$ rpki-client -vvf rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft File: YG6ylYJUrJi2M26qQayAstyxnG4.mft (raw, json) Hash identifier: glYeu46jd9rAB3LNdZyb4xADTXA4BEByiG36s4pgUqQ= Subject key identifier: 59:FD:4C:15:F6:5C:D1:FD:0F:FD:5B:D0:4C:57:81:28:E9:2F:36:AE Authority key identifier: 60:6E:B2:95:82:54:AC:98:B6:33:6E:AA:41:AC:80:B2:DC:B1:9C:6E Certificate issuer: /CN=A9170D3E/serialNumber=606EB2958254AC98B6336EAA41AC80B2DCB19C6E Certificate serial: 70 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YG6ylYJUrJi2M26qQayAstyxnG4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft Manifest number: 6F Signing time: Sun 15 Jun 2025 05:57:57 +0000 Manifest this update: Sun 15 Jun 2025 05:57:57 +0000 Manifest next update: Sun 22 Jun 2025 05:57:57 +0000 Files and hashes: 1: YG6ylYJUrJi2M26qQayAstyxnG4.crl (hash: QbP0cCX7EThtHqBuWOpSVCBU86rCFMD9gW8z7I9b7Ns=) 2: 181772049FD811EF8680B438C4F9AE02.roa (hash: kL8m2A2/eVPCA0J/9/iLQOKzk2RiAB33QgbmFjlKwTo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.crl rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YG6ylYJUrJi2M26qQayAstyxnG4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 05:57:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170D3E, serialNumber=606EB2958254AC98B6336EAA41AC80B2DCB19C6E Validity Not Before: Jun 15 05:57:57 2025 GMT Not After : Jun 22 05:57:57 2025 GMT Subject: CN=684e60e5-7ab9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:71:55:2e:d7:ae:50:0f:04:59:6d:9d:ad:ba: cf:7c:e1:0f:ef:0d:5f:e1:22:a8:0f:00:17:2e:e0: 23:d0:cb:d7:5e:53:2a:2e:d0:47:22:31:49:6d:20: 0f:60:da:29:56:89:25:ea:cb:57:fb:23:c7:ed:d0: 56:04:bf:64:fd:4d:11:1e:8b:b3:85:45:6b:19:ab: 4a:3f:51:d2:0c:28:06:a9:3f:c2:a4:b7:ac:11:73: 1d:61:c0:b6:1b:f6:44:f7:82:b9:b7:6f:2a:45:0a: d8:e8:a4:71:90:88:72:22:6a:e6:74:55:09:36:ab: 38:ba:ad:58:58:58:89:92:ff:1f:ec:95:af:42:f4: 72:5c:c3:6b:58:5d:3d:ed:e5:57:e7:83:cd:cc:1f: ce:a5:8a:b9:b8:0c:7e:e5:66:1c:ad:cd:34:08:a6: c4:05:35:9d:0f:69:7b:26:bd:06:78:4a:dd:f9:4b: 24:9a:de:e5:1b:1b:33:02:d8:ac:22:50:aa:34:c2: ab:cd:37:d9:70:fd:50:be:20:e1:bd:f3:9d:c9:85: 82:72:e9:14:42:d4:34:86:6a:dd:96:33:a7:ba:13: 21:57:0a:b8:33:ca:cf:59:78:cc:3a:fd:d2:20:c5: 81:ec:5f:52:7c:17:92:77:53:1d:f3:44:51:40:01: ea:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:FD:4C:15:F6:5C:D1:FD:0F:FD:5B:D0:4C:57:81:28:E9:2F:36:AE X509v3 Authority Key Identifier: