$ rpki-client -vvf rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/YBC8xly5zPAs9-0p7HXk1iK98_A.mft File: YBC8xly5zPAs9-0p7HXk1iK98_A.mft (raw, json) Hash identifier: g8YQUjZP0WTSaYy3wmzvhfKjc4JQfy3H07/p1PQBky0= Subject key identifier: 97:C3:C5:82:DA:E9:E0:41:E0:62:83:45:25:98:62:B1:94:A5:D8:74 Authority key identifier: 60:10:BC:C6:5C:B9:CC:F0:2C:F7:ED:29:EC:75:E4:D6:22:BD:F3:F0 Certificate issuer: /CN=A9144F45/serialNumber=6010BCC65CB9CCF02CF7ED29EC75E4D622BDF3F0 Certificate serial: 04AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBC8xly5zPAs9-0p7HXk1iK98_A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/YBC8xly5zPAs9-0p7HXk1iK98_A.mft Manifest number: 04A6 Signing time: Thu 03 Jul 2025 00:17:08 +0000 Manifest this update: Thu 03 Jul 2025 00:17:08 +0000 Manifest next update: Thu 10 Jul 2025 00:17:08 +0000 Files and hashes: 1: YBC8xly5zPAs9-0p7HXk1iK98_A.crl (hash: N4pWjwhThd5yvEl0g3onKZxFgTSwiYImeKaSFB+pI3w=) 2: E225E68E397411EC8120D135C4F9AE02.roa (hash: GWZiL4+KkXKacwwHdWBVfV3QtoEcyH45HgJbisXMlBM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/YBC8xly5zPAs9-0p7HXk1iK98_A.crl rsync://rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/YBC8xly5zPAs9-0p7HXk1iK98_A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBC8xly5zPAs9-0p7HXk1iK98_A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 00:17:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1194 (0x4aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144F45, serialNumber=6010BCC65CB9CCF02CF7ED29EC75E4D622BDF3F0 Validity Not Before: Jul 3 00:17:08 2025 GMT Not After : Jul 10 00:17:08 2025 GMT Subject: CN=6865cc04-8960 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:c9:f3:9e:ba:3b:13:54:85:39:45:aa:dd:14: 0e:36:c1:5b:7a:ce:55:6c:f2:f2:c2:13:97:52:d8: 91:7d:de:ff:d8:e0:fc:3b:f4:a0:d7:7f:d2:25:21: 7e:a1:89:a3:16:9a:73:69:01:bf:96:46:fd:d3:54: 38:bd:c5:aa:fa:f5:d7:0a:2c:1e:ee:dd:68:ba:d5: 42:c8:02:65:73:7c:05:50:bc:57:4f:69:d9:34:33: 45:47:6e:23:f5:17:2b:ea:df:5f:f4:7b:c9:e1:39: 06:28:97:96:49:30:d5:1f:71:61:1e:7f:af:d0:db: b8:cf:df:7d:52:97:30:35:0c:7a:6f:8b:fe:92:04: 3d:51:0a:25:2e:ba:99:1c:21:b5:95:e2:f3:c7:13: 01:84:ad:cc:ba:d1:28:6a:de:c6:50:82:34:35:03: 7b:2e:2f:da:e1:d8:b7:4a:be:53:27:76:1f:25:41: a9:bb:52:40:5b:33:5b:f5:09:ce:dd:ac:b3:9e:32: e1:60:25:19:5b:e4:51:44:77:67:96:ff:d4:e7:4c: 2f:f6:56:7a:46:da:19:2b:b5:96:b1:fe:78:c9:b9: a7:fc:0d:70:78:ff:0f:01:e3:52:1e:b8:1f:a1:08: 5d:5b:00:44:4d:2f:4b:fa:61:74:fd:8a:cb:2c:e4: 6a:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:C3:C5:82:DA:E9:E0:41:E0:62:83:45:25:98:62:B1:94:A5:D8:74 X509v3 Authority Key Identifier: keyid:60:10:BC:C6:5C:B9:CC:F0:2C:F7:ED:29:EC:75:E4:D6:22:BD:F3:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/YBC8xly5zPAs9-0p7HXk1iK98_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBC8xly5zPAs9-0p7HXk1iK98_A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/YBC8xly5zPAs9-0p7HXk1iK98_A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:6a:83:ff:08:f9:83:ea:dd:26:79:b9:3a:e3:f1:b7:45:fc: 9d:55:9d:3c:08:50:ac:05:cf:70:4c:e6:28:d3:79:44:ff:76: eb:fd:06:eb:25:d7:17:3e:55:19:a7:87:cd:2e:b4:14:b2:d7: 29:2d:ec:95:3c:2d:47:be:4a:33:fa:62:72:6b:7c:f7:d9:6a: 17:74:66:77:75:5d:cf:c0:dc:c4:bb:95:cc:04:87:4a:ea:c5: 69:d9:34:c5:42:00:9e:7a:e4:ab:49:80:d0:c2:61:6a:19:87: 9e:8e:f3:96:6b:e0:56:44:da:5b:c0:48:91:77:1f:c0:af:fe: f8:c1:52:00:b2:1f:81:1b:de:c9:ca:3e:28:c0:8a:e4:c2:84: cf:ab:11:77:9e:7e:f1:f2:08:49:cc:90:f3:ac:fc:a3:f7:cd: 3f:dc:27:1b:6a:4b:d8:a0:cf:7b:0e:f6:da:06:a0:e2:7f:31: 50:f3:de:3c:b8:8f:a3:78:9b:90:17:79:15:a0:60:f2:23:e6: ac:5e:22:c8:21:0d:e5:b9:20:ba:cb:20:29:c5:81:ad:de:f3: 07:81:36:51:c4:42:66:2f:6b:ba:d5:e0:3c:48:80:ad:f1:2f: 9a:a6:ff:57:6d:b9:4e:20:cd:79:91:f9:0e:ed:1f:98:36:87: 39:4e:6d:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRGNDUxMTAvBgNVBAUTKDYwMTBCQ0M2NUNCOUNDRjAyQ0Y3RUQyOUVDNzVFNEQ2 MjJCREYzRjAwHhcNMjUwNzAzMDAxNzA4WhcNMjUwNzEwMDAxNzA4WjAYMRYwFAYD VQQDEw02ODY1Y2MwNC04OTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx8nznro7E1SFOUWq3RQONsFbes5VbPLywhOXUtiRfd7/2OD8O/Sg13/SJSF+ oYmjFppzaQG/lkb901Q4vcWq+vXXCiwe7t1outVCyAJlc3wFULxXT2nZNDNFR24j 9Rcr6t9f9HvJ4TkGKJeWSTDVH3FhHn+v0Nu4z999UpcwNQx6b4v+kgQ9UQolLrqZ HCG1leLzxxMBhK3MutEoat7GUII0NQN7Li/a4di3Sr5TJ3YfJUGpu1JAWzNb9QnO 3ayznjLhYCUZW+RRRHdnlv/U50wv9lZ6RtoZK7WWsf54ybmn/A1weP8PAeNSHrgf oQhdWwBETS9L+mF0/YrLLORqdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJfDxYLa 6eBB4GKDRSWYYrGUpdh0MB8GA1UdIwQYMBaAFGAQvMZcuczwLPftKex15NYivfPw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEY0NS9ENzZGRjA0NDM5 NzAxMUVDOUI2NUJBMTZDNEY5QUUwMi9ZQkM4eGx5NXpQQXM5LTBwN0hYazFpSzk4 X0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lCQzh4bHk1elBBczktMHA3SFhrMWlLOThfQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NEY0NS9ENzZGRjA0NDM5NzAxMUVDOUI2NUJBMTZDNEY5QUUwMi9ZQkM4eGx5NXpQ QXM5LTBwN0hYazFpSzk4X0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGaoP/CPmD6t0mebk64/G3RfydVZ08CFCsBc9wTOYo03lE/3br/Qbr JdcXPlUZp4fNLrQUstcpLeyVPC1Hvkoz+mJya3z32WoXdGZ3dV3PwNzEu5XMBIdK 6sVp2TTFQgCeeuSrSYDQwmFqGYeejvOWa+BWRNpbwEiRdx/Ar/74wVIAsh+BG97J yj4owIrkwoTPqxF3nn7x8ghJzJDzrPyj980/3CcbakvYoM97DvbaBqDifzFQ8948 uI+jeJuQF3kVoGDyI+asXiLIIQ3luSC6yyApxYGt3vMHgTZRxEJmL2u61eA8SICt 8S+apv9XbblOIM15kfkO7R+YNoc5Tm1w -----END CERTIFICATE-----Generated at Thu Jul 3 09:12:06 2025 by rpki-client