$ rpki-client -vvf rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.mft File: YCgZkDDJlCoUSqFr-zB450H27CM.mft (raw, json) Hash identifier: R7c53aHNSUWMc9DIWM9KTxapL5J3NOfuWGeUoPs2j5c= Subject key identifier: 65:2A:A3:D6:F6:2B:FD:3D:AE:B5:E1:A0:B0:72:F9:AC:29:7A:8F:1F Authority key identifier: 60:28:19:90:30:C9:94:2A:14:4A:A1:6B:FB:30:78:E7:41:F6:EC:23 Certificate issuer: /CN=A9175D4F/serialNumber=6028199030C9942A144AA16BFB3078E741F6EC23 Certificate serial: 0A07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCgZkDDJlCoUSqFr-zB450H27CM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.mft Manifest number: 09F7 Signing time: Fri 30 May 2025 20:03:14 +0000 Manifest this update: Fri 30 May 2025 20:03:14 +0000 Manifest next update: Fri 06 Jun 2025 20:03:14 +0000 Files and hashes: 1: YCgZkDDJlCoUSqFr-zB450H27CM.crl (hash: +v1DwDqSIut+5sIfXPps6QaAD161rveJigWbLCyxz4w=) 2: 5D2B0616A9C011EABAAB4624C4F9AE02.roa (hash: WJcxZE//v/qgwM5L8UFDfgSzlZEjCMButWifhGqcTAY=) 3: 5C1CF19EA9C011EABAAB4624C4F9AE02.roa (hash: 6/x/Fge5uH5YfUQOVxF7eyYbzP45tBqEPaICPxzEb2c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.crl rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCgZkDDJlCoUSqFr-zB450H27CM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:03:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2567 (0xa07) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175D4F, serialNumber=6028199030C9942A144AA16BFB3078E741F6EC23 Validity Not Before: May 30 20:03:14 2025 GMT Not After : Jun 6 20:03:14 2025 GMT Subject: CN=683a0f02-4e60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:e7:82:33:11:f8:2a:a4:67:b6:c9:7f:64:14: 35:79:fc:02:0a:fd:09:cf:85:07:b5:cc:af:5d:9e: 40:0e:6f:bc:33:9d:98:c1:65:c4:27:84:0f:20:59: 9e:89:4b:f9:cd:99:9a:85:c5:76:9b:68:e3:5a:4b: 3a:3a:58:c1:1e:b1:6e:f1:3a:6d:6b:21:86:db:6a: 38:48:de:18:16:db:ce:d4:c2:83:12:6c:e3:0b:3b: 6c:bf:90:ef:02:96:62:7b:32:41:9a:9f:ad:38:ac: 28:99:4d:da:7a:33:32:f1:e2:ce:fb:d1:e3:3f:be: 02:2f:86:50:09:99:bc:81:f4:c0:e9:fd:dc:52:23: 8f:51:ae:66:3f:50:25:ff:fd:3e:fa:49:77:2f:86: 11:89:46:6a:be:ae:59:f1:5c:0e:9a:b9:2d:ba:55: 33:79:b8:d8:ed:0c:95:d7:e1:ee:bd:d1:3e:c0:1a: f8:8a:62:42:56:2e:16:01:b2:6f:f9:e4:b3:29:55: 1d:88:b8:67:c0:de:17:26:56:3b:74:00:ea:0b:07: 53:94:61:92:cc:fa:93:82:d5:f1:f6:4b:6f:ba:be: e4:a1:15:d5:59:4b:db:4c:71:ca:8c:24:c5:00:c1: 22:52:ad:48:64:6e:dc:5d:30:3b:04:a0:ef:f4:ce: 65:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:2A:A3:D6:F6:2B:FD:3D:AE:B5:E1:A0:B0:72:F9:AC:29:7A:8F:1F X509v3 Authority Key Identifier: keyid:60:28:19:90:30:C9:94:2A:14:4A:A1:6B:FB:30:78:E7:41:F6:EC:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCgZkDDJlCoUSqFr-zB450H27CM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:08:12:b5:bc:7d:b8:d1:fa:45:3c:c5:c2:49:83:3e:c2:99: ed:dc:1a:6e:14:f1:e9:8d:b3:d7:ec:79:00:96:1b:11:42:4f: 13:98:c5:1a:1f:35:58:49:18:b9:ea:3e:41:47:70:d3:2f:67: 59:e2:43:c9:6a:94:de:be:6b:15:de:8f:e7:f7:33:ec:b8:4b: 53:7d:57:f7:f6:cb:1b:49:75:6b:6f:fd:a8:ce:59:aa:61:3c: 87:38:d2:d0:d4:93:df:2c:29:6f:d4:c4:db:2d:e1:c2:e2:57: 37:f2:9a:15:da:6d:4c:10:52:48:b3:b7:ab:9c:7f:ee:85:1b: 6a:b3:2b:12:37:86:e5:8c:4d:ec:39:7e:cb:04:8d:ec:5a:35: 68:72:94:43:d8:5c:6b:ee:a2:bf:6b:f8:67:a9:23:01:97:61: f4:f7:17:78:92:ce:f6:9c:82:83:ba:20:94:31:91:48:e4:a0: 23:de:2a:2c:d9:0d:83:44:92:f1:b5:15:e2:bf:f5:b5:5d:de: 39:2d:32:ae:b0:ea:45:6e:65:ad:0d:af:e1:a9:55:7b:2b:ce: 89:eb:ea:39:32:f4:9a:4a:73:a6:79:04:68:51:32:85:a4:f1: c1:17:9a:a6:03:49:ed:58:77:f8:0e:15:d1:90:b3:ac:6d:58: 89:f3:d9:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCgcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzVENEYxMTAvBgNVBAUTKDYwMjgxOTkwMzBDOTk0MkExNDRBQTE2QkZCMzA3OEU3 NDFGNkVDMjMwHhcNMjUwNTMwMjAwMzE0WhcNMjUwNjA2MjAwMzE0WjAYMRYwFAYD VQQDEw02ODNhMGYwMi00ZTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzueCMxH4KqRntsl/ZBQ1efwCCv0Jz4UHtcyvXZ5ADm+8M52YwWXEJ4QPIFme iUv5zZmahcV2m2jjWks6OljBHrFu8TptayGG22o4SN4YFtvO1MKDEmzjCztsv5Dv ApZiezJBmp+tOKwomU3aejMy8eLO+9HjP74CL4ZQCZm8gfTA6f3cUiOPUa5mP1Al //0++kl3L4YRiUZqvq5Z8VwOmrktulUzebjY7QyV1+HuvdE+wBr4imJCVi4WAbJv +eSzKVUdiLhnwN4XJlY7dADqCwdTlGGSzPqTgtXx9ktvur7koRXVWUvbTHHKjCTF AMEiUq1IZG7cXTA7BKDv9M5l0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGUqo9b2 K/09rrXhoLBy+awpeo8fMB8GA1UdIwQYMBaAFGAoGZAwyZQqFEqha/sweOdB9uwj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NUQ0Ri81ODVGNEQwRTc4 NzkxMUVBQUVCQTNCMzhDNEY5QUUwMi9ZQ2daa0RESmxDb1VTcUZyLXpCNDUwSDI3 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lDZ1prRERKbENvVVNxRnItekI0NTBIMjdDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NUQ0Ri81ODVGNEQwRTc4NzkxMUVBQUVCQTNCMzhDNEY5QUUwMi9ZQ2daa0RESmxD b1VTcUZyLXpCNDUwSDI3Q00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3CBK1vH240fpFPMXCSYM+wpnt3BpuFPHpjbPX7HkAlhsRQk8TmMUa HzVYSRi56j5BR3DTL2dZ4kPJapTevmsV3o/n9zPsuEtTfVf39ssbSXVrb/2ozlmq YTyHONLQ1JPfLClv1MTbLeHC4lc38poV2m1MEFJIs7ernH/uhRtqsysSN4bljE3s OX7LBI3sWjVocpRD2Fxr7qK/a/hnqSMBl2H09xd4ks72nIKDuiCUMZFI5KAj3ios 2Q2DRJLxtRXiv/W1Xd45LTKusOpFbmWtDa/hqVV7K86J6+o5MvSaSnOmeQRoUTKF pPHBF5qmA0ntWHf4DhXRkLOsbViJ89mK -----END CERTIFICATE-----Generated at Sat May 31 17:26:16 2025 by rpki-client