$ rpki-client -vvf rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft File: y-PSoWWxlLlY7sO2qURXdyo6CSo.mft (raw, json) Hash identifier: iylzfYNIItYC2kZC7gAJo5AKwCnn1JDJS9fCtNeik2Y= Subject key identifier: 66:39:E1:BC:C8:40:09:F5:A5:B0:08:8F:59:1F:BF:0A:93:85:2C:E7 Authority key identifier: CB:E3:D2:A1:65:B1:94:B9:58:EE:C3:B6:A9:44:57:77:2A:3A:09:2A Certificate issuer: /CN=A9154FE7/serialNumber=CBE3D2A165B194B958EEC3B6A94457772A3A092A Certificate serial: 0831 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft Manifest number: 0824 Signing time: Mon 30 Jun 2025 21:00:59 +0000 Manifest this update: Mon 30 Jun 2025 21:00:58 +0000 Manifest next update: Mon 07 Jul 2025 21:00:58 +0000 Files and hashes: 1: y-PSoWWxlLlY7sO2qURXdyo6CSo.crl (hash: PJ2LjG/wHec/0v5kd4EXo86/156/E8sNdlUe14KRM4M=) 2: 4B3AC7DC5FC811ED869A6956C4F9AE02.roa (hash: hwrYZn+i2OUNCmUoK3ena1siLJOV1HVO2m5EjPVb3kw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.crl rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 21:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2097 (0x831) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154FE7, serialNumber=CBE3D2A165B194B958EEC3B6A94457772A3A092A Validity Not Before: Jun 30 21:00:58 2025 GMT Not After : Jul 7 21:00:58 2025 GMT Subject: CN=6862fb0a-d7ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:c7:c0:b3:a7:3b:20:b2:66:a6:57:45:b9:56: b1:88:6f:d6:c6:33:7c:8d:31:bd:12:b7:91:31:5e: 8b:36:db:54:a3:ca:6c:99:56:cf:ec:2d:f9:a0:c3: ef:09:e7:29:65:30:85:3b:95:0c:b9:e5:bb:de:d1: 74:cb:c2:c3:43:f8:53:d7:8a:13:9e:ed:40:a4:3b: 62:aa:15:10:7c:6a:cb:e4:ce:e2:4b:65:f5:e4:d3: 77:ef:be:6d:cb:53:97:ef:13:69:98:a6:cf:38:01: f8:f4:55:e2:8a:61:86:5e:da:54:ee:da:f1:43:34: 33:2f:4c:43:4f:7d:68:30:05:6b:8f:ea:f8:ca:8c: 95:7f:c9:93:d7:cc:d0:07:a4:53:45:e7:15:5d:25: e2:3f:40:9a:bc:2a:db:d1:d9:8f:66:30:f0:82:6d: fa:a2:02:2c:63:c3:90:24:a3:2e:70:70:43:28:7a: 78:61:df:12:87:25:dd:65:c7:04:20:70:98:f3:9d: 03:0c:f7:e4:6c:08:e4:de:ef:77:68:ac:0f:7e:de: 1f:0a:d9:15:4a:91:10:9f:d3:fe:88:cb:90:cd:96: d4:59:6f:a5:7d:e9:f0:7c:0c:1b:b1:01:69:bd:fd: 3d:de:ab:ef:dc:c4:27:d1:7c:1b:c2:8e:91:01:c5: bb:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:39:E1:BC:C8:40:09:F5:A5:B0:08:8F:59:1F:BF:0A:93:85:2C:E7 X509v3 Authority Key Identifier: keyid:CB:E3:D2:A1:65:B1:94:B9:58:EE:C3:B6:A9:44:57:77:2A:3A:09:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:92:13:c2:2a:ac:f6:90:98:f4:4a:2c:77:7b:d6:00:79:5b: