$ rpki-client -vvf rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.mft File: y-xvGDkFSHUhx5R7T3v9bLeNpHk.mft (raw, json) Hash identifier: seOyB5qAxcxqMzTFC2RXF7sy2oW8Fm2X0ikSqHdciVY= Subject key identifier: 23:9A:2B:90:9A:06:0C:82:80:65:7E:54:C8:6A:BB:DD:9A:6A:68:B0 Authority key identifier: CB:EC:6F:18:39:05:48:75:21:C7:94:7B:4F:7B:FD:6C:B7:8D:A4:79 Certificate issuer: /CN=A9159FAF/serialNumber=CBEC6F183905487521C7947B4F7BFD6CB78DA479 Certificate serial: 013B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-xvGDkFSHUhx5R7T3v9bLeNpHk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.mft Manifest number: 0138 Signing time: Sun 15 Jun 2025 03:39:30 +0000 Manifest this update: Sun 15 Jun 2025 03:39:29 +0000 Manifest next update: Sun 22 Jun 2025 03:39:29 +0000 Files and hashes: 1: y-xvGDkFSHUhx5R7T3v9bLeNpHk.crl (hash: KezXzh+NAfvrjS/LIYBSTzjO9Wz+B7QlsO2b/YqItGg=) 2: 045A4C2A6E4A11EEBADBDC4AC4F9AE02.roa (hash: FlD/q0JbSZGoP+GmyJYdclxWBTvflYZJ2XaDZhQ/500=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.crl rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-xvGDkFSHUhx5R7T3v9bLeNpHk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 315 (0x13b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159FAF, serialNumber=CBEC6F183905487521C7947B4F7BFD6CB78DA479 Validity Not Before: Jun 15 03:39:29 2025 GMT Not After : Jun 22 03:39:29 2025 GMT Subject: CN=684e4072-d65a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:7f:e8:af:c3:7a:ff:78:88:4f:f8:c0:3d:dc: 8a:d6:bc:8c:f3:e9:15:33:4f:8a:c1:f4:24:e1:39: fd:e0:54:ba:00:a5:f1:27:fb:88:8d:4a:cf:e1:b5: af:3c:e4:36:62:d5:ff:6e:2d:82:c9:37:b5:48:c7: 3f:a0:47:9e:bb:d1:ee:23:cf:ff:a7:27:a2:0f:34: bc:49:f1:c2:58:2f:e2:95:6f:ce:6d:ac:37:8d:40: e5:0a:34:1c:a4:09:af:fe:cd:46:c9:47:6f:b0:4a: de:bf:9a:83:3c:36:d6:0a:0e:2b:83:f0:a5:44:59: 93:25:7c:ea:3d:65:47:aa:80:b5:38:0e:3e:b0:94: 07:93:e6:38:b0:b3:1b:69:f4:c4:a2:a2:e4:a3:ff: 50:12:cf:fe:56:cc:19:bf:d5:88:1e:24:44:d0:3f: cd:49:d7:28:88:28:af:99:8c:82:16:60:14:e2:f7: ed:2f:12:9c:c0:d0:b5:0c:49:20:ac:ff:28:b1:dd: 74:8f:3b:70:1c:2c:3a:a4:3f:5f:cb:d3:d1:56:84: 97:b2:b6:ba:9a:7e:6e:bc:6b:66:42:fb:b5:ab:3a: 80:e0:6c:f2:44:06:d1:d3:c7:a9:49:05:14:45:c8: b2:e1:70:3a:95:bd:19:25:a5:f1:24:7e:a0:67:32: b1:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:9A:2B:90:9A:06:0C:82:80:65:7E:54:C8:6A:BB:DD:9A:6A:68:B0 X509v3 Authority Key Identifier: