$ rpki-client -vvf rpki.apnic.net/member_repository/A9160EEF/6C4CD690F88811E98FA00A7CC4F9AE02/lYpO2dfWT6yHvRbsijZXHhovUIo.mft File: lYpO2dfWT6yHvRbsijZXHhovUIo.mft (raw, json) Hash identifier: tscKDPy+j9sUA71I8mri7Uun3I10h+9Ysv96jxxEP5Q= Subject key identifier: 5F:22:07:40:20:8E:E1:A4:EF:DC:5B:06:C2:6B:A7:16:6E:11:16:16 Authority key identifier: 95:8A:4E:D9:D7:D6:4F:AC:87:BD:16:EC:8A:36:57:1E:1A:2F:50:8A Certificate issuer: /CN=A9160EEF/serialNumber=958A4ED9D7D64FAC87BD16EC8A36571E1A2F508A Certificate serial: 0CC0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lYpO2dfWT6yHvRbsijZXHhovUIo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160EEF/6C4CD690F88811E98FA00A7CC4F9AE02/lYpO2dfWT6yHvRbsijZXHhovUIo.mft Manifest number: 0CA8 Signing time: Mon 30 Jun 2025 18:24:53 +0000 Manifest this update: Mon 30 Jun 2025 18:24:53 +0000 Manifest next update: Mon 07 Jul 2025 18:24:53 +0000 Files and hashes: 1: lYpO2dfWT6yHvRbsijZXHhovUIo.crl (hash: 1zHYatHFKCc1PkkEj/8wHkdkq1QoZgAAWALYSPwaSJY=) 2: C3667DBAE6A711EFA8D1A077C4F9AE02.roa (hash: 5CkSO9tc+/UFRkRtU6tdYYVHHpR7HqK76CBHyDuJbdw=) 3: C2911C74E6A711EFA8D1A077C4F9AE02.roa (hash: 7uzXUSClxgsZqYNV6os8g6TMOvQ9tK2i5DS7Dqxq1Is=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160EEF/6C4CD690F88811E98FA00A7CC4F9AE02/lYpO2dfWT6yHvRbsijZXHhovUIo.crl rsync://rpki.apnic.net/member_repository/A9160EEF/6C4CD690F88811E98FA00A7CC4F9AE02/lYpO2dfWT6yHvRbsijZXHhovUIo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lYpO2dfWT6yHvRbsijZXHhovUIo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 18:24:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3264 (0xcc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160EEF, serialNumber=958A4ED9D7D64FAC87BD16EC8A36571E1A2F508A Validity Not Before: Jun 30 18:24:53 2025 GMT Not After : Jul 7 18:24:53 2025 GMT Subject: CN=6862d675-c02d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ea:a2:c3:8c:3e:6b:6d:f0:42:da:3c:f4:58: 4a:46:c7:e1:d5:2e:2c:54:32:59:ec:88:ff:6f:da: 9f:ad:93:79:09:15:b3:f8:3e:67:76:81:43:5c:4d: f1:34:e5:dd:27:22:fb:cb:1e:23:8e:da:b6:4a:ad: 94:2a:09:9b:34:cf:e8:b7:6f:71:8b:2b:a4:9d:6b: 77:e9:cc:1b:68:80:eb:8b:98:ca:2b:4d:f5:14:02: ee:a1:d2:18:a8:bf:0b:95:ef:8e:58:d8:e8:ba:21: 15:f1:91:4f:54:e0:1b:a2:b9:ef:98:be:d6:1c:8a: 97:e3:be:e5:fa:55:c4:79:08:94:a8:4d:a6:5f:e7: 9a:2b:88:26:c8:1b:9f:6d:50:1b:6f:e6:ba:d0:94: 8b:94:c7:d6:f0:3a:37:99:7d:fa:c4:48:4d:f2:67: e7:e0:88:cf:12:72:c7:66:bf:ed:e0:f5:be:6e:fa: 60:fb:c2:1e:c4:83:1b:ec:e5:f5:5b:c8:76:e1:4c: 96:08:ea:d5:d1:a3:05:e3:23:7d:48:b9:c2:70:16: 09:c4:6d:cb:9a:ed:c3:d1:62:0b:c5:0d:c7:8a:e1: 2a:0f:bf:be:c0:f6:68:9d:8b:1c:52:16:46:40:5b: 65:a7:ef:9e:51:b4:4b:5e:b2:b8:54:49:07:46:19: b9:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:22:07:40:20:8E:E1:A4:EF:DC:5B:06:C2:6B:A7:16:6E:11:16:16 X509v3 Authority