$ rpki-client -vvf rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft File: YG6ylYJUrJi2M26qQayAstyxnG4.mft (raw, json) Hash identifier: yeWDjinpqKCvrW/KxsKLl0fN1BV9k2Y+JdUei53YLYU= Subject key identifier: B9:32:0A:56:45:FD:81:36:CC:05:86:E0:E9:77:49:9B:21:0F:83:BB Authority key identifier: 60:6E:B2:95:82:54:AC:98:B6:33:6E:AA:41:AC:80:B2:DC:B1:9C:6E Certificate issuer: /CN=A9170D3E/serialNumber=606EB2958254AC98B6336EAA41AC80B2DCB19C6E Certificate serial: 6A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YG6ylYJUrJi2M26qQayAstyxnG4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft Manifest number: 69 Signing time: Tue 03 Jun 2025 06:43:54 +0000 Manifest this update: Tue 03 Jun 2025 06:43:54 +0000 Manifest next update: Tue 10 Jun 2025 06:43:53 +0000 Files and hashes: 1: YG6ylYJUrJi2M26qQayAstyxnG4.crl (hash: FLpEkjG8HO9pLEHvubVKZFyJWCnb4V5JSq7uiXXBVH8=) 2: 181772049FD811EF8680B438C4F9AE02.roa (hash: kL8m2A2/eVPCA0J/9/iLQOKzk2RiAB33QgbmFjlKwTo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.crl rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YG6ylYJUrJi2M26qQayAstyxnG4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 06:43:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 106 (0x6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170D3E, serialNumber=606EB2958254AC98B6336EAA41AC80B2DCB19C6E Validity Not Before: Jun 3 06:43:54 2025 GMT Not After : Jun 10 06:43:53 2025 GMT Subject: CN=683e99aa-7c31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:d6:90:f7:c1:b3:5a:52:17:14:de:25:b5:15: 11:eb:ec:18:b4:26:c1:e7:34:4c:7a:2f:93:c1:b7: b0:90:09:cf:3f:ae:8c:30:24:c0:03:d5:0d:e3:c3: 34:f6:07:aa:32:f9:0e:9d:69:89:b9:ff:b8:97:e8: dd:1b:08:eb:ad:37:c9:a1:90:39:e2:d7:f6:1b:0c: 78:c6:a1:7c:68:68:bb:ce:2a:f4:ef:bd:9a:2b:69: 52:a2:64:ef:fa:1f:fd:d6:33:05:ba:47:66:ae:d8: 26:4a:f5:4c:6d:e7:bf:3e:f4:f3:c6:e3:a1:e1:df: 2f:35:be:54:63:2a:08:4d:1c:8e:12:b0:40:28:fc: 2c:6d:cc:1f:30:07:3a:a4:d3:7d:e3:81:a4:47:3c: b0:f1:f0:1e:09:01:8a:c9:00:0e:ff:dd:f5:01:74: 75:57:4a:92:1a:44:32:f6:86:d2:63:3c:f9:7b:fe: 33:89:28:7b:8d:7f:95:ce:e9:6c:d7:1a:89:6d:17: b5:74:c4:a8:60:a1:f7:90:70:e6:ee:64:08:6e:4a: db:e9:d5:de:d4:8e:60:a0:bc:35:17:0f:15:37:88: 5f:f9:dc:e0:ac:77:c1:a3:e1:19:96:df:68:32:88: e2:a9:16:1c:9d:da:df:81:0c:45:54:8b:0d:6b:48: e8:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:32:0A:56:45:FD:81:36:CC:05:86:E0:E9:77:49:9B:21:0F:83:BB X509v3 Authority Key Identifier: keyid:60:6E:B2:95:82:54:AC:98:B6:33:6E:AA:41:AC:80:B2:DC:B1:9C:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YG6ylYJUrJi2M26qQayAstyxnG4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:fe:13:94:fb:4f:1e:c5:13:39:80:82:be:69:6f:6e:3a:8d: af:40:41:4c:28:20:05:5a:dc:c8:9f:a2:71:de:d7:6d:47:ac: 05:c8:99:8d:9f:c6:c5:22:22:2e:e4:20:f0:00:ae:84:c2:88: d9:45:cb:d9:3c:7e:ab:a6:43:95:b9:7d:99:9a:cb:39:78:44: 2c:eb:1f:93:c7:7d:5a:bf:93:a6:0f:44:3c:8f:14:a6:55:da: b6:58:8a:62:55:86:f3:3e:e7:c4:f6:45:c1:d9:a5:af:ee:f7: 05:52:a2:33:85:f8:6b:d1:7f:9a:25:61:69:21:15:f2:39:56: 50:e1:a8:b7:fc:8f:6c:3b:ea:cc:e8:12:fe:df:7b:10:a0:c2: 78:ab:51:69:c9:1c:c9:de:88:84:df:9e:93:ef:56:96:9e:6d: 3d:61:b5:e4:49:cd:bc:22:21:3f:11:66:25:5f:16:45:9b:4b: bf:bf:9e:73:65:2d:cb:e2:ee:b8:da:f7:fa:8b:44:8f:1a:57: 89:b6:8f:07:41:5a:6e:70:36:92:45:a7:c7:d0:ed:08:e6:02: 0d:b9:90:53:f6:b7:05:52:8a:6d:f5:18:e5:7f:95:35:85:db: 00:63:21:13:89:aa:da:c6:0b:44:db:03:14:c6:93:f4:85:33: 06:40:a9:1a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBajANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MEQzRTExMC8GA1UEBRMoNjA2RUIyOTU4MjU0QUM5OEI2MzM2RUFBNDFBQzgwQjJE Q0IxOUM2RTAeFw0yNTA2MDMwNjQzNTRaFw0yNTA2MTAwNjQzNTNaMBgxFjAUBgNV BAMTDTY4M2U5OWFhLTdjMzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDL1pD3wbNaUhcU3iW1FRHr7Bi0JsHnNEx6L5PBt7CQCc8/rowwJMAD1Q3jwzT2 B6oy+Q6daYm5/7iX6N0bCOutN8mhkDni1/YbDHjGoXxoaLvOKvTvvZoraVKiZO/6 H/3WMwW6R2au2CZK9Uxt578+9PPG46Hh3y81vlRjKghNHI4SsEAo/CxtzB8wBzqk 033jgaRHPLDx8B4JAYrJAA7/3fUBdHVXSpIaRDL2htJjPPl7/jOJKHuNf5XO6WzX GoltF7V0xKhgofeQcObuZAhuStvp1d7UjmCgvDUXDxU3iF/53OCsd8Gj4RmW32gy iOKpFhyd2t+BDEVUiw1rSOiZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUuTIKVkX9 gTbMBYbg6XdJmyEPg7swHwYDVR0jBBgwFoAUYG6ylYJUrJi2M26qQayAstyxnG4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwRDNFL0I1REZDOEMwOUZE NzExRUY5RTM4QTgzN0M0RjlBRTAyL1lHNnlsWUpVckppMk0yNnFRYXlBc3R5eG5H NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWUc2eWxZSlVySmkyTTI2cVFheUFzdHl4bkc0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcw RDNFL0I1REZDOEMwOUZENzExRUY5RTM4QTgzN0M0RjlBRTAyL1lHNnlsWUpVckpp Mk0yNnFRYXlBc3R5eG5HNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALf+E5T7Tx7FEzmAgr5pb246ja9AQUwoIAVa3MifonHe121HrAXImY2f xsUiIi7kIPAAroTCiNlFy9k8fqumQ5W5fZmayzl4RCzrH5PHfVq/k6YPRDyPFKZV 2rZYimJVhvM+58T2RcHZpa/u9wVSojOF+GvRf5olYWkhFfI5VlDhqLf8j2w76szo Ev7fexCgwnirUWnJHMneiITfnpPvVpaebT1hteRJzbwiIT8RZiVfFkWbS7+/nnNl Lcvi7rja9/qLRI8aV4m2jwdBWm5wNpJFp8fQ7QjmAg25kFP2twVSim31GOV/lTWF 2wBjIROJqtrGC0TbAxTGk/SFMwZAqRo= -----END CERTIFICATE-----Generated at Tue Jun 3 23:18:05 2025 by rpki-client