$ rpki-client -vvf rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft File: ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft (raw, json) Hash identifier: JJejdmd9sE8Ow468BMZhbIPVJARcL/98o8Caev2FwNY= Subject key identifier: CB:5C:74:D7:7A:43:5D:85:38:97:29:59:2B:71:56:1E:17:91:C3:00 Authority key identifier: CA:C4:47:8F:0F:DD:9A:E4:1E:24:E9:FC:67:F8:51:FF:43:C3:33:09 Certificate issuer: /CN=A919B5BB/serialNumber=CAC4478F0FDD9AE41E24E9FC67F851FF43C33309 Certificate serial: 20DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft Manifest number: 20D0 Signing time: Sat 14 Jun 2025 15:55:12 +0000 Manifest this update: Sat 14 Jun 2025 15:55:12 +0000 Manifest next update: Sat 21 Jun 2025 15:55:12 +0000 Files and hashes: 1: ysRHjw_dmuQeJOn8Z_hR_0PDMwk.crl (hash: y2XFcxKqf3BQFZ+LDeTY9pa2NLwxmQh5ovBMW9gN3aw=) 2: C49E2E22FF0111E591C15659C4F9AE02.roa (hash: 8rysbZt21FvuQ0omuoFXFp8YfdP5EnJpmuu61zguRxM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.crl rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:55:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8411 (0x20db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B5BB, serialNumber=CAC4478F0FDD9AE41E24E9FC67F851FF43C33309 Validity Not Before: Jun 14 15:55:12 2025 GMT Not After : Jun 21 15:55:12 2025 GMT Subject: CN=684d9b60-c314 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:d8:24:56:a2:3c:a9:0b:2c:95:57:19:47:0b: 87:87:2e:03:98:db:82:80:46:29:18:12:87:83:90: 19:75:ff:78:36:ac:fa:1e:6d:0a:74:de:3b:68:01: e8:74:69:15:02:0b:8c:74:fd:fa:6c:ad:f8:de:f2: d7:0a:4f:ea:dc:da:68:4e:ea:a5:80:e9:87:ad:4b: d6:af:ba:55:74:89:47:37:ce:50:ba:4a:f1:76:06: ea:32:d3:2f:53:c4:b6:13:09:92:93:80:a1:a2:a8: f1:92:a9:93:0f:be:b4:6e:24:9a:d1:17:16:ca:c1: 12:fc:e7:f8:76:23:72:a7:d5:b0:24:9d:ae:28:ff: f2:2a:93:4e:f8:10:13:89:00:29:4b:0e:02:2b:3d: eb:62:39:8e:25:e9:f5:4c:59:da:4d:5f:76:74:69: 82:eb:c3:1b:90:e8:7e:56:48:10:c4:05:09:19:96: 00:03:3e:3a:8a:c7:b1:c5:75:e8:f1:87:6d:a3:20: fd:57:05:d7:07:02:5b:97:26:ae:e6:d2:fe:db:30: 63:86:01:bb:e8:85:f9:ef:28:4c:59:70:6a:03:84: 8d:d0:e4:a0:b9:ee:19:01:10:b8:1a:f1:1d:b9:19: 04:66:df:f5:9e:e4:2b:d3:bb:60:ce:60:59:b6:48: 94:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:5C:74:D7:7A:43:5D:85:38:97:29:59:2B:71:56:1E:17:91:C3:00 X509v3 Authority Key Identifier: keyid:CA:C4:47:8F:0F:DD:9A:E4:1E:24:E9:FC:67:F8:51:FF:43:C3:33:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:97:9c:f7:3d:51:de:59:e0:ca:9b:06:db:a9:08:68:d0:ad: 