$ rpki-client -vvf rpki.apnic.net/member_repository/A917336A/86D7B8625AEA11EF94E93D6EC4F9AE02/4LYIr1NBS29ZfRjK56IUSD6KZZ4.mft File: 4LYIr1NBS29ZfRjK56IUSD6KZZ4.mft (raw, json) Hash identifier: El+EdYJe/ifnIIS6KHwpDuAsuo3bftuWvGCH/ffkN6s= Subject key identifier: B1:60:35:62:02:A0:C2:43:E6:18:0A:06:95:4F:1F:11:AA:59:CC:68 Authority key identifier: E0:B6:08:AF:53:41:4B:6F:59:7D:18:CA:E7:A2:14:48:3E:8A:65:9E Certificate issuer: /CN=A917336A/serialNumber=E0B608AF53414B6F597D18CAE7A214483E8A659E Certificate serial: A2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4LYIr1NBS29ZfRjK56IUSD6KZZ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917336A/86D7B8625AEA11EF94E93D6EC4F9AE02/4LYIr1NBS29ZfRjK56IUSD6KZZ4.mft Manifest number: A1 Signing time: Thu 19 Jun 2025 05:34:37 +0000 Manifest this update: Thu 19 Jun 2025 05:34:36 +0000 Manifest next update: Thu 26 Jun 2025 05:34:36 +0000 Files and hashes: 1: 4LYIr1NBS29ZfRjK56IUSD6KZZ4.crl (hash: BoC1W2w4hNPwCn+qloGiN4lA5Qbpswe+N5gimFONAt0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917336A/86D7B8625AEA11EF94E93D6EC4F9AE02/4LYIr1NBS29ZfRjK56IUSD6KZZ4.crl rsync://rpki.apnic.net/member_repository/A917336A/86D7B8625AEA11EF94E93D6EC4F9AE02/4LYIr1NBS29ZfRjK56IUSD6KZZ4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4LYIr1NBS29ZfRjK56IUSD6KZZ4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 05:34:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 162 (0xa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917336A, serialNumber=E0B608AF53414B6F597D18CAE7A214483E8A659E Validity Not Before: Jun 19 05:34:36 2025 GMT Not After : Jun 26 05:34:36 2025 GMT Subject: CN=6853a16d-74fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:1a:bf:24:3d:69:ce:ef:47:11:59:20:11:e4: 45:e1:9a:61:c5:48:89:54:1d:a5:27:8b:ee:10:b4: 41:3a:da:c9:f6:c0:55:f1:d7:0b:e9:63:fd:62:dd: dc:ea:25:61:b3:c4:b9:2b:5f:09:32:2c:84:fc:1a: f0:6d:28:95:23:41:88:f0:34:95:3d:df:0c:6a:c5: 08:6b:80:37:70:05:d9:17:99:eb:9e:da:63:03:6d: e7:f8:fd:85:66:9b:00:71:be:69:4a:9c:00:ae:7c: 9a:ad:c9:3d:5c:a4:bb:cc:76:15:a0:10:d0:4f:c2: 78:43:d9:9f:b1:50:f6:96:22:fd:d7:10:22:74:99: 78:e9:31:df:66:ff:e7:fe:e2:68:fb:34:89:af:30: b1:e8:85:17:1c:7d:b9:38:60:b4:d5:b6:fc:29:0c: c1:9a:6b:a8:aa:bd:01:24:90:8e:b9:d9:0d:ff:25: 5a:be:49:b1:82:96:92:e8:3a:7d:5f:c7:de:30:f3: 98:2e:7d:04:0c:b4:f3:ed:5a:6c:91:c9:91:dc:01: c4:7f:ef:35:3c:b8:04:0f:ac:f4:6b:58:4d:5d:4f: ff:83:fb:38:be:f4:f4:67:b2:8e:1c:39:4e:be:57: db:ca:26:7a:71:fe:7f:a6:ae:74:07:3b:35:8a:6a: af:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:60:35:62:02:A0:C2:43:E6:18:0A:06:95:4F:1F:11:AA:59:CC:68 X509v3 Authority Key Identifier: keyid:E0:B6:08:AF:53:41:4B:6F:59:7D:18:CA:E7:A2:14:48:3E:8A:65:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917336A/86D7B8625AEA11EF94E93D6EC4F9AE02/4LYIr1NBS29ZfRjK56IUSD6KZZ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4LYIr1NBS29ZfRjK56IUSD6KZZ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917336A/86D7B8625AEA11EF94E93D6EC4F9AE02/4LYIr1NBS29ZfRjK56IUSD6KZZ4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:7f:3e:bc:2b:ab:31:58:ef:ab:eb:77:b9:9a:0c:7d:6f:d0: f6:ce:5b:09:17:0f:ad:fc:58:6e:f4:96:d0:92:1d:78:4c:47: 1f:13:c9:51:74:e7:a7:06:f6:3e:ed:c4:b8:78:ca:60:cb:64: 6c:a1:ae:75:5f:00:ac:9d:c5:96:e1:20:24:f3:12:bf:07:ce: b8:d1:18:2e:9f:57:1f:b6:00:f9:cf:ab:c1:12:64:ee:8c:b2: 29:ce:c7:e8:5f:86:24:a6:74:47:a4:ef:d2:35:60:6f:d4:33: d3:d4:f6:cb:53:bf:0b:79:74:c4:b5:db:26:bf:c5:27:a5:91: 0f:2c:f7:08:e4:3a:8e:22:f6:43:b6:de:e7:b3:7c:5f:ac:26: 97:cd:2f:72:53:31:46:c6:13:44:d6:c6:12:5a:04:ed:83:a3: 09:9f:c3:5c:37:97:96:d0:76:e7:a0:02:cf:76:db:44:9b:b9: aa:c0:98:e3:c3:b5:10:59:02:2f:7a:29:2b:33:15:e0:36:f7: 6b:9c:5b:b0:f9:23:fa:30:65:a5:a3:36:b2:11:30:e4:ac:b4: 39:27:59:ec:e6:6d:d5:6d:16:4d:f6:bf:30:7e:2c:58:0e:ad: 44:d5:ba:42:f6:61:87:6c:88:95:e0:12:bc:e0:e8:41:5e:4a: 61:79:ff:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzMzNkExMTAvBgNVBAUTKEUwQjYwOEFGNTM0MTRCNkY1OTdEMThDQUU3QTIxNDQ4 M0U4QTY1OUUwHhcNMjUwNjE5MDUzNDM2WhcNMjUwNjI2MDUzNDM2WjAYMRYwFAYD VQQDEw02ODUzYTE2ZC03NGZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6Rq/JD1pzu9HEVkgEeRF4ZphxUiJVB2lJ4vuELRBOtrJ9sBV8dcL6WP9Yt3c 6iVhs8S5K18JMiyE/BrwbSiVI0GI8DSVPd8MasUIa4A3cAXZF5nrntpjA23n+P2F ZpsAcb5pSpwArnyarck9XKS7zHYVoBDQT8J4Q9mfsVD2liL91xAidJl46THfZv/n /uJo+zSJrzCx6IUXHH25OGC01bb8KQzBmmuoqr0BJJCOudkN/yVavkmxgpaS6Dp9 X8feMPOYLn0EDLTz7VpskcmR3AHEf+81PLgED6z0a1hNXU//g/s4vvT0Z7KOHDlO vlfbyiZ6cf5/pq50Bzs1imqvqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLFgNWIC oMJD5hgKBpVPHxGqWcxoMB8GA1UdIwQYMBaAFOC2CK9TQUtvWX0YyueiFEg+imWe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzM2QS84NkQ3Qjg2MjVB RUExMUVGOTRFOTNENkVDNEY5QUUwMi80TFlJcjFOQlMyOVpmUmpLNTZJVVNENkta WjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzRMWUlyMU5CUzI5WmZSaks1NklVU0Q2S1paNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzM2QS84NkQ3Qjg2MjVBRUExMUVGOTRFOTNENkVDNEY5QUUwMi80TFlJcjFOQlMy OVpmUmpLNTZJVVNENktaWjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZfz68K6sxWO+r63e5mgx9b9D2zlsJFw+t/Fhu9JbQkh14TEcfE8lR dOenBvY+7cS4eMpgy2Rsoa51XwCsncWW4SAk8xK/B8640Rgun1cftgD5z6vBEmTu jLIpzsfoX4YkpnRHpO/SNWBv1DPT1PbLU78LeXTEtdsmv8UnpZEPLPcI5DqOIvZD tt7ns3xfrCaXzS9yUzFGxhNE1sYSWgTtg6MJn8NcN5eW0HbnoALPdttEm7mqwJjj w7UQWQIveikrMxXgNvdrnFuw+SP6MGWlozayETDkrLQ5J1ns5m3VbRZN9r8wfixY Dq1E1bpC9mGHbIiV4BK84OhBXkphef/m -----END CERTIFICATE-----Generated at Fri Jun 20 18:02:33 2025 by rpki-client