$ rpki-client -vvf rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.mft File: yCt7N51v7So8MMRTfg-HzLYIIus.mft (raw, json) Hash identifier: g3p0GLNkOThwN7g99kNSy8XD4YhjNJmyb8M7frPMXrY= Subject key identifier: 33:76:B7:DE:AE:E4:8F:7B:F9:DD:2A:0B:30:1E:9A:77:C8:E5:40:0C Authority key identifier: C8:2B:7B:37:9D:6F:ED:2A:3C:30:C4:53:7E:0F:87:CC:B6:08:22:EB Certificate issuer: /CN=A917EB96/serialNumber=C82B7B379D6FED2A3C30C4537E0F87CCB60822EB Certificate serial: 0171 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCt7N51v7So8MMRTfg-HzLYIIus.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.mft Manifest number: 016D Signing time: Thu 19 Jun 2025 03:15:26 +0000 Manifest this update: Thu 19 Jun 2025 03:15:25 +0000 Manifest next update: Thu 26 Jun 2025 03:15:25 +0000 Files and hashes: 1: yCt7N51v7So8MMRTfg-HzLYIIus.crl (hash: yoS3LveR5Z33hx5OiXHUQbhVwy0Qer9xGrvvctKtbVE=) 2: B50ECD32A57E11EEB4533738C4F9AE02.roa (hash: BkdlPGBhBetu9r/R8RI86aafR+sAmMSSEW9hm5cCW00=) 3: 348BAEE41C2D11EEB362491FC4F9AE02.roa (hash: ABPxiDdG7YwQPZkFSTV8BYz3BNZi1RIYblf+R4M0eLY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.crl rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCt7N51v7So8MMRTfg-HzLYIIus.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 03:15:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 369 (0x171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917EB96, serialNumber=C82B7B379D6FED2A3C30C4537E0F87CCB60822EB Validity Not Before: Jun 19 03:15:25 2025 GMT Not After : Jun 26 03:15:25 2025 GMT Subject: CN=685380ce-c3dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:b9:a6:16:2f:02:8e:46:bb:78:53:d7:6d:3c: 39:b8:97:91:df:fa:cd:d6:ef:56:c0:08:f9:3e:ee: cd:13:b9:5a:82:ba:44:b2:74:b5:c8:21:0b:57:d2: a4:83:49:2d:77:c9:68:e7:8a:43:be:9a:34:4f:ca: 04:89:17:7e:14:8b:f9:b2:5b:d1:28:5d:44:fe:4c: f6:3c:a2:d4:4f:56:27:5f:5e:12:67:9d:d3:5d:c1: f9:1b:e3:63:ba:f6:25:7a:d0:21:cc:7f:41:30:52: 1c:a5:09:d8:51:d0:ba:b2:7b:59:f7:bb:11:d6:cf: 43:88:0a:a2:7d:f6:35:1b:a6:9b:4c:0a:82:b6:b7: 38:1f:c1:92:4f:da:b3:c0:ae:1d:02:3d:cd:d4:f2: c5:b6:13:23:e5:ac:fa:b5:21:0f:f3:a8:7a:25:44: 50:a7:28:03:55:e3:71:3f:ed:fa:02:77:0e:47:5f: 44:aa:c9:3a:c1:d8:93:b4:98:8b:07:ce:fe:60:0d: 9a:eb:65:00:ac:75:61:60:bb:85:3c:a3:bd:12:48: 90:01:a0:c9:0d:f6:2a:23:4a:41:3c:3c:5a:31:f6: 06:93:75:cf:f4:98:20:04:2e:21:5b:64:31:e6:94: bc:39:69:2f:31:38:76:5d:c4:65:6f:69:d8:16:c1: e4:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:76:B7:DE:AE:E4:8F:7B:F9:DD:2A:0B:30:1E:9A:77:C8:E5:40:0C X509v3 Authority Key Identifier: keyid:C8:2B:7B:37:9D:6F:ED:2A:3C:30:C4:53:7E:0F:87:CC:B6:08:22:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCt7N51v7So8MMRTfg-HzLYIIus.