$ rpki-client -vvf rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.mft File: YCgZkDDJlCoUSqFr-zB450H27CM.mft (raw, json) Hash identifier: lR81byWoZa7GXun+XOHWVITCHVMeqHOdqJJnvZO7vDI= Subject key identifier: 64:E1:43:95:4A:3C:82:A6:B2:6D:62:BE:C9:18:3D:72:97:F7:25:98 Authority key identifier: 60:28:19:90:30:C9:94:2A:14:4A:A1:6B:FB:30:78:E7:41:F6:EC:23 Certificate issuer: /CN=A9175D4F/serialNumber=6028199030C9942A144AA16BFB3078E741F6EC23 Certificate serial: 0A0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCgZkDDJlCoUSqFr-zB450H27CM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.mft Manifest number: 09FF Signing time: Sat 14 Jun 2025 19:39:52 +0000 Manifest this update: Sat 14 Jun 2025 19:39:51 +0000 Manifest next update: Sat 21 Jun 2025 19:39:51 +0000 Files and hashes: 1: YCgZkDDJlCoUSqFr-zB450H27CM.crl (hash: RnMXGvTORVNiADp6zgZzfG0aNxeKFTgq7nSLgw3ySMM=) 2: 5D2B0616A9C011EABAAB4624C4F9AE02.roa (hash: WJcxZE//v/qgwM5L8UFDfgSzlZEjCMButWifhGqcTAY=) 3: 5C1CF19EA9C011EABAAB4624C4F9AE02.roa (hash: 6/x/Fge5uH5YfUQOVxF7eyYbzP45tBqEPaICPxzEb2c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.crl rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCgZkDDJlCoUSqFr-zB450H27CM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 19:39:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2575 (0xa0f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175D4F, serialNumber=6028199030C9942A144AA16BFB3078E741F6EC23 Validity Not Before: Jun 14 19:39:51 2025 GMT Not After : Jun 21 19:39:51 2025 GMT Subject: CN=684dd008-e8df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:de:e8:6f:08:1a:9e:ed:81:cd:c9:d7:c0:6c: ef:d1:9d:50:a0:29:a3:25:db:4d:d9:97:d3:c5:d8: 62:27:da:9f:ec:f2:16:68:29:9a:43:58:72:1f:72: 22:c5:fa:42:f2:cc:64:8a:cc:2c:32:9c:ff:8a:b5: e4:4b:35:98:da:2b:f0:c3:cc:93:2f:a4:73:05:02: 4a:85:ff:52:c9:d7:fe:fc:19:8b:c2:5f:5f:de:3c: 0b:b6:97:42:59:e6:bb:08:d2:d1:05:f5:50:96:bd: 27:55:da:dd:ab:e3:b8:8e:62:c9:8f:79:7a:47:f4: 1d:b9:26:92:fc:3d:b3:cf:15:20:57:01:37:fe:8a: d2:ce:68:a0:1e:6b:6d:7b:5d:4f:6c:8f:36:b7:a0: 1f:1e:33:50:62:66:a1:b5:ff:f4:5c:9c:b4:8d:8c: 84:22:9a:04:5e:f7:77:15:0b:4d:1a:ee:2e:50:e8: 1f:6d:16:33:1a:a1:e7:57:04:5f:5f:53:f1:3e:65: 17:4c:ec:fd:d3:d4:50:1f:56:11:11:ec:50:51:8a: e9:be:1c:b6:69:f0:ad:36:1f:a6:48:a9:53:ec:a0: 6b:5b:48:66:f4:ef:47:a3:9b:5b:99:0a:7d:81:b8: 60:fe:10:fd:7b:44:cf:ae:2a:20:15:14:62:9d:b9: 0a:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:E1:43:95:4A:3C:82:A6:B2:6D:62:BE:C9:18:3D:72:97:F7:25:98 X509v3 Authority Key Identifier: keyid:60:28:19:90:30:C9:94:2A:14:4A:A1:6B:FB:30:78:E7:41:F6:EC:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCgZkDDJlCoUSqFr-zB450H27CM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:2c:9e:cc:2c:21:52:41:77:87:30:b6:79:35:72:14:30:69: 30:34:80:4b:c0:74:1c:8c:a7:08:f1:a5:c5:bc:18:7b:c9:3c: ce:cb:12:71:0f:f3:de:cd:35:82:dd:93:17:ad:d0:d4:27:e4: 52:4b:ef:d5:53:37:e9:20:db:c9:c5:b3:a8:33:5e:bd:42:e5: 60:30:27:55:bc:58:d9:43:b5:3a:ef:7f:87:52:55:90:f0:02: eb:f8:c3:8a:10:38:2b:b2:07:d1:7e:f3:14:0b:75:0c:8a:7e: 4b:8e:ba:81:30:72:3d:33:e9:ce:ff:ff:8c:23:8d:c5:72:8a: f1:a4:6a:c2:ce:b6:03:21:f3:8d:d9:a2:04:11:19:e8:06:ed: 3e:27:b8:96:a0:cd:13:bf:56:41:7d:ad:d2:2a:3b:f6:15:fc: 50:e4:df:a6:0b:fd:07:4a:13:f5:6d:e2:58:52:da:31:0b:7d: 90:16:74:67:fe:69:9a:3f:3c:ac:de:24:e0:37:cf:e6:91:8d: 2a:70:76:90:91:db:ca:1e:08:31:da:2e:46:02:28:33:a4:5e: e2:46:9d:46:05:84:4c:34:6a:ba:f9:21:d5:cd:40:ca:90:b7: a3:6a:92:4f:a7:d7:54:87:15:a0:ca:0c:d4:db:3b:65:36:b7: a7:28:82:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCg8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzVENEYxMTAvBgNVBAUTKDYwMjgxOTkwMzBDOTk0MkExNDRBQTE2QkZCMzA3OEU3 NDFGNkVDMjMwHhcNMjUwNjE0MTkzOTUxWhcNMjUwNjIxMTkzOTUxWjAYMRYwFAYD VQQDEw02ODRkZDAwOC1lOGRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArN7obwganu2BzcnXwGzv0Z1QoCmjJdtN2ZfTxdhiJ9qf7PIWaCmaQ1hyH3Ii xfpC8sxkiswsMpz/irXkSzWY2ivww8yTL6RzBQJKhf9Sydf+/BmLwl9f3jwLtpdC Wea7CNLRBfVQlr0nVdrdq+O4jmLJj3l6R/QduSaS/D2zzxUgVwE3/orSzmigHmtt e11PbI82t6AfHjNQYmahtf/0XJy0jYyEIpoEXvd3FQtNGu4uUOgfbRYzGqHnVwRf X1PxPmUXTOz909RQH1YREexQUYrpvhy2afCtNh+mSKlT7KBrW0hm9O9Ho5tbmQp9 gbhg/hD9e0TPriogFRRinbkKQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGThQ5VK PIKmsm1ivskYPXKX9yWYMB8GA1UdIwQYMBaAFGAoGZAwyZQqFEqha/sweOdB9uwj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NUQ0Ri81ODVGNEQwRTc4 NzkxMUVBQUVCQTNCMzhDNEY5QUUwMi9ZQ2daa0RESmxDb1VTcUZyLXpCNDUwSDI3 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lDZ1prRERKbENvVVNxRnItekI0NTBIMjdDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NUQ0Ri81ODVGNEQwRTc4NzkxMUVBQUVCQTNCMzhDNEY5QUUwMi9ZQ2daa0RESmxD b1VTcUZyLXpCNDUwSDI3Q00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVLJ7MLCFSQXeHMLZ5NXIUMGkwNIBLwHQcjKcI8aXFvBh7yTzOyxJx D/PezTWC3ZMXrdDUJ+RSS+/VUzfpINvJxbOoM169QuVgMCdVvFjZQ7U673+HUlWQ 8ALr+MOKEDgrsgfRfvMUC3UMin5LjrqBMHI9M+nO//+MI43FcorxpGrCzrYDIfON 2aIEERnoBu0+J7iWoM0Tv1ZBfa3SKjv2FfxQ5N+mC/0HShP1beJYUtoxC32QFnRn /mmaPzys3iTgN8/mkY0qcHaQkdvKHggx2i5GAigzpF7iRp1GBYRMNGq6+SHVzUDK kLejapJPp9dUhxWgygzU2ztlNrenKILV -----END CERTIFICATE-----Generated at Sun Jun 15 09:52:31 2025 by rpki-client