$ rpki-client -vvf rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.mft File: -ty5VaOsFGWZfQjySL-GxDNE-3g.mft (raw, json) Hash identifier: SZj2zzlqdm/PijcIVrgsKbbLjneAWsA+cW74EtzYtc0= Subject key identifier: 73:2F:94:41:27:DD:FE:C2:5F:1E:77:EF:62:C3:A8:8C:38:D7:CF:59 Authority key identifier: FA:DC:B9:55:A3:AC:14:65:99:7D:08:F2:48:BF:86:C4:33:44:FB:78 Certificate issuer: /CN=A9148F32/serialNumber=FADCB955A3AC1465997D08F248BF86C43344FB78 Certificate serial: 05C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ty5VaOsFGWZfQjySL-GxDNE-3g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.mft Manifest number: 05C0 Signing time: Tue 10 Jun 2025 23:01:42 +0000 Manifest this update: Tue 10 Jun 2025 23:01:42 +0000 Manifest next update: Tue 17 Jun 2025 23:01:42 +0000 Files and hashes: 1: -ty5VaOsFGWZfQjySL-GxDNE-3g.crl (hash: Ljz4QBj4/LTfxmPI0x0lfyP67lE0zvnJ00mGD0adcB4=) 2: 4D470362C55811EB981FA987C4F9AE02.roa (hash: wddyNGfZbP1BkMwAL9n/nAwszGpqRHSZopoWbtzoiYU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.crl rsync://rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ty5VaOsFGWZfQjySL-GxDNE-3g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Jun 2025 23:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1478 (0x5c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148F32, serialNumber=FADCB955A3AC1465997D08F248BF86C43344FB78 Validity Not Before: Jun 10 23:01:42 2025 GMT Not After : Jun 17 23:01:42 2025 GMT Subject: CN=6848b956-2d3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:03:80:55:cf:d4:69:9c:98:d2:b9:c9:1f:f9: 13:f6:f9:89:a7:cf:e0:1f:4d:a0:b8:c0:a8:bb:09: 10:7d:7b:d5:84:50:e0:10:d4:5c:15:45:11:58:f5: c5:a7:05:bf:dd:6d:a5:c1:04:ac:c0:c8:e2:2b:a1: 1c:fa:29:26:28:a5:44:b1:fe:38:c8:38:9c:93:cf: b6:38:3c:2d:61:65:08:81:70:4a:91:2d:49:6c:88: b7:62:f5:05:ec:40:22:99:71:90:07:9b:3a:72:7c: 3a:f0:d6:ef:52:32:b6:40:8f:eb:0c:ca:41:56:30: e7:0f:5e:a5:f0:41:61:6a:5f:2c:fc:cc:6d:91:d0: b3:46:13:4d:4d:23:c3:72:6e:83:28:a2:4d:42:3f: 8d:68:7f:9b:cb:9f:0c:00:d7:55:3a:6d:d1:4d:d6: 95:08:fa:e7:c9:ec:7b:88:63:bf:a4:62:ea:e3:17: 7c:90:9a:c6:37:3b:74:97:a8:dd:90:e9:d9:36:68: 93:fa:18:92:99:5a:15:59:2f:1a:5a:25:1b:5f:1c: 07:b7:61:34:74:eb:ce:ee:03:06:85:4c:5b:1f:1a: 8c:74:ae:fb:2d:3b:22:06:95:0e:6b:ba:1f:03:75: 90:a4:86:e6:cc:b4:ca:e2:55:09:96:0b:ae:95:72: e9:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:2F:94:41:27:DD:FE:C2:5F:1E:77:EF:62:C3:A8:8C:38:D7:CF:59 X509v3 Authority Key Identifier: