$ rpki-client -vvf rpki.apnic.net/member_repository/A913EE46/AE82E12612ED11ED9E4D760EC4F9AE02/Y1FbNkEThI-lVNKEL1hBh3z2rwA.mft File: Y1FbNkEThI-lVNKEL1hBh3z2rwA.mft (raw, json) Hash identifier: HhwA3GfGK4zwA7iPMKTgnsx4FtFggAUwbIW2DQUAgHM= Subject key identifier: 51:F0:F6:0D:EA:3B:2D:3A:85:98:AD:5A:D7:9E:50:B4:AB:27:FE:E8 Authority key identifier: 63:51:5B:36:41:13:84:8F:A5:54:D2:84:2F:58:41:87:7C:F6:AF:00 Certificate issuer: /CN=A913EE46/serialNumber=63515B364113848FA554D2842F5841877CF6AF00 Certificate serial: 027B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1FbNkEThI-lVNKEL1hBh3z2rwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913EE46/AE82E12612ED11ED9E4D760EC4F9AE02/Y1FbNkEThI-lVNKEL1hBh3z2rwA.mft Manifest number: 0278 Signing time: Thu 03 Jul 2025 02:05:42 +0000 Manifest this update: Thu 03 Jul 2025 02:05:42 +0000 Manifest next update: Thu 10 Jul 2025 02:05:42 +0000 Files and hashes: 1: Y1FbNkEThI-lVNKEL1hBh3z2rwA.crl (hash: XvXwC1rlza+hWHqVhShVZac8MoDbEdudfMfOGzRyU6A=) 2: 9DFFBC7C12F011EDA0DB0B12C4F9AE02.roa (hash: I/KyU3geIWwBo8ZaiWc/F+HF/TbeVrVlUgdVYuSp+mY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913EE46/AE82E12612ED11ED9E4D760EC4F9AE02/Y1FbNkEThI-lVNKEL1hBh3z2rwA.crl rsync://rpki.apnic.net/member_repository/A913EE46/AE82E12612ED11ED9E4D760EC4F9AE02/Y1FbNkEThI-lVNKEL1hBh3z2rwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1FbNkEThI-lVNKEL1hBh3z2rwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 02:05:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 635 (0x27b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913EE46, serialNumber=63515B364113848FA554D2842F5841877CF6AF00 Validity Not Before: Jul 3 02:05:42 2025 GMT Not After : Jul 10 02:05:42 2025 GMT Subject: CN=6865e576-0099 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:56:1d:9a:a1:af:0d:cf:35:ad:74:2e:86:a9: 8c:2e:ce:80:41:02:fb:d3:3a:63:20:69:cb:01:41: 5c:94:ca:ca:a1:5c:39:85:1b:ab:2f:c9:d9:fa:41: ac:cd:46:a6:24:72:60:ab:e6:a4:13:9a:e9:a3:ff: 98:af:90:b2:5c:49:a7:8a:e4:a9:25:3e:bd:78:2a: bd:db:29:67:aa:68:37:2e:f2:b1:da:a2:83:d1:a0: d8:56:e8:bd:fa:73:75:29:55:e6:45:6d:09:1f:ca: 95:f6:c7:3f:ee:ef:4f:e9:68:b2:67:c4:56:77:72: 0f:96:ab:0e:f9:3f:48:95:79:c6:3a:78:08:a6:28: f2:e7:40:c1:69:c8:ac:06:f5:6a:d4:74:37:6c:4d: 7f:2f:5a:49:41:af:18:d5:a0:f5:0f:d5:d2:3a:1e: 8f:ca:38:8d:6c:a3:03:cb:5a:c2:e3:2b:f0:43:72: 98:5f:27:28:0c:55:21:79:e9:eb:72:fb:80:ca:b7: 45:34:3a:56:b5:10:3c:fb:bf:c0:3e:bd:97:b5:d6: e8:47:f2:e9:a4:52:d4:f1:1a:f5:e8:3a:f4:dd:3a: d4:a5:0d:03:98:59:59:c1:8d:b7:47:14:52:e9:ad: 94:06:d2:dd:93:d6:82:30:25:85:9e:04:83:53:03: 13:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:F0:F6:0D:EA:3B:2D:3A:85:98:AD:5A:D7:9E:50:B4:AB:27:FE:E8 X509v3 Authority Key Identifier: