$ rpki-client -vvf rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/y2bgNeLweFj09ztHjc2FpjakJQo.mft File: y2bgNeLweFj09ztHjc2FpjakJQo.mft (raw, json) Hash identifier: W/1ZArRjvew/+/4kZAyBAqN4S7LVSTe3JOZMivbz7IM= Subject key identifier: FF:EB:C6:32:C9:21:E7:F2:DD:04:21:18:B2:06:61:9B:94:A0:79:74 Authority key identifier: CB:66:E0:35:E2:F0:78:58:F4:F7:3B:47:8D:CD:85:A6:36:A4:25:0A Certificate issuer: /CN=A9169C00/serialNumber=CB66E035E2F07858F4F73B478DCD85A636A4250A Certificate serial: E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2bgNeLweFj09ztHjc2FpjakJQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/y2bgNeLweFj09ztHjc2FpjakJQo.mft Manifest number: D5 Signing time: Sun 15 Jun 2025 04:53:16 +0000 Manifest this update: Sun 15 Jun 2025 04:53:15 +0000 Manifest next update: Sun 22 Jun 2025 04:53:15 +0000 Files and hashes: 1: y2bgNeLweFj09ztHjc2FpjakJQo.crl (hash: HMW2EpBwQ4soa1CCX8QFjfUch3E9mrtWF8ksnQKXQ+c=) 2: 851515FC1C8711EF964ED80AC4F9AE02.roa (hash: ZVnEYOHXINGZEw1RnF1Uj9Pw7AnbBUgkIn8eDQrA8T4=) 3: 82D8082A292611EF875A5C36C4F9AE02.roa (hash: LUt9DJS6Jpbs8PDzvIpOLhLuEq85uifRo0wnGTYcGuc=) 4: 24D519F226FA11F0B737393FC4F9AE02.roa (hash: 08jGNnEflD8e5x3Cs8u4vH+jCRzHFAlUOBfwuUSSNb0=) 5: AF27640226FA11F0B0383240C4F9AE02.roa (hash: 1i0d6pr2ELd59qaQmu9345pITiiNAhlVL8hxc+i1TcY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/y2bgNeLweFj09ztHjc2FpjakJQo.crl rsync://rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/y2bgNeLweFj09ztHjc2FpjakJQo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2bgNeLweFj09ztHjc2FpjakJQo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 225 (0xe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169C00, serialNumber=CB66E035E2F07858F4F73B478DCD85A636A4250A Validity Not Before: Jun 15 04:53:15 2025 GMT Not After : Jun 22 04:53:15 2025 GMT Subject: CN=684e51bb-0531 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c8:de:2a:41:0b:2c:b4:d0:cb:a4:25:a6:5b: b6:65:56:17:74:69:fa:c0:34:13:f9:8e:41:1d:f0: 45:42:15:16:be:93:73:97:c7:04:55:dc:2a:44:e7: fa:f7:55:7b:1f:11:b3:c8:9f:45:cb:f6:19:3e:73: 37:c7:77:33:8d:43:01:e1:91:f1:52:b4:d1:98:eb: c5:a3:e7:9d:59:f9:67:fb:65:0e:80:b4:c0:39:12: 8f:80:99:69:26:ca:22:ce:3d:b9:0f:49:71:b2:7b: 36:8d:23:61:65:53:23:8e:92:d8:a1:96:b5:18:e9: 9e:68:e9:49:50:ab:49:89:0d:90:b3:48:f4:b6:af: 49:61:cc:4b:28:84:e8:1e:4a:39:b0:0a:66:95:6f: 92:62:6e:53:8a:b7:22:3c:b9:6e:2f:c3:6c:1c:d7: 6b:2a:49:bf:16:49:90:56:d0:c7:8f:0a:c9:76:de: 45:ee:ef:e5:24:74:67:9e:54:6e:d7:da:0b:84:9e: e7:23:4c:e5:6d:e6:81:4f:0e:91:09:c1:b9:a2:07: 43:0a:54:6d:e2:ce:3b:19:08:82:a1:04:63:23:9e: 1c:21:6d:c0:54:bf:2d:7f:1e:82:d8:79:83:91:27: 73:10:8b:65:69:b2:bc:94:29:61:99:32:00:bd:62: a4:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:EB:C6:32:C9:21:E7:F2:DD:04:21:18:B2:06:61:9B:94:A0:79:74 