Key Identifier: keyid:95:8A:4E:D9:D7:D6:4F:AC:87:BD:16:EC:8A:36:57:1E:1A:2F:50:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160EEF/6C4CD690F88811E98FA00A7CC4F9AE02/lYpO2dfWT6yHvRbsijZXHhovUIo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lYpO2dfWT6yHvRbsijZXHhovUIo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160EEF/6C4CD690F88811E98FA00A7CC4F9AE02/lYpO2dfWT6yHvRbsijZXHhovUIo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:59:e7:c0:86:d7:07:e7:7f:18:7f:da:97:ba:15:81:1e:85: 81:e3:c7:d8:86:bb:7d:f6:e1:ec:0e:37:b5:f3:ea:52:dd:41: e5:e6:32:9a:8c:f6:16:54:b0:77:f9:8d:8e:f9:94:3c:89:34: f7:64:72:43:92:b0:a9:cf:b3:30:a7:e9:a4:14:cf:93:f2:ca: 35:d4:9c:8e:d3:5f:10:fa:66:ab:92:4b:b1:97:b1:35:50:b8: 0f:dd:7a:07:9f:b9:56:e7:94:e9:ed:fa:ce:50:92:2d:7e:b8: 1e:82:a0:0f:7b:1d:d7:1a:64:aa:6c:3d:5b:cc:5a:ee:75:75: 3e:d4:9e:99:36:94:f7:71:15:79:e7:f7:b3:f1:d3:b3:14:4d: 47:c0:e7:15:03:af:21:b4:f7:bb:06:e5:c9:ba:2d:56:46:61: 55:6e:db:a5:09:f0:57:ff:af:8b:4d:fc:75:cc:35:d1:9f:34: e6:fc:22:a4:a0:19:f7:34:de:81:e1:31:90:4f:3b:fc:60:2d: f3:13:1f:01:87:bc:f7:30:8f:08:d6:3e:e0:74:69:f2:75:14: ce:6d:4b:2c:3c:95:7b:f4:0b:b4:6a:32:3b:61:4f:8a:9c:c5: c3:f3:ff:cd:1a:e3:35:36:26:d4:a9:a9:96:8d:1a:b5:c2:7e: fb:81:78:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBFRUYxMTAvBgNVBAUTKDk1OEE0RUQ5RDdENjRGQUM4N0JEMTZFQzhBMzY1NzFF MUEyRjUwOEEwHhcNMjUwNjMwMTgyNDUzWhcNMjUwNzA3MTgyNDUzWjAYMRYwFAYD VQQDEw02ODYyZDY3NS1jMDJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyeqiw4w+a23wQto89FhKRsfh1S4sVDJZ7Ij/b9qfrZN5CRWz+D5ndoFDXE3x NOXdJyL7yx4jjtq2Sq2UKgmbNM/ot29xiyuknWt36cwbaIDri5jKK031FALuodIY qL8Lle+OWNjouiEV8ZFPVOAbornvmL7WHIqX477l+lXEeQiUqE2mX+eaK4gmyBuf bVAbb+a60JSLlMfW8Do3mX36xEhN8mfn4IjPEnLHZr/t4PW+bvpg+8IexIMb7OX1 W8h24UyWCOrV0aMF4yN9SLnCcBYJxG3Lmu3D0WILxQ3HiuEqD7++wPZonYscUhZG QFtlp++eUbRLXrK4VEkHRhm5OwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF8iB0Ag juGk79xbBsJrpxZuERYWMB8GA1UdIwQYMBaAFJWKTtnX1k+sh70W7Io2Vx4aL1CK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MEVFRi82QzRDRDY5MEY4 ODgxMUU5OEZBMDBBN0NDNEY5QUUwMi9sWXBPMmRmV1Q2eUh2UmJzaWpaWEhob3ZV SW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xZcE8yZGZXVDZ5SHZSYnNpalpYSGhvdlVJby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MEVFRi82QzRDRDY5MEY4ODgxMUU5OEZBMDBBN0NDNEY5QUUwMi9sWXBPMmRmV1Q2 eUh2UmJzaWpaWEhob3ZVSW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATWefAhtcH538Yf9qXuhWBHoWB48fYhrt99uHsDje18+pS3UHl5jKa jPYWVLB3+Y2O+ZQ8iTT3ZHJDkrCpz7Mwp+mkFM+T8so11JyO018Q+markkuxl7E1 ULgP3XoHn7lW55Tp7frOUJItfrgegqAPex3XGmSqbD1bzFrudXU+1J6ZNpT3cRV5 5/ez8dOzFE1HwOcVA68htPe7BuXJui1WRmFVbtulCfBX/6+LTfx1zDXRnzTm/CKk oBn3NN6B4TGQTzv8YC3zEx8Bh7z3MI8I1j7gdGnydRTObUssPJV79Au0ajI7YU+K nMXD8//NGuM1NibUqamWjRq1wn77gXhP -----END CERTIFICATE-----Generated at Tue Jul 1 18:35:50 2025 by rpki-client