$ rpki-client -vvf rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft File: y6GXwEyqm9KV9XiEcqahCqP773A.mft (raw, json) Hash identifier: 46zLu0DJKgtBHHKzAtKGN2Y7EUnNvqIdhiJUxeBOFcs= Subject key identifier: 2F:07:8D:52:68:D2:70:C3:39:3A:84:3A:C4:89:D3:B7:77:F1:77:86 Authority key identifier: CB:A1:97:C0:4C:AA:9B:D2:95:F5:78:84:72:A6:A1:0A:A3:FB:EF:70 Certificate issuer: /CN=A9143CB3/serialNumber=CBA197C04CAA9BD295F5788472A6A10AA3FBEF70 Certificate serial: 1B33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft Manifest number: 1B07 Signing time: Sat 14 Jun 2025 16:16:33 +0000 Manifest this update: Sat 14 Jun 2025 16:16:32 +0000 Manifest next update: Sat 21 Jun 2025 16:16:32 +0000 Files and hashes: 1: y6GXwEyqm9KV9XiEcqahCqP773A.crl (hash: vqNAz7myXRWHmL+5GO2ipmWYAe2M5PHYAJqL+igJpss=) 2: D90961489C1311EFA0BF1480C4F9AE02.roa (hash: Jv1d6fF3qu1qMz0c/kGUVQ3xOsIZk2UWH2dC2+4vagE=) 3: DE0A76C805B511EE95562E2AC4F9AE02.roa (hash: hMIakiTTivB+fRa4Rnc2jL//XFH58YMCoj5LWIbNoBM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.crl rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 16:16:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6963 (0x1b33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143CB3, serialNumber=CBA197C04CAA9BD295F5788472A6A10AA3FBEF70 Validity Not Before: Jun 14 16:16:32 2025 GMT Not After : Jun 21 16:16:32 2025 GMT Subject: CN=684da060-45c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:88:15:4d:d7:af:ec:5a:c0:7e:dd:db:21:27: a2:f1:37:fc:55:c6:fe:ff:22:c9:f5:65:f0:f7:6f: c7:52:9e:ad:4d:dd:c5:18:f1:b2:3e:96:b8:d1:d1: ef:94:32:8c:47:55:6a:9c:82:04:76:72:89:4f:62: a8:17:be:16:2e:fe:18:3b:95:da:2f:60:fc:88:d3: cc:17:f4:e8:f9:92:2b:c4:6a:fa:f6:5e:5e:6c:7a: 9d:85:64:08:8f:9d:bf:f8:1c:af:42:79:92:2e:c5: 80:47:58:d8:44:bf:f6:36:51:14:29:b1:6c:66:c4: d8:1a:32:49:35:3d:35:05:d5:c2:a2:63:25:83:21: bc:7d:0b:54:fc:26:12:32:47:3a:53:ad:95:43:3b: ad:4b:4b:b0:42:03:d3:05:0e:ab:4d:fb:04:77:e6: 6b:50:75:7d:ae:94:7c:e5:fd:6e:9e:d7:fb:5a:80: 4c:92:08:ce:b8:05:af:70:03:a3:ee:2c:89:69:eb: 0f:25:28:3f:70:96:8e:c6:07:a7:42:17:41:f3:5d: 71:ef:24:8a:02:02:c2:85:be:6e:6e:a9:8b:e6:40: 43:df:da:7a:14:28:6d:d0:45:08:bf:a7:8e:56:ee: 1b:0b:5d:0e:4e:44:6f:98:65:9f:38:5d:d6:a0:11: 1c:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:07:8D:52:68:D2:70:C3:39:3A:84:3A:C4:89:D3:B7:77:F1:77:86 X509v3 Authority Key Identifier: