$ rpki-client -vvf rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft File: Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft (raw, json) Hash identifier: 3SCcnUCYyWYPUQUCPEpIWmgjsjidgbvIvI2/bGvHiDs= Subject key identifier: 82:21:64:83:D9:9C:2A:7A:1E:14:CF:2B:47:EA:58:13:EF:B0:6C:02 Authority key identifier: 63:E4:87:62:A8:93:08:09:67:73:D9:E1:C9:D1:A9:99:80:35:67:0D Certificate issuer: /CN=A9147B58/serialNumber=63E48762A89308096773D9E1C9D1A9998035670D Certificate serial: 05BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft Manifest number: 05B4 Signing time: Sat 14 Jun 2025 22:52:58 +0000 Manifest this update: Sat 14 Jun 2025 22:52:57 +0000 Manifest next update: Sat 21 Jun 2025 22:52:57 +0000 Files and hashes: 1: Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl (hash: YITfPaGcG+Q/WsFiMSFku0eYuuBaNoLPE+LtG74xesM=) 2: 657BCA62CABC11EB8D6D063BC4F9AE02.roa (hash: tl2kppVQ05tVhEGA0iZghAdvk5il8hkt04HkORheCWE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 22:52:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1466 (0x5ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147B58, serialNumber=63E48762A89308096773D9E1C9D1A9998035670D Validity Not Before: Jun 14 22:52:57 2025 GMT Not After : Jun 21 22:52:57 2025 GMT Subject: CN=684dfd4a-ee25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:b3:0a:a9:2f:4e:57:3d:7c:ed:5d:8e:4f:28: d5:43:a8:84:c4:cc:35:76:b7:c3:f8:32:be:eb:b5: 50:20:aa:73:08:a2:be:72:8b:ac:f1:ef:ae:2e:b5: 5f:f1:02:b4:6a:4a:fd:50:9c:ab:9e:dc:fe:2e:88: 56:c6:63:7b:f1:fc:5b:08:04:c3:b4:69:31:b5:87: dd:1f:8b:79:6c:32:ed:18:95:e0:ee:90:8e:50:26: 49:d8:c4:2d:00:50:fd:f2:9e:71:df:5e:b7:22:9d: 8b:91:c3:0b:b6:d3:a5:c3:80:7a:ea:75:ad:de:8d: bf:f9:35:b4:4a:8c:93:97:0e:a5:fb:6d:aa:fe:1d: 39:17:d7:76:18:b9:9b:e4:f6:d0:55:63:3b:c3:a5: ae:ff:12:b9:cf:f4:86:c9:06:45:6f:95:4a:ea:e1: 52:fe:80:79:e1:d9:9d:7a:57:c6:61:d5:78:8f:2d: 3d:dd:28:dd:50:40:48:3c:c1:7f:44:fe:d5:53:d0: b0:69:e5:b4:a7:9c:93:ab:de:a7:d3:11:34:a9:85: b0:63:e6:91:11:c2:76:e7:32:7e:51:26:7f:32:72: d3:21:11:e8:dd:1f:b9:c1:22:ba:99:35:de:8d:fe: 07:b4:cb:2b:44:4e:73:db:2d:3a:e3:ca:8d:61:c6: 58:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:21:64:83:D9:9C:2A:7A:1E:14:CF:2B:47:EA:58:13:EF:B0:6C:02 X509v3 Authority Key Identifier: keyid:63:E4:87:62:A8:93:08:09:67:73:D9:E1:C9:D1:A9:99:80:35:67:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:5e:ad:3c:c4:1d:73:4d:71:7b:43:43:50:06:a7:a0:5d:92: 