$ rpki-client -vvf rpki.apnic.net/member_repository/A9152787/2B1C47FE8F7911EF92AC781EC4F9AE02/7YKi_X3hR1J8_MQkeiVsGg7bTtM.mft File: 7YKi_X3hR1J8_MQkeiVsGg7bTtM.mft (raw, json) Hash identifier: KIrGzt0K4lA0+D0YYU9AaNswP+qD4Oe+zkHFr6506Eg= Subject key identifier: 79:24:9D:70:B8:52:57:C3:99:65:D7:0A:4D:1D:57:9B:0F:F1:7B:92 Authority key identifier: ED:82:A2:FD:7D:E1:47:52:7C:FC:C4:24:7A:25:6C:1A:0E:DB:4E:D3 Certificate issuer: /CN=A9152787/serialNumber=ED82A2FD7DE147527CFCC4247A256C1A0EDB4ED3 Certificate serial: 73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7YKi_X3hR1J8_MQkeiVsGg7bTtM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152787/2B1C47FE8F7911EF92AC781EC4F9AE02/7YKi_X3hR1J8_MQkeiVsGg7bTtM.mft Manifest number: 72 Signing time: Sat 31 May 2025 06:23:55 +0000 Manifest this update: Sat 31 May 2025 06:23:55 +0000 Manifest next update: Sat 07 Jun 2025 06:23:55 +0000 Files and hashes: 1: 7YKi_X3hR1J8_MQkeiVsGg7bTtM.crl (hash: 0IMRKVhC/1AAXQGnrKIJptHAVTZk+FX3i9jisQYj0rg=) 2: 45D37CC28F8111EFB699FB63C4F9AE02.roa (hash: 559cCrhl2gmU3vGuvWQWRr1GfQBHKWRfQIAknTBhv8k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152787/2B1C47FE8F7911EF92AC781EC4F9AE02/7YKi_X3hR1J8_MQkeiVsGg7bTtM.crl rsync://rpki.apnic.net/member_repository/A9152787/2B1C47FE8F7911EF92AC781EC4F9AE02/7YKi_X3hR1J8_MQkeiVsGg7bTtM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7YKi_X3hR1J8_MQkeiVsGg7bTtM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:23:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 115 (0x73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152787, serialNumber=ED82A2FD7DE147527CFCC4247A256C1A0EDB4ED3 Validity Not Before: May 31 06:23:55 2025 GMT Not After : Jun 7 06:23:55 2025 GMT Subject: CN=683aa07b-a8c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ff:e2:fe:c6:43:f0:94:51:b8:01:a2:4d:fa: cc:1a:47:0b:3a:fb:83:fe:61:60:53:82:e2:f5:b3: 16:8a:c3:3d:da:5f:31:df:02:22:67:68:1a:49:9d: c7:c3:64:6a:ed:36:02:cc:b1:59:8c:18:f1:39:24: 09:bc:2a:c4:17:35:4d:5a:7c:7f:81:79:d2:ed:14: b4:64:b5:2e:6b:47:6d:cb:63:e9:76:bd:a6:5a:3d: ec:2d:ff:b0:12:d9:0f:68:76:9f:4d:21:9a:5a:55: 47:aa:3e:b1:94:b5:65:22:30:8b:ff:e0:e4:88:4b: 89:62:40:3f:a0:4d:dc:78:03:2b:03:a8:c7:9d:98: b7:e9:63:10:4d:dd:4e:7e:00:e9:c8:07:a4:b7:98: b1:a5:70:9a:e7:14:1f:93:42:29:4c:0b:3d:8a:e9: 25:48:37:4a:6e:96:f1:a4:2c:08:86:48:8e:6d:47: 30:2f:ed:fc:2f:56:bf:c9:a3:1c:b9:76:82:0a:99: 36:e0:8a:1f:c9:54:bb:2a:93:40:39:ab:b0:4b:ff: bc:d2:ca:18:44:63:ab:6f:5a:22:5b:22:39:52:d2: 01:b5:86:b0:db:f0:34:02:c4:e4:a7:d3:5f:67:b2: 40:3d:96:7f:e7:e2:3f:dc:39:55:bc:57:36:63:c7: 54:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:24:9D:70:B8:52:57:C3:99:65:D7:0A:4D:1D:57:9B:0F:F1:7B:92 X509v3 Authority Key Identifier: keyid:ED:82:A2:FD:7D:E1:47:52:7C:FC:C4:24:7A:25:6C:1A:0E:DB:4E:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152787/2B1C47FE8F7911EF92AC781EC4F9AE02/7YKi_X3hR1J8_MQkeiVsGg7bTtM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7YKi_X3hR1J8_MQkeiVsGg7bTtM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152787/2B1C47FE8F7911EF92AC781EC4F9AE02/7YKi_X3hR1J8_MQkeiVsGg7bTtM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:bb:d0:78:4e:a2:9b:93:f8:64:ce:3a:19:20:57:33:26:96: d1:9a:bb:a9:c4:76:a4:68:bc:f2:ab:c0:c6:3a:d1:47:17:99: cb:6e:39:54:84:af:0a:ce:fe:ce:3c:81:45:bd:f4:1e:b6:67: 8d:16:61:c5:ba:2e:1b:57:a0:e4:87:23:66:f8:45:7b:e4:ec: 71:0e:3c:b6:fe:c1:ce:0d:a3:24:40:fc:d3:18:00:6f:c2:a2: 0b:9b:29:57:81:98:87:04:32:3a:c1:65:bd:20:bd:bb:73:99: ba:d8:b1:2d:58:5a:37:9c:a4:3b:94:e3:ab:87:df:64:18:1d: 20:cf:25:f1:ea:0a:41:ca:e0:db:3f:f1:87:ad:01:92:e5:65: c3:45:f5:26:4c:a6:24:31:97:07:35:04:ab:95:fe:33:53:8e: e3:a8:0d:af:bc:65:7a:f6:2c:45:e4:60:dc:b1:05:36:e9:66: f9:55:8a:1e:34:7f:01:54:18:86:0c:f3:d1:f6:c4:07:2d:1e: 3d:ab:0a:c9:e0:40:d2:6d:62:45:af:0b:13:13:9b:1a:13:f3: 30:db:c5:6a:f7:e7:5d:47:dc:22:33:ce:d8:fa:b8:6f:38:d3: df:9a:c9:05:9a:bd:c9:ad:88:a2:2a:c7:9e:e8:b8:f1:d2:5a: bb:20:c8:2b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBczANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 Mjc4NzExMC8GA1UEBRMoRUQ4MkEyRkQ3REUxNDc1MjdDRkNDNDI0N0EyNTZDMUEw RURCNEVEMzAeFw0yNTA1MzEwNjIzNTVaFw0yNTA2MDcwNjIzNTVaMBgxFjAUBgNV BAMTDTY4M2FhMDdiLWE4YzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDH/+L+xkPwlFG4AaJN+swaRws6+4P+YWBTguL1sxaKwz3aXzHfAiJnaBpJncfD ZGrtNgLMsVmMGPE5JAm8KsQXNU1afH+BedLtFLRktS5rR23LY+l2vaZaPewt/7AS 2Q9odp9NIZpaVUeqPrGUtWUiMIv/4OSIS4liQD+gTdx4AysDqMedmLfpYxBN3U5+ AOnIB6S3mLGlcJrnFB+TQilMCz2K6SVIN0pulvGkLAiGSI5tRzAv7fwvVr/Joxy5 doIKmTbgih/JVLsqk0A5q7BL/7zSyhhEY6tvWiJbIjlS0gG1hrDb8DQCxOSn019n skA9ln/n4j/cOVW8VzZjx1QdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUeSSdcLhS V8OZZdcKTR1Xmw/xe5IwHwYDVR0jBBgwFoAU7YKi/X3hR1J8/MQkeiVsGg7bTtMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUyNzg3LzJCMUM0N0ZFOEY3 OTExRUY5MkFDNzgxRUM0RjlBRTAyLzdZS2lfWDNoUjFKOF9NUWtlaVZzR2c3YlR0 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvN1lLaV9YM2hSMUo4X01Ra2VpVnNHZzdiVHRNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUy Nzg3LzJCMUM0N0ZFOEY3OTExRUY5MkFDNzgxRUM0RjlBRTAyLzdZS2lfWDNoUjFK OF9NUWtlaVZzR2c3YlR0TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEK70HhOopuT+GTOOhkgVzMmltGau6nEdqRovPKrwMY60UcXmctuOVSE rwrO/s48gUW99B62Z40WYcW6LhtXoOSHI2b4RXvk7HEOPLb+wc4NoyRA/NMYAG/C ogubKVeBmIcEMjrBZb0gvbtzmbrYsS1YWjecpDuU46uH32QYHSDPJfHqCkHK4Ns/ 8YetAZLlZcNF9SZMpiQxlwc1BKuV/jNTjuOoDa+8ZXr2LEXkYNyxBTbpZvlVih40 fwFUGIYM89H2xActHj2rCsngQNJtYkWvCxMTmxoT8zDbxWr3511H3CIzztj6uG84 09+ayQWavcmtiKIqx57ouPHSWrsgyCs= -----END CERTIFICATE-----Generated at Sat May 31 17:24:48 2025 by rpki-client