$ rpki-client -vvf rpki.apnic.net/member_repository/A9153766/DB7CD884167111EE81196247C4F9AE02/yVDnh1o97uCC2cxQNQC_3ndwhuE.mft File: yVDnh1o97uCC2cxQNQC_3ndwhuE.mft (raw, json) Hash identifier: kt3U9qGLn0vtzZJW1Bb6PBTFfc9qAKtSA3YrLGHJIAc= Subject key identifier: CB:DB:2F:62:6A:B0:2A:E8:C2:6C:61:12:4F:50:07:94:6B:C6:1D:4F Authority key identifier: C9:50:E7:87:5A:3D:EE:E0:82:D9:CC:50:35:00:BF:DE:77:70:86:E1 Certificate issuer: /CN=A9153766/serialNumber=C950E7875A3DEEE082D9CC503500BFDE777086E1 Certificate serial: 0170 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yVDnh1o97uCC2cxQNQC_3ndwhuE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153766/DB7CD884167111EE81196247C4F9AE02/yVDnh1o97uCC2cxQNQC_3ndwhuE.mft Manifest number: 0170 Signing time: Thu 19 Jun 2025 03:13:28 +0000 Manifest this update: Thu 19 Jun 2025 03:13:27 +0000 Manifest next update: Thu 26 Jun 2025 03:13:27 +0000 Files and hashes: 1: yVDnh1o97uCC2cxQNQC_3ndwhuE.crl (hash: Wws3sqINURvkrUNlDJGsuNO/RTdl5pDhGD/zqO4z0x4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153766/DB7CD884167111EE81196247C4F9AE02/yVDnh1o97uCC2cxQNQC_3ndwhuE.crl rsync://rpki.apnic.net/member_repository/A9153766/DB7CD884167111EE81196247C4F9AE02/yVDnh1o97uCC2cxQNQC_3ndwhuE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yVDnh1o97uCC2cxQNQC_3ndwhuE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 03:13:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 368 (0x170) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153766, serialNumber=C950E7875A3DEEE082D9CC503500BFDE777086E1 Validity Not Before: Jun 19 03:13:27 2025 GMT Not After : Jun 26 03:13:27 2025 GMT Subject: CN=68538058-5610 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:04:77:dd:0d:5e:8a:eb:f4:30:4b:49:a3:03: ee:19:36:f4:15:78:a3:f7:50:72:b9:a4:94:c3:f7: 13:e1:ca:32:5d:02:36:fe:53:13:16:e3:f8:3d:1d: b5:78:3f:61:d3:5b:b9:ee:7f:f6:ae:99:83:33:1b: fd:4e:3e:4c:a7:06:72:5c:4c:8b:bf:5e:70:92:8a: 3b:68:9d:11:ed:9a:1f:7c:b9:a3:37:2a:2a:58:e9: e7:11:f5:2b:10:03:fd:ab:7d:f1:3c:a1:36:2a:bf: b7:12:b5:3d:9e:d3:cc:09:35:d5:b5:bc:01:1c:7c: f3:57:6e:f6:9b:5e:17:12:29:64:2f:8e:e8:b0:ca: 3b:b5:c9:81:65:3e:1f:6d:bb:94:b2:b5:36:9e:cd: 42:60:00:4b:ab:d6:56:35:41:73:34:e7:4d:45:3f: 24:aa:a8:d2:13:cf:53:0a:67:c9:5b:20:a9:44:d6: 58:5d:79:c6:07:ae:c5:b9:43:66:d1:42:34:5e:ae: 1e:32:45:23:3a:57:06:fb:f3:52:0e:73:24:6c:77: 3a:6d:ca:1c:bd:fd:6b:29:bc:01:63:4b:42:1b:50: 7e:70:31:44:4a:e1:91:1f:da:dd:a8:6c:2f:54:2e: 88:22:26:91:b2:10:4c:42:97:1d:19:83:f2:fe:7e: 2c:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:DB:2F:62:6A:B0:2A:E8:C2:6C:61:12:4F:50:07:94:6B:C6:1D:4F X509v3 Authority Key Identifier: