$ rpki-client -vvf rpki.apnic.net/member_repository/A9170533/22ED2C9A9F8211ECBFC3CF1CC4F9AE02/5Y-Y48YUIUZUU6xCVfCvsK2V0kY.mft File: 5Y-Y48YUIUZUU6xCVfCvsK2V0kY.mft (raw, json) Hash identifier: nmtq/+sbOZpizeOiiHoUBUm/y+OHAK2I1aEdcUaMeyM= Subject key identifier: 0C:86:7F:38:CF:FF:FF:A1:C8:92:77:D4:6E:FB:40:5B:43:23:E8:BC Authority key identifier: E5:8F:98:E3:C6:14:21:46:54:53:AC:42:55:F0:AF:B0:AD:95:D2:46 Certificate issuer: /CN=A9170533/serialNumber=E58F98E3C61421465453AC4255F0AFB0AD95D246 Certificate serial: 039A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Y-Y48YUIUZUU6xCVfCvsK2V0kY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170533/22ED2C9A9F8211ECBFC3CF1CC4F9AE02/5Y-Y48YUIUZUU6xCVfCvsK2V0kY.mft Manifest number: 0396 Signing time: Fri 13 Jun 2025 00:21:50 +0000 Manifest this update: Fri 13 Jun 2025 00:21:49 +0000 Manifest next update: Fri 20 Jun 2025 00:21:49 +0000 Files and hashes: 1: 5Y-Y48YUIUZUU6xCVfCvsK2V0kY.crl (hash: RWTJipL7ymAIAtDhJMVFJw8LGN+cEFnXM2ZgGh5WCSs=) 2: 6664BEB29F8611ECBE806D30C4F9AE02.roa (hash: 3Zz0SoScV6fPNZfJ9ERkFkDBxGo2mzRnK0TlcOdgOTI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170533/22ED2C9A9F8211ECBFC3CF1CC4F9AE02/5Y-Y48YUIUZUU6xCVfCvsK2V0kY.crl rsync://rpki.apnic.net/member_repository/A9170533/22ED2C9A9F8211ECBFC3CF1CC4F9AE02/5Y-Y48YUIUZUU6xCVfCvsK2V0kY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Y-Y48YUIUZUU6xCVfCvsK2V0kY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 00:21:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 922 (0x39a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170533, serialNumber=E58F98E3C61421465453AC4255F0AFB0AD95D246 Validity Not Before: Jun 13 00:21:49 2025 GMT Not After : Jun 20 00:21:49 2025 GMT Subject: CN=684b6f1e-e8a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a1:b4:38:c9:5b:fc:8d:9d:d5:28:13:e2:80: e4:f1:a1:d7:6b:c1:32:2f:05:83:d2:c8:22:f5:7d: ed:36:75:2d:9d:88:88:19:5a:20:3e:ed:8a:63:2f: c3:ba:25:e7:30:e0:f3:b2:e5:36:e0:c5:cc:ef:a2: a3:f1:a7:ed:8d:d0:d0:4d:ac:e0:14:46:37:89:fc: ab:27:c9:b2:ca:70:7a:56:ac:d9:e0:c5:02:60:49: d9:af:bb:64:e8:5e:6b:2a:96:a7:90:32:9b:ec:97: 2a:2b:2b:36:48:f4:55:11:a5:d1:ef:8a:a2:97:da: 6c:6a:d0:ec:79:71:e9:05:b0:a7:43:f6:fa:64:8c: 6e:1c:14:80:79:30:ca:2b:0f:ca:2e:03:c4:1c:17: bc:02:4d:cd:b8:1e:a9:10:f0:2c:94:99:d0:c6:38: 13:fb:a5:3f:36:4b:27:22:13:77:3a:af:84:d5:1e: 40:06:8d:dd:e6:33:0e:5e:c4:db:c6:a1:ff:7f:52: 00:e9:60:99:68:aa:66:26:c3:29:5f:fd:18:7d:b2: 00:f7:04:54:b7:e6:a6:37:21:53:2c:41:88:6c:50: 98:00:68:ce:f0:22:bc:11:f9:a0:9f:9d:f5:41:e6: 6e:5f:bb:9d:0e:08:e8:11:24:b4:ff:c0:13:2a:67: ef:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:86:7F:38:CF:FF:FF:A1:C8:92:77:D4:6E:FB:40:5B:43:23:E8:BC X509v3 Authority Key Identifier: