (hash: T4T7vlgE2URcWeRV8KL9msazaSkb+uEo8SramELPbqE=) 2: 7EF0B0AC4D9B11EEB019A31FC4F9AE02.roa (hash: FEnoRntS5ceHXsonYKwSghY2N6gue3AsK8rWW1Gq5vk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91479A7/8BA963D443F511EE9A8E4E16C4F9AE02/LyR3675WsNegrUTCcX21_ggNyug.crl rsync://rpki.apnic.net/member_repository/A91479A7/8BA963D443F511EE9A8E4E16C4F9AE02/LyR3675WsNegrUTCcX21_ggNyug.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LyR3675WsNegrUTCcX21_ggNyug.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 04:30:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 404 (0x194) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91479A7, serialNumber=2F2477EBBE56B0D7A0AD44C2717DB5FE080DCAE8 Validity Not Before: Jul 1 04:30:37 2025 GMT Not After : Jul 8 04:30:37 2025 GMT Subject: CN=6863646e-8179 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:d3:fe:c4:04:38:cb:29:aa:4d:5e:c1:d8:a7: 63:6d:75:d1:92:b2:6a:2d:a5:78:0c:84:79:3e:2f: 24:08:b7:9f:7c:85:51:73:4b:1e:31:d7:06:3f:4e: ee:00:68:bf:fe:8a:c0:d7:4c:d3:aa:bd:cd:32:d2: c3:06:23:cf:1e:a7:b8:d9:ab:bf:bb:3f:ee:d5:9f: ed:0a:d4:30:ce:cb:fe:8c:b7:59:9a:50:b2:7b:da: d2:8a:66:73:1a:b5:b3:c2:7d:f3:5a:61:c6:33:87: 1b:c3:5a:9d:c6:6f:65:66:f3:37:c1:58:62:7e:9f: 44:df:3e:1f:1d:93:5b:d4:a2:87:a1:46:42:09:6c: 5d:77:45:1b:6e:15:e2:6a:93:6c:b6:9f:d0:fc:68: 51:8e:58:a7:bc:23:23:59:79:33:af:21:dc:74:03: d5:be:2d:4b:54:c7:36:ca:c1:6a:b2:ba:03:a2:3b: c1:e9:0e:b1:f7:b4:12:de:43:e1:f3:92:55:cb:17: a5:96:1a:6d:f6:ee:0e:a8:17:14:9c:a7:cf:81:7a: 47:f5:1d:10:36:51:76:19:3c:3e:0c:71:02:4c:86: 19:13:52:83:36:70:0c:88:54:0b:b2:87:87:da:8e: cb:11:1b:06:45:40:e6:6d:9f:a9:f5:e7:0e:fb:2d: 61:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:28:77:00:07:68:A3:BE:DC:DE:FC:68:D6:92:4E:07:8F:74:FD:62 X509v3 Authority Key Identifier: keyid:2F:24:77:EB:BE:56:B0:D7:A0:AD:44:C2:71:7D:B5:FE:08:0D:CA:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91479A7/8BA963D443F511EE9A8E4E16C4F9AE02/LyR3675WsNegrUTCcX21_ggNyug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LyR3675WsNegrUTCcX21_ggNyug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91479A7/8BA963D443F511EE9A8E4E16C4F9AE02/LyR3675WsNegrUTCcX21_ggNyug.