$ rpki-client -vvf rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft File: _YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft (raw, json) Hash identifier: PMnKBzYMNm8sFgovzckQ6tS7UzBjztxfWKuVL/4Fevw= Subject key identifier: AA:3A:B8:41:D3:E5:CA:FC:A2:C0:72:25:14:25:F0:F0:4F:53:01:39 Authority key identifier: FD:82:7C:02:6B:39:67:E2:A1:40:D4:D2:31:4E:2B:0E:9C:04:74:30 Certificate issuer: /CN=A9171064/serialNumber=FD827C026B3967E2A140D4D2314E2B0E9C047430 Certificate serial: 0C4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft Manifest number: 0C48 Signing time: Sat 14 Jun 2025 18:18:21 +0000 Manifest this update: Sat 14 Jun 2025 18:18:21 +0000 Manifest next update: Sat 21 Jun 2025 18:18:21 +0000 Files and hashes: 1: _YJ8Ams5Z-KhQNTSMU4rDpwEdDA.crl (hash: fOG88Uq4TKgb14lqlNL+jWGLwKxB9ySFWUudcvbSANw=) 2: A2A3D38A05CE11EA80526530C4F9AE02.roa (hash: 5qzdMRlHADmRGjRZ80Eu6WYWmObO/9cRl46Cear7KnU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.crl rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 18:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3150 (0xc4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171064, serialNumber=FD827C026B3967E2A140D4D2314E2B0E9C047430 Validity Not Before: Jun 14 18:18:21 2025 GMT Not After : Jun 21 18:18:21 2025 GMT Subject: CN=684dbced-a227 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:13:5d:99:6a:e6:97:3d:be:4b:b4:ea:a9:e4: ee:13:77:0b:e9:46:ad:83:4b:2e:79:91:ea:51:83: 49:e3:b9:af:46:25:16:09:40:cf:b8:d4:4c:68:b9: ff:d5:a6:f0:c1:a7:6c:a3:5c:5d:ab:23:f3:17:e1: 89:e6:d4:04:23:6e:6c:08:84:d8:42:e7:88:7e:4c: 37:b4:2a:b8:de:f6:7e:a6:21:3c:00:8e:5f:04:f6: 2e:a5:89:ba:6c:86:21:23:e7:26:05:52:1b:e2:c8: 33:4f:d7:88:c1:ab:32:27:0c:7a:1d:26:a1:bc:a1: fe:cf:71:28:42:83:20:09:cf:7b:69:05:2f:1b:2f: 13:20:ba:47:59:57:bc:e2:c5:87:ec:78:21:51:ce: 4d:67:a4:8e:f7:b5:5f:e8:7c:4e:d7:e9:59:c8:ba: 8f:27:29:45:15:86:59:7f:2e:cd:a6:c5:da:3b:f8: d2:da:c7:c4:4f:2d:90:57:be:27:5a:30:57:73:25: c0:b5:1d:a2:15:06:08:94:6c:8b:ba:86:dc:5e:4f: 38:a2:b2:cf:5a:b7:84:47:8d:1f:8d:9f:af:5b:6c: 73:a2:74:eb:e3:e9:ff:20:d1:b0:47:37:1f:5c:9a: e6:e7:7e:64:6a:c5:d4:20:6f:51:b9:51:1c:0d:fb: af:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:3A:B8:41:D3:E5:CA:FC:A2:C0:72:25:14:25:F0:F0:4F:53:01:39 X509v3 Authority Key Identifier: keyid:FD:82:7C:02:6B:39:67:E2:A1:40:D4:D2:31:4E:2B:0E:9C:04:74:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:11:db:11:c1:23:6f:c9:d3:71:30:94:f2:af:fd:f4:21:57: 