keyid:E5:8F:98:E3:C6:14:21:46:54:53:AC:42:55:F0:AF:B0:AD:95:D2:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170533/22ED2C9A9F8211ECBFC3CF1CC4F9AE02/5Y-Y48YUIUZUU6xCVfCvsK2V0kY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Y-Y48YUIUZUU6xCVfCvsK2V0kY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170533/22ED2C9A9F8211ECBFC3CF1CC4F9AE02/5Y-Y48YUIUZUU6xCVfCvsK2V0kY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:b1:55:7c:f2:95:61:e9:e7:d7:f3:45:69:c4:09:9b:29:fe: e0:ad:5e:3d:f3:2c:e2:6a:60:36:e6:61:6d:92:b4:7f:e7:5f: 6e:f3:84:2f:d8:91:4e:de:09:00:5e:f8:66:e5:9d:37:47:ca: 46:2e:45:05:6e:9b:44:f5:82:89:a7:31:85:67:2c:1a:04:33: 01:a6:8c:60:5b:8f:96:2f:c2:a0:5a:14:40:15:da:7c:d0:7a: 66:14:09:59:0d:06:7b:0e:1c:64:f4:5e:f1:78:00:bd:a1:e0: 1f:8e:d4:49:86:20:44:f8:75:0e:da:d1:d7:4a:6b:a2:64:12: d1:df:99:fc:48:7f:d1:ad:d5:b5:1d:07:f9:b7:aa:7d:e5:59: d4:aa:24:17:f8:72:3c:ff:c3:dd:3a:47:15:ce:a1:1e:83:e1: 34:96:54:87:3c:e0:b0:94:81:3a:c6:bf:f9:ce:c2:78:25:61: 02:2b:27:fa:38:1e:ce:ee:37:66:70:c4:9b:14:28:e2:a2:7c: 9f:b7:f4:7d:54:9b:9d:94:7a:20:f2:8b:c5:41:c0:b6:84:e0: 61:22:29:71:6a:f0:b4:c4:ea:2c:1f:81:3e:2b:7c:1b:05:b8: 5e:59:9f:55:ad:21:4c:8a:0f:b6:a8:80:f4:07:cc:8d:aa:2e: 18:77:e8:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA1MzMxMTAvBgNVBAUTKEU1OEY5OEUzQzYxNDIxNDY1NDUzQUM0MjU1RjBBRkIw QUQ5NUQyNDYwHhcNMjUwNjEzMDAyMTQ5WhcNMjUwNjIwMDAyMTQ5WjAYMRYwFAYD VQQDEw02ODRiNmYxZS1lOGEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvqG0OMlb/I2d1SgT4oDk8aHXa8EyLwWD0sgi9X3tNnUtnYiIGVogPu2KYy/D uiXnMODzsuU24MXM76Kj8aftjdDQTazgFEY3ifyrJ8myynB6VqzZ4MUCYEnZr7tk 6F5rKpankDKb7JcqKys2SPRVEaXR74qil9psatDseXHpBbCnQ/b6ZIxuHBSAeTDK Kw/KLgPEHBe8Ak3NuB6pEPAslJnQxjgT+6U/NksnIhN3Oq+E1R5ABo3d5jMOXsTb xqH/f1IA6WCZaKpmJsMpX/0YfbIA9wRUt+amNyFTLEGIbFCYAGjO8CK8Efmgn531 QeZuX7udDgjoESS0/8ATKmfvpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAyGfzjP //+hyJJ31G77QFtDI+i8MB8GA1UdIwQYMBaAFOWPmOPGFCFGVFOsQlXwr7CtldJG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDUzMy8yMkVEMkM5QTlG ODIxMUVDQkZDM0NGMUNDNEY5QUUwMi81WS1ZNDhZVUlVWlVVNnhDVmZDdnNLMlYw a1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVZLVk0OFlVSVVaVVU2eENWZkN2c0syVjBrWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDUzMy8yMkVEMkM5QTlGODIxMUVDQkZDM0NGMUNDNEY5QUUwMi81WS1ZNDhZVUlV WlVVNnhDVmZDdnNLMlYwa1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAsVV88pVh6efX80VpxAmbKf7grV498yziamA25mFtkrR/519u84Qv 2JFO3gkAXvhm5Z03R8pGLkUFbptE9YKJpzGFZywaBDMBpoxgW4+WL8KgWhRAFdp8 0HpmFAlZDQZ7Dhxk9F7xeAC9oeAfjtRJhiBE+HUO2tHXSmuiZBLR35n8SH/RrdW1 HQf5t6p95VnUqiQX+HI8/8PdOkcVzqEeg+E0llSHPOCwlIE6xr/5zsJ4JWECKyf6 OB7O7jdmcMSbFCjionyft/R9VJudlHog8ovFQcC2hOBhIilxavC0xOosH4E+K3wb BbheWZ9VrSFMig+2qID0B8yNqi4Yd+j/ -----END CERTIFICATE-----Generated at Fri Jun 13 08:11:48 2025 by rpki-client