$ rpki-client -vvf rpki.apnic.net/member_repository/A9153C50/4B9063022CD611ECA5DA3534C4F9AE02/03yc1lDAIKNQDtybQKVGqEw_Jgs.mft File: 03yc1lDAIKNQDtybQKVGqEw_Jgs.mft (raw, json) Hash identifier: kiUB1HDFjNAxlOZGqNrLizwczYftoSJ9j/bHzQ3d4MI= Subject key identifier: C1:A1:3D:01:0C:4A:97:12:4C:2A:0F:1E:ED:E6:58:51:B0:D8:62:15 Authority key identifier: D3:7C:9C:D6:50:C0:20:A3:50:0E:DC:9B:40:A5:46:A8:4C:3F:26:0B Certificate issuer: /CN=A9153C50/serialNumber=D37C9CD650C020A3500EDC9B40A546A84C3F260B Certificate serial: 04D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03yc1lDAIKNQDtybQKVGqEw_Jgs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153C50/4B9063022CD611ECA5DA3534C4F9AE02/03yc1lDAIKNQDtybQKVGqEw_Jgs.mft Manifest number: 04CA Signing time: Thu 03 Jul 2025 00:10:20 +0000 Manifest this update: Thu 03 Jul 2025 00:10:19 +0000 Manifest next update: Thu 10 Jul 2025 00:10:19 +0000 Files and hashes: 1: 03yc1lDAIKNQDtybQKVGqEw_Jgs.crl (hash: FyFrnic5ppeJGl6atl2j5zCKLzZENxbyc0iy5+HfV2E=) 2: 8B97D7A22CD911ECA528B744C4F9AE02.roa (hash: ejQetAzLgqVtDolBJZWz4Zc5LEXRfg3VkvX111clMEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153C50/4B9063022CD611ECA5DA3534C4F9AE02/03yc1lDAIKNQDtybQKVGqEw_Jgs.crl rsync://rpki.apnic.net/member_repository/A9153C50/4B9063022CD611ECA5DA3534C4F9AE02/03yc1lDAIKNQDtybQKVGqEw_Jgs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03yc1lDAIKNQDtybQKVGqEw_Jgs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 00:10:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1232 (0x4d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153C50, serialNumber=D37C9CD650C020A3500EDC9B40A546A84C3F260B Validity Not Before: Jul 3 00:10:19 2025 GMT Not After : Jul 10 00:10:19 2025 GMT Subject: CN=6865ca6b-2452 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:93:e2:63:8d:41:4c:6b:dc:98:31:1d:6d:e5: 49:c5:ad:be:0a:18:d4:db:90:d5:76:69:42:86:f4: 21:00:66:3d:47:71:99:25:8f:dc:39:d4:e2:9a:9b: 2b:a0:1d:0e:e2:97:34:28:66:70:f3:fe:25:2b:ac: 38:b2:e2:fa:fa:2b:cf:08:3f:e0:9b:28:16:9e:1e: 0a:71:c3:1d:e9:32:fa:d5:e5:b7:b4:38:46:d1:60: bb:b1:b1:38:c0:32:9a:e7:de:9f:57:d4:80:5c:b4: ab:46:6a:27:c5:4f:99:7b:c0:d6:64:ce:d4:4a:35: b8:30:97:44:1f:ff:aa:c5:dd:ac:26:50:49:2a:2a: 47:6b:d3:22:16:4c:00:8f:72:22:db:aa:a3:6c:3e: 70:50:fe:fb:91:45:6f:55:46:3a:98:6b:fb:9c:40: 8f:4d:13:d9:22:bf:a0:58:59:3a:33:dd:fd:8b:4c: 43:f0:dd:8e:b6:db:86:85:0b:fa:57:87:79:54:e5: ed:0a:29:0c:82:44:c5:fd:1e:31:67:06:2b:20:c3: 05:c9:89:29:1a:e8:ea:0b:93:94:42:a5:d8:b8:ab: 59:6e:5d:a1:99:3e:81:ad:e7:10:b9:3e:04:97:1e: 08:29:71:38:df:04:d6:ec:0e:ba:cf:90:02:86:3a: d3:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:A1:3D:01:0C:4A:97:12:4C:2A:0F:1E:ED:E6:58:51:B0:D8:62:15 X509v3 Authority Key Identifier: keyid:D3:7C:9C:D6:50:C0:20:A3:50:0E:DC:9B:40:A5:46:A8:4C:3F:26:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153C50/4B9063022CD611ECA5DA3534C4F9AE02/03yc1lDAIKNQDtybQKVGqEw_Jgs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03yc1lDAIKNQDtybQKVGqEw_Jgs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153C50/4B9063022CD611ECA5DA3534C4F9AE02/03yc1lDAIKNQDtybQKVGqEw_Jgs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:9e:5b:26:39:99:07:7d:29:4f:4b:57:fd:4a:4d:14:27:e0: ca:66:1f:7b:35:54:86:87:26:a8:2a:8c:de:48:42:ad:bb:02: 22:09:a6:64:ae:bd:3a:fa:cc:e6:41:b5:e9:b9:cd:b3:f0:f0: 10:0c:ce:a6:f3:2d:59:50:95:7c:4a:ef:29:ee:46:ec:2e:ad: 0d:36:e8:6d:15:77:9d:9a:fe:de:12:4b:13:6e:c2:cb:85:62: 54:95:9c:0a:16:5a:0b:29:ab:9f:08:69:9f:11:1d:1d:c2:24: a8:48:eb:83:e4:f4:f7:09:34:df:1c:4b:50:24:72:f5:a7:8e: e6:20:79:d7:aa:5a:5e:1d:25:8d:2a:ad:95:3b:cf:9f:68:68: 60:f2:66:39:32:7b:ac:96:75:87:44:a6:07:06:bb:ac:21:e8: d5:96:d1:de:ff:05:8f:be:4e:b8:bd:e0:55:cd:29:50:0e:6c: 5a:e6:ad:17:7c:e7:c9:32:e3:1d:15:58:2f:d4:3c:f1:dd:b3: ed:f8:af:fd:b0:71:04:73:71:eb:f6:1a:a2:91:79:21:b6:56: 57:d0:5b:8d:80:12:7b:dc:1b:1a:a3:00:f7:99:5d:af:c5:aa: 85:25:a6:58:8a:e9:be:32:7a:c3:7e:46:7f:71:e9:a0:00:ea: 47:44:37:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNDNTAxMTAvBgNVBAUTKEQzN0M5Q0Q2NTBDMDIwQTM1MDBFREM5QjQwQTU0NkE4 NEMzRjI2MEIwHhcNMjUwNzAzMDAxMDE5WhcNMjUwNzEwMDAxMDE5WjAYMRYwFAYD VQQDEw02ODY1Y2E2Yi0yNDUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA65PiY41BTGvcmDEdbeVJxa2+ChjU25DVdmlChvQhAGY9R3GZJY/cOdTimpsr oB0O4pc0KGZw8/4lK6w4suL6+ivPCD/gmygWnh4KccMd6TL61eW3tDhG0WC7sbE4 wDKa596fV9SAXLSrRmonxU+Ze8DWZM7USjW4MJdEH/+qxd2sJlBJKipHa9MiFkwA j3Ii26qjbD5wUP77kUVvVUY6mGv7nECPTRPZIr+gWFk6M939i0xD8N2OttuGhQv6 V4d5VOXtCikMgkTF/R4xZwYrIMMFyYkpGujqC5OUQqXYuKtZbl2hmT6BrecQuT4E lx4IKXE43wTW7A66z5AChjrTgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMGhPQEM SpcSTCoPHu3mWFGw2GIVMB8GA1UdIwQYMBaAFNN8nNZQwCCjUA7cm0ClRqhMPyYL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0M1MC80QjkwNjMwMjJD RDYxMUVDQTVEQTM1MzRDNEY5QUUwMi8wM3ljMWxEQUlLTlFEdHliUUtWR3FFd19K Z3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzAzeWMxbERBSUtOUUR0eWJRS1ZHcUV3X0pncy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0M1MC80QjkwNjMwMjJDRDYxMUVDQTVEQTM1MzRDNEY5QUUwMi8wM3ljMWxEQUlL TlFEdHliUUtWR3FFd19KZ3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpnlsmOZkHfSlPS1f9Sk0UJ+DKZh97NVSGhyaoKozeSEKtuwIiCaZk rr06+szmQbXpuc2z8PAQDM6m8y1ZUJV8Su8p7kbsLq0NNuhtFXedmv7eEksTbsLL hWJUlZwKFloLKaufCGmfER0dwiSoSOuD5PT3CTTfHEtQJHL1p47mIHnXqlpeHSWN Kq2VO8+faGhg8mY5MnuslnWHRKYHBrusIejVltHe/wWPvk64veBVzSlQDmxa5q0X fOfJMuMdFVgv1Dzx3bPt+K/9sHEEc3Hr9hqikXkhtlZX0FuNgBJ73BsaowD3mV2v xaqFJaZYium+MnrDfkZ/cemgAOpHRDf4 -----END CERTIFICATE-----Generated at Fri Jul 4 07:33:22 2025 by rpki-client