$ rpki-client -vvf rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/_Yje-aa92-pZOJ7cYXGq3KEGtQk.mft File: _Yje-aa92-pZOJ7cYXGq3KEGtQk.mft (raw, json) Hash identifier: g1TAN1fLyst6mZYK/+tM5HDk0nqMmoshpYyCjWhgzco= Subject key identifier: D0:D7:29:CA:22:90:42:90:9E:32:20:11:45:F4:E7:AF:24:60:F3:E9 Authority key identifier: FD:88:DE:F9:A6:BD:DB:EA:59:38:9E:DC:61:71:AA:DC:A1:06:B5:09 Certificate issuer: /CN=A9172FC5/serialNumber=FD88DEF9A6BDDBEA59389EDC6171AADCA106B509 Certificate serial: 65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Yje-aa92-pZOJ7cYXGq3KEGtQk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/_Yje-aa92-pZOJ7cYXGq3KEGtQk.mft Manifest number: 64 Signing time: Sat 07 Jun 2025 06:30:31 +0000 Manifest this update: Sat 07 Jun 2025 06:30:30 +0000 Manifest next update: Sat 14 Jun 2025 06:30:30 +0000 Files and hashes: 1: _Yje-aa92-pZOJ7cYXGq3KEGtQk.crl (hash: EUmmQ0CV1lwmOzj5etuMBf3GDqgeYsfVHfZ7PQE1AI8=) 2: 2D810A88AB4011EF849D9515C4F9AE02.roa (hash: Y+fJ5KK7IVdhYlyuLVkF2P1TQN/5/+n0ri0WCyCm2Xk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/_Yje-aa92-pZOJ7cYXGq3KEGtQk.crl rsync://rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/_Yje-aa92-pZOJ7cYXGq3KEGtQk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Yje-aa92-pZOJ7cYXGq3KEGtQk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Jun 2025 04:09:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 101 (0x65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172FC5, serialNumber=FD88DEF9A6BDDBEA59389EDC6171AADCA106B509 Validity Not Before: Jun 7 06:30:30 2025 GMT Not After : Jun 14 06:30:30 2025 GMT Subject: CN=6843dc87-aa9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:35:bd:05:6b:27:c1:d6:4e:50:a5:ad:e2:23: fa:82:6a:b9:5f:d6:e3:e5:32:89:9e:0e:db:27:2e: 31:22:db:b7:19:b1:9f:95:8e:bf:44:ba:99:d2:a7: 5a:6e:91:f8:b0:30:49:7c:68:fe:c1:37:f6:eb:63: 05:2d:9a:cc:98:da:23:c9:e5:a1:8b:5c:78:cf:d7: a1:42:aa:e0:ae:ff:ba:6b:ce:6b:a9:8a:c0:95:4b: 43:ea:17:58:e8:5c:c9:91:53:f8:8d:b3:42:11:71: d7:c2:e1:ed:ae:c2:4c:0d:fb:73:2a:25:66:27:8e: dc:1a:b6:3d:fd:a5:1e:ef:92:e9:e3:d2:4c:68:83: 82:e1:24:22:98:df:b0:59:4b:83:d5:52:12:c7:42: 29:00:95:64:07:76:19:4f:81:da:31:ac:41:dd:ad: be:a0:2d:55:a6:6a:2d:af:58:cc:6d:aa:d8:79:f1: d6:f1:2b:69:f9:cd:d8:10:26:4e:d9:63:a7:25:ee: c7:f7:13:52:6b:e1:54:6a:d7:51:74:9e:04:05:aa: 64:b0:85:a2:ae:cd:cd:fb:c8:38:5e:7e:25:56:af: 35:a2:87:58:f0:bb:2f:94:16:3b:a5:57:1b:aa:5b: 5a:81:ae:14:1e:a3:d8:a1:9e:0c:09:5d:26:2b:9a: a4:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:D7:29:CA:22:90:42:90:9E:32:20:11:45:F4:E7:AF:24:60:F3:E9 X509v3 Authority Key Identifier: