$ rpki-client -vvf rpki.apnic.net/member_repository/A9138D62/BCB40A585FCF11EC8CF1E07BC4F9AE02/YhuBwQnlqnjYKfMKV9o1MwglT2k.mft File: YhuBwQnlqnjYKfMKV9o1MwglT2k.mft (raw, json) Hash identifier: bYWqlwAyq/jwt8Dd/Hdr02Vq92dBmTTAYLXukumObFk= Subject key identifier: 3A:58:68:84:23:3D:8F:A0:07:70:15:A8:E5:87:49:E0:D9:82:66:0C Authority key identifier: 62:1B:81:C1:09:E5:AA:78:D8:29:F3:0A:57:DA:35:33:08:25:4F:69 Certificate issuer: /CN=A9138D62/serialNumber=621B81C109E5AA78D829F30A57DA353308254F69 Certificate serial: 0442 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YhuBwQnlqnjYKfMKV9o1MwglT2k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138D62/BCB40A585FCF11EC8CF1E07BC4F9AE02/YhuBwQnlqnjYKfMKV9o1MwglT2k.mft Manifest number: 043C Signing time: Sun 15 Jun 2025 00:02:11 +0000 Manifest this update: Sun 15 Jun 2025 00:02:10 +0000 Manifest next update: Sun 22 Jun 2025 00:02:10 +0000 Files and hashes: 1: YhuBwQnlqnjYKfMKV9o1MwglT2k.crl (hash: 8MeK+W794ewqfsuIxmlfaimp5NprBv3997/rsJhpP2M=) 2: 31E51BB65FD311EC9AA5DA4EC4F9AE02.roa (hash: bAaCSc9TYM7K2UkBDoNWyjDrI2lpV2TgVDZgy3NjGCg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138D62/BCB40A585FCF11EC8CF1E07BC4F9AE02/YhuBwQnlqnjYKfMKV9o1MwglT2k.crl rsync://rpki.apnic.net/member_repository/A9138D62/BCB40A585FCF11EC8CF1E07BC4F9AE02/YhuBwQnlqnjYKfMKV9o1MwglT2k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YhuBwQnlqnjYKfMKV9o1MwglT2k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 00:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1090 (0x442) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138D62, serialNumber=621B81C109E5AA78D829F30A57DA353308254F69 Validity Not Before: Jun 15 00:02:10 2025 GMT Not After : Jun 22 00:02:10 2025 GMT Subject: CN=684e0d82-5cfc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:47:e4:59:78:9c:69:a1:2d:37:94:d7:75:dc: a7:cc:c7:23:27:80:41:4f:12:29:b0:3a:24:a0:8a: b9:82:3f:92:35:61:cb:a7:96:cb:f8:7b:56:d3:f3: 80:36:2d:f0:cd:0e:f9:22:6e:d2:fa:1b:5d:35:ed: a6:7f:df:a6:89:7f:df:5a:58:a0:fa:2d:f7:96:9c: 8e:de:1e:27:21:5b:d2:dd:3b:f3:f6:41:5b:13:a2: 87:df:9a:f1:62:c3:2c:98:15:45:fc:ce:05:ca:4c: 25:43:54:42:e0:69:f8:05:33:6b:63:1c:61:c5:d3: 82:39:3e:a9:88:e1:0b:4f:4c:dc:ea:96:3e:8e:e9: aa:49:2a:b6:bf:0d:1d:d8:c4:65:05:6f:0c:dc:ab: b8:07:43:aa:c8:56:49:12:59:78:9c:ed:1c:83:47: 0f:1f:2b:82:4a:5b:cf:bd:05:68:b9:4c:9c:21:3a: 81:50:e8:f3:20:fa:71:db:79:7a:c1:8a:76:10:83: 8e:24:03:19:98:32:14:51:af:eb:47:6e:f7:06:6a: dd:df:c0:3d:87:6a:2d:27:db:ad:70:5f:0f:6b:73: b3:d1:bc:d0:bf:7f:9a:65:89:33:e8:0f:5c:08:60: 46:b3:6b:b6:e4:67:d3:b1:67:c4:3f:a3:a3:4a:26: 22:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:58:68:84:23:3D:8F:A0:07:70:15:A8:E5:87:49:E0:D9:82:66:0C X509v3 Authority Key Identifier: