$ rpki-client -vvf rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.mft File: k0_yOzjsbVimyqtwe3lVUcicMf0.mft (raw, json) Hash identifier: hMUutrBpLx4XbGaSjRsNeGmAsrbqlbAh3Ss4qsOqIBo= Subject key identifier: C0:36:F6:CC:7D:CD:E2:54:17:93:3D:19:08:06:10:37:D7:EC:AE:DB Authority key identifier: 93:4F:F2:3B:38:EC:6D:58:A6:CA:AB:70:7B:79:55:51:C8:9C:31:FD Certificate issuer: /CN=A917392B/serialNumber=934FF23B38EC6D58A6CAAB707B795551C89C31FD Certificate serial: 0478 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0_yOzjsbVimyqtwe3lVUcicMf0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.mft Manifest number: 0474 Signing time: Sun 08 Jun 2025 23:42:08 +0000 Manifest this update: Sun 08 Jun 2025 23:42:07 +0000 Manifest next update: Sun 15 Jun 2025 23:42:07 +0000 Files and hashes: 1: k0_yOzjsbVimyqtwe3lVUcicMf0.crl (hash: P2SWNc9llZR4u4scV6x+xbi54yxkTAbdT/gADFDlJl8=) 2: B7BE1DAC482511ECA1A68F13C4F9AE02.roa (hash: MtaWbSK5JAjEiEpHTj/1X7DdZqPg3BZxUlQCHg85KTM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.crl rsync://rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0_yOzjsbVimyqtwe3lVUcicMf0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Jun 2025 23:42:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1144 (0x478) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917392B, serialNumber=934FF23B38EC6D58A6CAAB707B795551C89C31FD Validity Not Before: Jun 8 23:42:07 2025 GMT Not After : Jun 15 23:42:07 2025 GMT Subject: CN=68461fcf-f07a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:42:00:63:5e:72:dd:84:b5:de:03:e9:58:65: 07:15:0c:82:f2:09:24:3e:e1:e3:5a:75:bd:bd:82: ca:38:d7:ab:d4:51:a4:be:10:bd:c6:a9:ea:53:99: bf:37:0a:4d:ff:d1:94:37:50:78:29:73:4d:bf:32: 99:12:af:a8:6a:7f:0e:7c:31:91:ff:d2:14:c1:c2: df:f9:fe:55:d0:50:86:42:f7:db:93:21:1e:b9:4d: 6c:df:f0:65:6f:50:46:a1:b2:00:8e:b0:76:48:03: dd:9c:62:a2:cc:6c:93:8b:5d:29:07:f1:64:fd:9e: f2:a4:af:80:20:c2:a1:8f:49:a3:b9:13:31:d5:d4: 5e:44:fa:ba:a7:d1:b7:0f:c2:26:aa:8a:09:86:6d: 40:44:29:00:21:7c:61:40:60:f6:db:36:df:f4:3b: cf:91:96:1f:00:55:a8:5c:19:bc:f7:a4:4a:42:7d: 4e:21:5b:fc:63:3e:b9:bc:60:95:79:87:c2:bf:e9: cf:51:c5:46:1d:a6:fd:06:82:0b:c6:86:7c:2c:ea: 48:55:13:f2:7b:63:62:ab:85:8e:b4:c3:c3:1f:50: 0a:a0:24:ed:a4:c1:6e:17:20:9f:04:2e:13:f6:9e: 8f:2f:58:70:4b:d7:b4:a0:47:41:3b:1d:ef:9b:09: 7e:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:36:F6:CC:7D:CD:E2:54:17:93:3D:19:08:06:10:37:D7:EC:AE:DB X509v3 Authority Key Identifier: keyid:93:4F:F2:3B:38:EC:6D:58:A6:CA:AB:70:7B:79:55:51:C8:9C:31:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0_yOzjsbVimyqtwe3lVUcicMf0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:c4:24:63:1f:91:c3:c2:51:77:1d:f9:85:b7:96:bb:e7:59: 00:c6:bb:ed:47:a7:2a:43:5a:4a:89:6e:5f:70:85:bb:54:13: 7b:bc:d4:1e:d5:6e:d4:e9:70:e4:9b:a9:2f:63:36:f0:0f:fd: 7d:a6:77:ed:d2:ee:d4:13:15:6e:45:a7:90:1d:8c:2f:78:fc: 66:c1:bf:48:25:5b:46:3e:0f:df:69:f6:20:d8:41:94:eb:2d: db:fc:1a:33:2e:e7:70:6f:1b:2c:8d:0f:fb:2a:b7:5b:2f:3b: c1:78:71:74:3c:18:ae:16:27:d6:17:b0:c4:ee:c8:49:2e:e4: 54:c9:75:b3:c4:bf:ba:9e:92:e0:6f:19:a3:93:54:e6:df:45: 4d:8f:84:55:6c:0e:9e:c2:ff:ec:0d:6a:f3:84:96:67:c2:d0: 55:a8:bd:c0:cb:32:51:d1:9a:f4:ae:e0:63:3d:bd:41:6c:84: db:58:9a:bd:61:af:26:83:d3:9a:9b:56:ba:cd:97:80:08:32: c7:50:73:13:d9:c9:db:2b:ee:78:d9:ea:8d:c9:71:2b:c6:85: fc:2f:8c:fa:2c:3b:85:04:ad:86:e4:d8:33:b6:b2:1c:f8:ff: 1c:45:01:c4:b8:9d:89:45:87:1b:30:66:8a:1b:b0:d5:2a:bb: c5:a9:66:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM5MkIxMTAvBgNVBAUTKDkzNEZGMjNCMzhFQzZENThBNkNBQUI3MDdCNzk1NTUx Qzg5QzMxRkQwHhcNMjUwNjA4MjM0MjA3WhcNMjUwNjE1MjM0MjA3WjAYMRYwFAYD VQQDEw02ODQ2MWZjZi1mMDdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuUIAY15y3YS13gPpWGUHFQyC8gkkPuHjWnW9vYLKONer1FGkvhC9xqnqU5m/ NwpN/9GUN1B4KXNNvzKZEq+oan8OfDGR/9IUwcLf+f5V0FCGQvfbkyEeuU1s3/Bl b1BGobIAjrB2SAPdnGKizGyTi10pB/Fk/Z7ypK+AIMKhj0mjuRMx1dReRPq6p9G3 D8ImqooJhm1ARCkAIXxhQGD22zbf9DvPkZYfAFWoXBm896RKQn1OIVv8Yz65vGCV eYfCv+nPUcVGHab9BoILxoZ8LOpIVRPye2Niq4WOtMPDH1AKoCTtpMFuFyCfBC4T 9p6PL1hwS9e0oEdBOx3vmwl+1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMA29sx9 zeJUF5M9GQgGEDfX7K7bMB8GA1UdIwQYMBaAFJNP8js47G1YpsqrcHt5VVHInDH9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzkyQi9CMjBEQUQ2NjQ4 MjMxMUVDOTM3NjgzMTJDNEY5QUUwMi9rMF95T3pqc2JWaW15cXR3ZTNsVlVjaWNN ZjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2swX3lPempzYlZpbXlxdHdlM2xWVWNpY01mMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzkyQi9CMjBEQUQ2NjQ4MjMxMUVDOTM3NjgzMTJDNEY5QUUwMi9rMF95T3pqc2JW aW15cXR3ZTNsVlVjaWNNZjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkxCRjH5HDwlF3HfmFt5a751kAxrvtR6cqQ1pKiW5fcIW7VBN7vNQe 1W7U6XDkm6kvYzbwD/19pnft0u7UExVuRaeQHYwvePxmwb9IJVtGPg/fafYg2EGU 6y3b/BozLudwbxssjQ/7KrdbLzvBeHF0PBiuFifWF7DE7shJLuRUyXWzxL+6npLg bxmjk1Tm30VNj4RVbA6ewv/sDWrzhJZnwtBVqL3AyzJR0Zr0ruBjPb1BbITbWJq9 Ya8mg9Oam1a6zZeACDLHUHMT2cnbK+542eqNyXErxoX8L4z6LDuFBK2G5NgztrIc +P8cRQHEuJ2JRYcbMGaKG7DVKrvFqWZz -----END CERTIFICATE-----Generated at Tue Jun 10 08:09:00 2025 by rpki-client