f3:25:36:d7:f3:f4:ca:41:4c:a2:1a:25:93:59:20:50:06:45: ab:3d:e2:c8:cd:a5:46:03:ab:42:33:ad:78:e5:65:f7:36:c7: dc:92:fc:82:ea:4d:a9:d2:e2:57:4b:6a:39:39:40:d7:52:e6: b4:96:05:ca:6a:89:36:fd:13:60:83:cc:0f:df:46:c5:7e:e6: 6d:7d:de:99:b6:6d:66:c7:58:8d:52:74:a0:32:da:73:92:92: 80:fe:ce:fd:54:b2:50:7d:53:8c:f6:94:14:b5:b5:0d:7a:e3: cf:df:67:fd:d4:01:58:21:ab:17:56:dd:f4:e3:64:69:fa:2a: 98:f4:ad:52:e2:2b:39:dc:6e:ed:6a:45:bf:84:f0:3b:69:ae: df:9c:1d:4f:53:b1:17:f2:71:92:43:92:9b:6c:ac:24:9d:29: b8:7a:21:ed:af:d3:1a:0b:30:60:b1:da:37:78:f0:e5:bc:ec: 04:80:c5:2d:cf:fc:84:20:7f:1f:0f:6e:74:4b:96:1a:56:14: 77:8f:2f:91:1e:97:46:52:25:d3:36:9d:6f:de:07:74:8f:d7: 43:e6:8c:ac:db:ac:dd:37:6d:b3:c7:b8:88:1d:1b:d1:2e:af: ca:d2:a9:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRGRTcxMTAvBgNVBAUTKENCRTNEMkExNjVCMTk0Qjk1OEVFQzNCNkE5NDQ1Nzc3 MkEzQTA5MkEwHhcNMjUwNjMwMjEwMDU4WhcNMjUwNzA3MjEwMDU4WjAYMRYwFAYD VQQDEw02ODYyZmIwYS1kN2FjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1MfAs6c7ILJmpldFuVaxiG/WxjN8jTG9EreRMV6LNttUo8psmVbP7C35oMPv CecpZTCFO5UMueW73tF0y8LDQ/hT14oTnu1ApDtiqhUQfGrL5M7iS2X15NN3775t y1OX7xNpmKbPOAH49FXiimGGXtpU7trxQzQzL0xDT31oMAVrj+r4yoyVf8mT18zQ B6RTRecVXSXiP0CavCrb0dmPZjDwgm36ogIsY8OQJKMucHBDKHp4Yd8ShyXdZccE IHCY850DDPfkbAjk3u93aKwPft4fCtkVSpEQn9P+iMuQzZbUWW+lfenwfAwbsQFp vf093qvv3MQn0Xwbwo6RAcW7+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGY54bzI QAn1pbAIj1kfvwqThSznMB8GA1UdIwQYMBaAFMvj0qFlsZS5WO7DtqlEV3cqOgkq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEZFNy81QTJEODlFQURC N0QxMUVBQkNGM0VDM0VDNEY5QUUwMi95LVBTb1dXeGxMbFk3c08ycVVSWGR5bzZD U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ktUFNvV1d4bExsWTdzTzJxVVJYZHlvNkNTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEZFNy81QTJEODlFQURCN0QxMUVBQkNGM0VDM0VDNEY5QUUwMi95LVBTb1dXeGxM bFk3c08ycVVSWGR5bzZDU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUkhPCKqz2kJj0Six3e9YAeVvzJTbX8/TKQUyiGiWTWSBQBkWrPeLI zaVGA6tCM6145WX3NsfckvyC6k2p0uJXS2o5OUDXUua0lgXKaok2/RNgg8wP30bF fuZtfd6Ztm1mx1iNUnSgMtpzkpKA/s79VLJQfVOM9pQUtbUNeuPP32f91AFYIasX Vt3042Rp+iqY9K1S4is53G7takW/hPA7aa7fnB1PU7EX8nGSQ5KbbKwknSm4eiHt r9MaCzBgsdo3ePDlvOwEgMUtz/yEIH8fD250S5YaVhR3jy+RHpdGUiXTNp1v3gd0 j9dD5oys26zdN22zx7iIHRvRLq/K0qlw -----END CERTIFICATE-----Generated at Tue Jul 1 20:36:51 2025 by rpki-client