8b:db:7d:06:41:a8:06:5a:06:4a:b8:1d:aa:11:a2:a7:89:45: 6c:9b:ab:69:b1:26:4a:3b:94:ce:bd:f6:d6:c6:df:f1:b0:05: c7:dd:96:3a:75:6e:93:a2:20:ac:6e:9b:f8:8c:27:66:7b:6c: 2c:2b:a5:80:e5:cf:2b:09:9a:24:65:68:55:62:7f:1d:88:d7: eb:cb:6b:c4:6c:85:c2:0e:6a:eb:01:ed:0c:00:24:7b:a9:37: 7b:57:96:ca:df:34:c9:19:e5:e7:27:ba:e6:e4:bd:50:4c:e8: e5:52:63:96:fb:c1:94:d0:d1:b0:9b:34:cf:cb:64:5f:9d:88: 8d:1e:df:62:8d:27:f1:50:27:39:85:ff:53:0b:7e:1e:f4:da: 7b:ef:17:2f:c4:65:3d:f7:2d:93:71:23:a4:28:fb:64:1b:f9: 8b:57:bd:08:eb:32:3c:02:9c:bc:05:2a:dc:e2:47:9e:4c:30: 1d:3d:f6:62:0b:6e:a2:43:af:4e:42:57:99:2f:9d:39:fe:f7: 8a:52:f2:3e:0d:df:1c:90:0f:f1:88:32:79:7f:fc:95:03:09: e2:ad:d9:c6:c4:99:93:e4:b4:c3:d7:3a:11:b5:9b:30:94:82: a2:69:c6:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICINswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUI1QkIxMTAvBgNVBAUTKENBQzQ0NzhGMEZERDlBRTQxRTI0RTlGQzY3Rjg1MUZG NDNDMzMzMDkwHhcNMjUwNjE0MTU1NTEyWhcNMjUwNjIxMTU1NTEyWjAYMRYwFAYD VQQDEw02ODRkOWI2MC1jMzE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3dgkVqI8qQsslVcZRwuHhy4DmNuCgEYpGBKHg5AZdf94Nqz6Hm0KdN47aAHo dGkVAguMdP36bK343vLXCk/q3NpoTuqlgOmHrUvWr7pVdIlHN85QukrxdgbqMtMv U8S2EwmSk4ChoqjxkqmTD760biSa0RcWysES/Of4diNyp9WwJJ2uKP/yKpNO+BAT iQApSw4CKz3rYjmOJen1TFnaTV92dGmC68MbkOh+VkgQxAUJGZYAAz46isexxXXo 8YdtoyD9VwXXBwJblyau5tL+2zBjhgG76IX57yhMWXBqA4SN0OSgue4ZARC4GvEd uRkEZt/1nuQr07tgzmBZtkiU+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMtcdNd6 Q12FOJcpWStxVh4XkcMAMB8GA1UdIwQYMBaAFMrER48P3ZrkHiTp/Gf4Uf9DwzMJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjVCQi80NEJCQzE0Q0ZG MDExMUU1QjFDRkIwNThDNEY5QUUwMi95c1JIandfZG11UWVKT244Wl9oUl8wUERN d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lzUkhqd19kbXVRZUpPbjhaX2hSXzBQRE13ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QjVCQi80NEJCQzE0Q0ZGMDExMUU1QjFDRkIwNThDNEY5QUUwMi95c1JIandfZG11 UWVKT244Wl9oUl8wUERNd2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXl5z3PVHeWeDKmwbbqQho0K2L230GQagGWgZKuB2qEaKniUVsm6tp sSZKO5TOvfbWxt/xsAXH3ZY6dW6ToiCsbpv4jCdme2wsK6WA5c8rCZokZWhVYn8d iNfry2vEbIXCDmrrAe0MACR7qTd7V5bK3zTJGeXnJ7rm5L1QTOjlUmOW+8GU0NGw mzTPy2RfnYiNHt9ijSfxUCc5hf9TC34e9Np77xcvxGU99y2TcSOkKPtkG/mLV70I 6zI8Apy8BSrc4keeTDAdPfZiC26iQ69OQleZL505/veKUvI+Dd8ckA/xiDJ5f/yV AwnirdnGxJmT5LTD1zoRtZswlIKiacYY -----END CERTIFICATE-----Generated at Sun Jun 15 05:07:13 2025 by rpki-client