keyid:62:1B:81:C1:09:E5:AA:78:D8:29:F3:0A:57:DA:35:33:08:25:4F:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138D62/BCB40A585FCF11EC8CF1E07BC4F9AE02/YhuBwQnlqnjYKfMKV9o1MwglT2k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YhuBwQnlqnjYKfMKV9o1MwglT2k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138D62/BCB40A585FCF11EC8CF1E07BC4F9AE02/YhuBwQnlqnjYKfMKV9o1MwglT2k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:e0:86:e1:8d:a9:54:96:a6:ad:fd:77:5f:06:4a:f7:11:22: 37:c0:a6:03:bd:cb:53:24:40:e3:4c:06:c3:f2:d9:95:96:ac: 77:3d:11:27:2e:77:23:5d:16:82:c7:24:29:e4:e8:2c:c2:c2: ff:29:81:d4:dd:01:26:14:be:f8:a4:63:48:86:e8:4e:e1:3a: 2b:3b:59:e6:18:ff:44:9c:9f:b0:22:b7:dd:5b:a1:af:e2:5f: a2:c1:9b:29:16:13:14:87:83:44:f4:4a:cd:79:ab:e9:d3:c0: 68:e9:cb:22:53:01:02:2e:4c:30:e5:55:65:b6:20:75:06:f8: c0:a0:83:ea:a9:ad:51:9b:f4:7d:19:9e:db:b5:f6:82:e3:94: a9:de:3b:4f:3a:a7:b8:24:67:25:96:78:61:5c:d7:1a:79:13: 3a:f9:02:8c:e2:67:4a:a8:2a:e0:9e:cf:23:35:48:52:a2:57: f8:ad:f7:7c:88:d0:94:5d:0a:7c:c9:19:a7:59:f2:ef:fa:4a: bc:d6:4b:90:39:aa:d1:09:3f:ab:e6:3b:25:f9:cd:6f:1a:fd: 13:41:f8:21:f4:9b:9b:85:5a:be:d4:80:39:da:5c:aa:6d:ed: 69:59:d2:21:05:c1:70:82:32:a1:b0:17:02:04:af:9a:f6:dd: 47:0a:88:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzhENjIxMTAvBgNVBAUTKDYyMUI4MUMxMDlFNUFBNzhEODI5RjMwQTU3REEzNTMz MDgyNTRGNjkwHhcNMjUwNjE1MDAwMjEwWhcNMjUwNjIyMDAwMjEwWjAYMRYwFAYD VQQDEw02ODRlMGQ4Mi01Y2ZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAukfkWXicaaEtN5TXddynzMcjJ4BBTxIpsDokoIq5gj+SNWHLp5bL+HtW0/OA Ni3wzQ75Im7S+htdNe2mf9+miX/fWlig+i33lpyO3h4nIVvS3Tvz9kFbE6KH35rx YsMsmBVF/M4FykwlQ1RC4Gn4BTNrYxxhxdOCOT6piOELT0zc6pY+jumqSSq2vw0d 2MRlBW8M3Ku4B0OqyFZJEll4nO0cg0cPHyuCSlvPvQVouUycITqBUOjzIPpx23l6 wYp2EIOOJAMZmDIUUa/rR273Bmrd38A9h2otJ9utcF8Pa3Oz0bzQv3+aZYkz6A9c CGBGs2u25GfTsWfEP6OjSiYiRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDpYaIQj PY+gB3AVqOWHSeDZgmYMMB8GA1UdIwQYMBaAFGIbgcEJ5ap42CnzClfaNTMIJU9p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOEQ2Mi9CQ0I0MEE1ODVG Q0YxMUVDOENGMUUwN0JDNEY5QUUwMi9ZaHVCd1FubHFuallLZk1LVjlvMU13Z2xU MmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lodUJ3UW5scW5qWUtmTUtWOW8xTXdnbFQyay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OEQ2Mi9CQ0I0MEE1ODVGQ0YxMUVDOENGMUUwN0JDNEY5QUUwMi9ZaHVCd1FubHFu allLZk1LVjlvMU13Z2xUMmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCG4IbhjalUlqat/XdfBkr3ESI3wKYDvctTJEDjTAbD8tmVlqx3PREn LncjXRaCxyQp5OgswsL/KYHU3QEmFL74pGNIhuhO4TorO1nmGP9EnJ+wIrfdW6Gv 4l+iwZspFhMUh4NE9ErNeavp08Bo6csiUwECLkww5VVltiB1BvjAoIPqqa1Rm/R9 GZ7btfaC45Sp3jtPOqe4JGcllnhhXNcaeRM6+QKM4mdKqCrgns8jNUhSolf4rfd8 iNCUXQp8yRmnWfLv+kq81kuQOarRCT+r5jsl+c1vGv0TQfgh9JubhVq+1IA52lyq be1pWdIhBcFwgjKhsBcCBK+a9t1HCoiB -----END CERTIFICATE-----Generated at Sun Jun 15 08:51:18 2025 by rpki-client