keyid:63:51:5B:36:41:13:84:8F:A5:54:D2:84:2F:58:41:87:7C:F6:AF:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913EE46/AE82E12612ED11ED9E4D760EC4F9AE02/Y1FbNkEThI-lVNKEL1hBh3z2rwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1FbNkEThI-lVNKEL1hBh3z2rwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913EE46/AE82E12612ED11ED9E4D760EC4F9AE02/Y1FbNkEThI-lVNKEL1hBh3z2rwA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:2c:e3:24:aa:9c:2c:d1:0b:7e:38:28:fd:46:fe:3f:d3:1a: 6d:d5:fd:1b:98:6d:af:38:59:f7:61:13:3c:7d:42:35:19:21: f7:f8:dd:36:1b:d6:e4:6f:c8:46:04:d5:c3:5c:45:aa:5c:73: c6:e5:0c:73:28:c6:92:93:c2:fd:80:75:91:0b:4a:1b:6c:f5: b7:4e:78:b9:36:69:2d:c6:3b:43:ed:86:a0:1c:e2:d9:a3:8e: 20:91:76:cd:b5:20:57:4e:29:d8:37:50:4e:90:60:74:76:1f: 94:99:bb:4f:90:60:a2:9f:80:96:a9:c5:eb:88:2b:c1:d3:9b: 77:7e:7a:2c:46:c3:51:da:be:8b:5a:c1:f7:39:39:df:29:56: 5c:4c:a8:88:f2:09:1a:6a:ac:8d:62:a3:05:8d:e9:5c:af:1b: f7:88:c0:14:67:b8:f7:27:f9:8f:bb:9d:6d:9f:f4:26:08:d5: 4f:03:2e:74:3f:f0:16:20:3a:52:7a:8a:57:c0:c7:a1:19:cb: c5:40:b9:96:30:d8:b6:2b:9e:01:79:34:f6:3e:5b:76:fc:fc: 4c:f5:4e:48:f8:75:28:99:73:19:23:e7:ef:a3:32:b1:72:2d: c4:69:d5:0f:b4:28:d0:56:43:3e:4c:f6:fd:b0:f8:fb:77:fa: ab:eb:26:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0VFNDYxMTAvBgNVBAUTKDYzNTE1QjM2NDExMzg0OEZBNTU0RDI4NDJGNTg0MTg3 N0NGNkFGMDAwHhcNMjUwNzAzMDIwNTQyWhcNMjUwNzEwMDIwNTQyWjAYMRYwFAYD VQQDEw02ODY1ZTU3Ni0wMDk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx1YdmqGvDc81rXQuhqmMLs6AQQL70zpjIGnLAUFclMrKoVw5hRurL8nZ+kGs zUamJHJgq+akE5rpo/+Yr5CyXEmniuSpJT69eCq92ylnqmg3LvKx2qKD0aDYVui9 +nN1KVXmRW0JH8qV9sc/7u9P6WiyZ8RWd3IPlqsO+T9IlXnGOngIpijy50DBacis BvVq1HQ3bE1/L1pJQa8Y1aD1D9XSOh6PyjiNbKMDy1rC4yvwQ3KYXycoDFUheenr cvuAyrdFNDpWtRA8+7/APr2XtdboR/LppFLU8Rr16Dr03TrUpQ0DmFlZwY23RxRS 6a2UBtLdk9aCMCWFngSDUwMTHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFHw9g3q Oy06hZitWteeULSrJ/7oMB8GA1UdIwQYMBaAFGNRWzZBE4SPpVTShC9YQYd89q8A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRUU0Ni9BRTgyRTEyNjEy RUQxMUVEOUU0RDc2MEVDNEY5QUUwMi9ZMUZiTmtFVGhJLWxWTktFTDFoQmgzejJy d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kxRmJOa0VUaEktbFZOS0VMMWhCaDN6MnJ3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RUU0Ni9BRTgyRTEyNjEyRUQxMUVEOUU0RDc2MEVDNEY5QUUwMi9ZMUZiTmtFVGhJ LWxWTktFTDFoQmgzejJyd0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2LOMkqpws0Qt+OCj9Rv4/0xpt1f0bmG2vOFn3YRM8fUI1GSH3+N02 G9bkb8hGBNXDXEWqXHPG5QxzKMaSk8L9gHWRC0obbPW3Tni5NmktxjtD7YagHOLZ o44gkXbNtSBXTinYN1BOkGB0dh+UmbtPkGCin4CWqcXriCvB05t3fnosRsNR2r6L WsH3OTnfKVZcTKiI8gkaaqyNYqMFjelcrxv3iMAUZ7j3J/mPu51tn/QmCNVPAy50 P/AWIDpSeopXwMehGcvFQLmWMNi2K54BeTT2Plt2/PxM9U5I+HUomXMZI+fvozKx ci3EadUPtCjQVkM+TPb9sPj7d/qr6yb7 -----END CERTIFICATE-----Generated at Thu Jul 3 14:19:12 2025 by rpki-client