X509v3 Authority Key Identifier: keyid:CB:66:E0:35:E2:F0:78:58:F4:F7:3B:47:8D:CD:85:A6:36:A4:25:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/y2bgNeLweFj09ztHjc2FpjakJQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2bgNeLweFj09ztHjc2FpjakJQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/y2bgNeLweFj09ztHjc2FpjakJQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:64:6e:b8:69:75:b5:bc:8b:a9:6f:f2:aa:52:cd:0e:8e:9e: 67:84:cb:ff:71:c6:2f:00:76:72:a7:12:d3:8f:86:45:f2:ea: 5a:36:f5:1c:1f:bc:9d:8f:5a:8f:95:f2:52:9a:be:4b:c5:70: 0d:fc:3f:04:15:ea:b0:7d:89:fc:a6:bb:47:b9:86:97:68:2c: 7b:1d:b9:e9:c6:09:10:c0:85:92:53:8f:a5:05:df:24:c1:d7: 70:d7:fa:b8:a3:5f:08:46:ca:5f:ab:85:78:f7:17:a7:d5:86: 2f:19:13:34:e4:1b:8f:21:9c:2e:18:c4:4d:ea:d2:d8:bf:8e: fe:21:e3:e6:84:ff:35:6f:f0:80:ea:01:64:8d:5c:2c:47:fe: d9:87:cb:6c:ee:97:fd:2e:4b:1c:a1:8a:93:73:75:45:ae:3d: 88:58:3f:45:48:8f:da:85:dd:d3:96:3c:31:ba:d4:fd:d0:cf: 4e:15:8b:8a:77:c6:28:ef:a3:48:ee:1e:66:04:a5:9e:9d:9f: 4c:24:3a:c4:3b:9d:4c:5f:6d:56:8f:ba:b1:3b:3e:93:9b:27: b2:a5:97:b2:4b:ad:2a:7f:b2:fd:b0:3f:ea:6f:88:95:22:a2: cb:fd:c6:db:56:3e:96:73:f5:9b:b4:ce:01:61:6e:a5:38:6d: 9d:4b:0e:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlDMDAxMTAvBgNVBAUTKENCNjZFMDM1RTJGMDc4NThGNEY3M0I0NzhEQ0Q4NUE2 MzZBNDI1MEEwHhcNMjUwNjE1MDQ1MzE1WhcNMjUwNjIyMDQ1MzE1WjAYMRYwFAYD VQQDEw02ODRlNTFiYi0wNTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvMjeKkELLLTQy6Qlplu2ZVYXdGn6wDQT+Y5BHfBFQhUWvpNzl8cEVdwqROf6 91V7HxGzyJ9Fy/YZPnM3x3czjUMB4ZHxUrTRmOvFo+edWfln+2UOgLTAORKPgJlp Jsoizj25D0lxsns2jSNhZVMjjpLYoZa1GOmeaOlJUKtJiQ2Qs0j0tq9JYcxLKITo Hko5sApmlW+SYm5TirciPLluL8NsHNdrKkm/FkmQVtDHjwrJdt5F7u/lJHRnnlRu 19oLhJ7nI0zlbeaBTw6RCcG5ogdDClRt4s47GQiCoQRjI54cIW3AVL8tfx6C2HmD kSdzEItlabK8lClhmTIAvWKkIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP/rxjLJ Iefy3QQhGLIGYZuUoHl0MB8GA1UdIwQYMBaAFMtm4DXi8HhY9Pc7R43NhaY2pCUK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OUMwMC8xQzMxRUFGMDFC QzAxMUVGQkI2ODhENUVDNEY5QUUwMi95MmJnTmVMd2VGajA5enRIamMyRnBqYWtK UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kyYmdOZUx3ZUZqMDl6dEhqYzJGcGpha0pRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OUMwMC8xQzMxRUFGMDFCQzAxMUVGQkI2ODhENUVDNEY5QUUwMi95MmJnTmVMd2VG ajA5enRIamMyRnBqYWtKUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBZG64aXW1vIupb/KqUs0Ojp5nhMv/ccYvAHZypxLTj4ZF8upaNvUc H7ydj1qPlfJSmr5LxXAN/D8EFeqwfYn8prtHuYaXaCx7HbnpxgkQwIWSU4+lBd8k wddw1/q4o18IRspfq4V49xen1YYvGRM05BuPIZwuGMRN6tLYv47+IePmhP81b/CA 6gFkjVwsR/7Zh8ts7pf9LkscoYqTc3VFrj2IWD9FSI/ahd3TljwxutT90M9OFYuK d8Yo76NI7h5mBKWenZ9MJDrEO51MX21Wj7qxOz6TmyeypZeyS60qf7L9sD/qb4iV IqLL/cbbVj6Wc/WbtM4BYW6lOG2dSw7R -----END CERTIFICATE-----Generated at Sun Jun 15 09:39:07 2025 by rpki-client