05:80:89:40:dd:d9:95:da:6f:94:a9:e2:a2:96:a1:b9:2d:60: 8f:f5:85:cc:0d:c2:62:84:c2:2d:f8:ac:0b:fc:5c:de:60:8d: 74:e2:2f:bc:c2:6e:b7:04:6c:94:99:3c:cd:95:3e:c9:6b:45: ac:8b:e1:06:e0:13:8a:4d:d8:1f:57:6b:6b:34:a4:63:c5:82: 2e:6c:c2:05:ab:c9:92:23:dc:20:8f:87:51:14:18:05:30:67: ce:62:f7:63:4f:49:87:ab:bf:ca:0a:ed:0b:09:5e:6c:34:2d: 30:99:06:a4:08:04:6d:2b:63:1d:84:ac:2b:e5:9d:d4:d6:fb: 32:d0:27:1e:d4:73:64:b5:ee:cc:86:fa:7e:d3:43:d2:a5:93: 5d:55:ae:69:43:87:9d:f0:5e:6e:ef:e1:8e:65:5a:35:41:c5: 76:78:31:83:80:b8:15:68:ad:d7:2a:57:10:e2:80:0d:94:01: 61:12:52:f5:70:0b:66:92:80:ce:19:e6:3c:7f:7d:24:7b:60: 53:6b:92:bf:e6:e4:66:11:ed:e4:9f:95:f0:dc:1e:e4:03:2f: 68:d0:bf:35:ac:0e:2e:f6:8b:58:ba:f4:6b:b2:84:f2:b9:a6: dc:52:58:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdCNTgxMTAvBgNVBAUTKDYzRTQ4NzYyQTg5MzA4MDk2NzczRDlFMUM5RDFBOTk5 ODAzNTY3MEQwHhcNMjUwNjE0MjI1MjU3WhcNMjUwNjIxMjI1MjU3WjAYMRYwFAYD VQQDEw02ODRkZmQ0YS1lZTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2bMKqS9OVz187V2OTyjVQ6iExMw1drfD+DK+67VQIKpzCKK+cous8e+uLrVf 8QK0akr9UJyrntz+LohWxmN78fxbCATDtGkxtYfdH4t5bDLtGJXg7pCOUCZJ2MQt AFD98p5x3163Ip2LkcMLttOlw4B66nWt3o2/+TW0SoyTlw6l+22q/h05F9d2GLmb 5PbQVWM7w6Wu/xK5z/SGyQZFb5VK6uFS/oB54dmdelfGYdV4jy093SjdUEBIPMF/ RP7VU9CwaeW0p5yTq96n0xE0qYWwY+aREcJ25zJ+USZ/MnLTIRHo3R+5wSK6mTXe jf4HtMsrRE5z2y0648qNYcZYbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIIhZIPZ nCp6HhTPK0fqWBPvsGwCMB8GA1UdIwQYMBaAFGPkh2KokwgJZ3PZ4cnRqZmANWcN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0I1OC9BQUMyMUM3RUNB QjgxMUVCODQxNTUzMzZDNEY5QUUwMi9ZLVNIWXFpVENBbG5jOW5oeWRHcG1ZQTFa dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ktU0hZcWlUQ0FsbmM5bmh5ZEdwbVlBMVp3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0I1OC9BQUMyMUM3RUNBQjgxMUVCODQxNTUzMzZDNEY5QUUwMi9ZLVNIWXFpVENB bG5jOW5oeWRHcG1ZQTFadzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4Xq08xB1zTXF7Q0NQBqegXZIFgIlA3dmV2m+UqeKilqG5LWCP9YXM DcJihMIt+KwL/FzeYI104i+8wm63BGyUmTzNlT7Ja0Wsi+EG4BOKTdgfV2trNKRj xYIubMIFq8mSI9wgj4dRFBgFMGfOYvdjT0mHq7/KCu0LCV5sNC0wmQakCARtK2Md hKwr5Z3U1vsy0Cce1HNkte7Mhvp+00PSpZNdVa5pQ4ed8F5u7+GOZVo1QcV2eDGD gLgVaK3XKlcQ4oANlAFhElL1cAtmkoDOGeY8f30ke2BTa5K/5uRmEe3kn5Xw3B7k Ay9o0L81rA4u9otYuvRrsoTyuabcUlhu -----END CERTIFICATE-----Generated at Sun Jun 15 07:20:14 2025 by rpki-client