$ rpki-client -vvf rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft File: y6GXwEyqm9KV9XiEcqahCqP773A.mft (raw, json) Hash identifier: LF88XqkvgRauVVZhXDQFc7EQoOkJ/MbucCgWDohiWfs= Subject key identifier: 71:F8:91:70:6C:B8:2F:DC:B6:A6:AA:3E:B8:ED:4B:6F:5D:9C:3F:8F Authority key identifier: CB:A1:97:C0:4C:AA:9B:D2:95:F5:78:84:72:A6:A1:0A:A3:FB:EF:70 Certificate issuer: /CN=A9143CB3/serialNumber=CBA197C04CAA9BD295F5788472A6A10AA3FBEF70 Certificate serial: 1B3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft Manifest number: 1B10 Signing time: Wed 02 Jul 2025 16:25:55 +0000 Manifest this update: Wed 02 Jul 2025 16:25:55 +0000 Manifest next update: Wed 09 Jul 2025 16:25:55 +0000 Files and hashes: 1: y6GXwEyqm9KV9XiEcqahCqP773A.crl (hash: TMWgwPn8V7vHT1UHco0ZFjGvXl2tfQ66wjqaUvMpDfg=) 2: D90961489C1311EFA0BF1480C4F9AE02.roa (hash: Jv1d6fF3qu1qMz0c/kGUVQ3xOsIZk2UWH2dC2+4vagE=) 3: DE0A76C805B511EE95562E2AC4F9AE02.roa (hash: hMIakiTTivB+fRa4Rnc2jL//XFH58YMCoj5LWIbNoBM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.crl rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 16:25:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6972 (0x1b3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143CB3, serialNumber=CBA197C04CAA9BD295F5788472A6A10AA3FBEF70 Validity Not Before: Jul 2 16:25:55 2025 GMT Not After : Jul 9 16:25:55 2025 GMT Subject: CN=68655d93-ae23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:2d:8d:fc:16:c7:fd:5f:a0:2e:37:ea:69:94: b2:df:98:a6:af:13:65:3a:b7:5d:0f:e3:b0:8d:3d: f8:a4:90:55:a2:f2:10:6e:f7:2e:8f:11:60:30:e4: 27:1f:e2:0a:ab:aa:0e:cc:fa:7b:31:4f:62:a0:b7: 17:b8:0f:8f:cd:bf:b6:a1:05:69:67:72:ce:60:89: 9e:53:dc:63:86:9b:07:c0:2f:84:3a:33:bb:1e:ae: 61:c6:b4:d1:18:a2:25:e3:15:32:fd:96:cc:16:f2: bc:5d:c6:8c:15:89:97:57:73:65:d1:59:2c:16:7e: bb:cf:9e:1f:55:d2:91:61:5e:ce:79:db:d9:39:ed: bb:2b:1e:40:b4:98:6e:34:93:fa:fc:f2:2f:04:3d: 3a:89:e2:dd:f3:2b:c9:ad:a0:9b:4d:57:8a:74:a6: d2:37:26:60:07:1a:3f:5d:56:97:47:1b:e9:d0:ed: 90:e5:f9:b8:8f:91:37:4d:0d:99:c5:65:ff:f7:e8: 07:c4:6c:fe:21:c8:76:fa:b9:49:4f:a7:09:9e:96: f8:94:b2:1a:e6:f6:77:81:5a:cd:e5:b3:38:8c:28: 60:82:9a:a9:c1:cb:fd:b6:28:86:2e:56:d7:51:27: 4a:f9:04:0f:c8:a8:c3:03:ae:37:88:3a:d3:3f:e2: f9:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:F8:91:70:6C:B8:2F:DC:B6:A6:AA:3E:B8:ED:4B:6F:5D:9C:3F:8F X509v3 Authority Key Identifier: keyid:CB:A1:97:C0:4C:AA:9B:D2:95:F5:78:84:72:A6:A1:0A:A3:FB:EF:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:64:26:38:73:80:93:e2:05:bf:03:89:ab:79:2b:c2:40:6d: 