$ rpki-client -vvf rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/yH_T4kCIpNnfHF0CaFII6Qph7_c.mft File: yH_T4kCIpNnfHF0CaFII6Qph7_c.mft (raw, json) Hash identifier: iNE3uGPa1swzFgXA5uiJ8ayISuA0Kfp16qNo+U7z5IE= Subject key identifier: F8:B9:23:66:F4:F0:2E:32:AC:9F:1A:F1:DD:20:83:65:4F:E5:2F:15 Authority key identifier: C8:7F:D3:E2:40:88:A4:D9:DF:1C:5D:02:68:52:08:E9:0A:61:EF:F7 Certificate issuer: /CN=A9161065/serialNumber=C87FD3E24088A4D9DF1C5D02685208E90A61EFF7 Certificate serial: 019D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yH_T4kCIpNnfHF0CaFII6Qph7_c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/yH_T4kCIpNnfHF0CaFII6Qph7_c.mft Manifest number: 019A Signing time: Tue 01 Jul 2025 03:47:38 +0000 Manifest this update: Tue 01 Jul 2025 03:47:38 +0000 Manifest next update: Tue 08 Jul 2025 03:47:38 +0000 Files and hashes: 1: yH_T4kCIpNnfHF0CaFII6Qph7_c.crl (hash: CCkchFQLaIRr6Ta+VTDcxMU7qDOxMvrvmS0Yo0ERDkE=) 2: CDE70CB2E52011EDB505E014C4F9AE02.roa (hash: W0hL1B4Pu9Y3eTRJdGcmU+N0LKwGZJeiFs+2ym6914M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/yH_T4kCIpNnfHF0CaFII6Qph7_c.crl rsync://rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/yH_T4kCIpNnfHF0CaFII6Qph7_c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yH_T4kCIpNnfHF0CaFII6Qph7_c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 03:47:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 413 (0x19d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161065, serialNumber=C87FD3E24088A4D9DF1C5D02685208E90A61EFF7 Validity Not Before: Jul 1 03:47:38 2025 GMT Not After : Jul 8 03:47:38 2025 GMT Subject: CN=68635a5a-7174 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c6:19:87:8c:0b:84:0a:61:fa:39:63:ce:2f: 78:98:63:a3:93:cd:f0:cf:f4:db:e8:98:e6:96:85: c6:f7:12:a8:3a:74:75:9b:47:8e:48:d3:73:1b:83: f1:17:0b:b9:68:58:1c:81:ee:dd:8b:ff:ce:50:1d: ce:61:27:0d:88:70:ee:ea:d3:4d:2a:e5:3b:01:d2: f4:8d:7b:ed:11:a6:57:36:4a:5c:eb:e8:e1:b9:35: d6:12:c6:f5:87:64:f9:4f:13:56:4a:aa:65:5c:c7: ee:20:22:5f:2e:4c:73:d6:64:9a:d4:a8:da:5a:73: fc:1a:e4:90:9b:0e:37:d6:57:65:8a:7d:44:ca:92: 89:2c:41:20:6b:d3:06:cd:43:ce:8e:68:db:35:3d: 9b:a1:9d:6b:03:e4:48:5b:03:53:97:9a:b3:5d:fa: 90:25:0f:e6:a5:94:09:67:21:d9:12:23:b9:a0:bf: 9d:8a:b9:c1:dd:f6:21:ee:8b:56:29:5d:68:9e:fd: 0a:74:f4:82:6d:d0:f1:43:51:12:a7:15:91:93:9a: f0:8c:21:ce:51:55:1c:b0:06:67:38:fa:60:13:79: c1:1d:a2:06:56:66:9a:e9:00:d6:3a:f9:71:7d:bb: 47:a5:43:e8:be:35:33:e6:00:33:85:3d:1e:5c:e1: 7c:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:B9:23:66:F4:F0:2E:32:AC:9F:1A:F1:DD:20:83:65:4F:E5:2F:15 X509v3 Authority Key Identifier: keyid:C8:7F:D3:E2:40:88:A4:D9:DF:1C:5D:02:68:52:08:E9:0A:61:EF:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/yH_T4kCIpNnfHF0CaFII6Qph7_c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yH_T4kCIpNnfHF0CaFII6Qph7_c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/yH_T4kCIpNnfHF0CaFII6Qph7_c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:96:a7:7e:f7:7f:38:40:43:d4:79:55:f1:4e:a9:93:64:a4: 7f:da:74:6b:4e:78:65:91:e4:69:30:17:40:cc:63:d8:c1:b6: 33:13:43:10:49:c1:73:7f:d5:7d:9e:71:a2:55:bc:b0:ca:88: a1:fe:60:79:7e:8e:98:43:9b:09:1a:e8:21:4c:52:4d:4d:2b: da:de:33:6e:97:ce:86:48:d3:c8:a9:11:0c:2f:dc:e1:7e:81: 2a:05:a7:91:ef:e5:3c:d0:39:ab:85:b1:ee:8e:a4:3f:f7:00: 4b:7e:7d:1b:ec:8a:27:9f:11:a2:4f:61:f8:b3:6e:3f:55:0e: 50:be:8b:77:c9:de:06:be:48:f9:44:ab:e1:83:4c:01:e6:7b: 9a:29:40:dd:fd:d8:7e:59:91:ea:ae:32:ee:dc:7e:b1:90:35: 6e:12:3d:9d:87:db:c8:3f:1e:ce:8e:c8:c3:26:de:cf:ff:0c: ad:81:60:40:f3:dc:3f:72:df:54:cf:07:7e:0f:31:07:e5:94: 92:77:14:5b:89:61:ec:34:f8:d3:d3:8d:03:c0:1d:04:9d:e0: e2:19:13:4e:ea:44:95:9e:1e:c5:5e:31:fb:17:b1:cc:4b:00: 7a:c7:ff:23:e0:c3:02:70:ef:bc:b4:a8:c8:d0:1d:9e:91:e4: 0e:97:92:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjEwNjUxMTAvBgNVBAUTKEM4N0ZEM0UyNDA4OEE0RDlERjFDNUQwMjY4NTIwOEU5 MEE2MUVGRjcwHhcNMjUwNzAxMDM0NzM4WhcNMjUwNzA4MDM0NzM4WjAYMRYwFAYD VQQDEw02ODYzNWE1YS03MTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAucYZh4wLhAph+jljzi94mGOjk83wz/Tb6JjmloXG9xKoOnR1m0eOSNNzG4Px Fwu5aFgcge7di//OUB3OYScNiHDu6tNNKuU7AdL0jXvtEaZXNkpc6+jhuTXWEsb1 h2T5TxNWSqplXMfuICJfLkxz1mSa1KjaWnP8GuSQmw431ldlin1EypKJLEEga9MG zUPOjmjbNT2boZ1rA+RIWwNTl5qzXfqQJQ/mpZQJZyHZEiO5oL+dirnB3fYh7otW KV1onv0KdPSCbdDxQ1ESpxWRk5rwjCHOUVUcsAZnOPpgE3nBHaIGVmaa6QDWOvlx fbtHpUPovjUz5gAzhT0eXOF8lQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPi5I2b0 8C4yrJ8a8d0gg2VP5S8VMB8GA1UdIwQYMBaAFMh/0+JAiKTZ3xxdAmhSCOkKYe/3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MTA2NS8xQTI1RDI3NEU1 MUQxMUVEODUzOEIyNDZDNEY5QUUwMi95SF9UNGtDSXBObmZIRjBDYUZJSTZRcGg3 X2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lIX1Q0a0NJcE5uZkhGMENhRklJNlFwaDdfYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MTA2NS8xQTI1RDI3NEU1MUQxMUVEODUzOEIyNDZDNEY5QUUwMi95SF9UNGtDSXBO bmZIRjBDYUZJSTZRcGg3X2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAylqd+9384QEPUeVXxTqmTZKR/2nRrTnhlkeRpMBdAzGPYwbYzE0MQ ScFzf9V9nnGiVbywyoih/mB5fo6YQ5sJGughTFJNTSva3jNul86GSNPIqREML9zh foEqBaeR7+U80DmrhbHujqQ/9wBLfn0b7IonnxGiT2H4s24/VQ5Qvot3yd4Gvkj5 RKvhg0wB5nuaKUDd/dh+WZHqrjLu3H6xkDVuEj2dh9vIPx7OjsjDJt7P/wytgWBA 89w/ct9Uzwd+DzEH5ZSSdxRbiWHsNPjT040DwB0EneDiGRNO6kSVnh7FXjH7F7HM SwB6x/8j4MMCcO+8tKjI0B2ekeQOl5K0 -----END CERTIFICATE-----Generated at Tue Jul 1 18:19:55 2025 by rpki-client