$ rpki-client -vvf rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.mft File: Y4g-TKLI593aw5h-SE_R1nLZOUk.mft (raw, json) Hash identifier: qUddGuFfg9IX5PWWiCatzXzxPHsx8sKe9OPyjwYGWQI= Subject key identifier: 5C:A8:39:26:CA:44:19:1D:23:58:DF:F4:FA:1E:9D:78:1F:34:02:0F Authority key identifier: 63:88:3E:4C:A2:C8:E7:DD:DA:C3:98:7E:48:4F:D1:D6:72:D9:39:49 Certificate issuer: /CN=A913E4AA/serialNumber=63883E4CA2C8E7DDDAC3987E484FD1D672D93949 Certificate serial: 0C19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4g-TKLI593aw5h-SE_R1nLZOUk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.mft Manifest number: 0C12 Signing time: Wed 02 Jul 2025 18:55:37 +0000 Manifest this update: Wed 02 Jul 2025 18:55:36 +0000 Manifest next update: Wed 09 Jul 2025 18:55:36 +0000 Files and hashes: 1: Y4g-TKLI593aw5h-SE_R1nLZOUk.crl (hash: bEN8RE185L5RI0Xag1WmsB0SGGoqBo9d5N8VNHK3zno=) 2: 9D9E8D0C11DC11EABC4FB55AC4F9AE02.roa (hash: E2q/ZEHSPXl1Ew87PC9tVYqM/dotHBquWrnE6mAYEbI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.crl rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4g-TKLI593aw5h-SE_R1nLZOUk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:55:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3097 (0xc19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E4AA, serialNumber=63883E4CA2C8E7DDDAC3987E484FD1D672D93949 Validity Not Before: Jul 2 18:55:36 2025 GMT Not After : Jul 9 18:55:36 2025 GMT Subject: CN=686580a9-32cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:fa:57:61:d1:0e:50:e4:da:f7:01:9b:5a:b4: c1:66:98:2e:10:39:af:8c:b7:4a:1f:01:61:d1:ac: 7c:4b:3f:ab:c7:64:7c:2b:41:05:32:2b:d7:8d:56: c6:95:ec:83:7f:d1:52:af:60:b0:f4:cc:a5:e5:16: fc:7c:fb:c5:f4:38:dd:38:04:de:87:f2:fe:e1:92: 65:37:3e:7e:29:4a:96:c1:4f:5f:df:cd:b9:19:90: 87:37:1b:55:1e:8e:f6:9d:86:5e:bd:c1:12:48:35: 52:42:7f:60:02:81:ff:37:6a:69:1e:a8:47:a0:5c: da:7d:28:b6:df:69:ee:68:57:18:e6:bd:2e:ec:7b: 23:80:3e:aa:33:2e:92:11:ea:03:3a:3f:31:e7:9a: 86:25:ab:e0:07:f4:1e:dd:6d:c3:6c:11:ad:88:9f: de:83:50:c7:51:0b:fb:5d:cf:d4:7c:1a:58:84:78: 29:1c:61:9f:7d:01:ce:dd:2b:cd:84:0a:27:b0:59: 64:1a:be:43:fd:99:8e:12:2a:49:72:e1:d0:97:f1: c1:2c:5f:72:cc:71:58:7f:55:0d:ff:04:2e:8b:9c: ca:11:af:41:44:b6:77:b0:83:70:65:6b:ee:8f:eb: 65:8d:bb:39:97:17:b0:38:05:a7:63:5a:40:41:b0: d9:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:A8:39:26:CA:44:19:1D:23:58:DF:F4:FA:1E:9D:78:1F:34:02:0F X509v3 Authority Key Identifier: keyid:63:88:3E:4C:A2:C8:E7:DD:DA:C3:98:7E:48:4F:D1:D6:72:D9:39:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4g-TKLI593aw5h-SE_R1nLZOUk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:88:fa:12:74:6c:1c:8c:98:dd:b4:39:a9:35:23:d2:64:a6: 4d:87:9b:cf:b2:8f:2c:c8:2e:0d:65:69:aa:c0:b8:b1:d5:46: 2f:98:af:5d:97:72:dd:fc:de:e7:c7:83:34:3c:9a:7a:2d:59: d1:ce:8e:70:66:3e:be:68:af:f2:77:8a:b3:b2:5e:49:bd:06: 26:32:21:a3:5c:d2:24:70:9a:e6:eb:76:db:e3:72:8e:8b:7d: 34:f2:81:d4:55:6d:8a:d6:71:37:d4:6c:51:ba:0e:52:6a:ba: f8:c5:23:b6:2e:cb:40:d5:e4:dd:6e:2b:1d:3b:1c:ab:6a:09: b2:7c:d3:c0:07:f9:9e:69:ab:e8:52:78:8f:c6:72:60:34:03: e0:c2:52:05:20:7d:69:16:c0:70:76:5a:05:da:5a:9c:d8:69: bd:2a:f2:ab:43:de:bc:46:e4:9a:c6:0d:0c:1f:18:51:3b:13: 4d:1d:2a:14:f3:27:18:72:c6:f2:d8:2f:ed:4c:af:c9:1c:2c: eb:58:03:0e:fc:49:7c:b9:aa:c9:94:38:a3:8b:e1:93:d2:ea: be:90:76:00:98:11:21:8d:4e:86:c7:30:43:99:22:b6:d4:cf: d4:e8:cd:c1:06:1d:c6:09:9b:ce:10:c4:31:45:7d:1c:db:e6: c2:a4:15:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDBkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0U0QUExMTAvBgNVBAUTKDYzODgzRTRDQTJDOEU3REREQUMzOTg3RTQ4NEZEMUQ2 NzJEOTM5NDkwHhcNMjUwNzAyMTg1NTM2WhcNMjUwNzA5MTg1NTM2WjAYMRYwFAYD VQQDEw02ODY1ODBhOS0zMmNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx/pXYdEOUOTa9wGbWrTBZpguEDmvjLdKHwFh0ax8Sz+rx2R8K0EFMivXjVbG leyDf9FSr2Cw9Myl5Rb8fPvF9DjdOATeh/L+4ZJlNz5+KUqWwU9f3825GZCHNxtV Ho72nYZevcESSDVSQn9gAoH/N2ppHqhHoFzafSi232nuaFcY5r0u7HsjgD6qMy6S EeoDOj8x55qGJavgB/Qe3W3DbBGtiJ/eg1DHUQv7Xc/UfBpYhHgpHGGffQHO3SvN hAonsFlkGr5D/ZmOEipJcuHQl/HBLF9yzHFYf1UN/wQui5zKEa9BRLZ3sINwZWvu j+tljbs5lxewOAWnY1pAQbDZpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFyoOSbK RBkdI1jf9PoenXgfNAIPMB8GA1UdIwQYMBaAFGOIPkyiyOfd2sOYfkhP0dZy2TlJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTRBQS82NzRDQTI5RTEx REIxMUVBQkY0NURBNTVDNEY5QUUwMi9ZNGctVEtMSTU5M2F3NWgtU0VfUjFuTFpP VWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1k0Zy1US0xJNTkzYXc1aC1TRV9SMW5MWk9Vay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTRBQS82NzRDQTI5RTExREIxMUVBQkY0NURBNTVDNEY5QUUwMi9ZNGctVEtMSTU5 M2F3NWgtU0VfUjFuTFpPVWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBiPoSdGwcjJjdtDmpNSPSZKZNh5vPso8syC4NZWmqwLix1UYvmK9d l3Ld/N7nx4M0PJp6LVnRzo5wZj6+aK/yd4qzsl5JvQYmMiGjXNIkcJrm63bb43KO i3008oHUVW2K1nE31GxRug5Sarr4xSO2LstA1eTdbisdOxyragmyfNPAB/meaavo UniPxnJgNAPgwlIFIH1pFsBwdloF2lqc2Gm9KvKrQ968RuSaxg0MHxhROxNNHSoU 8ycYcsby2C/tTK/JHCzrWAMO/El8uarJlDiji+GT0uq+kHYAmBEhjU6GxzBDmSK2 1M/U6M3BBh3GCZvOEMQxRX0c2+bCpBX9 -----END CERTIFICATE-----Generated at Thu Jul 3 09:05:15 2025 by rpki-client