keyid:FA:DC:B9:55:A3:AC:14:65:99:7D:08:F2:48:BF:86:C4:33:44:FB:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ty5VaOsFGWZfQjySL-GxDNE-3g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:21:42:37:7f:08:7f:0a:e3:51:90:b0:75:af:e3:3c:94:f9: 97:2f:41:5c:8a:ac:7e:e0:ba:48:c6:5e:b6:4b:37:86:80:1f: 15:b5:f3:c8:7e:68:0f:ab:8d:fe:48:8f:04:56:5f:d7:ba:e0: 8e:b2:4b:10:3d:6f:6f:c5:61:49:e4:51:b4:b6:82:e0:f9:bb: 6a:bc:95:1a:8d:09:e7:b4:5e:3c:03:4b:be:cf:35:73:b8:d2: 91:7e:1e:49:81:86:59:db:ac:9a:30:dd:63:4b:45:f5:c8:e5: c1:13:ef:85:04:28:59:6c:1e:3b:18:06:c9:b6:92:64:87:13: 2f:30:a2:0e:0c:7f:8a:14:74:47:89:ff:23:8d:9e:84:9f:eb: a6:98:d7:2f:b6:b9:1b:09:f8:0c:10:03:d7:09:0a:88:1a:94: 19:87:5a:a8:55:aa:85:34:4e:ee:f0:ee:ed:b9:03:d6:07:e2: 74:6d:d9:08:f4:3a:63:d5:90:9b:9a:37:2e:23:05:39:33:7e: 03:85:36:e8:65:ba:db:fd:73:4e:93:68:22:24:df:78:a4:b4: bd:7c:74:c3:28:01:e8:23:a8:8e:9c:74:74:65:a9:b7:62:73: 3c:37:96:f7:90:b4:90:ad:17:c7:18:68:c9:ea:e3:78:5a:13: 6e:9b:96:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBcYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhGMzIxMTAvBgNVBAUTKEZBRENCOTU1QTNBQzE0NjU5OTdEMDhGMjQ4QkY4NkM0 MzM0NEZCNzgwHhcNMjUwNjEwMjMwMTQyWhcNMjUwNjE3MjMwMTQyWjAYMRYwFAYD VQQDEw02ODQ4Yjk1Ni0yZDNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwQOAVc/UaZyY0rnJH/kT9vmJp8/gH02guMCouwkQfXvVhFDgENRcFUURWPXF pwW/3W2lwQSswMjiK6Ec+ikmKKVEsf44yDick8+2ODwtYWUIgXBKkS1JbIi3YvUF 7EAimXGQB5s6cnw68NbvUjK2QI/rDMpBVjDnD16l8EFhal8s/MxtkdCzRhNNTSPD cm6DKKJNQj+NaH+by58MANdVOm3RTdaVCPrnyex7iGO/pGLq4xd8kJrGNzt0l6jd kOnZNmiT+hiSmVoVWS8aWiUbXxwHt2E0dOvO7gMGhUxbHxqMdK77LTsiBpUOa7of A3WQpIbmzLTK4lUJlguulXLpywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHMvlEEn 3f7CXx5372LDqIw4189ZMB8GA1UdIwQYMBaAFPrcuVWjrBRlmX0I8ki/hsQzRPt4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEYzMi9FMDY0NzVDRUM1 NTUxMUVCOUFFNTlFODZDNEY5QUUwMi8tdHk1VmFPc0ZHV1pmUWp5U0wtR3hETkUt M2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy10eTVWYU9zRkdXWmZRanlTTC1HeERORS0zZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEYzMi9FMDY0NzVDRUM1NTUxMUVCOUFFNTlFODZDNEY5QUUwMi8tdHk1VmFPc0ZH V1pmUWp5U0wtR3hETkUtM2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOIUI3fwh/CuNRkLB1r+M8lPmXL0Fciqx+4LpIxl62SzeGgB8VtfPI fmgPq43+SI8EVl/XuuCOsksQPW9vxWFJ5FG0toLg+btqvJUajQnntF48A0u+zzVz uNKRfh5JgYZZ26yaMN1jS0X1yOXBE++FBChZbB47GAbJtpJkhxMvMKIODH+KFHRH if8jjZ6En+ummNcvtrkbCfgMEAPXCQqIGpQZh1qoVaqFNE7u8O7tuQPWB+J0bdkI 9Dpj1ZCbmjcuIwU5M34DhTboZbrb/XNOk2giJN94pLS9fHTDKAHoI6iOnHR0Zam3 YnM8N5b3kLSQrRfHGGjJ6uN4WhNum5br -----END CERTIFICATE-----Generated at Wed Jun 11 06:26:31 2025 by rpki-client