$ rpki-client -vvf rpki.apnic.net/member_repository/A9132FD9/7F9A70342BB511F09DE5BA4EC4F9AE02/lyuQ2cUZIlatlkdbOSurGnp5zC0.mft File: lyuQ2cUZIlatlkdbOSurGnp5zC0.mft (raw, json) Hash identifier: Tj8DkeVjVTftEdr3Jpj+mVzHzYMVqCyaoZOKaNdgn6k= Subject key identifier: 50:E1:D6:72:E4:A2:C3:51:06:DF:53:C3:34:3B:F4:49:C5:DE:E0:E3 Authority key identifier: 97:2B:90:D9:C5:19:22:56:AD:96:47:5B:39:2B:AB:1A:7A:79:CC:2D Certificate issuer: /CN=A9132FD9/serialNumber=972B90D9C5192256AD96475B392BAB1A7A79CC2D Certificate serial: 1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lyuQ2cUZIlatlkdbOSurGnp5zC0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132FD9/7F9A70342BB511F09DE5BA4EC4F9AE02/lyuQ2cUZIlatlkdbOSurGnp5zC0.mft Manifest number: 18 Signing time: Fri 13 Jun 2025 06:53:42 +0000 Manifest this update: Fri 13 Jun 2025 06:53:42 +0000 Manifest next update: Fri 20 Jun 2025 06:53:42 +0000 Files and hashes: 1: lyuQ2cUZIlatlkdbOSurGnp5zC0.crl (hash: Nk1ZckzxkVj42hzrApdAlDE4B/uJqxE6T6/lkA2Yr7s=) 2: DCC2224A313011F0BE214A64C4F9AE02.roa (hash: boAAaQY0nzMtC8MdALGWU7uiMFPgsCoPJLOiVmNOgmU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132FD9/7F9A70342BB511F09DE5BA4EC4F9AE02/lyuQ2cUZIlatlkdbOSurGnp5zC0.crl rsync://rpki.apnic.net/member_repository/A9132FD9/7F9A70342BB511F09DE5BA4EC4F9AE02/lyuQ2cUZIlatlkdbOSurGnp5zC0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lyuQ2cUZIlatlkdbOSurGnp5zC0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 06:53:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28 (0x1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132FD9, serialNumber=972B90D9C5192256AD96475B392BAB1A7A79CC2D Validity Not Before: Jun 13 06:53:42 2025 GMT Not After : Jun 20 06:53:42 2025 GMT Subject: CN=684bcaf6-72d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:0f:67:da:d7:79:1e:64:6d:5c:9a:a7:00:13: 30:81:56:68:20:aa:9d:0e:71:f6:91:77:8b:37:4b: 3e:42:7f:f1:47:02:af:f8:86:4e:68:63:26:3a:42: fe:d9:71:79:2b:e6:b4:83:09:e4:5d:6d:e4:23:b7: 33:7c:11:48:6b:ef:3c:b1:88:a1:a5:06:6a:1a:0e: ee:44:3f:d8:10:38:b1:b9:46:d0:ac:29:87:23:53: 39:a7:ed:01:d8:ce:3b:b3:e4:6a:1f:69:29:8e:b8: 20:e8:72:84:31:b4:5c:be:7e:66:36:4d:3e:1a:5f: 3f:74:39:12:84:2d:36:56:31:2a:59:8e:d3:cc:b9: f9:63:0d:f5:e3:65:02:96:97:2b:78:86:2e:2e:2c: bd:c9:3e:ff:ed:13:22:b9:e2:f3:c7:60:35:20:e1: f7:11:23:f7:fe:9f:b2:0d:3d:ce:75:7a:a6:17:4a: c4:20:4c:6d:e5:23:75:c5:7d:3b:a2:1e:1d:23:20: 9a:13:ac:03:29:c7:93:5e:87:69:cc:b7:8f:9e:d7: 6e:ed:a8:af:59:a0:05:bc:f9:f4:7f:1c:dc:9c:06: d5:8f:d8:69:eb:ce:8a:8d:1e:70:db:22:2e:3b:2b: 61:68:1b:47:dc:eb:d6:7c:b5:f2:7a:da:1a:88:d4: e2:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:E1:D6:72:E4:A2:C3:51:06:DF:53:C3:34:3B:F4:49:C5:DE:E0:E3 X509v3 Authority Key Identifier: keyid:97:2B:90:D9:C5:19:22:56:AD:96:47:5B:39:2B:AB:1A:7A:79:CC:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132FD9/7F9A70342BB511F09DE5BA4EC4F9AE02/lyuQ2cUZIlatlkdbOSurGnp5zC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lyuQ2cUZIlatlkdbOSurGnp5zC0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132FD9/7F9A70342BB511F09DE5BA4EC4F9AE02/lyuQ2cUZIlatlkdbOSurGnp5zC0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:0d:e1:d3:49:ba:62:36:4a:8d:59:f1:c1:c6:b8:38:f5:35: 38:54:94:3e:fa:03:f9:8c:7a:b1:4b:3b:40:c6:1a:27:b9:40: 83:41:a0:01:c2:99:39:aa:44:64:e0:e8:d1:4d:98:01:06:1e: e5:48:72:2e:fe:76:50:13:a3:ed:c5:e4:a8:34:b6:94:6a:94: 9c:d0:62:3b:1f:d0:ae:40:1b:00:9d:24:73:c5:bf:4d:01:ba: 64:40:9c:fd:ff:5f:fd:aa:dd:17:44:52:2c:51:03:d8:de:e7: 6d:b1:a0:b2:c8:9c:90:c8:76:0d:6b:14:d1:81:53:a4:2a:77: 80:0c:1e:80:af:ca:47:59:83:13:26:cb:da:c1:46:9c:15:41: ba:1e:4f:84:88:4e:09:cc:c9:44:ba:df:c4:db:7a:7e:24:01: 90:3c:4e:69:f8:2f:3f:1a:9b:dd:71:56:01:95:01:34:c4:7e: 7f:29:57:87:9e:06:de:36:23:4c:76:3e:24:a5:1d:3a:58:a6: 0e:ab:87:0d:15:14:c2:d8:4e:a6:95:32:50:9b:19:45:c1:c1: c8:d6:17:4d:57:94:14:e0:18:a6:39:7f:c0:66:5b:18:b3:9f: 50:48:c5:18:74:43:4c:67:37:57:2b:de:ef:ea:90:c6:9b:b6: a0:13:8f:a5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MkZEOTExMC8GA1UEBRMoOTcyQjkwRDlDNTE5MjI1NkFEOTY0NzVCMzkyQkFCMUE3 QTc5Q0MyRDAeFw0yNTA2MTMwNjUzNDJaFw0yNTA2MjAwNjUzNDJaMBgxFjAUBgNV BAMTDTY4NGJjYWY2LTcyZDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/D2fa13keZG1cmqcAEzCBVmggqp0OcfaRd4s3Sz5Cf/FHAq/4hk5oYyY6Qv7Z cXkr5rSDCeRdbeQjtzN8EUhr7zyxiKGlBmoaDu5EP9gQOLG5RtCsKYcjUzmn7QHY zjuz5GofaSmOuCDocoQxtFy+fmY2TT4aXz90ORKELTZWMSpZjtPMufljDfXjZQKW lyt4hi4uLL3JPv/tEyK54vPHYDUg4fcRI/f+n7INPc51eqYXSsQgTG3lI3XFfTui Hh0jIJoTrAMpx5Neh2nMt4+e127tqK9ZoAW8+fR/HNycBtWP2GnrzoqNHnDbIi47 K2FoG0fc69Z8tfJ62hqI1OJ1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUUOHWcuSi w1EG31PDNDv0ScXe4OMwHwYDVR0jBBgwFoAUlyuQ2cUZIlatlkdbOSurGnp5zC0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMyRkQ5LzdGOUE3MDM0MkJC NTExRjA5REU1QkE0RUM0RjlBRTAyL2x5dVEyY1VaSWxhdGxrZGJPU3VyR25wNXpD MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbHl1UTJjVVpJbGF0bGtkYk9TdXJHbnA1ekMwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMy RkQ5LzdGOUE3MDM0MkJCNTExRjA5REU1QkE0RUM0RjlBRTAyL2x5dVEyY1VaSWxh dGxrZGJPU3VyR25wNXpDMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKUN4dNJumI2So1Z8cHGuDj1NThUlD76A/mMerFLO0DGGie5QINBoAHC mTmqRGTg6NFNmAEGHuVIci7+dlATo+3F5Kg0tpRqlJzQYjsf0K5AGwCdJHPFv00B umRAnP3/X/2q3RdEUixRA9je522xoLLInJDIdg1rFNGBU6Qqd4AMHoCvykdZgxMm y9rBRpwVQboeT4SITgnMyUS638Tben4kAZA8Tmn4Lz8am91xVgGVATTEfn8pV4ee Bt42I0x2PiSlHTpYpg6rhw0VFMLYTqaVMlCbGUXBwcjWF01XlBTgGKY5f8BmWxiz n1BIxRh0Q0xnN1cr3u/qkMabtqATj6U= -----END CERTIFICATE-----Generated at Sat Jun 14 17:25:03 2025 by rpki-client