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:ee:5a:a3:c9:c3:dc:19:6e:94:e4:42:ef:39:7d:7f:32:ef: 9e:0c:b6:6e:2b:9a:96:77:15:ab:ff:b4:fd:5d:0a:02:98:18: fc:44:bf:ae:a9:a0:4e:e7:9b:41:b2:d2:cb:8e:e4:0f:34:2b: b7:ec:05:40:b5:fa:ae:92:51:f1:39:b7:25:2a:19:de:6b:38: ee:44:e0:e5:30:8c:56:37:b0:c7:59:25:c0:40:6e:06:86:29: dd:1f:10:f2:f7:61:9f:fa:4f:d9:7a:71:d1:68:df:44:7a:08: 6b:fc:e4:35:f9:cb:91:45:c1:47:68:99:5b:be:67:c2:7a:b4: 69:13:a4:fe:4a:bd:9b:3d:e6:05:ac:dc:72:d3:01:e8:f1:18: a6:c9:93:b6:7d:6c:c8:44:2a:2c:6a:71:02:9d:c4:77:7a:86: 34:ad:dd:8d:2a:e5:55:77:cb:e8:fe:0c:ff:d2:31:91:6e:61: 7a:e6:04:87:32:0a:fc:4b:09:8b:c6:b2:5b:a3:46:5f:70:c4: 8b:43:be:d4:df:d6:52:af:eb:5b:5d:5f:cf:57:c8:c7:ea:47: 89:ee:81:5b:f0:c9:1f:d6:86:15:1b:ba:7d:f1:38:70:45:65: 0f:7a:96:67:6c:7e:54:e5:ab:6e:d1:6c:f7:13:0d:61:32:6f: dc:8f:a0:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VCOTYxMTAvBgNVBAUTKEM4MkI3QjM3OUQ2RkVEMkEzQzMwQzQ1MzdFMEY4N0ND QjYwODIyRUIwHhcNMjUwNjE5MDMxNTI1WhcNMjUwNjI2MDMxNTI1WjAYMRYwFAYD VQQDEw02ODUzODBjZS1jM2RjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2LmmFi8Cjka7eFPXbTw5uJeR3/rN1u9WwAj5Pu7NE7lagrpEsnS1yCELV9Kk g0ktd8lo54pDvpo0T8oEiRd+FIv5slvRKF1E/kz2PKLUT1YnX14SZ53TXcH5G+Nj uvYletAhzH9BMFIcpQnYUdC6sntZ97sR1s9DiAqiffY1G6abTAqCtrc4H8GST9qz wK4dAj3N1PLFthMj5az6tSEP86h6JURQpygDVeNxP+36AncOR19Eqsk6wdiTtJiL B87+YA2a62UArHVhYLuFPKO9EkiQAaDJDfYqI0pBPDxaMfYGk3XP9JggBC4hW2Qx 5pS8OWkvMTh2XcRlb2nYFsHkEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDN2t96u 5I97+d0qCzAemnfI5UAMMB8GA1UdIwQYMBaAFMgrezedb+0qPDDEU34Ph8y2CCLr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUI5Ni82NEQ2QkRDQzFD MjkxMUVFOUQwNkY5MEFDNEY5QUUwMi95Q3Q3TjUxdjdTbzhNTVJUZmctSHpMWUlJ dXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lDdDdONTF2N1NvOE1NUlRmZy1IekxZSUl1cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RUI5Ni82NEQ2QkRDQzFDMjkxMUVFOUQwNkY5MEFDNEY5QUUwMi95Q3Q3TjUxdjdT bzhNTVJUZmctSHpMWUlJdXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBj7lqjycPcGW6U5ELvOX1/Mu+eDLZuK5qWdxWr/7T9XQoCmBj8RL+u qaBO55tBstLLjuQPNCu37AVAtfquklHxObclKhneazjuRODlMIxWN7DHWSXAQG4G hindHxDy92Gf+k/ZenHRaN9Eeghr/OQ1+cuRRcFHaJlbvmfCerRpE6T+Sr2bPeYF rNxy0wHo8RimyZO2fWzIRCosanECncR3eoY0rd2NKuVVd8vo/gz/0jGRbmF65gSH Mgr8SwmLxrJbo0ZfcMSLQ77U39ZSr+tbXV/PV8jH6keJ7oFb8Mkf1oYVG7p98Thw RWUPepZnbH5U5atu0Wz3Ew1hMm/cj6B/ -----END CERTIFICATE-----Generated at Fri Jun 20 05:26:56 2025 by rpki-client