keyid:C9:50:E7:87:5A:3D:EE:E0:82:D9:CC:50:35:00:BF:DE:77:70:86:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153766/DB7CD884167111EE81196247C4F9AE02/yVDnh1o97uCC2cxQNQC_3ndwhuE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yVDnh1o97uCC2cxQNQC_3ndwhuE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153766/DB7CD884167111EE81196247C4F9AE02/yVDnh1o97uCC2cxQNQC_3ndwhuE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:3f:06:de:e4:46:27:6d:1d:35:9f:fa:c8:0d:dc:f0:79:1e: 72:ff:da:80:e5:77:32:09:b4:a5:ba:5b:56:5d:d9:fa:5d:73: 4d:88:64:19:e8:61:5c:ef:36:1e:72:93:a0:9f:a8:f1:c9:3b: c6:96:29:56:0e:37:26:f0:40:ef:9d:77:c0:5d:a8:b2:42:64: 6e:94:fe:31:87:bc:80:bc:f4:2f:e6:7f:76:cd:c6:79:9a:b7: 5f:8d:e9:77:e1:e2:ce:a4:96:6e:45:f8:21:19:e7:7e:32:a6: 4a:2c:3b:fc:f3:4a:71:72:89:0f:43:cf:3e:c0:ef:f9:d6:9a: cd:63:d0:b6:45:a2:44:5b:de:5e:23:04:66:44:eb:ac:63:18: 79:0d:11:13:f7:31:37:31:30:e5:b3:ac:1e:b7:12:ba:98:2b: 73:52:64:0e:1d:15:c3:8f:b3:ae:aa:6f:12:00:28:d9:08:f9: 1e:e9:b5:72:dc:bf:2e:4e:e0:70:3f:73:14:74:21:e6:2c:2a: 39:9d:d9:11:fc:df:f5:f0:3a:14:ab:84:9d:46:03:7d:c8:cf: 72:62:2f:f9:0e:70:56:f8:4e:06:8e:35:c7:d3:87:e1:46:6a: f9:4e:c8:63:89:19:03:7f:cb:82:cb:19:6b:08:ea:a7:42:74: 97:be:2f:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM3NjYxMTAvBgNVBAUTKEM5NTBFNzg3NUEzREVFRTA4MkQ5Q0M1MDM1MDBCRkRF Nzc3MDg2RTEwHhcNMjUwNjE5MDMxMzI3WhcNMjUwNjI2MDMxMzI3WjAYMRYwFAYD VQQDEw02ODUzODA1OC01NjEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqQR33Q1eiuv0MEtJowPuGTb0FXij91ByuaSUw/cT4coyXQI2/lMTFuP4PR21 eD9h01u57n/2rpmDMxv9Tj5MpwZyXEyLv15wkoo7aJ0R7ZoffLmjNyoqWOnnEfUr EAP9q33xPKE2Kr+3ErU9ntPMCTXVtbwBHHzzV272m14XEilkL47osMo7tcmBZT4f bbuUsrU2ns1CYABLq9ZWNUFzNOdNRT8kqqjSE89TCmfJWyCpRNZYXXnGB67FuUNm 0UI0Xq4eMkUjOlcG+/NSDnMkbHc6bcocvf1rKbwBY0tCG1B+cDFESuGRH9rdqGwv VC6IIiaRshBMQpcdGYPy/n4sZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMvbL2Jq sCrowmxhEk9QB5Rrxh1PMB8GA1UdIwQYMBaAFMlQ54daPe7ggtnMUDUAv953cIbh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Mzc2Ni9EQjdDRDg4NDE2 NzExMUVFODExOTYyNDdDNEY5QUUwMi95VkRuaDFvOTd1Q0MyY3hRTlFDXzNuZHdo dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lWRG5oMW85N3VDQzJjeFFOUUNfM25kd2h1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Mzc2Ni9EQjdDRDg4NDE2NzExMUVFODExOTYyNDdDNEY5QUUwMi95VkRuaDFvOTd1 Q0MyY3hRTlFDXzNuZHdodUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDFPwbe5EYnbR01n/rIDdzweR5y/9qA5XcyCbSlultWXdn6XXNNiGQZ 6GFc7zYecpOgn6jxyTvGlilWDjcm8EDvnXfAXaiyQmRulP4xh7yAvPQv5n92zcZ5 mrdfjel34eLOpJZuRfghGed+MqZKLDv880pxcokPQ88+wO/51prNY9C2RaJEW95e IwRmROusYxh5DRET9zE3MTDls6wetxK6mCtzUmQOHRXDj7Ouqm8SACjZCPke6bVy 3L8uTuBwP3MUdCHmLCo5ndkR/N/18DoUq4SdRgN9yM9yYi/5DnBW+E4GjjXH04fh Rmr5TshjiRkDf8uCyxlrCOqnQnSXvi/i -----END CERTIFICATE-----Generated at Thu Jun 19 15:02:02 2025 by rpki-client