48:17:98:c5:7e:5a:ac:c6:69:57:4b:88:7b:7a:ba:33:98:b2: c6:2b:7e:97:97:a7:ba:b4:8f:4b:1e:1f:9d:18:2c:1a:7b:cc: 8b:68:b2:dd:1e:fe:52:fd:3b:44:30:a8:0a:a2:55:02:23:a4: f6:91:13:fe:3e:b2:9c:ef:4c:bd:12:bc:df:71:55:af:29:f3: dd:0a:59:70:2d:e4:70:65:4a:48:12:45:6d:99:df:9e:96:71: ad:d6:14:ad:5f:0b:bb:ae:05:d7:c1:5c:c3:f0:b8:2b:a8:e9: 38:6b:91:2b:7a:8e:32:49:a0:53:5f:d8:08:69:4f:42:29:0c: 20:8b:2c:99:50:f7:25:9d:a0:0f:a5:2e:47:3b:43:02:b8:f6: 09:f9:95:4c:48:f8:84:73:0c:e3:92:98:3a:16:a7:9f:b8:c9: 88:d8:c0:50:57:ab:ec:37:3f:4a:ab:04:d6:46:eb:34:26:c7: b2:49:8e:fc:c9:f3:fb:1b:dc:69:41:71:4d:19:cd:9a:5a:d3: d7:1e:fc:66:f2:46:5d:8c:d7:66:fb:62:3f:90:66:94:65:12: 23:5a:b2:d3:c2:1a:97:1a:37:82:d5:e9:90:86:b4:52:51:8d: b3:11:62:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGzwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNDQjMxMTAvBgNVBAUTKENCQTE5N0MwNENBQTlCRDI5NUY1Nzg4NDcyQTZBMTBB QTNGQkVGNzAwHhcNMjUwNzAyMTYyNTU1WhcNMjUwNzA5MTYyNTU1WjAYMRYwFAYD VQQDEw02ODY1NWQ5My1hZTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAni2N/BbH/V+gLjfqaZSy35imrxNlOrddD+OwjT34pJBVovIQbvcujxFgMOQn H+IKq6oOzPp7MU9ioLcXuA+Pzb+2oQVpZ3LOYImeU9xjhpsHwC+EOjO7Hq5hxrTR GKIl4xUy/ZbMFvK8XcaMFYmXV3Nl0VksFn67z54fVdKRYV7OedvZOe27Kx5AtJhu NJP6/PIvBD06ieLd8yvJraCbTVeKdKbSNyZgBxo/XVaXRxvp0O2Q5fm4j5E3TQ2Z xWX/9+gHxGz+Ich2+rlJT6cJnpb4lLIa5vZ3gVrN5bM4jChggpqpwcv9tiiGLlbX USdK+QQPyKjDA643iDrTP+L5YQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHH4kXBs uC/ctqaqPrjtS29dnD+PMB8GA1UdIwQYMBaAFMuhl8BMqpvSlfV4hHKmoQqj++9w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0NCMy8xREI3OTgzQzI1 OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi95NkdYd0V5cW05S1Y5WGlFY3FhaENxUDc3 M0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3k2R1h3RXlxbTlLVjlYaUVjcWFoQ3FQNzczQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0NCMy8xREI3OTgzQzI1OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi95NkdYd0V5cW05 S1Y5WGlFY3FhaENxUDc3M0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBZCY4c4CT4gW/A4mreSvCQG1IF5jFflqsxmlXS4h7erozmLLGK36X l6e6tI9LHh+dGCwae8yLaLLdHv5S/TtEMKgKolUCI6T2kRP+PrKc70y9ErzfcVWv KfPdCllwLeRwZUpIEkVtmd+elnGt1hStXwu7rgXXwVzD8LgrqOk4a5Ereo4ySaBT X9gIaU9CKQwgiyyZUPclnaAPpS5HO0MCuPYJ+ZVMSPiEcwzjkpg6FqefuMmI2MBQ V6vsNz9KqwTWRus0JseySY78yfP7G9xpQXFNGc2aWtPXHvxm8kZdjNdm+2I/kGaU ZRIjWrLTwhqXGjeC1emQhrRSUY2zEWJA -----END CERTIFICATE-----Generated at Thu Jul 3 04:27:36 2025 by rpki-client