keyid:FD:88:DE:F9:A6:BD:DB:EA:59:38:9E:DC:61:71:AA:DC:A1:06:B5:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/_Yje-aa92-pZOJ7cYXGq3KEGtQk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Yje-aa92-pZOJ7cYXGq3KEGtQk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/_Yje-aa92-pZOJ7cYXGq3KEGtQk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:04:b3:06:6b:43:05:f1:a1:9a:81:92:38:fc:e6:ff:54:df: fb:bc:a2:e2:51:c0:83:ac:01:d1:3b:9a:20:0e:c6:e1:03:c3: fb:f0:6d:47:d6:9e:b0:7b:01:9f:37:bb:0f:51:d9:9a:69:ab: 4c:a9:ae:65:84:25:08:fe:4f:ce:56:05:c0:b4:31:6a:d2:c4: ce:7e:f5:c5:dc:76:8f:24:8c:4b:1c:24:cf:b3:a5:ac:ba:32: d7:69:68:98:18:d2:95:31:5b:74:36:c6:43:48:f9:cd:6b:86: 71:16:c5:13:43:53:5a:3c:c8:c3:f7:03:e1:e2:2e:49:6e:1e: b4:18:da:ec:4b:a3:74:73:ff:00:91:f3:4f:8a:21:cf:d4:22: 11:02:07:d0:fe:82:71:dd:1d:e5:ef:ea:cf:82:8c:14:59:c8: a9:ed:d6:6d:2b:a8:58:43:9e:70:32:34:30:ab:ad:3d:d7:06: 0b:ae:e2:6b:65:96:90:d2:19:cd:46:c1:bc:af:71:e2:c2:c5: 6b:cc:6e:76:8c:db:38:82:27:2a:4d:5e:0f:ca:96:2b:08:98: a4:c2:65:f0:e3:b1:08:d8:3c:ad:43:2e:6a:5a:16:b6:c2:6f: 2d:a0:31:1c:3f:9e:86:e7:6b:16:8f:7e:e2:42:07:58:0d:3f: bd:cc:92:9b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MkZDNTExMC8GA1UEBRMoRkQ4OERFRjlBNkJEREJFQTU5Mzg5RURDNjE3MUFBRENB MTA2QjUwOTAeFw0yNTA2MDcwNjMwMzBaFw0yNTA2MTQwNjMwMzBaMBgxFjAUBgNV BAMTDTY4NDNkYzg3LWFhOWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDkNb0FayfB1k5Qpa3iI/qCarlf1uPlMomeDtsnLjEi27cZsZ+Vjr9EupnSp1pu kfiwMEl8aP7BN/brYwUtmsyY2iPJ5aGLXHjP16FCquCu/7przmupisCVS0PqF1jo XMmRU/iNs0IRcdfC4e2uwkwN+3MqJWYnjtwatj39pR7vkunj0kxog4LhJCKY37BZ S4PVUhLHQikAlWQHdhlPgdoxrEHdrb6gLVWmai2vWMxtqth58dbxK2n5zdgQJk7Z Y6cl7sf3E1Jr4VRq11F0ngQFqmSwhaKuzc37yDhefiVWrzWih1jwuy+UFjulVxuq W1qBrhQeo9ihngwJXSYrmqTFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0NcpyiKQ QpCeMiARRfTnryRg8+kwHwYDVR0jBBgwFoAU/Yje+aa92+pZOJ7cYXGq3KEGtQkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcyRkM1L0VEQUJEMjMwQUIz RjExRUZCRTAyQ0YxNEM0RjlBRTAyL19ZamUtYWE5Mi1wWk9KN2NZWEdxM0tFR3RR ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvX1lqZS1hYTkyLXBaT0o3Y1lYR3EzS0VHdFFrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcy RkM1L0VEQUJEMjMwQUIzRjExRUZCRTAyQ0YxNEM0RjlBRTAyL19ZamUtYWE5Mi1w Wk9KN2NZWEdxM0tFR3RRay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI4EswZrQwXxoZqBkjj85v9U3/u8ouJRwIOsAdE7miAOxuEDw/vwbUfW nrB7AZ83uw9R2Zppq0yprmWEJQj+T85WBcC0MWrSxM5+9cXcdo8kjEscJM+zpay6 MtdpaJgY0pUxW3Q2xkNI+c1rhnEWxRNDU1o8yMP3A+HiLkluHrQY2uxLo3Rz/wCR 80+KIc/UIhECB9D+gnHdHeXv6s+CjBRZyKnt1m0rqFhDnnAyNDCrrT3XBguu4mtl lpDSGc1GwbyvceLCxWvMbnaM2ziCJypNXg/KlisImKTCZfDjsQjYPK1DLmpaFrbC by2gMRw/nobnaxaPfuJCB1gNP73Mkps= -----END CERTIFICATE-----Generated at Sat Jun 7 12:51:48 2025 by rpki-client