$ rpki-client -vvf rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft File: ny5XiO95WFurdhmHfTlierLl1Rk.mft (raw, json) Hash identifier: t1dnlkJIRAoJ74FRrO0x75sOjfK9MDMD2KorUrUaZ9Y= Subject key identifier: 36:66:96:A3:78:C0:70:15:7E:F5:E0:F5:5E:E2:0D:0F:8C:91:81:2D Authority key identifier: 9F:2E:57:88:EF:79:58:5B:AB:76:19:87:7D:39:62:7A:B2:E5:D5:19 Certificate issuer: /CN=A913A7A6/serialNumber=9F2E5788EF79585BAB7619877D39627AB2E5D519 Certificate serial: 0A25 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ny5XiO95WFurdhmHfTlierLl1Rk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft Manifest number: 0A1E Signing time: Wed 02 Jul 2025 20:00:12 +0000 Manifest this update: Wed 02 Jul 2025 20:00:11 +0000 Manifest next update: Wed 09 Jul 2025 20:00:11 +0000 Files and hashes: 1: ny5XiO95WFurdhmHfTlierLl1Rk.crl (hash: chWkJ6B7v3PhueFVQTLTJuq2cnj9sF2Soa/dD/L3AN0=) 2: 4DAFC184ADC011ED897A4050C4F9AE02.roa (hash: /BGVJbRRDfivu1c+fyECLgKysqOT6aaM0UL54g9lwQ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.crl rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ny5XiO95WFurdhmHfTlierLl1Rk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:00:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2597 (0xa25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A7A6, serialNumber=9F2E5788EF79585BAB7619877D39627AB2E5D519 Validity Not Before: Jul 2 20:00:11 2025 GMT Not After : Jul 9 20:00:11 2025 GMT Subject: CN=68658fcc-4538 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e4:28:1a:06:34:3c:fe:90:d1:ca:2d:ad:ab: ba:7b:4f:de:9e:3a:45:ee:eb:1c:49:c5:93:a0:37: 60:3e:23:dc:43:29:e1:60:be:45:60:f6:c8:f3:07: ab:73:2a:cf:1c:98:ac:1f:a7:b7:1f:66:52:8b:1f: 22:fc:da:73:6a:27:db:f4:29:31:f6:1a:46:10:5f: 83:b6:53:ff:cf:52:7d:f3:e8:d8:fd:78:0d:71:66: b0:b8:99:d4:88:dd:ea:85:9b:ba:86:f6:2e:76:a3: d2:60:e0:c2:d7:fd:10:fe:58:b1:c4:e3:93:21:c9: ac:c2:f4:11:34:a9:ad:0a:b6:4c:c7:8e:20:1e:e0: bf:e4:13:04:3a:ba:62:06:32:a4:7d:56:fb:96:32: f3:0c:06:75:16:ec:56:1a:de:35:17:3f:91:63:1c: b9:72:d7:f0:ab:cd:d3:81:d3:0a:ea:d7:b5:39:88: 9b:14:6d:d7:5f:ba:36:aa:c3:53:e3:6e:11:ba:16: a0:f2:82:bf:54:ae:b7:8f:89:63:8c:e7:83:b7:70: 1e:7b:a8:57:55:17:be:04:2e:6c:60:24:1c:2d:10: a3:2e:79:66:ef:dd:04:c4:16:1a:b7:d9:6d:22:88: 3e:15:e9:0c:64:eb:77:52:44:41:40:b3:9f:05:9f: 5b:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:66:96:A3:78:C0:70:15:7E:F5:E0:F5:5E:E2:0D:0F:8C:91:81:2D X509v3 Authority Key Identifier: