$ rpki-client -vvf rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft File: y1sC0Pxzbip6stKIoPwzFnpLvO0.mft (raw, json) Hash identifier: nRleSmQvJm63aYWbMp+NAH8Qe2e4pAj2e7fivb/ARoQ= Subject key identifier: 67:83:70:99:24:EB:F4:8A:A0:E9:57:91:71:35:1C:05:31:6E:B6:F7 Authority key identifier: CB:5B:02:D0:FC:73:6E:2A:7A:B2:D2:88:A0:FC:33:16:7A:4B:BC:ED Certificate issuer: /CN=A9129F1D/serialNumber=CB5B02D0FC736E2A7AB2D288A0FC33167A4BBCED Certificate serial: 01CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft Manifest number: 01CB Signing time: Tue 17 Jun 2025 02:01:05 +0000 Manifest this update: Tue 17 Jun 2025 02:01:05 +0000 Manifest next update: Tue 24 Jun 2025 02:01:05 +0000 Files and hashes: 1: y1sC0Pxzbip6stKIoPwzFnpLvO0.crl (hash: zrrp/WLvzJ2JMRHVJ5Iv20M+cRQGdVPD1/ZXLM8KMco=) 2: 3E122AE0876011ED84335D46C4F9AE02.roa (hash: bMGYEkxmsNwyimLtEml2g/yxjeK2QwKmxudQ/0mQEOc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.crl rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 02:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 463 (0x1cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129F1D, serialNumber=CB5B02D0FC736E2A7AB2D288A0FC33167A4BBCED Validity Not Before: Jun 17 02:01:05 2025 GMT Not After : Jun 24 02:01:05 2025 GMT Subject: CN=6850cc61-0ad5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:4b:35:69:22:73:e2:68:fa:8c:3c:f6:2f:8d: 2b:94:48:37:ce:d7:ad:1e:0e:0f:64:23:f6:97:57: 4e:25:28:c8:21:44:eb:e3:e6:d0:67:d6:c5:67:4b: e7:13:38:34:8a:ba:93:89:39:9b:61:39:07:b8:be: ad:76:4c:91:04:83:b9:2f:3b:a0:11:3a:f3:fc:f5: ad:ca:8c:b5:e5:8d:5e:f2:3b:39:c1:e3:74:97:fd: 6a:5f:8a:b8:e6:ed:22:69:86:63:43:45:73:4c:1e: a8:6d:46:46:9e:bb:2f:91:5d:06:1d:3e:38:68:cc: 8e:b0:a8:de:fa:54:c9:70:11:95:8c:83:70:5f:84: 0a:a3:bc:20:42:d2:7b:f5:0b:4e:11:1e:c3:96:d0: f9:11:2e:ba:0c:5f:8b:7f:cc:21:b4:3a:15:2a:83: 41:5a:df:89:38:f9:70:d2:1d:03:be:0e:e7:e2:93: 0a:21:07:3c:95:a4:bd:20:0e:48:61:13:da:c3:d8: 9e:5f:fb:d1:d1:7d:60:b1:7a:c1:fd:19:50:50:ef: 71:54:de:8f:e9:61:68:b3:a2:b4:f7:cc:44:b0:f9: 34:05:34:35:b5:6f:f9:94:65:99:3a:47:c1:1c:29: d1:e2:bf:53:3d:f6:50:fe:8a:11:e2:bd:be:85:6b: c4:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:83:70:99:24:EB:F4:8A:A0:E9:57:91:71:35:1C:05:31:6E:B6:F7 X509v3 Authority Key Identifier: keyid:CB:5B:02:D0:FC:73:6E:2A:7A:B2:D2:88:A0:FC:33:16:7A:4B:BC:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:40:bf:ea:23:1f:51:3a:85:e8:51:c8:92:61:d5:2d:06:59: c0:4e:3f:8f:e2:be:b1:11:c4:7f:36:0a:b8:ae:7a:83:a3:e0: 19:6f:fa:24:1b:af:d4:f1:1d:52:0c:59:62:92:19:8b:ee:5e: 30:4c:6a:36:fc:c8:10:58:a9:f1:6e:05:7d:3f:62:8e:24:fd: d6:46:c7:48:0a:9c:54:2e:d8:2d:fb:fc:f9:2c:bf:4f:c0:53: e5:03:7a:89:b1:86:f7:48:3b:1f:a1:5a:94:a6:e1:df:35:a3: d3:d0:30:6e:cc:5b:39:55:4e:0d:46:b2:bb:25:a9:4d:24:a7: 5e:cc:64:fe:e6:2f:91:ab:b9:0d:99:9c:3b:da:fe:11:e1:1c: 96:d6:ad:5b:3a:32:fc:f2:7a:5a:74:0e:36:18:86:6c:b9:3f: 59:4c:af:46:f4:95:25:f6:55:2e:5c:f3:9c:da:ea:49:88:51: 6b:cf:c2:3c:d8:db:88:5d:8d:a1:e4:3b:4c:28:37:79:a8:23: d4:73:e8:b7:b3:24:31:c2:30:59:42:d3:02:91:bd:59:11:ed: b0:be:ea:7c:f0:3b:73:15:8f:26:c6:e3:f9:f2:8c:b4:34:3d: 94:d7:e9:7f:a9:69:83:e9:e2:bf:43:5e:ab:e6:0f:00:f0:27: ac:35:82:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlGMUQxMTAvBgNVBAUTKENCNUIwMkQwRkM3MzZFMkE3QUIyRDI4OEEwRkMzMzE2 N0E0QkJDRUQwHhcNMjUwNjE3MDIwMTA1WhcNMjUwNjI0MDIwMTA1WjAYMRYwFAYD VQQDEw02ODUwY2M2MS0wYWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvUs1aSJz4mj6jDz2L40rlEg3ztetHg4PZCP2l1dOJSjIIUTr4+bQZ9bFZ0vn Ezg0irqTiTmbYTkHuL6tdkyRBIO5LzugETrz/PWtyoy15Y1e8js5weN0l/1qX4q4 5u0iaYZjQ0VzTB6obUZGnrsvkV0GHT44aMyOsKje+lTJcBGVjINwX4QKo7wgQtJ7 9QtOER7DltD5ES66DF+Lf8whtDoVKoNBWt+JOPlw0h0Dvg7n4pMKIQc8laS9IA5I YRPaw9ieX/vR0X1gsXrB/RlQUO9xVN6P6WFos6K098xEsPk0BTQ1tW/5lGWZOkfB HCnR4r9TPfZQ/ooR4r2+hWvEEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGeDcJkk 6/SKoOlXkXE1HAUxbrb3MB8GA1UdIwQYMBaAFMtbAtD8c24qerLSiKD8MxZ6S7zt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUYxRC8yMUNBQkE1Qzg3 NUUxMUVEQkRDNjQ5NDZDNEY5QUUwMi95MXNDMFB4emJpcDZzdEtJb1B3ekZucEx2 TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kxc0MwUHh6YmlwNnN0S0lvUHd6Rm5wTHZPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OUYxRC8yMUNBQkE1Qzg3NUUxMUVEQkRDNjQ5NDZDNEY5QUUwMi95MXNDMFB4emJp cDZzdEtJb1B3ekZucEx2TzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFQL/qIx9ROoXoUciSYdUtBlnATj+P4r6xEcR/Ngq4rnqDo+AZb/ok G6/U8R1SDFlikhmL7l4wTGo2/MgQWKnxbgV9P2KOJP3WRsdICpxULtgt+/z5LL9P wFPlA3qJsYb3SDsfoVqUpuHfNaPT0DBuzFs5VU4NRrK7JalNJKdezGT+5i+Rq7kN mZw72v4R4RyW1q1bOjL88npadA42GIZsuT9ZTK9G9JUl9lUuXPOc2upJiFFrz8I8 2NuIXY2h5DtMKDd5qCPUc+i3syQxwjBZQtMCkb1ZEe2wvup88DtzFY8mxuP58oy0 ND2U1+l/qWmD6eK/Q16r5g8A8CesNYJf -----END CERTIFICATE-----Generated at Wed Jun 18 19:54:55 2025 by rpki-client