52:b2:0f:84:25:b8:ce:2b:ec:27:5d:59:f9:08:44:b0:60:b7: e0:6b:62:17:fb:b0:5a:c5:39:8b:59:0a:9a:1a:64:95:3c:03: 74:84:73:4b:0e:a9:e5:06:fa:dd:74:77:74:85:87:bb:e2:64: 25:a1:76:da:b0:e0:ec:74:03:78:db:be:01:4f:cd:3f:5a:4d: 80:0c:45:d1:c4:9b:fd:85:c7:a9:87:8f:30:f5:a1:50:fd:0b: ec:ec:b7:f0:cb:a5:7f:e1:d5:d5:f7:2c:16:e1:43:af:1a:54: 09:24:17:45:89:b4:83:21:cc:1f:18:99:aa:11:e8:10:2c:16: 4a:b8:61:2d:99:ea:a0:7e:90:6c:1a:25:d6:f9:12:7b:df:69: 90:00:6c:c4:e9:42:d8:54:d9:a1:1b:5f:35:e6:31:56:e6:d6: 37:25:ae:12:0b:83:5d:92:02:60:98:e1:07:85:d3:ce:a2:93: 46:0b:94:68:44:35:6f:f5:44:34:ab:0a:5f:a1:1c:fc:c8:d8: 72:48:a7:f5:6b:e7:eb:8a:65:20:2e:a2:47:49:76:43:c0:8b: 3a:6a:3d:75:b9:4d:c9:15:2c:63:f8:fd:0a:ff:13:22:25:57: 27:bb:bd:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDE4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzEwNjQxMTAvBgNVBAUTKEZEODI3QzAyNkIzOTY3RTJBMTQwRDREMjMxNEUyQjBF OUMwNDc0MzAwHhcNMjUwNjE0MTgxODIxWhcNMjUwNjIxMTgxODIxWjAYMRYwFAYD VQQDEw02ODRkYmNlZC1hMjI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxBNdmWrmlz2+S7TqqeTuE3cL6Uatg0sueZHqUYNJ47mvRiUWCUDPuNRMaLn/ 1abwwadso1xdqyPzF+GJ5tQEI25sCITYQueIfkw3tCq43vZ+piE8AI5fBPYupYm6 bIYhI+cmBVIb4sgzT9eIwasyJwx6HSahvKH+z3EoQoMgCc97aQUvGy8TILpHWVe8 4sWH7HghUc5NZ6SO97Vf6HxO1+lZyLqPJylFFYZZfy7NpsXaO/jS2sfETy2QV74n WjBXcyXAtR2iFQYIlGyLuobcXk84orLPWreER40fjZ+vW2xzonTr4+n/INGwRzcf XJrm535kasXUIG9RuVEcDfuvTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKo6uEHT 5cr8osByJRQl8PBPUwE5MB8GA1UdIwQYMBaAFP2CfAJrOWfioUDU0jFOKw6cBHQw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTA2NC8wNzYzOTYyMDA1 MkYxMUVBOEE5RTM5NDdDNEY5QUUwMi9fWUo4QW1zNVotS2hRTlRTTVU0ckRwd0Vk REEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19ZSjhBbXM1Wi1LaFFOVFNNVTRyRHB3RWREQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTA2NC8wNzYzOTYyMDA1MkYxMUVBOEE5RTM5NDdDNEY5QUUwMi9fWUo4QW1zNVot S2hRTlRTTVU0ckRwd0VkREEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8EdsRwSNvydNxMJTyr/30IVdSsg+EJbjOK+wnXVn5CESwYLfga2IX +7BaxTmLWQqaGmSVPAN0hHNLDqnlBvrddHd0hYe74mQloXbasODsdAN4274BT80/ Wk2ADEXRxJv9hceph48w9aFQ/Qvs7Lfwy6V/4dXV9ywW4UOvGlQJJBdFibSDIcwf GJmqEegQLBZKuGEtmeqgfpBsGiXW+RJ732mQAGzE6ULYVNmhG1815jFW5tY3Ja4S C4NdkgJgmOEHhdPOopNGC5RoRDVv9UQ0qwpfoRz8yNhySKf1a+frimUgLqJHSXZD wIs6aj11uU3JFSxj+P0K/xMiJVcnu70q -----END CERTIFICATE-----Generated at Sun Jun 15 10:22:33 2025 by rpki-client