$ rpki-client -vvf rpki.apnic.net/member_repository/A9188CC3/EDDA36E2D72311EFA2269419C4F9AE02/yRauWpUgtfZ2fnnJFa-hv25JGJk.mft File: yRauWpUgtfZ2fnnJFa-hv25JGJk.mft (raw, json) Hash identifier: xssz3at86FeEJiYT5ey0hHxb+j6NDtd+OvOOgUgfODw= Subject key identifier: 5B:E1:D7:B9:B5:F7:08:2A:F1:F1:1E:6E:5A:A9:27:D4:55:68:94:35 Authority key identifier: C9:16:AE:5A:95:20:B5:F6:76:7E:79:C9:15:AF:A1:BF:6E:49:18:99 Certificate issuer: /CN=A9188CC3/serialNumber=C916AE5A9520B5F6767E79C915AFA1BF6E491899 Certificate serial: 4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yRauWpUgtfZ2fnnJFa-hv25JGJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9188CC3/EDDA36E2D72311EFA2269419C4F9AE02/yRauWpUgtfZ2fnnJFa-hv25JGJk.mft Manifest number: 4C Signing time: Fri 13 Jun 2025 06:14:37 +0000 Manifest this update: Fri 13 Jun 2025 06:14:36 +0000 Manifest next update: Fri 20 Jun 2025 06:14:36 +0000 Files and hashes: 1: yRauWpUgtfZ2fnnJFa-hv25JGJk.crl (hash: 0tv5Rch6w3gQQ13YPexAv/IGAfmixODIdfrmrGI0Pcw=) 2: DAB3F33EDE0B11EF8FDDD043C4F9AE02.roa (hash: Rb4ZTb+DIpBolhpNi77VSAYUPtHpBMXs9JxNCJqiIFg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9188CC3/EDDA36E2D72311EFA2269419C4F9AE02/yRauWpUgtfZ2fnnJFa-hv25JGJk.crl rsync://rpki.apnic.net/member_repository/A9188CC3/EDDA36E2D72311EFA2269419C4F9AE02/yRauWpUgtfZ2fnnJFa-hv25JGJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yRauWpUgtfZ2fnnJFa-hv25JGJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 06:14:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9188CC3, serialNumber=C916AE5A9520B5F6767E79C915AFA1BF6E491899 Validity Not Before: Jun 13 06:14:36 2025 GMT Not After : Jun 20 06:14:36 2025 GMT Subject: CN=684bc1cd-3978 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:25:d5:73:03:a7:a1:cd:90:14:1b:0f:dc:e0: a1:5e:f4:bd:e6:68:5b:d9:6f:bb:f2:ac:cb:67:28: 74:31:e4:96:d8:2f:3c:d7:c7:c5:ad:1a:20:41:a6: 0c:0b:cc:1e:45:49:fa:d4:bb:f6:a6:cd:05:52:c0: b4:d5:9f:2a:33:48:4c:f4:f6:86:af:74:15:6a:ca: 16:17:2d:27:c5:ae:d8:00:30:ea:3b:38:a6:5d:9b: 61:b9:77:f1:0f:81:14:2f:a0:6c:4b:0b:e4:22:e0: e6:6a:35:da:b2:9b:09:cc:23:c4:70:91:72:b6:cd: c1:16:2d:14:21:b8:93:90:7e:61:d6:ea:56:ef:b3: 4c:2e:02:11:5a:7b:bd:ad:55:c6:3d:9f:8d:b5:0d: 5c:31:ee:b1:18:6f:cd:19:56:07:40:4f:35:c9:60: 37:45:fa:a0:c7:23:2d:7b:c5:c9:98:9b:fb:22:aa: 42:6f:22:f3:44:e1:1e:6f:37:08:50:e7:d4:0f:f8: b8:4a:8e:ce:47:8a:5e:8a:bd:74:3e:da:ae:3b:15: 73:dc:17:4d:e3:8e:fc:a4:52:bb:86:f8:ba:07:9e: fa:20:79:e4:92:ae:bb:66:b5:84:67:51:9e:5a:0e: eb:cc:8f:aa:b3:e1:84:b0:af:e9:55:e7:36:b9:73: 65:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:E1:D7:B9:B5:F7:08:2A:F1:F1:1E:6E:5A:A9:27:D4:55:68:94:35 X509v3 Authority Key Identifier: keyid:C9:16:AE:5A:95:20:B5:F6:76:7E:79:C9:15:AF:A1:BF:6E:49:18:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9188CC3/EDDA36E2D72311EFA2269419C4F9AE02/yRauWpUgtfZ2fnnJFa-hv25JGJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yRauWpUgtfZ2fnnJFa-hv25JGJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188CC3/EDDA36E2D72311EFA2269419C4F9AE02/yRauWpUgtfZ2fnnJFa-hv25JGJk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:44:fc:c8:f8:53:d1:d8:58:f8:ff:db:df:29:f5:a4:5f:fa: a3:dc:33:76:20:17:de:9b:32:fe:c9:28:b0:d5:e9:70:7d:ad: 17:69:bf:8e:e6:4f:4e:8a:2a:5c:3d:22:73:f9:f5:f0:9b:1a: 90:56:41:d1:88:d8:66:0d:e9:dd:23:3b:1d:8d:0f:cf:05:62: e5:11:af:0b:db:11:54:81:91:94:aa:84:77:d0:91:93:d5:0a: c0:37:10:45:45:a2:a0:97:40:62:24:1b:10:5d:3c:45:4f:97: 0f:b9:1f:f3:83:7b:71:81:f1:f0:14:c5:e9:74:a6:65:b8:3b: b1:bb:be:c5:76:b1:86:22:aa:92:f8:d1:59:c0:ed:49:5f:11: d9:7e:24:d1:00:d1:fe:a5:ad:c2:c0:3f:90:50:f7:27:8a:16: dd:59:a4:d3:15:7b:55:d6:d9:10:01:f3:60:ed:40:6a:30:2d: f6:84:fd:7a:f9:a4:11:d1:16:c2:c7:e0:d9:a5:c7:0f:c3:2b: 78:26:a1:4e:bc:df:d6:29:f0:15:b3:4b:6c:90:31:da:ae:e2: 78:9a:cc:01:d4:b4:46:53:f5:78:78:68:95:58:92:7a:be:c3: f6:10:ed:91:ca:ab:b7:10:fc:5d:0d:03:4e:9e:08:71:fa:10: 51:a5:72:9e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 OENDMzExMC8GA1UEBRMoQzkxNkFFNUE5NTIwQjVGNjc2N0U3OUM5MTVBRkExQkY2 RTQ5MTg5OTAeFw0yNTA2MTMwNjE0MzZaFw0yNTA2MjAwNjE0MzZaMBgxFjAUBgNV BAMTDTY4NGJjMWNkLTM5NzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVJdVzA6ehzZAUGw/c4KFe9L3maFvZb7vyrMtnKHQx5JbYLzzXx8WtGiBBpgwL zB5FSfrUu/amzQVSwLTVnyozSEz09oavdBVqyhYXLSfFrtgAMOo7OKZdm2G5d/EP gRQvoGxLC+Qi4OZqNdqymwnMI8RwkXK2zcEWLRQhuJOQfmHW6lbvs0wuAhFae72t VcY9n421DVwx7rEYb80ZVgdATzXJYDdF+qDHIy17xcmYm/siqkJvIvNE4R5vNwhQ 59QP+LhKjs5Hil6KvXQ+2q47FXPcF03jjvykUruG+LoHnvogeeSSrrtmtYRnUZ5a DuvMj6qz4YSwr+lV5za5c2UXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUW+HXubX3 CCrx8R5uWqkn1FVolDUwHwYDVR0jBBgwFoAUyRauWpUgtfZ2fnnJFa+hv25JGJkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg4Q0MzL0VEREEzNkUyRDcy MzExRUZBMjI2OTQxOUM0RjlBRTAyL3lSYXVXcFVndGZaMmZubkpGYS1odjI1SkdK ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveVJhdVdwVWd0ZloyZm5uSkZhLWh2MjVKR0prLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg4 Q0MzL0VEREEzNkUyRDcyMzExRUZBMjI2OTQxOUM0RjlBRTAyL3lSYXVXcFVndGZa MmZubkpGYS1odjI1SkdKay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAExE/Mj4U9HYWPj/298p9aRf+qPcM3YgF96bMv7JKLDV6XB9rRdpv47m T06KKlw9InP59fCbGpBWQdGI2GYN6d0jOx2ND88FYuURrwvbEVSBkZSqhHfQkZPV CsA3EEVFoqCXQGIkGxBdPEVPlw+5H/ODe3GB8fAUxel0pmW4O7G7vsV2sYYiqpL4 0VnA7UlfEdl+JNEA0f6lrcLAP5BQ9yeKFt1ZpNMVe1XW2RAB82DtQGowLfaE/Xr5 pBHRFsLH4Nmlxw/DK3gmoU6839Yp8BWzS2yQMdqu4niazAHUtEZT9Xh4aJVYknq+ w/YQ7ZHKq7cQ/F0NA06eCHH6EFGlcp4= -----END CERTIFICATE-----Generated at Sun Jun 15 08:41:49 2025 by rpki-client