$ rpki-client -vvf rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.mft File: y3TVYT1zQs-5t_ed7wyfrYhceCI.mft (raw, json) Hash identifier: ujgaslN0wNGmA0tcszTrjoPGxhiDsY578IVAK9ihEsM= Subject key identifier: 4F:B6:CD:E7:74:1B:E9:38:90:4B:23:05:B4:BE:83:47:A3:F9:AA:2E Authority key identifier: CB:74:D5:61:3D:73:42:CF:B9:B7:F7:9D:EF:0C:9F:AD:88:5C:78:22 Certificate issuer: /CN=A917845B/serialNumber=CB74D5613D7342CFB9B7F79DEF0C9FAD885C7822 Certificate serial: 0169 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y3TVYT1zQs-5t_ed7wyfrYhceCI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.mft Manifest number: 0167 Signing time: Sun 15 Jun 2025 03:06:19 +0000 Manifest this update: Sun 15 Jun 2025 03:06:19 +0000 Manifest next update: Sun 22 Jun 2025 03:06:19 +0000 Files and hashes: 1: y3TVYT1zQs-5t_ed7wyfrYhceCI.crl (hash: O+WbDnwXjnCPxENsVP9stpUKNrr8p3moSs4yDJ3gtz0=) 2: D5981734217611EE9EBE2F70C4F9AE02.roa (hash: mEyirxNNF/HUjbME+0mygxI2/51XwzfUXk7qYYI6cLw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.crl rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y3TVYT1zQs-5t_ed7wyfrYhceCI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 361 (0x169) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917845B, serialNumber=CB74D5613D7342CFB9B7F79DEF0C9FAD885C7822 Validity Not Before: Jun 15 03:06:19 2025 GMT Not After : Jun 22 03:06:19 2025 GMT Subject: CN=684e38ab-b45f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:2d:f7:af:3e:33:12:3c:a1:3f:db:d5:d2:04: 32:6c:5e:07:32:c6:07:42:27:19:b5:fc:7e:9c:b0: 1c:48:9b:c0:c1:70:2c:a7:12:02:d2:dd:bb:62:79: 4a:d0:02:cc:7f:65:e1:99:e0:9e:69:5a:c2:22:dd: ae:ae:28:f2:fd:80:56:c5:38:48:22:f7:1e:dd:82: d4:81:29:12:09:30:b5:16:23:d7:32:9f:c3:67:20: 8a:1b:29:99:6f:5a:cc:71:88:24:1d:5b:28:52:3a: e0:fc:b8:e2:c4:59:45:28:13:7d:27:10:cc:b8:16: dc:81:79:f6:d4:e0:b8:f0:bd:40:dd:d1:f2:f0:e1: 94:37:6e:22:76:e3:28:a1:b9:fd:ef:fd:af:90:70: 24:8a:6d:5b:ee:93:a4:dd:94:91:05:8f:3e:02:f3: d7:6e:9c:47:dd:b8:a7:4a:83:a8:3a:e3:70:76:8d: 2f:d3:92:7a:0b:39:84:77:f7:1c:fa:d4:6f:9b:cf: 01:81:d3:36:74:8a:ed:45:f1:17:a1:a7:e6:87:12: 33:e6:a4:e4:7d:ea:e2:16:e6:c3:1d:8d:e0:1d:ca: 50:b0:58:c0:bd:93:33:65:12:2b:bc:8f:ff:09:7e: 51:71:4a:22:67:02:a6:0d:28:e2:31:db:3d:94:f2: e0:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:B6:CD:E7:74:1B:E9:38:90:4B:23:05:B4:BE:83:47:A3:F9:AA:2E X509v3 Authority Key Identifier: keyid:CB:74:D5:61:3D:73:42:CF:B9:B7:F7:9D:EF:0C:9F:AD:88:5C:78:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y3TVYT1zQs-5t_ed7wyfrYhceCI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:40:36:ca:ac:9a:56:d8:31:07:7a:71:6f:e3:b1:cf:7f:d1: 72:bc:f8:8f:dd:5e:9c:4c:7a:05:99:43:8a:19:4f:af:c4:4d: 88:85:74:65:fa:b8:2a:56:55:bd:72:ec:b5:62:73:97:25:aa: 9b:6b:7f:7b:3e:65:3c:61:a8:90:5a:91:b2:f8:c0:1d:6c:91: 02:5d:ea:05:d8:51:6e:f8:fc:7b:01:56:98:a4:8e:5d:fb:f8: b1:68:b7:1e:ba:72:6b:1c:d8:08:6a:64:6a:df:9a:1b:38:c6: 1f:fb:86:36:29:d4:b1:c5:8c:79:ee:5d:86:0a:f8:12:50:71: 99:58:23:69:00:be:c0:ed:5d:49:1b:31:ce:6d:12:f0:8b:b7: 01:ae:2b:d1:2f:3b:c5:a6:bf:03:63:0a:60:9d:de:80:e9:cd: 89:c1:7c:49:6e:26:5b:a0:41:1f:48:ac:a9:65:8a:1f:89:e2: 31:3d:59:65:de:16:c1:39:0b:8d:2a:5a:19:04:51:75:4f:98: 66:60:d1:69:df:7f:70:ab:85:be:bf:7b:66:0a:5a:86:db:6f: d0:c9:30:ea:1e:e3:ef:04:5c:0c:08:e7:f9:0d:09:65:19:93: cc:04:0b:30:cc:f6:b2:be:7d:c0:64:7c:14:7b:54:9d:9b:8a: 5d:ca:5b:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzg0NUIxMTAvBgNVBAUTKENCNzRENTYxM0Q3MzQyQ0ZCOUI3Rjc5REVGMEM5RkFE ODg1Qzc4MjIwHhcNMjUwNjE1MDMwNjE5WhcNMjUwNjIyMDMwNjE5WjAYMRYwFAYD VQQDEw02ODRlMzhhYi1iNDVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtC33rz4zEjyhP9vV0gQybF4HMsYHQicZtfx+nLAcSJvAwXAspxIC0t27YnlK 0ALMf2XhmeCeaVrCIt2urijy/YBWxThIIvce3YLUgSkSCTC1FiPXMp/DZyCKGymZ b1rMcYgkHVsoUjrg/LjixFlFKBN9JxDMuBbcgXn21OC48L1A3dHy8OGUN24iduMo obn97/2vkHAkim1b7pOk3ZSRBY8+AvPXbpxH3binSoOoOuNwdo0v05J6CzmEd/cc +tRvm88BgdM2dIrtRfEXoafmhxIz5qTkferiFubDHY3gHcpQsFjAvZMzZRIrvI// CX5RcUoiZwKmDSjiMds9lPLgTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE+2zed0 G+k4kEsjBbS+g0ej+aouMB8GA1UdIwQYMBaAFMt01WE9c0LPubf3ne8Mn62IXHgi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3ODQ1Qi85NzM2OUI0NjIx NzYxMUVFQjRGM0FENkZDNEY5QUUwMi95M1RWWVQxelFzLTV0X2VkN3d5ZnJZaGNl Q0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kzVFZZVDF6UXMtNXRfZWQ3d3lmclloY2VDSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 ODQ1Qi85NzM2OUI0NjIxNzYxMUVFQjRGM0FENkZDNEY5QUUwMi95M1RWWVQxelFz LTV0X2VkN3d5ZnJZaGNlQ0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuQDbKrJpW2DEHenFv47HPf9FyvPiP3V6cTHoFmUOKGU+vxE2IhXRl +rgqVlW9cuy1YnOXJaqba397PmU8YaiQWpGy+MAdbJECXeoF2FFu+Px7AVaYpI5d +/ixaLceunJrHNgIamRq35obOMYf+4Y2KdSxxYx57l2GCvgSUHGZWCNpAL7A7V1J GzHObRLwi7cBrivRLzvFpr8DYwpgnd6A6c2JwXxJbiZboEEfSKypZYofieIxPVll 3hbBOQuNKloZBFF1T5hmYNFp339wq4W+v3tmClqG22/QyTDqHuPvBFwMCOf5DQll GZPMBAswzPayvn3AZHwUe1Sdm4pdylsB -----END CERTIFICATE-----Generated at Sun Jun 15 09:52:10 2025 by rpki-client