$ rpki-client -vvf rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.mft File: -ty5VaOsFGWZfQjySL-GxDNE-3g.mft (raw, json) Hash identifier: P370QEOo5Y3qtpDseQj12TJbV6NaoH07bLQk2QIKkt8= Subject key identifier: B3:3C:CF:FE:B2:C0:37:7D:9F:15:56:CE:68:8A:52:F1:F9:CE:E5:7F Authority key identifier: FA:DC:B9:55:A3:AC:14:65:99:7D:08:F2:48:BF:86:C4:33:44:FB:78 Certificate issuer: /CN=A9148F32/serialNumber=FADCB955A3AC1465997D08F248BF86C43344FB78 Certificate serial: 05C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ty5VaOsFGWZfQjySL-GxDNE-3g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.mft Manifest number: 05C1 Signing time: Thu 12 Jun 2025 22:42:53 +0000 Manifest this update: Thu 12 Jun 2025 22:42:52 +0000 Manifest next update: Thu 19 Jun 2025 22:42:52 +0000 Files and hashes: 1: -ty5VaOsFGWZfQjySL-GxDNE-3g.crl (hash: pLWmQuL2Zk0rJE5lFASM83tokkbfmEkMlR6FNdiGFyU=) 2: 4D470362C55811EB981FA987C4F9AE02.roa (hash: wddyNGfZbP1BkMwAL9n/nAwszGpqRHSZopoWbtzoiYU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.crl rsync://rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ty5VaOsFGWZfQjySL-GxDNE-3g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 22:42:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1479 (0x5c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148F32, serialNumber=FADCB955A3AC1465997D08F248BF86C43344FB78 Validity Not Before: Jun 12 22:42:52 2025 GMT Not After : Jun 19 22:42:52 2025 GMT Subject: CN=684b57ed-ba45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:25:ae:17:29:c9:a9:01:81:cf:40:8a:f7:d0: 9d:c0:75:76:e0:46:e4:29:88:bd:df:96:16:67:9f: f1:9b:07:5b:52:40:5c:29:b1:38:82:55:a0:d6:02: 1d:87:ac:aa:c9:74:e1:74:9d:b8:a3:c6:03:d6:49: 56:0c:c1:a7:70:14:18:bc:c9:6a:43:28:e9:eb:22: 9e:c0:0a:15:77:81:9d:3a:47:51:97:a6:ce:2d:e2: 3f:4e:ca:0c:df:ff:2a:a3:55:3f:11:9d:fd:9b:c2: 0d:08:18:71:85:d6:3e:2e:df:ad:bc:69:fd:19:8e: 60:e3:c9:a6:45:b8:df:27:6d:01:3a:28:97:26:16: 56:f2:17:6a:bb:7b:14:91:87:97:51:e2:fb:16:bc: a4:83:6b:2a:4b:14:3b:0e:79:39:82:d2:eb:f3:26: 9e:10:c0:3e:dd:d0:41:52:a7:22:c8:d1:85:c5:6d: 23:f0:87:58:d4:47:33:e8:9e:74:0b:9b:f4:dd:63: cc:02:6e:0f:35:85:34:bb:31:76:eb:d9:6b:86:0a: 6e:9b:ad:4d:5d:34:9d:43:90:a0:91:e1:39:c9:56: 49:9c:e6:64:83:3b:2e:57:a1:4a:cd:af:61:10:93: 6c:6d:91:29:bd:95:95:99:41:1a:38:66:21:89:e4: 0b:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:3C:CF:FE:B2:C0:37:7D:9F:15:56:CE:68:8A:52:F1:F9:CE:E5:7F X509v3 Authority Key Identifier: keyid:FA:DC:B9:55:A3:AC:14:65:99:7D:08:F2:48:BF:86:C4:33:44:FB:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ty5VaOsFGWZfQjySL-GxDNE-3g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:61:eb:37:f2:3c:87:c2:ff:2f:be:cc:de:d0:c1:4b:33:43: 95:d8:dc:e6:07:fb:55:e3:fa:2f:57:da:b5:23:9f:67:bf:74: 85:6c:27:8a:41:91:53:19:da:f7:aa:b3:04:10:2b:df:c4:9a: eb:68:2b:a8:26:ef:0d:2a:d2:1e:90:ae:44:29:5b:80:d6:b8: 55:4b:d4:6a:81:43:31:1d:63:61:d1:33:40:67:b2:2d:f2:6d: d8:09:08:18:02:e2:02:a3:ff:5f:79:df:83:d9:71:46:4d:bb: 47:55:28:bc:9d:13:f2:c2:a1:a9:08:35:af:dc:cc:20:75:3e: 03:e0:80:ba:7c:96:eb:87:34:a5:89:b4:9b:2a:a4:26:1b:6a: 80:3d:ee:58:a7:d0:8b:f6:31:8f:aa:5c:67:23:ad:e4:1c:a1: 92:ed:bd:94:c3:7a:18:2d:35:08:9e:65:a4:9c:7c:1d:27:2a: f3:b7:10:c2:76:c3:0e:49:e1:a0:4f:f7:6f:e3:4c:81:b0:4b: 6e:c9:67:d4:ac:d6:12:e5:78:cb:96:8f:85:b4:5c:7d:d5:a6: df:6a:2f:41:35:fa:82:47:38:69:94:8c:5d:ef:29:e5:95:44: 1e:8e:89:10:e9:b4:6d:7b:96:e2:cf:7a:55:df:4c:1c:49:9b: 2a:95:96:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBccwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhGMzIxMTAvBgNVBAUTKEZBRENCOTU1QTNBQzE0NjU5OTdEMDhGMjQ4QkY4NkM0 MzM0NEZCNzgwHhcNMjUwNjEyMjI0MjUyWhcNMjUwNjE5MjI0MjUyWjAYMRYwFAYD VQQDEw02ODRiNTdlZC1iYTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApCWuFynJqQGBz0CK99CdwHV24EbkKYi935YWZ5/xmwdbUkBcKbE4glWg1gId h6yqyXThdJ24o8YD1klWDMGncBQYvMlqQyjp6yKewAoVd4GdOkdRl6bOLeI/TsoM 3/8qo1U/EZ39m8INCBhxhdY+Lt+tvGn9GY5g48mmRbjfJ20BOiiXJhZW8hdqu3sU kYeXUeL7Frykg2sqSxQ7Dnk5gtLr8yaeEMA+3dBBUqciyNGFxW0j8IdY1Ecz6J50 C5v03WPMAm4PNYU0uzF269lrhgpum61NXTSdQ5CgkeE5yVZJnOZkgzsuV6FKza9h EJNsbZEpvZWVmUEaOGYhieQLmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLM8z/6y wDd9nxVWzmiKUvH5zuV/MB8GA1UdIwQYMBaAFPrcuVWjrBRlmX0I8ki/hsQzRPt4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEYzMi9FMDY0NzVDRUM1 NTUxMUVCOUFFNTlFODZDNEY5QUUwMi8tdHk1VmFPc0ZHV1pmUWp5U0wtR3hETkUt M2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy10eTVWYU9zRkdXWmZRanlTTC1HeERORS0zZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEYzMi9FMDY0NzVDRUM1NTUxMUVCOUFFNTlFODZDNEY5QUUwMi8tdHk1VmFPc0ZH V1pmUWp5U0wtR3hETkUtM2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgYes38jyHwv8vvsze0MFLM0OV2NzmB/tV4/ovV9q1I59nv3SFbCeK QZFTGdr3qrMEECvfxJrraCuoJu8NKtIekK5EKVuA1rhVS9RqgUMxHWNh0TNAZ7It 8m3YCQgYAuICo/9fed+D2XFGTbtHVSi8nRPywqGpCDWv3MwgdT4D4IC6fJbrhzSl ibSbKqQmG2qAPe5Yp9CL9jGPqlxnI63kHKGS7b2Uw3oYLTUInmWknHwdJyrztxDC dsMOSeGgT/dv40yBsEtuyWfUrNYS5XjLlo+FtFx91abfai9BNfqCRzhplIxd7ynl lUQejokQ6bRte5biz3pV30wcSZsqlZYK -----END CERTIFICATE-----Generated at Sat Jun 14 02:20:50 2025 by rpki-client