$ rpki-client -vvf rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft File: YfjH66e1XnGy5rF3QJFCUdiM8KY.mft (raw, json) Hash identifier: uoik2zMGN7/MJz81oKxvsCI1IUD3dd+ZwhkTfb/GycA= Subject key identifier: 6C:BE:77:4A:49:B8:12:67:B0:4F:41:5F:F2:9F:C5:CD:D0:41:60:0A Authority key identifier: 61:F8:C7:EB:A7:B5:5E:71:B2:E6:B1:77:40:91:42:51:D8:8C:F0:A6 Certificate issuer: /CN=A9158491/serialNumber=61F8C7EBA7B55E71B2E6B17740914251D88CF0A6 Certificate serial: 67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfjH66e1XnGy5rF3QJFCUdiM8KY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft Manifest number: 5E Signing time: Thu 03 Jul 2025 07:31:03 +0000 Manifest this update: Thu 03 Jul 2025 07:31:03 +0000 Manifest next update: Thu 10 Jul 2025 07:31:03 +0000 Files and hashes: 1: YfjH66e1XnGy5rF3QJFCUdiM8KY.crl (hash: nzGAFdvDbANoLtZL76+1qn60m/WgEuilhKepM8K8KB0=) 2: 5FDDEE1CE34211EF8EA0CA77C4F9AE02.roa (hash: mzE4Rj9TzgxYoPFC7hLQmMNdU4o1ATX8k/0uu+bhb9g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.crl rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfjH66e1XnGy5rF3QJFCUdiM8KY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 103 (0x67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158491, serialNumber=61F8C7EBA7B55E71B2E6B17740914251D88CF0A6 Validity Not Before: Jul 3 07:31:03 2025 GMT Not After : Jul 10 07:31:03 2025 GMT Subject: CN=686631b7-320c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a5:89:2b:30:92:bc:f2:89:10:d5:c3:29:40: 3e:79:59:b7:3f:79:12:c9:7d:8b:dc:70:c9:28:1a: d3:72:d2:23:f8:3d:84:31:fb:fa:75:a5:bb:63:00: db:b1:3e:52:f8:59:fb:63:1d:e5:df:2c:2a:b9:84: 90:ae:00:94:66:fe:8d:ba:da:e5:82:98:a6:32:95: c0:f2:ef:9e:dd:4a:6b:c7:2d:d9:ea:f5:9c:b0:66: 19:ca:fb:3b:21:41:f0:63:bc:c5:5d:a3:ff:d2:f6: bc:78:97:16:f4:fd:e9:c2:b9:ad:ba:bf:e2:8e:3b: 76:2c:a6:77:a5:19:1e:5f:ae:1b:fb:8d:63:46:a8: 3a:06:c4:69:51:93:07:90:ad:fb:80:69:da:1c:99: 93:b6:92:48:e6:15:26:a8:e6:b2:e6:aa:b3:20:47: 87:b7:7f:8c:ef:77:5e:a9:95:2a:dc:71:75:a2:10: ca:5a:47:e4:3e:44:45:3a:fe:0a:73:23:61:55:85: 0d:00:7e:22:4a:4d:30:e7:93:a2:f3:a5:1a:27:b8: 87:55:ca:54:95:62:8d:f9:00:2f:d6:8b:de:b9:2f: d0:95:56:15:f5:f0:22:d9:d8:9b:df:16:b6:de:41: 94:a5:90:b5:23:a1:8e:22:47:bc:bb:af:6b:fa:0d: a1:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:BE:77:4A:49:B8:12:67:B0:4F:41:5F:F2:9F:C5:CD:D0:41:60:0A X509v3 Authority Key Identifier: keyid:61:F8:C7:EB:A7:B5:5E:71:B2:E6:B1:77:40:91:42:51:D8:8C:F0:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfjH66e1XnGy5rF3QJFCUdiM8KY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:6d:9c:94:97:80:3d:8a:fe:5c:15:b9:a5:e2:fa:d0:74:8c: 2f:be:42:39:bd:c0:30:2f:6e:87:be:1b:71:8b:c2:7c:a5:55: 25:3f:fc:62:2c:3a:ff:da:8c:e2:8f:b4:ce:29:8f:f2:72:76: a1:33:dc:db:55:3c:d5:d5:c7:53:d0:05:54:42:d0:b9:c6:a5: 4e:71:2c:55:7f:02:aa:56:3a:63:3a:68:d4:13:78:e3:d8:61: e0:d4:eb:12:3c:77:85:7f:01:3f:25:88:ee:03:19:b3:b7:10: 3b:aa:7e:43:23:dc:54:6c:7f:8d:f6:60:92:33:d9:c6:47:be: e9:c8:69:39:b6:a3:84:9d:15:39:73:db:80:90:12:84:c7:28: ca:22:04:81:81:c9:99:bd:50:d8:60:50:40:62:b3:2b:d6:77: 16:ac:c4:d4:1c:c2:11:aa:65:f0:8b:e5:ca:c6:c0:53:71:18: 27:59:1a:82:e3:b8:65:3d:cc:52:c1:e1:97:0b:be:ac:4a:da: 4a:6b:43:0b:fd:94:3c:e4:ae:7e:14:23:45:1c:04:cb:dc:b4: 1c:c0:78:4e:c5:9d:50:62:c7:5e:08:3b:df:13:c1:3a:f4:c1: f3:05:b2:1d:90:c2:2c:e3:dd:25:38:f0:a6:ac:30:53:87:2d: 48:f9:b5:5e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 ODQ5MTExMC8GA1UEBRMoNjFGOEM3RUJBN0I1NUU3MUIyRTZCMTc3NDA5MTQyNTFE ODhDRjBBNjAeFw0yNTA3MDMwNzMxMDNaFw0yNTA3MTAwNzMxMDNaMBgxFjAUBgNV BAMTDTY4NjYzMWI3LTMyMGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKpYkrMJK88okQ1cMpQD55Wbc/eRLJfYvccMkoGtNy0iP4PYQx+/p1pbtjANux PlL4WftjHeXfLCq5hJCuAJRm/o262uWCmKYylcDy757dSmvHLdnq9ZywZhnK+zsh QfBjvMVdo//S9rx4lxb0/enCua26v+KOO3YspnelGR5frhv7jWNGqDoGxGlRkweQ rfuAadocmZO2kkjmFSao5rLmqrMgR4e3f4zvd16plSrccXWiEMpaR+Q+REU6/gpz I2FVhQ0AfiJKTTDnk6LzpRonuIdVylSVYo35AC/Wi965L9CVVhX18CLZ2JvfFrbe QZSlkLUjoY4iR7y7r2v6DaG5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUbL53Skm4 EmewT0Ff8p/FzdBBYAowHwYDVR0jBBgwFoAUYfjH66e1XnGy5rF3QJFCUdiM8KYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU4NDkxLzYwREE1M0ZBREZB NTExRUY4QkQ0OUY4N0M0RjlBRTAyL1lmakg2NmUxWG5HeTVyRjNRSkZDVWRpTThL WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWWZqSDY2ZTFYbkd5NXJGM1FKRkNVZGlNOEtZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU4 NDkxLzYwREE1M0ZBREZBNTExRUY4QkQ0OUY4N0M0RjlBRTAyL1lmakg2NmUxWG5H eTVyRjNRSkZDVWRpTThLWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHZtnJSXgD2K/lwVuaXi+tB0jC++Qjm9wDAvboe+G3GLwnylVSU//GIs Ov/ajOKPtM4pj/JydqEz3NtVPNXVx1PQBVRC0LnGpU5xLFV/AqpWOmM6aNQTeOPY YeDU6xI8d4V/AT8liO4DGbO3EDuqfkMj3FRsf432YJIz2cZHvunIaTm2o4SdFTlz 24CQEoTHKMoiBIGByZm9UNhgUEBisyvWdxasxNQcwhGqZfCL5crGwFNxGCdZGoLj uGU9zFLB4ZcLvqxK2kprQwv9lDzkrn4UI0UcBMvctBzAeE7FnVBix14IO98TwTr0 wfMFsh2Qwizj3SU48KasMFOHLUj5tV4= -----END CERTIFICATE-----Generated at Thu Jul 3 09:32:33 2025 by rpki-client