$ rpki-client -vvf rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft File: y-PSoWWxlLlY7sO2qURXdyo6CSo.mft (raw, json) Hash identifier: gIfHlqdGJFefk3qO0WtO9L77YLc1hOBVnwjRqd/JgaU= Subject key identifier: AA:26:92:56:5D:3F:A0:4F:64:1C:82:29:15:C7:E1:F2:5B:EE:4C:30 Authority key identifier: CB:E3:D2:A1:65:B1:94:B9:58:EE:C3:B6:A9:44:57:77:2A:3A:09:2A Certificate issuer: /CN=A9154FE7/serialNumber=CBE3D2A165B194B958EEC3B6A94457772A3A092A Certificate serial: 0828 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft Manifest number: 081B Signing time: Thu 12 Jun 2025 20:33:57 +0000 Manifest this update: Thu 12 Jun 2025 20:33:56 +0000 Manifest next update: Thu 19 Jun 2025 20:33:56 +0000 Files and hashes: 1: y-PSoWWxlLlY7sO2qURXdyo6CSo.crl (hash: 8/7KcZMoavT2AuWO1McZ1IVT+IuL2VVaU2fMjEeM6aM=) 2: 4B3AC7DC5FC811ED869A6956C4F9AE02.roa (hash: hwrYZn+i2OUNCmUoK3ena1siLJOV1HVO2m5EjPVb3kw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.crl rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 20:33:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2088 (0x828) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154FE7, serialNumber=CBE3D2A165B194B958EEC3B6A94457772A3A092A Validity Not Before: Jun 12 20:33:56 2025 GMT Not After : Jun 19 20:33:56 2025 GMT Subject: CN=684b39b5-0d71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:fc:a8:a1:22:18:b8:22:1e:39:3c:68:cf:93: e3:52:8b:68:8d:cf:59:ff:b0:c0:00:65:3b:c0:19: 43:27:95:1f:c8:12:2c:59:84:85:af:f8:67:73:91: 14:f4:58:29:f6:31:5c:f1:dc:e4:52:09:ca:79:54: 8e:36:c3:ec:2c:4b:09:f0:be:4c:5e:16:0f:33:2c: 82:dd:5d:0d:73:2c:a2:79:d2:0e:12:df:ac:a1:fd: 38:56:f0:eb:79:2c:53:1a:0c:4d:76:87:98:a5:50: 00:eb:79:45:42:b7:4a:57:fd:26:0c:9b:a4:92:6e: 49:a5:f9:5c:af:57:8d:cf:80:fa:db:4d:92:21:d7: 97:0d:22:ba:28:a3:0a:2d:e8:42:26:00:60:51:f7: 0f:ec:72:a5:f7:54:9c:db:58:59:7b:74:45:a0:63: d0:34:ed:9d:9e:b4:01:dd:31:2d:c3:08:64:8e:ad: 7a:18:05:7e:5e:05:d2:63:58:91:0c:33:7a:2b:46: f1:6f:38:44:b7:86:b7:7f:66:a1:61:93:45:8e:8e: 7c:74:5a:43:27:0c:9f:bc:93:3d:9c:61:98:23:de: 9c:d7:3d:81:5b:69:3d:17:cf:75:62:b6:27:2f:ed: 30:1a:78:bc:2c:da:b3:8b:5b:d1:8d:01:b2:36:93: 35:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:26:92:56:5D:3F:A0:4F:64:1C:82:29:15:C7:E1:F2:5B:EE:4C:30 X509v3 Authority Key Identifier: keyid:CB:E3:D2:A1:65:B1:94:B9:58:EE:C3:B6:A9:44:57:77:2A:3A:09:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:00:b8:0d:0a:16:08:ab:7d:d9:a1:3a:b7:66:80:d2:e3:e3: b7:36:38:1e:8a:64:66:5d:b7:4e:a1:11:b1:77:e6:55:a3:d4: 33:20:89:82:9c:35:18:d6:e7:67:70:ea:fb:9d:5c:c4:29:18: fd:96:e4:bb:92:77:92:77:34:a8:e5:6c:a2:c7:7c:88:8d:d7: b4:1d:73:2b:7e:b5:1b:87:48:ff:1b:55:8b:67:44:b3:e3:e2: 36:ae:84:9c:5a:3e:d1:5b:ec:88:d0:ee:c1:26:a9:c6:68:5e: ba:06:92:73:00:fd:a0:bf:87:9b:11:d1:09:1b:86:c0:13:96: 94:c9:d2:42:fe:2b:d4:61:3f:74:45:d5:c4:4f:b8:bf:0d:62: 9b:c0:59:6e:54:04:04:71:9c:f7:b9:7f:2f:21:e4:d9:d9:78: 93:8d:27:9a:26:8f:eb:6c:56:62:73:ca:f0:78:d4:5e:71:f4: 15:cb:e9:79:b3:5d:d1:7c:87:44:6f:6a:80:45:db:c8:71:74: 77:6a:55:78:bd:b7:90:e3:72:46:d9:2d:65:42:a7:f6:ac:d5: 10:31:2a:98:f0:54:0b:53:b9:72:06:ac:2a:92:20:dd:c7:0d: 68:93:36:7e:e4:31:ce:62:a1:4d:53:b7:8a:f8:90:f9:59:4b: fb:61:7a:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRGRTcxMTAvBgNVBAUTKENCRTNEMkExNjVCMTk0Qjk1OEVFQzNCNkE5NDQ1Nzc3 MkEzQTA5MkEwHhcNMjUwNjEyMjAzMzU2WhcNMjUwNjE5MjAzMzU2WjAYMRYwFAYD VQQDEw02ODRiMzliNS0wZDcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvfyooSIYuCIeOTxoz5PjUotojc9Z/7DAAGU7wBlDJ5UfyBIsWYSFr/hnc5EU 9Fgp9jFc8dzkUgnKeVSONsPsLEsJ8L5MXhYPMyyC3V0NcyyiedIOEt+sof04VvDr eSxTGgxNdoeYpVAA63lFQrdKV/0mDJukkm5Jpflcr1eNz4D6202SIdeXDSK6KKMK LehCJgBgUfcP7HKl91Sc21hZe3RFoGPQNO2dnrQB3TEtwwhkjq16GAV+XgXSY1iR DDN6K0bxbzhEt4a3f2ahYZNFjo58dFpDJwyfvJM9nGGYI96c1z2BW2k9F891YrYn L+0wGni8LNqzi1vRjQGyNpM1SwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKomklZd P6BPZByCKRXH4fJb7kwwMB8GA1UdIwQYMBaAFMvj0qFlsZS5WO7DtqlEV3cqOgkq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEZFNy81QTJEODlFQURC N0QxMUVBQkNGM0VDM0VDNEY5QUUwMi95LVBTb1dXeGxMbFk3c08ycVVSWGR5bzZD U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ktUFNvV1d4bExsWTdzTzJxVVJYZHlvNkNTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEZFNy81QTJEODlFQURCN0QxMUVBQkNGM0VDM0VDNEY5QUUwMi95LVBTb1dXeGxM bFk3c08ycVVSWGR5bzZDU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwALgNChYIq33ZoTq3ZoDS4+O3NjgeimRmXbdOoRGxd+ZVo9QzIImC nDUY1udncOr7nVzEKRj9luS7kneSdzSo5Wyix3yIjde0HXMrfrUbh0j/G1WLZ0Sz 4+I2roScWj7RW+yI0O7BJqnGaF66BpJzAP2gv4ebEdEJG4bAE5aUydJC/ivUYT90 RdXET7i/DWKbwFluVAQEcZz3uX8vIeTZ2XiTjSeaJo/rbFZic8rweNRecfQVy+l5 s13RfIdEb2qARdvIcXR3alV4vbeQ43JG2S1lQqf2rNUQMSqY8FQLU7lyBqwqkiDd xw1okzZ+5DHOYqFNU7eK+JD5WUv7YXor -----END CERTIFICATE-----Generated at Sat Jun 14 18:52:21 2025 by rpki-client