keyid:9F:2E:57:88:EF:79:58:5B:AB:76:19:87:7D:39:62:7A:B2:E5:D5:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ny5XiO95WFurdhmHfTlierLl1Rk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:42:17:45:1a:b8:34:c8:53:72:77:15:9f:5c:af:1c:f3:c6: bc:ac:c3:17:30:d8:3b:d3:de:d4:ca:0e:4b:08:df:41:2e:95: 6b:91:85:f5:6f:77:59:bd:b8:e3:b7:8a:86:0c:65:74:30:4f: 7e:75:a5:74:cd:e6:60:c4:34:1c:05:21:a5:31:e3:57:ba:fc: 6e:21:9f:a6:6c:e3:e7:c6:e9:27:9e:48:3d:cf:9c:c2:e6:9d: a4:c8:28:23:f6:c7:81:14:5d:39:a2:67:6e:7c:e2:fa:04:8a: 26:25:4b:7a:31:0b:c9:8d:ed:9e:d1:0b:ab:3c:d3:0b:52:08: 13:63:65:43:da:9b:95:2e:08:ae:7c:98:08:ad:a5:a3:a4:60: 73:5d:38:35:5e:87:73:f7:d3:fa:4e:f3:72:53:77:46:fc:83: c8:4f:d7:4e:1a:5f:be:82:71:ad:90:02:88:80:6a:8b:4a:85: 73:43:f1:41:b2:2e:c5:36:b1:49:a8:a9:3f:50:a9:cb:87:ce: cd:2b:9a:4e:93:8b:c5:5a:51:da:34:4f:19:fc:31:d5:16:10: 20:29:73:cf:17:d5:45:ad:4c:18:63:07:d1:c0:fe:68:62:08: 2c:65:2b:9e:40:6d:5a:e9:b1:dc:16:44:21:73:50:44:3c:63: 62:30:a4:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCiUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E3QTYxMTAvBgNVBAUTKDlGMkU1Nzg4RUY3OTU4NUJBQjc2MTk4NzdEMzk2MjdB QjJFNUQ1MTkwHhcNMjUwNzAyMjAwMDExWhcNMjUwNzA5MjAwMDExWjAYMRYwFAYD VQQDEw02ODY1OGZjYy00NTM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAveQoGgY0PP6Q0cotrau6e0/enjpF7uscScWToDdgPiPcQynhYL5FYPbI8wer cyrPHJisH6e3H2ZSix8i/Npzaifb9Ckx9hpGEF+DtlP/z1J98+jY/XgNcWawuJnU iN3qhZu6hvYudqPSYODC1/0Q/lixxOOTIcmswvQRNKmtCrZMx44gHuC/5BMEOrpi BjKkfVb7ljLzDAZ1FuxWGt41Fz+RYxy5ctfwq83TgdMK6te1OYibFG3XX7o2qsNT 424Ruhag8oK/VK63j4ljjOeDt3Aee6hXVRe+BC5sYCQcLRCjLnlm790ExBYat9lt Iog+FekMZOt3UkRBQLOfBZ9boQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDZmlqN4 wHAVfvXg9V7iDQ+MkYEtMB8GA1UdIwQYMBaAFJ8uV4jveVhbq3YZh305Ynqy5dUZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTdBNi80NTdBOEU4Mjcz QjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9ueTVYaU85NVdGdXJkaG1IZlRsaWVyTGwx UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL255NVhpTzk1V0Z1cmRobUhmVGxpZXJMbDFSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTdBNi80NTdBOEU4MjczQjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9ueTVYaU85NVdG dXJkaG1IZlRsaWVyTGwxUmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATQhdFGrg0yFNydxWfXK8c88a8rMMXMNg7097Uyg5LCN9BLpVrkYX1 b3dZvbjjt4qGDGV0ME9+daV0zeZgxDQcBSGlMeNXuvxuIZ+mbOPnxuknnkg9z5zC 5p2kyCgj9seBFF05omdufOL6BIomJUt6MQvJje2e0QurPNMLUggTY2VD2puVLgiu fJgIraWjpGBzXTg1Xodz99P6TvNyU3dG/IPIT9dOGl++gnGtkAKIgGqLSoVzQ/FB si7FNrFJqKk/UKnLh87NK5pOk4vFWlHaNE8Z/DHVFhAgKXPPF9VFrUwYYwfRwP5o YggsZSueQG1a6bHcFkQhc1BEPGNiMKQw -----END CERTIFICATE-----Generated at Thu Jul 3 23:44:41 2025 by rpki-client