$ rpki-client -vvf rpki.apnic.net/member_repository/A9162CCE/B755DA28B99411EB93F8265DC4F9AE02/YfRdxU9H4lL6xlUt27OWWFTGyAE.mft File: YfRdxU9H4lL6xlUt27OWWFTGyAE.mft (raw, json) Hash identifier: klhNmCEME1TpWGMzoaosg+NMqXN5pSk3xgo9BsmNCII= Subject key identifier: 66:7F:8C:42:BC:47:A3:BB:97:9C:EB:E1:EF:2A:A1:50:1A:97:7A:0A Authority key identifier: 61:F4:5D:C5:4F:47:E2:52:FA:C6:55:2D:DB:B3:96:58:54:C6:C8:01 Certificate issuer: /CN=A9162CCE/serialNumber=61F45DC54F47E252FAC6552DDBB3965854C6C801 Certificate serial: 05EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfRdxU9H4lL6xlUt27OWWFTGyAE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9162CCE/B755DA28B99411EB93F8265DC4F9AE02/YfRdxU9H4lL6xlUt27OWWFTGyAE.mft Manifest number: 05E3 Signing time: Sat 14 Jun 2025 22:43:15 +0000 Manifest this update: Sat 14 Jun 2025 22:43:15 +0000 Manifest next update: Sat 21 Jun 2025 22:43:15 +0000 Files and hashes: 1: YfRdxU9H4lL6xlUt27OWWFTGyAE.crl (hash: I7ulk7urCujE2Be31uCQNn21/Q2nLrtKd/xbEwj5KoI=) 2: 6D5F7C74B99611EBB5E9AE5EC4F9AE02.roa (hash: bUC1i6U8bBn9UfWkY4L4fN9q3qdDlIRzcJbNDpJZl6I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9162CCE/B755DA28B99411EB93F8265DC4F9AE02/YfRdxU9H4lL6xlUt27OWWFTGyAE.crl rsync://rpki.apnic.net/member_repository/A9162CCE/B755DA28B99411EB93F8265DC4F9AE02/YfRdxU9H4lL6xlUt27OWWFTGyAE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfRdxU9H4lL6xlUt27OWWFTGyAE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 22:43:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1514 (0x5ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162CCE, serialNumber=61F45DC54F47E252FAC6552DDBB3965854C6C801 Validity Not Before: Jun 14 22:43:15 2025 GMT Not After : Jun 21 22:43:15 2025 GMT Subject: CN=684dfb03-b225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:61:52:38:a5:b6:0e:10:80:36:dc:fd:e0:e1: 36:28:f0:f3:08:af:dc:9b:67:08:f5:71:bc:94:f4: 0d:f2:fd:62:71:a9:3e:00:9d:8b:3e:c7:91:23:08: 0e:27:81:fb:06:d0:43:f0:21:22:59:77:2d:ea:b4: a9:28:da:10:99:d2:82:d0:4b:a3:cc:69:86:ad:72: 8a:b5:09:a2:81:b4:b6:e8:bb:39:85:d8:fe:c8:69: cc:bc:cd:ab:13:a0:aa:a7:ed:a6:74:e1:09:37:32: 36:dd:6b:f7:21:29:52:f4:28:ed:58:27:e4:e5:c1: eb:71:6b:1c:fb:41:2f:f3:a0:00:1b:61:d2:3b:73: 24:85:75:d4:1c:bb:59:31:22:a7:6d:49:73:cb:5c: 6b:6f:9a:be:2a:6b:f6:f7:d5:a3:f9:34:13:a0:4c: 64:40:2a:a5:77:04:cd:f3:d3:8a:1b:50:4c:92:2c: 17:fc:e2:f1:ab:51:b6:c8:53:49:87:7d:22:72:2c: bf:3e:94:6f:25:a6:5c:e3:8a:03:3f:83:3d:20:e8: 6e:d3:84:ce:87:85:56:c1:5f:b9:4c:94:00:a2:e7: bf:73:d7:f1:e6:2b:de:d8:05:5f:6f:e4:c3:6e:19: 27:fe:53:f3:03:3a:f1:c1:82:1c:b7:bf:87:c1:d6: 90:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:7F:8C:42:BC:47:A3:BB:97:9C:EB:E1:EF:2A:A1:50:1A:97:7A:0A X509v3 Authority Key Identifier: keyid:61:F4:5D:C5:4F:47:E2:52:FA:C6:55:2D:DB:B3:96:58:54:C6:C8:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9162CCE/B755DA28B99411EB93F8265DC4F9AE02/YfRdxU9H4lL6xlUt27OWWFTGyAE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfRdxU9H4lL6xlUt27OWWFTGyAE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9162CCE/B755DA28B99411EB93F8265DC4F9AE02/YfRdxU9H4lL6xlUt27OWWFTGyAE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:8b:9e:78:86:f5:99:19:bd:9a:8b:aa:94:3c:41:a5:72:70: e0:9f:81:65:79:64:dd:86:c1:5a:ba:4c:a5:5f:ad:03:49:74: a3:62:a4:0e:4c:a9:5f:7c:7c:85:3a:3b:c8:5c:b7:8e:91:f6: d3:6c:f5:c1:0e:b9:e6:bf:cb:c5:22:c4:62:21:6f:d0:34:79: 61:54:d1:ac:9b:6f:7a:85:2c:10:22:34:6f:42:89:ab:dd:8d: d2:fe:de:7e:0f:5d:ac:28:24:6f:d6:94:2d:01:13:13:5a:d6: 04:91:d2:c5:15:00:eb:00:32:60:ef:4c:e1:5b:76:c0:0f:88: f5:73:f5:5b:0e:59:c8:26:6c:54:1e:b2:a5:ba:12:d9:02:3c: 44:c4:36:b9:21:43:31:3c:fa:04:28:f7:f7:0b:be:5e:c9:ba: 59:be:fb:d3:52:d5:4f:32:1a:8b:3e:90:a2:ca:a3:23:01:ea: ba:9b:fd:f2:5a:2d:1b:04:69:64:f5:3d:25:62:a1:f8:5f:36: 4e:b9:61:f9:a0:4c:eb:09:c9:db:fb:b4:d1:15:85:9d:b2:48: 45:7d:fe:e7:d9:d0:4a:35:df:bf:01:45:67:6c:a0:37:58:8a: bf:97:8c:af:5d:b7:0a:f6:cf:cf:97:e1:65:ca:97:48:8a:e0: 2a:7b:4d:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjJDQ0UxMTAvBgNVBAUTKDYxRjQ1REM1NEY0N0UyNTJGQUM2NTUyRERCQjM5NjU4 NTRDNkM4MDEwHhcNMjUwNjE0MjI0MzE1WhcNMjUwNjIxMjI0MzE1WjAYMRYwFAYD VQQDEw02ODRkZmIwMy1iMjI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA02FSOKW2DhCANtz94OE2KPDzCK/cm2cI9XG8lPQN8v1icak+AJ2LPseRIwgO J4H7BtBD8CEiWXct6rSpKNoQmdKC0EujzGmGrXKKtQmigbS26Ls5hdj+yGnMvM2r E6Cqp+2mdOEJNzI23Wv3ISlS9CjtWCfk5cHrcWsc+0Ev86AAG2HSO3MkhXXUHLtZ MSKnbUlzy1xrb5q+Kmv299Wj+TQToExkQCqldwTN89OKG1BMkiwX/OLxq1G2yFNJ h30iciy/PpRvJaZc44oDP4M9IOhu04TOh4VWwV+5TJQAoue/c9fx5ive2AVfb+TD bhkn/lPzAzrxwYIct7+HwdaQ4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGZ/jEK8 R6O7l5zr4e8qoVAal3oKMB8GA1UdIwQYMBaAFGH0XcVPR+JS+sZVLduzllhUxsgB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MkNDRS9CNzU1REEyOEI5 OTQxMUVCOTNGODI2NURDNEY5QUUwMi9ZZlJkeFU5SDRsTDZ4bFV0MjdPV1dGVEd5 QUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lmUmR4VTlINGxMNnhsVXQyN09XV0ZUR3lBRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MkNDRS9CNzU1REEyOEI5OTQxMUVCOTNGODI2NURDNEY5QUUwMi9ZZlJkeFU5SDRs TDZ4bFV0MjdPV1dGVEd5QUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhi554hvWZGb2ai6qUPEGlcnDgn4FleWTdhsFaukylX60DSXSjYqQO TKlffHyFOjvIXLeOkfbTbPXBDrnmv8vFIsRiIW/QNHlhVNGsm296hSwQIjRvQomr 3Y3S/t5+D12sKCRv1pQtARMTWtYEkdLFFQDrADJg70zhW3bAD4j1c/VbDlnIJmxU HrKluhLZAjxExDa5IUMxPPoEKPf3C75eybpZvvvTUtVPMhqLPpCiyqMjAeq6m/3y Wi0bBGlk9T0lYqH4XzZOuWH5oEzrCcnb+7TRFYWdskhFff7n2dBKNd+/AUVnbKA3 WIq/l4yvXbcK9s/Pl+FlypdIiuAqe00e -----END CERTIFICATE-----Generated at Sun Jun 15 05:50:52 2025 by rpki-client