keyid:CB:A1:97:C0:4C:AA:9B:D2:95:F5:78:84:72:A6:A1:0A:A3:FB:EF:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:b3:49:b8:e7:78:d6:5e:62:44:30:d1:28:a7:94:45:c0:56: 5b:c5:a9:00:a6:b2:db:83:f3:bd:cf:82:c9:52:65:0e:fd:fc: f1:d1:eb:e3:53:dc:88:de:7d:95:4a:12:0a:b1:5d:76:81:c9: a1:58:3a:89:dc:d1:4c:b2:fd:bd:25:6d:22:d3:24:a8:98:68: fc:d8:ae:2e:d4:95:b4:7c:9f:16:81:4a:8c:05:cd:ab:87:5c: 57:96:5b:d6:b0:c8:90:23:99:f5:25:f8:87:8a:b7:4b:a9:9c: d4:4f:4d:2a:f0:97:a9:32:e2:47:99:6b:8c:73:d0:2f:f3:01: 37:3a:bf:b3:28:4e:45:45:66:b0:75:2d:bf:97:dd:f8:69:ab: 3c:09:d8:8b:45:52:e3:6c:79:cd:44:85:b1:f8:2f:fa:5d:f6: e9:d2:58:64:95:23:bd:4b:88:6d:76:69:68:c9:5f:6e:4c:15: 90:6c:72:65:6e:23:38:0d:aa:c7:a8:4c:5e:19:32:33:7d:1a: 38:ac:bf:55:ef:5c:85:2b:87:b3:11:50:70:86:d0:c1:e9:24: 5e:7d:7e:2a:a0:5a:d9:15:e6:15:9b:dd:4a:e0:0c:91:a9:95: 75:40:04:db:a2:32:5b:ed:c5:c6:46:de:2e:c9:5f:1d:19:f3: f3:14:b4:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNDQjMxMTAvBgNVBAUTKENCQTE5N0MwNENBQTlCRDI5NUY1Nzg4NDcyQTZBMTBB QTNGQkVGNzAwHhcNMjUwNjE0MTYxNjMyWhcNMjUwNjIxMTYxNjMyWjAYMRYwFAYD VQQDEw02ODRkYTA2MC00NWM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4IgVTdev7FrAft3bISei8Tf8Vcb+/yLJ9WXw92/HUp6tTd3FGPGyPpa40dHv lDKMR1VqnIIEdnKJT2KoF74WLv4YO5XaL2D8iNPMF/To+ZIrxGr69l5ebHqdhWQI j52/+ByvQnmSLsWAR1jYRL/2NlEUKbFsZsTYGjJJNT01BdXComMlgyG8fQtU/CYS Mkc6U62VQzutS0uwQgPTBQ6rTfsEd+ZrUHV9rpR85f1untf7WoBMkgjOuAWvcAOj 7iyJaesPJSg/cJaOxgenQhdB811x7ySKAgLChb5ubqmL5kBD39p6FCht0EUIv6eO Vu4bC10OTkRvmGWfOF3WoBEc0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC8HjVJo 0nDDOTqEOsSJ07d38XeGMB8GA1UdIwQYMBaAFMuhl8BMqpvSlfV4hHKmoQqj++9w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0NCMy8xREI3OTgzQzI1 OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi95NkdYd0V5cW05S1Y5WGlFY3FhaENxUDc3 M0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3k2R1h3RXlxbTlLVjlYaUVjcWFoQ3FQNzczQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0NCMy8xREI3OTgzQzI1OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi95NkdYd0V5cW05 S1Y5WGlFY3FhaENxUDc3M0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3s0m453jWXmJEMNEop5RFwFZbxakAprLbg/O9z4LJUmUO/fzx0evj U9yI3n2VShIKsV12gcmhWDqJ3NFMsv29JW0i0ySomGj82K4u1JW0fJ8WgUqMBc2r h1xXllvWsMiQI5n1JfiHirdLqZzUT00q8JepMuJHmWuMc9Av8wE3Or+zKE5FRWaw dS2/l934aas8CdiLRVLjbHnNRIWx+C/6Xfbp0lhklSO9S4htdmloyV9uTBWQbHJl biM4DarHqExeGTIzfRo4rL9V71yFK4ezEVBwhtDB6SRefX4qoFrZFeYVm91K4AyR qZV1QATbojJb7cXGRt4uyV8dGfPzFLQz -----END CERTIFICATE-----Generated at Sun Jun 15 08:41:16 2025 by rpki-client