$ rpki-client -vvf rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft File: gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft (raw, json) Hash identifier: akV/wQZVSgkNWwJ2n/6pBu0bYxMR4c9tSn2zZxKKKeM= Subject key identifier: 5D:95:1E:6A:A8:02:44:FA:D5:5E:20:B4:E1:1F:C4:0C:AA:45:C4:E0 Authority key identifier: 83:2F:E5:61:4E:02:D3:50:F8:86:79:0D:E4:BD:C9:9F:42:64:55:E4 Certificate issuer: /CN=A9171669/serialNumber=832FE5614E02D350F886790DE4BDC99F426455E4 Certificate serial: 028D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft Manifest number: 0289 Signing time: Thu 03 Jul 2025 02:06:52 +0000 Manifest this update: Thu 03 Jul 2025 02:06:52 +0000 Manifest next update: Thu 10 Jul 2025 02:06:52 +0000 Files and hashes: 1: gy_lYU4C01D4hnkN5L3Jn0JkVeQ.crl (hash: wV0xFNwlc8lHbIREiv3e/mX9+5dbt7yoJ2YqkbppxDU=) 2: 91BBC8880D9711ED8F09C27DC4F9AE02.roa (hash: KV+SoYHbA+Q51JP+NigJCe33FcHjWlimMC267ADRQGw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.crl rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 02:06:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 653 (0x28d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171669, serialNumber=832FE5614E02D350F886790DE4BDC99F426455E4 Validity Not Before: Jul 3 02:06:52 2025 GMT Not After : Jul 10 02:06:52 2025 GMT Subject: CN=6865e5bc-7517 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:c5:47:61:5c:37:21:27:c9:29:1b:6f:3d:51: da:2c:19:bf:6e:65:50:ca:5d:36:aa:68:53:0b:b3: 77:7e:22:40:96:66:5d:7b:11:6f:e9:03:a7:be:c3: 3a:30:f1:ec:db:3f:d2:b4:9e:fd:11:11:d4:f6:3f: e3:65:a8:ff:30:99:ec:d0:17:56:7d:2b:df:e5:9e: 9f:88:29:8c:ea:a7:6d:2b:e8:22:c3:15:ea:d8:e7: 2e:ba:5a:44:11:6f:9e:e9:81:0f:2e:9a:27:c2:12: 05:c6:b2:da:fd:6a:33:0b:cb:81:87:ed:fd:54:d1: 89:3e:79:2c:cb:2c:62:9c:58:59:7d:0d:b5:27:06: e4:b7:b2:30:47:4c:f7:56:2d:00:ae:b4:4c:e8:27: 1c:30:59:05:63:23:d5:2c:dc:bf:6b:9d:b3:6d:e0: 12:35:f1:11:a1:f1:51:1d:14:39:cc:56:84:0b:7d: de:fc:e3:59:e2:fa:ac:80:61:99:b6:40:f1:86:ad: 3c:43:96:08:40:34:55:9d:c5:02:0a:af:d7:c1:da: fd:2b:26:a4:3d:b8:d2:22:68:2d:ca:67:80:d4:ad: 6d:1f:00:51:dc:4b:9f:c5:49:8e:3f:8e:3d:0b:36: c2:9e:8a:ef:2a:d7:62:34:10:14:dd:ea:0b:8b:98: da:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:95:1E:6A:A8:02:44:FA:D5:5E:20:B4:E1:1F:C4:0C:AA:45:C4:E0 X509v3 Authority Key Identifier: keyid:83:2F:E5:61:4E:02:D3:50:F8:86:79:0D:E4:BD:C9:9F:42:64:55:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:5a:0b:54:ad:8f:47:a2:50:69:d9:8e:4f:1f:c0:8d:dd:99: 