$ rpki-client -vvf rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft File: YG6ylYJUrJi2M26qQayAstyxnG4.mft (raw, json) Hash identifier: LkluD1VV8T7F4gt25i7HAhYwkYfx0reKj9f9QRWJOf4= Subject key identifier: 06:A9:88:BE:FA:A7:C1:83:D6:35:B2:8B:75:68:49:52:47:ED:40:53 Authority key identifier: 60:6E:B2:95:82:54:AC:98:B6:33:6E:AA:41:AC:80:B2:DC:B1:9C:6E Certificate issuer: /CN=A9170D3E/serialNumber=606EB2958254AC98B6336EAA41AC80B2DCB19C6E Certificate serial: 79 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YG6ylYJUrJi2M26qQayAstyxnG4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft Manifest number: 78 Signing time: Thu 03 Jul 2025 06:58:44 +0000 Manifest this update: Thu 03 Jul 2025 06:58:43 +0000 Manifest next update: Thu 10 Jul 2025 06:58:43 +0000 Files and hashes: 1: YG6ylYJUrJi2M26qQayAstyxnG4.crl (hash: NYGwpG3wlokx8Cr3aPfjRAKdowWIFVOfBdEH1SsnIz8=) 2: 181772049FD811EF8680B438C4F9AE02.roa (hash: kL8m2A2/eVPCA0J/9/iLQOKzk2RiAB33QgbmFjlKwTo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.crl rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YG6ylYJUrJi2M26qQayAstyxnG4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 121 (0x79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170D3E, serialNumber=606EB2958254AC98B6336EAA41AC80B2DCB19C6E Validity Not Before: Jul 3 06:58:43 2025 GMT Not After : Jul 10 06:58:43 2025 GMT Subject: CN=68662a23-760e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:27:b5:de:10:3e:6e:18:45:06:b2:c4:b3:71: a6:ca:4c:0b:ec:db:b5:82:f5:fc:f9:c9:22:81:00: eb:c7:b6:38:35:25:06:02:81:ac:fa:29:fe:89:88: 64:b4:66:e1:e4:80:95:40:bd:6c:6f:24:e7:73:e5: 8e:de:20:db:95:81:85:df:99:f2:85:75:21:33:47: 37:2b:c6:65:27:61:d5:8e:c8:9b:c1:06:39:06:a0: 5a:da:56:f5:92:63:15:84:a4:72:fd:79:0a:2d:3f: 70:2e:be:c0:16:a1:b7:8a:87:fb:fa:6d:fb:39:01: 13:16:8c:99:6e:2e:8e:6e:44:c0:bc:a2:73:b8:c6: cf:08:08:35:3f:69:fb:8f:01:7a:e4:65:89:1a:9d: 6e:9f:f8:5a:6e:33:96:2d:60:0e:44:a6:4a:c5:9b: 14:47:53:63:4b:07:22:30:b3:d1:05:a1:9a:72:14: 21:e8:e0:ac:28:bd:20:d8:65:38:51:57:b8:95:33: 33:be:7f:a0:89:28:d7:91:cf:bd:9b:5b:d5:46:95: 8a:2b:fe:04:39:5a:af:f1:03:24:f2:0d:a7:a2:e5: 93:15:f5:6a:45:98:43:01:2f:fd:b7:10:95:cc:df: 59:93:22:54:4c:66:8c:48:4c:82:be:7b:2c:9b:f1: a2:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:A9:88:BE:FA:A7:C1:83:D6:35:B2:8B:75:68:49:52:47:ED:40:53 X509v3 Authority Key Identifier: keyid:60:6E:B2:95:82:54:AC:98:B6:33:6E:AA:41:AC:80:B2:DC:B1:9C:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YG6ylYJUrJi2M26qQayAstyxnG4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:95:fa:ae:f9:25:10:53:36:6d:55:b3:05:65:b0:a2:0d:cd: 34:cd:4d:6d:b4:89:20:36:3a:0c:bc:e9:05:2c:09:23:a6:e0: b9:e1:27:d8:39:36:2b:70:58:4d:df:85:e8:96:eb:f2:12:99: b9:24:47:7a:d4:93:6d:1e:16:90:7b:59:ee:30:e1:b4:a7:c1: c0:7c:71:6d:05:cc:e6:2d:79:69:41:5c:86:c3:5f:44:99:f5: 4d:a8:f0:9e:e0:87:31:9e:8b:99:62:d4:86:87:96:39:6d:af: dd:cf:d4:a5:80:5f:68:be:33:89:07:c4:28:e0:f5:9d:e6:6b: 6f:dd:4b:ca:27:92:34:82:b8:55:2a:63:f1:69:bf:c3:7c:84: dd:28:9e:22:7e:e5:45:42:fe:94:71:e4:76:cb:80:eb:2f:db: a9:e4:3c:44:06:11:68:61:49:d2:34:6a:4c:20:15:53:65:9e: b7:b6:4c:3e:3e:86:30:1f:c9:84:24:7c:dd:2e:c7:e1:0f:7e: d3:60:54:f1:a8:81:6a:c5:e9:66:3d:b8:17:cd:58:d2:16:34: 0c:a4:59:14:b4:77:51:7b:c9:07:d9:df:76:2d:33:db:2d:55: a1:42:ae:e7:5a:ca:8f:ac:54:b3:a8:94:03:ed:3c:77:32:43: 86:26:72:52 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MEQzRTExMC8GA1UEBRMoNjA2RUIyOTU4MjU0QUM5OEI2MzM2RUFBNDFBQzgwQjJE Q0IxOUM2RTAeFw0yNTA3MDMwNjU4NDNaFw0yNTA3MTAwNjU4NDNaMBgxFjAUBgNV BAMTDTY4NjYyYTIzLTc2MGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDbJ7XeED5uGEUGssSzcabKTAvs27WC9fz5ySKBAOvHtjg1JQYCgaz6Kf6JiGS0 ZuHkgJVAvWxvJOdz5Y7eINuVgYXfmfKFdSEzRzcrxmUnYdWOyJvBBjkGoFraVvWS YxWEpHL9eQotP3AuvsAWobeKh/v6bfs5ARMWjJluLo5uRMC8onO4xs8ICDU/afuP AXrkZYkanW6f+FpuM5YtYA5EpkrFmxRHU2NLByIws9EFoZpyFCHo4KwovSDYZThR V7iVMzO+f6CJKNeRz72bW9VGlYor/gQ5Wq/xAyTyDaei5ZMV9WpFmEMBL/23EJXM 31mTIlRMZoxITIK+eyyb8aKvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUBqmIvvqn wYPWNbKLdWhJUkftQFMwHwYDVR0jBBgwFoAUYG6ylYJUrJi2M26qQayAstyxnG4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwRDNFL0I1REZDOEMwOUZE NzExRUY5RTM4QTgzN0M0RjlBRTAyL1lHNnlsWUpVckppMk0yNnFRYXlBc3R5eG5H NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWUc2eWxZSlVySmkyTTI2cVFheUFzdHl4bkc0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcw RDNFL0I1REZDOEMwOUZENzExRUY5RTM4QTgzN0M0RjlBRTAyL1lHNnlsWUpVckpp Mk0yNnFRYXlBc3R5eG5HNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFuV+q75JRBTNm1VswVlsKINzTTNTW20iSA2Ogy86QUsCSOm4LnhJ9g5 NitwWE3fheiW6/ISmbkkR3rUk20eFpB7We4w4bSnwcB8cW0FzOYteWlBXIbDX0SZ 9U2o8J7ghzGei5li1IaHljltr93P1KWAX2i+M4kHxCjg9Z3ma2/dS8onkjSCuFUq Y/Fpv8N8hN0oniJ+5UVC/pRx5HbLgOsv26nkPEQGEWhhSdI0akwgFVNlnre2TD4+ hjAfyYQkfN0ux+EPftNgVPGogWrF6WY9uBfNWNIWNAykWRS0d1F7yQfZ33YtM9st VaFCrudayo+sVLOolAPtPHcyQ4YmclI= -----END CERTIFICATE-----Generated at Thu Jul 3 22:44:08 2025 by rpki-client