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:27:98:5e:ac:a6:78:20:8b:b8:1d:eb:f8:df:d8:63:76:8e: 0c:cb:b9:4d:04:c9:16:fe:77:cc:df:0a:8f:b6:b8:0c:95:1d: b4:ee:8f:0d:83:a3:08:a7:7a:66:c6:ed:9e:46:6e:6b:58:dd: 1a:d9:38:95:2b:ca:43:8a:61:3e:ef:6a:8b:44:f4:fe:93:01: fe:4a:6c:f1:2b:53:a9:ac:ad:a4:88:47:db:de:cc:3e:99:c5: 5d:76:3b:2f:1d:5d:26:15:ef:7c:00:ed:47:78:2c:97:db:32: e0:27:2d:bc:63:a6:e5:70:7d:f1:29:c5:27:44:de:93:92:91: f2:bc:18:7b:63:33:6d:69:92:3c:24:94:14:8c:33:e4:2b:38: 4b:bc:0b:f9:1d:c3:52:41:c3:dc:42:d1:9e:0f:63:83:97:0b: 42:3c:55:ef:07:45:fc:3c:da:69:d4:bd:1e:17:f9:13:19:b3: e5:bf:d6:fc:fb:98:81:4e:8e:ed:38:40:cd:ca:7b:c3:2a:62: ac:99:7f:a1:9b:f5:b3:4a:36:b3:45:ab:eb:66:18:b2:14:fe: 34:12:a5:5d:96:5d:43:bc:94:53:d3:82:5a:16:df:65:5d:39: 4c:00:bc:59:4c:33:b7:70:00:59:99:68:91:3f:44:26:5b:ec: 55:a2:b8:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc5QTcxMTAvBgNVBAUTKDJGMjQ3N0VCQkU1NkIwRDdBMEFENDRDMjcxN0RCNUZF MDgwRENBRTgwHhcNMjUwNzAxMDQzMDM3WhcNMjUwNzA4MDQzMDM3WjAYMRYwFAYD VQQDEw02ODYzNjQ2ZS04MTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4dP+xAQ4yymqTV7B2KdjbXXRkrJqLaV4DIR5Pi8kCLeffIVRc0seMdcGP07u AGi//orA10zTqr3NMtLDBiPPHqe42au/uz/u1Z/tCtQwzsv+jLdZmlCye9rSimZz GrWzwn3zWmHGM4cbw1qdxm9lZvM3wVhifp9E3z4fHZNb1KKHoUZCCWxdd0UbbhXi apNstp/Q/GhRjlinvCMjWXkzryHcdAPVvi1LVMc2ysFqsroDojvB6Q6x97QS3kPh 85JVyxellhpt9u4OqBcUnKfPgXpH9R0QNlF2GTw+DHECTIYZE1KDNnAMiFQLsoeH 2o7LERsGRUDmbZ+p9ecO+y1h3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIUodwAH aKO+3N78aNaSTgePdP1iMB8GA1UdIwQYMBaAFC8kd+u+VrDXoK1EwnF9tf4IDcro MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzlBNy84QkE5NjNENDQz RjUxMUVFOUE4RTRFMTZDNEY5QUUwMi9MeVIzNjc1V3NOZWdyVVRDY1gyMV9nZ055 dWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0x5UjM2NzVXc05lZ3JVVENjWDIxX2dnTnl1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzlBNy84QkE5NjNENDQzRjUxMUVFOUE4RTRFMTZDNEY5QUUwMi9MeVIzNjc1V3NO ZWdyVVRDY1gyMV9nZ055dWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2J5herKZ4IIu4Hev439hjdo4My7lNBMkW/nfM3wqPtrgMlR207o8N g6MIp3pmxu2eRm5rWN0a2TiVK8pDimE+72qLRPT+kwH+SmzxK1OprK2kiEfb3sw+ mcVddjsvHV0mFe98AO1HeCyX2zLgJy28Y6blcH3xKcUnRN6TkpHyvBh7YzNtaZI8 JJQUjDPkKzhLvAv5HcNSQcPcQtGeD2ODlwtCPFXvB0X8PNpp1L0eF/kTGbPlv9b8 +5iBTo7tOEDNynvDKmKsmX+hm/WzSjazRavrZhiyFP40EqVdll1DvJRT04JaFt9l XTlMALxZTDO3cABZmWiRP0QmW+xVorgv -----END CERTIFICATE-----Generated at Wed Jul 2 01:20:59 2025 by rpki-client