keyid:60:6E:B2:95:82:54:AC:98:B6:33:6E:AA:41:AC:80:B2:DC:B1:9C:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YG6ylYJUrJi2M26qQayAstyxnG4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:13:32:0a:3e:d9:3d:80:96:9e:97:61:13:ba:6c:94:18:3b: c9:d5:0d:36:7a:4d:f6:2a:47:f8:bd:a6:4a:09:4c:d9:85:06: c6:a0:04:07:4a:dd:3b:99:70:47:7a:9c:0f:cf:68:3b:51:f5: b1:b4:a1:cf:ae:cf:73:f6:55:ef:4b:b0:8c:cb:a0:71:c5:da: 5a:4d:92:65:d6:14:50:cc:43:32:28:64:6e:36:1d:61:a6:26: ba:92:7c:66:a9:7c:ca:f0:92:a6:f2:80:29:8c:fa:57:8e:1a: b6:7f:b7:a7:7f:59:88:98:11:6a:7d:c0:5f:1d:07:5a:31:53: cd:03:8d:a7:91:98:62:ad:2a:9b:46:97:53:b8:3f:9e:44:0b: 55:b1:2f:ef:39:c6:a9:32:48:a9:ce:fe:e1:90:8b:05:67:e1: 95:03:bc:a6:34:c9:dd:dd:10:e8:0a:d2:f1:f9:e6:31:cb:90: 54:06:4c:77:6f:25:c7:b1:b4:e9:60:64:41:30:a3:e8:37:98: ee:bf:31:38:90:98:da:05:a0:66:c7:1d:20:f8:c3:64:5e:09: 09:15:a0:89:e5:b6:54:50:9a:b9:a1:e2:a0:9f:46:6c:07:4f: ed:60:e0:4d:5a:24:42:c7:b3:8d:f5:53:0f:0b:c4:b1:aa:0c: 57:56:f7:ad -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MEQzRTExMC8GA1UEBRMoNjA2RUIyOTU4MjU0QUM5OEI2MzM2RUFBNDFBQzgwQjJE Q0IxOUM2RTAeFw0yNTA2MTUwNTU3NTdaFw0yNTA2MjIwNTU3NTdaMBgxFjAUBgNV BAMTDTY4NGU2MGU1LTdhYjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCjcVUu165QDwRZbZ2tus984Q/vDV/hIqgPABcu4CPQy9deUyou0EciMUltIA9g 2ilWiSXqy1f7I8ft0FYEv2T9TREei7OFRWsZq0o/UdIMKAapP8Kkt6wRcx1hwLYb 9kT3grm3bypFCtjopHGQiHIiauZ0VQk2qzi6rVhYWImS/x/sla9C9HJcw2tYXT3t 5Vfng83MH86lirm4DH7lZhytzTQIpsQFNZ0PaXsmvQZ4St35SySa3uUbGzMC2Kwi UKo0wqvNN9lw/VC+IOG9853JhYJy6RRC1DSGat2WM6e6EyFXCrgzys9ZeMw6/dIg xYHsX1J8F5J3Ux3zRFFAAerJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUWf1MFfZc 0f0P/VvQTFeBKOkvNq4wHwYDVR0jBBgwFoAUYG6ylYJUrJi2M26qQayAstyxnG4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwRDNFL0I1REZDOEMwOUZE NzExRUY5RTM4QTgzN0M0RjlBRTAyL1lHNnlsWUpVckppMk0yNnFRYXlBc3R5eG5H NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWUc2eWxZSlVySmkyTTI2cVFheUFzdHl4bkc0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcw RDNFL0I1REZDOEMwOUZENzExRUY5RTM4QTgzN0M0RjlBRTAyL1lHNnlsWUpVckpp Mk0yNnFRYXlBc3R5eG5HNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEwTMgo+2T2Alp6XYRO6bJQYO8nVDTZ6TfYqR/i9pkoJTNmFBsagBAdK 3TuZcEd6nA/PaDtR9bG0oc+uz3P2Ve9LsIzLoHHF2lpNkmXWFFDMQzIoZG42HWGm JrqSfGapfMrwkqbygCmM+leOGrZ/t6d/WYiYEWp9wF8dB1oxU80DjaeRmGKtKptG l1O4P55EC1WxL+85xqkySKnO/uGQiwVn4ZUDvKY0yd3dEOgK0vH55jHLkFQGTHdv JcextOlgZEEwo+g3mO6/MTiQmNoFoGbHHSD4w2ReCQkVoInltlRQmrmh4qCfRmwH T+1g4E1aJELHs431Uw8LxLGqDFdW960= -----END CERTIFICATE-----Generated at Mon Jun 16 11:20:38 2025 by rpki-client