14:6e:7b:97:85:00:28:21:32:15:ae:6a:82:76:2f:4e:7f:14: 56:50:24:f6:7c:24:25:d9:62:ce:af:ac:ce:84:da:f4:ad:b7: b7:48:b3:83:f4:f8:be:a3:ce:81:b2:7e:83:4e:5f:9f:7b:d3: c3:81:4b:bf:38:a8:f2:e5:21:c3:9b:0b:87:05:5c:d1:31:e8: 73:f8:73:9c:a2:36:5a:5d:b9:04:5b:00:0f:22:8e:9b:7d:aa: 9b:d4:b8:e3:b3:b7:09:4a:fd:db:01:81:ee:a9:fc:a6:6d:55: b8:f6:9e:91:a5:96:26:07:1a:29:ac:06:94:01:d8:ce:88:ac: 20:51:8f:b1:2e:8b:e0:4c:2a:a0:60:d4:6b:d1:14:40:dd:33: 93:d2:2e:83:95:7f:86:05:ab:ae:72:eb:0c:92:46:bd:df:1a: 51:3d:9f:ad:c1:8b:60:de:c7:60:5c:fe:db:c3:1c:37:8b:75: 33:1e:6a:fb:aa:6c:2b:1e:fd:45:f6:c8:ca:5e:ba:c6:ab:31: 6c:9e:1e:e1:58:c7:a6:7a:ab:50:b8:a3:81:81:d6:8d:76:94: d2:32:28:6e:fc:27:86:e4:de:bc:e5:9d:69:a1:cd:f7:61:c5: 57:d2:27:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAo0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE2NjkxMTAvBgNVBAUTKDgzMkZFNTYxNEUwMkQzNTBGODg2NzkwREU0QkRDOTlG NDI2NDU1RTQwHhcNMjUwNzAzMDIwNjUyWhcNMjUwNzEwMDIwNjUyWjAYMRYwFAYD VQQDEw02ODY1ZTViYy03NTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3cVHYVw3ISfJKRtvPVHaLBm/bmVQyl02qmhTC7N3fiJAlmZdexFv6QOnvsM6 MPHs2z/StJ79ERHU9j/jZaj/MJns0BdWfSvf5Z6fiCmM6qdtK+giwxXq2OcuulpE EW+e6YEPLponwhIFxrLa/WozC8uBh+39VNGJPnksyyxinFhZfQ21Jwbkt7IwR0z3 Vi0ArrRM6CccMFkFYyPVLNy/a52zbeASNfERofFRHRQ5zFaEC33e/ONZ4vqsgGGZ tkDxhq08Q5YIQDRVncUCCq/Xwdr9KyakPbjSImgtymeA1K1tHwBR3EufxUmOP449 CzbCnorvKtdiNBAU3eoLi5ja3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF2VHmqo AkT61V4gtOEfxAyqRcTgMB8GA1UdIwQYMBaAFIMv5WFOAtNQ+IZ5DeS9yZ9CZFXk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTY2OS9CNTU4QkEwNjBE OTQxMUVEQTVENEUwNTFDNEY5QUUwMi9neV9sWVU0QzAxRDRobmtONUwzSm4wSmtW ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d5X2xZVTRDMDFENGhua041TDNKbjBKa1ZlUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTY2OS9CNTU4QkEwNjBEOTQxMUVEQTVENEUwNTFDNEY5QUUwMi9neV9sWVU0QzAx RDRobmtONUwzSm4wSmtWZVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkWgtUrY9HolBp2Y5PH8CN3ZkUbnuXhQAoITIVrmqCdi9OfxRWUCT2 fCQl2WLOr6zOhNr0rbe3SLOD9Pi+o86Bsn6DTl+fe9PDgUu/OKjy5SHDmwuHBVzR Mehz+HOcojZaXbkEWwAPIo6bfaqb1Ljjs7cJSv3bAYHuqfymbVW49p6RpZYmBxop rAaUAdjOiKwgUY+xLovgTCqgYNRr0RRA3TOT0i6DlX+GBauucusMkka93xpRPZ+t wYtg3sdgXP7bwxw3i3UzHmr7qmwrHv1F9sjKXrrGqzFsnh7hWMemeqtQuKOBgdaN dpTSMihu/CeG5N685Z1poc33YcVX0ie+ -----END CERTIFICATE-----Generated at Fri Jul 4 15:11:08 2025 by rpki-client