$ rpki-client -vvf rpki.apnic.net/member_repository/A9148488/5D26834A838F11EAB7031862C4F9AE02/YHbFE51Mz968pEoUvbcxaIj6Y0Q.mft File: YHbFE51Mz968pEoUvbcxaIj6Y0Q.mft (raw, json) Hash identifier: 2Vq0LXIavcIY2drHiLO718XttWdgJnuBR54N9QIMG5k= Subject key identifier: 37:89:F5:81:0F:47:B7:98:B4:E8:12:01:A7:E7:FE:B1:9B:84:5E:68 Authority key identifier: 60:76:C5:13:9D:4C:CF:DE:BC:A4:4A:14:BD:B7:31:68:88:FA:63:44 Certificate issuer: /CN=A9148488/serialNumber=6076C5139D4CCFDEBCA44A14BDB7316888FA6344 Certificate serial: 09C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YHbFE51Mz968pEoUvbcxaIj6Y0Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148488/5D26834A838F11EAB7031862C4F9AE02/YHbFE51Mz968pEoUvbcxaIj6Y0Q.mft Manifest number: 09BD Signing time: Thu 12 Jun 2025 19:46:19 +0000 Manifest this update: Thu 12 Jun 2025 19:46:19 +0000 Manifest next update: Thu 19 Jun 2025 19:46:19 +0000 Files and hashes: 1: YHbFE51Mz968pEoUvbcxaIj6Y0Q.crl (hash: Y4YaaPuyUaG4MuxDToVe9BBhggLevCsdRXQerAOwfiE=) 2: 5C8929C8839011EAB5B82263C4F9AE02.roa (hash: Jr5A5EFDHOtjVbEZUPlRHjoDRI+w8P0c18JoA/Eyebg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148488/5D26834A838F11EAB7031862C4F9AE02/YHbFE51Mz968pEoUvbcxaIj6Y0Q.crl rsync://rpki.apnic.net/member_repository/A9148488/5D26834A838F11EAB7031862C4F9AE02/YHbFE51Mz968pEoUvbcxaIj6Y0Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YHbFE51Mz968pEoUvbcxaIj6Y0Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 19:46:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2499 (0x9c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148488, serialNumber=6076C5139D4CCFDEBCA44A14BDB7316888FA6344 Validity Not Before: Jun 12 19:46:19 2025 GMT Not After : Jun 19 19:46:19 2025 GMT Subject: CN=684b2e8b-3274 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:7f:94:68:39:f3:1e:a0:04:e9:63:75:18:59: ed:7b:4d:7d:8c:96:d6:57:56:8c:cd:50:27:04:ad: db:6c:c7:e1:69:e3:38:9d:96:c9:74:bc:ca:b2:54: 12:a0:b6:94:59:1a:b6:c5:81:56:73:c8:f3:ad:ee: 41:79:4c:41:1d:2e:f4:7e:12:a7:1e:f5:08:7e:3e: 89:75:66:00:61:3b:6f:c6:72:5e:68:65:27:fe:01: 95:23:da:a3:9c:5b:bf:df:80:6b:26:93:6b:de:fe: 49:03:0d:27:9a:89:eb:5e:12:77:84:db:e7:d6:09: 2a:c0:b3:a2:30:cb:ea:fb:dc:7e:8b:c7:88:85:0e: ad:bb:a3:a0:49:15:8c:f8:fb:53:5a:ab:4e:af:74: f3:ae:16:2a:c1:83:df:65:5c:21:8f:1f:20:28:3b: 9c:4f:35:77:55:1d:7e:8b:33:ee:5c:1b:e0:a8:0e: 93:d2:40:3b:7e:ff:b9:45:d8:ec:99:fa:6c:39:8f: 23:c4:f1:e2:ab:24:78:26:80:1a:40:20:17:f0:fb: 81:b9:b3:9d:78:b5:da:15:b1:81:bb:aa:c0:2f:b5: 84:74:26:9a:67:51:6e:25:4d:77:2d:4b:5a:c4:ff: 09:8e:c0:4b:64:a1:98:a0:26:18:81:dd:d2:da:6a: de:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:89:F5:81:0F:47:B7:98:B4:E8:12:01:A7:E7:FE:B1:9B:84:5E:68 X509v3 Authority Key Identifier: keyid:60:76:C5:13:9D:4C:CF:DE:BC:A4:4A:14:BD:B7:31:68:88:FA:63:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148488/5D26834A838F11EAB7031862C4F9AE02/YHbFE51Mz968pEoUvbcxaIj6Y0Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YHbFE51Mz968pEoUvbcxaIj6Y0Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148488/5D26834A838F11EAB7031862C4F9AE02/YHbFE51Mz968pEoUvbcxaIj6Y0Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:3e:f6:c6:80:e9:cb:6c:7d:1d:2c:3b:55:b1:ed:1f:68:d1: 76:00:6d:06:3a:5f:49:61:67:08:59:2d:d4:f0:ed:55:46:16: cc:ba:91:b0:06:e7:c4:64:50:c8:c5:0d:8a:c8:07:60:6b:c3: 5c:2e:0d:2f:69:95:4f:e0:f4:0d:f0:41:1d:9c:8c:8b:e7:3f: 60:86:9c:fa:79:ea:f6:49:e4:fd:d0:37:91:cd:27:e2:a6:3e: 57:c1:20:25:23:4c:02:df:0c:f7:68:df:01:88:a1:e2:a8:a1: 88:0c:00:5a:c5:ad:5d:5e:2c:53:42:2a:73:97:30:af:f2:bd: 63:78:f1:1a:6d:31:24:c0:e0:b8:7c:a7:b0:b8:cd:d2:06:00: 6c:62:16:37:56:47:16:c2:e6:3e:cc:8e:9b:5b:50:04:38:ec: ee:3c:ef:27:5c:72:df:51:69:66:8d:c1:dc:3b:b7:f4:eb:e2: 70:b1:b2:a5:e6:02:e6:9c:d3:36:7f:4c:ae:87:ad:a8:be:ac: e4:97:28:eb:f8:dd:17:04:14:27:d2:e7:5b:e8:2d:b2:ff:32: e3:c7:40:3a:b5:7f:77:17:28:d0:a2:c4:c5:f5:80:77:bb:c9: 03:8a:b8:b4:93:16:d5:f6:62:a8:c6:69:87:bb:d4:45:44:e5: 7e:7b:90:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCcMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDg0ODgxMTAvBgNVBAUTKDYwNzZDNTEzOUQ0Q0NGREVCQ0E0NEExNEJEQjczMTY4 ODhGQTYzNDQwHhcNMjUwNjEyMTk0NjE5WhcNMjUwNjE5MTk0NjE5WjAYMRYwFAYD VQQDEw02ODRiMmU4Yi0zMjc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnH+UaDnzHqAE6WN1GFnte019jJbWV1aMzVAnBK3bbMfhaeM4nZbJdLzKslQS oLaUWRq2xYFWc8jzre5BeUxBHS70fhKnHvUIfj6JdWYAYTtvxnJeaGUn/gGVI9qj nFu/34BrJpNr3v5JAw0nmonrXhJ3hNvn1gkqwLOiMMvq+9x+i8eIhQ6tu6OgSRWM +PtTWqtOr3TzrhYqwYPfZVwhjx8gKDucTzV3VR1+izPuXBvgqA6T0kA7fv+5Rdjs mfpsOY8jxPHiqyR4JoAaQCAX8PuBubOdeLXaFbGBu6rAL7WEdCaaZ1FuJU13LUta xP8JjsBLZKGYoCYYgd3S2mreFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDeJ9YEP R7eYtOgSAafn/rGbhF5oMB8GA1UdIwQYMBaAFGB2xROdTM/evKRKFL23MWiI+mNE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0ODQ4OC81RDI2ODM0QTgz OEYxMUVBQjcwMzE4NjJDNEY5QUUwMi9ZSGJGRTUxTXo5NjhwRW9VdmJjeGFJajZZ MFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lIYkZFNTFNejk2OHBFb1V2YmN4YUlqNlkwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 ODQ4OC81RDI2ODM0QTgzOEYxMUVBQjcwMzE4NjJDNEY5QUUwMi9ZSGJGRTUxTXo5 NjhwRW9VdmJjeGFJajZZMFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4PvbGgOnLbH0dLDtVse0faNF2AG0GOl9JYWcIWS3U8O1VRhbMupGw BufEZFDIxQ2KyAdga8NcLg0vaZVP4PQN8EEdnIyL5z9ghpz6eer2SeT90DeRzSfi pj5XwSAlI0wC3wz3aN8BiKHiqKGIDABaxa1dXixTQipzlzCv8r1jePEabTEkwOC4 fKewuM3SBgBsYhY3VkcWwuY+zI6bW1AEOOzuPO8nXHLfUWlmjcHcO7f06+JwsbKl 5gLmnNM2f0yuh62ovqzklyjr+N0XBBQn0udb6C2y/zLjx0A6tX93FyjQosTF9YB3 u8kDiri0kxbV9mKoxmmHu9RFROV+e5Cl -----END CERTIFICATE-----Generated at Sat Jun 14 19:37:56 2025 by rpki-client