keyid:CB:EC:6F:18:39:05:48:75:21:C7:94:7B:4F:7B:FD:6C:B7:8D:A4:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-xvGDkFSHUhx5R7T3v9bLeNpHk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:0a:93:dd:dc:31:b0:5e:7e:ee:90:ac:e7:48:70:f5:69:08: e8:dd:c0:be:ea:55:03:1f:02:ef:e8:63:d3:48:94:f4:be:2a: e6:b5:49:8c:7e:93:7e:5e:39:d7:94:d3:83:e7:a8:d3:55:c4: 1b:df:8c:65:23:c7:f4:30:c6:c2:b5:b5:18:f9:57:a4:fc:22: c0:33:8c:1e:82:92:f4:63:fc:0a:5f:ac:c3:12:2e:f8:b6:0b: 1e:19:70:30:6e:4a:a3:c2:99:30:85:69:b9:16:32:1d:8f:7e: 55:6a:13:99:43:cc:50:c2:28:38:02:95:7d:55:78:25:2c:d1: 91:e3:4d:f3:61:40:9a:a8:34:4e:7c:65:23:ca:86:33:3b:80: c7:6b:8f:65:de:b8:e5:3c:c4:53:b1:6b:36:29:9f:b6:9e:60: 69:b1:4f:dd:eb:b0:ee:aa:0c:f5:3d:4d:ab:30:4b:04:04:85: 77:95:da:7c:ec:be:4b:f8:55:87:3c:0d:a3:56:f4:71:33:7f: 1a:8d:82:ac:d2:1a:60:a2:7b:0f:98:de:35:9f:ec:2e:24:37: 8f:69:e4:03:06:9b:23:0c:80:e7:9b:de:0e:4d:f6:a0:b9:82: 38:4e:98:10:c5:be:a6:db:ec:a5:56:3d:e3:40:d4:66:76:06: b2:50:c8:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTlGQUYxMTAvBgNVBAUTKENCRUM2RjE4MzkwNTQ4NzUyMUM3OTQ3QjRGN0JGRDZD Qjc4REE0NzkwHhcNMjUwNjE1MDMzOTI5WhcNMjUwNjIyMDMzOTI5WjAYMRYwFAYD VQQDEw02ODRlNDA3Mi1kNjVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3H/or8N6/3iIT/jAPdyK1ryM8+kVM0+KwfQk4Tn94FS6AKXxJ/uIjUrP4bWv POQ2YtX/bi2CyTe1SMc/oEeeu9HuI8//pyeiDzS8SfHCWC/ilW/Obaw3jUDlCjQc pAmv/s1GyUdvsErev5qDPDbWCg4rg/ClRFmTJXzqPWVHqoC1OA4+sJQHk+Y4sLMb afTEoqLko/9QEs/+VswZv9WIHiRE0D/NSdcoiCivmYyCFmAU4vftLxKcwNC1DEkg rP8osd10jztwHCw6pD9fy9PRVoSXsra6mn5uvGtmQvu1qzqA4GzyRAbR08epSQUU Rciy4XA6lb0ZJaXxJH6gZzKxUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCOaK5Ca BgyCgGV+VMhqu92aamiwMB8GA1UdIwQYMBaAFMvsbxg5BUh1IceUe097/Wy3jaR5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OUZBRi8xMjk1NzVDNDZF NDIxMUVFQUI0QzlDNkNDNEY5QUUwMi95LXh2R0RrRlNIVWh4NVI3VDN2OWJMZU5w SGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kteHZHRGtGU0hVaHg1UjdUM3Y5YkxlTnBIay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OUZBRi8xMjk1NzVDNDZFNDIxMUVFQUI0QzlDNkNDNEY5QUUwMi95LXh2R0RrRlNI VWh4NVI3VDN2OWJMZU5wSGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLCpPd3DGwXn7ukKznSHD1aQjo3cC+6lUDHwLv6GPTSJT0virmtUmM fpN+XjnXlNOD56jTVcQb34xlI8f0MMbCtbUY+Vek/CLAM4wegpL0Y/wKX6zDEi74 tgseGXAwbkqjwpkwhWm5FjIdj35VahOZQ8xQwig4ApV9VXglLNGR403zYUCaqDRO fGUjyoYzO4DHa49l3rjlPMRTsWs2KZ+2nmBpsU/d67Duqgz1PU2rMEsEBIV3ldp8 7L5L+FWHPA2jVvRxM38ajYKs0hpgonsPmN41n+wuJDePaeQDBpsjDIDnm94OTfag uYI4TpgQxb6m2+ylVj3jQNRmdgayUMhP -----END CERTIFICATE-----Generated at Sun Jun 15 06:09:49 2025 by rpki-client