$ rpki-client -vvf rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.mft File: YRy1Vsh7wEmlpD6x8pcQfv8beUA.mft (raw, json) Hash identifier: T3cJeAnul+DwzFF9FLhI3/fZWOOnA+g9+Wz6B5NzSvo= Subject key identifier: D8:4E:58:0D:9D:1B:32:E6:0D:6B:43:10:58:D5:20:FD:F1:8A:01:2D Authority key identifier: 61:1C:B5:56:C8:7B:C0:49:A5:A4:3E:B1:F2:97:10:7E:FF:1B:79:40 Certificate issuer: /CN=A914F7F0/serialNumber=611CB556C87BC049A5A43EB1F297107EFF1B7940 Certificate serial: A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRy1Vsh7wEmlpD6x8pcQfv8beUA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.mft Manifest number: 9C Signing time: Sat 31 May 2025 05:53:23 +0000 Manifest this update: Sat 31 May 2025 05:53:22 +0000 Manifest next update: Sat 07 Jun 2025 05:53:22 +0000 Files and hashes: 1: YRy1Vsh7wEmlpD6x8pcQfv8beUA.crl (hash: ozkQDiKnGIr3QqZAIdUlB8gYCcfF39nAjAU2OmOpTUc=) 2: 9A826D9059D611EF814F004DC4F9AE02.roa (hash: 3aT0muq2AP76fHDV6M45dsCuBJOlUCEA5kwKeP8ww7o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.crl rsync://rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRy1Vsh7wEmlpD6x8pcQfv8beUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:53:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 160 (0xa0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F7F0, serialNumber=611CB556C87BC049A5A43EB1F297107EFF1B7940 Validity Not Before: May 31 05:53:22 2025 GMT Not After : Jun 7 05:53:22 2025 GMT Subject: CN=683a9953-0a11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:cb:84:64:eb:93:8d:2e:05:c3:dd:21:b9:2c: 4b:e4:78:6e:47:6b:9a:72:cf:bd:d0:3a:94:ff:d2: eb:5a:b7:86:4f:06:f1:e9:61:81:38:f4:92:68:9e: 25:f3:7c:6f:a1:ae:81:53:6f:cd:45:b7:09:64:5f: fc:bb:31:7d:28:5e:91:b1:da:0b:dc:3c:59:df:9f: f0:59:ce:53:00:0a:67:5f:95:7c:46:45:29:1e:3f: 39:0f:1c:34:ad:a3:2f:c8:e6:48:88:d6:5f:86:21: 5a:f8:0b:0c:34:9b:ea:d8:ff:13:a3:d4:0f:b5:86: 1d:c4:62:1d:68:a8:ed:66:1a:a6:1f:f3:f7:e8:87: 7b:be:e0:23:b6:af:af:72:c4:cf:06:75:d7:d2:f9: c2:f5:21:c0:7b:82:c3:f6:9d:fd:75:2e:5e:e0:07: 47:59:1e:42:f0:b1:9b:6d:c7:e7:e2:d4:13:45:a4: ac:57:83:4f:4b:87:ff:e2:81:cc:73:76:2f:a3:8d: f1:f9:c1:f7:f2:4b:1b:47:08:d8:46:20:61:24:c3: 62:64:55:59:c3:50:56:bb:e3:19:4c:2b:7f:c6:1f: 39:99:3b:07:27:58:84:91:8c:42:94:28:fe:bb:0a: 00:aa:e0:8d:c2:7f:95:b5:c0:cd:ca:d5:e2:26:b9: a2:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:4E:58:0D:9D:1B:32:E6:0D:6B:43:10:58:D5:20:FD:F1:8A:01:2D X509v3 Authority Key Identifier: keyid:61:1C:B5:56:C8:7B:C0:49:A5:A4:3E:B1:F2:97:10:7E:FF:1B:79:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRy1Vsh7wEmlpD6x8pcQfv8beUA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:74:18:be:b2:e0:e0:23:67:e3:6f:44:69:9f:41:90:dc:8e: 24:2d:5d:12:f9:b8:dd:c2:a5:32:6b:b5:8e:82:e0:2c:e1:65: 74:4e:13:53:2e:22:98:6b:17:f3:1b:ae:05:ef:b8:ed:b2:40: e2:8c:d4:cb:6c:b4:79:fb:8e:2c:31:bb:5f:f3:ca:a2:d4:52: ba:46:75:b9:5d:f1:fa:ce:d6:c3:bf:0a:ab:6d:b8:94:85:ea: 81:d7:25:5a:53:7b:af:c7:45:71:23:34:91:31:f5:75:70:4c: c3:e9:ce:ca:98:00:d5:23:a0:54:f2:47:12:70:74:7e:cd:29: 7e:d6:61:fc:90:fb:63:ac:5c:9d:f3:cf:34:4f:13:69:60:37: e4:d6:1a:1f:4c:82:2b:a2:66:2b:89:2d:c1:ff:bc:f3:15:63: c9:a2:39:86:dc:b8:9c:27:ac:cc:89:5c:b7:47:49:df:62:5d: 28:ed:90:f1:b6:6f:62:97:31:ea:9d:8e:66:5c:5c:a8:e9:3b: 22:f0:b2:56:c4:d6:a2:e1:ce:48:e0:89:96:91:c8:83:3b:3b: 1f:11:1e:4e:22:e7:57:22:fa:56:3c:96:1b:b5:93:33:c2:5a: 98:3a:63:03:72:29:28:01:fa:a5:cb:62:5e:e5:c9:b6:7e:e2: 21:a9:6b:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY3RjAxMTAvBgNVBAUTKDYxMUNCNTU2Qzg3QkMwNDlBNUE0M0VCMUYyOTcxMDdF RkYxQjc5NDAwHhcNMjUwNTMxMDU1MzIyWhcNMjUwNjA3MDU1MzIyWjAYMRYwFAYD VQQDEw02ODNhOTk1My0wYTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtMuEZOuTjS4Fw90huSxL5HhuR2uacs+90DqU/9LrWreGTwbx6WGBOPSSaJ4l 83xvoa6BU2/NRbcJZF/8uzF9KF6RsdoL3DxZ35/wWc5TAApnX5V8RkUpHj85Dxw0 raMvyOZIiNZfhiFa+AsMNJvq2P8To9QPtYYdxGIdaKjtZhqmH/P36Id7vuAjtq+v csTPBnXX0vnC9SHAe4LD9p39dS5e4AdHWR5C8LGbbcfn4tQTRaSsV4NPS4f/4oHM c3Yvo43x+cH38ksbRwjYRiBhJMNiZFVZw1BWu+MZTCt/xh85mTsHJ1iEkYxClCj+ uwoAquCNwn+VtcDNytXiJrmi1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNhOWA2d GzLmDWtDEFjVIP3xigEtMB8GA1UdIwQYMBaAFGEctVbIe8BJpaQ+sfKXEH7/G3lA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjdGMC9DNzRFQjY5QTU5 RDUxMUVGODNEMjhCNEJDNEY5QUUwMi9ZUnkxVnNoN3dFbWxwRDZ4OHBjUWZ2OGJl VUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lSeTFWc2g3d0VtbHBENng4cGNRZnY4YmVVQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjdGMC9DNzRFQjY5QTU5RDUxMUVGODNEMjhCNEJDNEY5QUUwMi9ZUnkxVnNoN3dF bWxwRDZ4OHBjUWZ2OGJlVUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpdBi+suDgI2fjb0Rpn0GQ3I4kLV0S+bjdwqUya7WOguAs4WV0ThNT LiKYaxfzG64F77jtskDijNTLbLR5+44sMbtf88qi1FK6RnW5XfH6ztbDvwqrbbiU heqB1yVaU3uvx0VxIzSRMfV1cEzD6c7KmADVI6BU8kcScHR+zSl+1mH8kPtjrFyd 8880TxNpYDfk1hofTIIromYriS3B/7zzFWPJojmG3LicJ6zMiVy3R0nfYl0o7ZDx tm9ilzHqnY5mXFyo6Tsi8LJWxNai4c5I4ImWkciDOzsfER5OIudXIvpWPJYbtZMz wlqYOmMDcikoAfqly2Je5cm2fuIhqWte -----END CERTIFICATE-----Generated at Sat May 31 16:47:46 2025 by rpki-client