$ rpki-client -vvf rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/RYzdyj6PtkydGiNJJSi6d3_N0jQ.mft File: RYzdyj6PtkydGiNJJSi6d3_N0jQ.mft (raw, json) Hash identifier: 31pm0gD56MPUvX7HYlymxqsORu7vuBSKJvgmKjKxc5A= Subject key identifier: FB:DE:F3:40:48:11:31:33:D2:14:6D:4E:9A:43:FC:CC:35:D3:0E:92 Authority key identifier: 45:8C:DD:CA:3E:8F:B6:4C:9D:1A:23:49:25:28:BA:77:7F:CD:D2:34 Certificate issuer: /CN=A9174589/serialNumber=458CDDCA3E8FB64C9D1A23492528BA777FCDD234 Certificate serial: 0167 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYzdyj6PtkydGiNJJSi6d3_N0jQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/RYzdyj6PtkydGiNJJSi6d3_N0jQ.mft Manifest number: 015A Signing time: Thu 03 Jul 2025 04:21:31 +0000 Manifest this update: Thu 03 Jul 2025 04:21:31 +0000 Manifest next update: Thu 10 Jul 2025 04:21:31 +0000 Files and hashes: 1: RYzdyj6PtkydGiNJJSi6d3_N0jQ.crl (hash: xwvMyU5khISiTh16puG62AzDYJiif+xR6OoagY8PFFE=) 2: 5D4FB6AA9AB711EE86E1D058C4F9AE02.roa (hash: /lY6MRoQmBol07GaZSzAkv2Tfx/7fsrdKUpKLuZMxDs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/RYzdyj6PtkydGiNJJSi6d3_N0jQ.crl rsync://rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/RYzdyj6PtkydGiNJJSi6d3_N0jQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYzdyj6PtkydGiNJJSi6d3_N0jQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 359 (0x167) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174589, serialNumber=458CDDCA3E8FB64C9D1A23492528BA777FCDD234 Validity Not Before: Jul 3 04:21:31 2025 GMT Not After : Jul 10 04:21:31 2025 GMT Subject: CN=6866054b-417f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:26:dc:0c:f8:cf:f2:07:32:08:22:ab:6d:5a: 98:8c:b5:df:43:40:d8:16:c5:70:4c:91:89:c4:1d: 32:d8:a7:b9:d8:94:94:e6:83:aa:a4:2f:be:44:29: a9:2d:c9:86:59:2c:ac:cc:e3:51:4a:70:dd:4d:94: 84:8a:27:b0:a6:df:d9:09:f6:12:c6:0b:65:42:3c: 57:52:f2:0b:87:90:c0:23:70:a4:db:b2:15:e9:1e: d0:5f:46:c8:44:f5:f2:53:e8:37:1a:eb:5c:58:b2: cf:1b:b9:d0:84:fe:55:b4:0c:f1:a2:3f:9e:31:3b: 0a:71:f4:d2:7b:01:3a:a0:0e:2c:c5:00:48:43:be: 3e:53:f7:a3:23:f0:df:e7:a4:4b:06:05:4c:ec:0a: 72:c4:cb:4b:a7:cf:c5:0d:2b:24:0f:ac:5d:c6:f0: a9:2e:e0:31:9e:5a:71:10:0e:50:cf:bf:6d:ca:3c: 46:5e:a9:4e:40:b9:bd:9c:ed:7e:a2:f1:c7:05:2d: ac:83:eb:fc:b6:30:dc:4d:96:e7:d9:cb:f5:cf:1e: 26:a8:d2:cc:a0:e9:c6:94:6a:b9:04:56:d9:34:34: db:40:be:b4:c1:76:86:04:2d:e3:e5:69:3f:9a:5a: 33:4d:b4:0c:d0:ca:57:e0:e7:64:b6:a8:15:2b:c6: 64:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:DE:F3:40:48:11:31:33:D2:14:6D:4E:9A:43:FC:CC:35:D3:0E:92 X509v3 Authority Key Identifier: keyid:45:8C:DD:CA:3E:8F:B6:4C:9D:1A:23:49:25:28:BA:77:7F:CD:D2:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/RYzdyj6PtkydGiNJJSi6d3_N0jQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYzdyj6PtkydGiNJJSi6d3_N0jQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/RYzdyj6PtkydGiNJJSi6d3_N0jQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:0a:ec:01:cd:f4:6a:a9:57:b6:76:2b:5f:d7:6b:16:1c:49: 10:eb:68:2c:36:b9:59:03:25:30:e9:b1:b3:03:ce:a1:f0:85: 72:57:5c:40:ee:90:b8:5a:2b:fe:68:b3:c1:1c:13:41:0a:a5: fe:76:c0:8a:b7:23:de:43:4d:8d:db:0f:1a:65:a2:fe:98:88: 21:61:02:e6:41:b9:6c:3e:bc:ee:41:dd:0a:90:37:28:4a:6f: ef:94:cf:bb:ac:55:09:08:84:19:1d:86:bc:60:07:9a:e4:4d: f5:f0:9b:cb:15:72:9e:76:d3:b2:64:af:8e:1a:0b:5a:34:51: 9c:8d:5f:fd:9b:39:14:6d:39:79:28:c8:d0:b9:19:e3:36:aa: c0:83:a0:e8:a3:bd:88:64:cb:80:b4:af:61:71:77:15:a7:70: f3:45:50:2f:e8:23:b9:05:5d:f8:6c:4e:8d:f6:ce:42:e7:ce: e0:e8:da:38:2f:cf:8b:9a:3d:c9:a6:b8:90:63:1e:52:52:6f: d6:76:2d:4d:14:78:12:70:69:4f:f4:f1:71:66:4b:53:41:2e: b4:8c:1a:45:e2:a2:a8:f3:a7:df:8f:9b:a9:cd:49:32:24:90: 5d:75:f2:d8:f1:6b:84:c3:9f:e9:a9:e9:a2:09:b1:e5:0d:5a: a9:b1:b4:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQ1ODkxMTAvBgNVBAUTKDQ1OENERENBM0U4RkI2NEM5RDFBMjM0OTI1MjhCQTc3 N0ZDREQyMzQwHhcNMjUwNzAzMDQyMTMxWhcNMjUwNzEwMDQyMTMxWjAYMRYwFAYD VQQDEw02ODY2MDU0Yi00MTdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtybcDPjP8gcyCCKrbVqYjLXfQ0DYFsVwTJGJxB0y2Ke52JSU5oOqpC++RCmp LcmGWSyszONRSnDdTZSEiiewpt/ZCfYSxgtlQjxXUvILh5DAI3Ck27IV6R7QX0bI RPXyU+g3GutcWLLPG7nQhP5VtAzxoj+eMTsKcfTSewE6oA4sxQBIQ74+U/ejI/Df 56RLBgVM7ApyxMtLp8/FDSskD6xdxvCpLuAxnlpxEA5Qz79tyjxGXqlOQLm9nO1+ ovHHBS2sg+v8tjDcTZbn2cv1zx4mqNLMoOnGlGq5BFbZNDTbQL60wXaGBC3j5Wk/ mlozTbQM0MpX4OdktqgVK8ZkxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPve80BI ETEz0hRtTppD/Mw10w6SMB8GA1UdIwQYMBaAFEWM3co+j7ZMnRojSSUound/zdI0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDU4OS81RkM2MjdDNDYx QzQxMUVFQkIxNTFDNEJDNEY5QUUwMi9SWXpkeWo2UHRreWRHaU5KSlNpNmQzX04w alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JZemR5ajZQdGt5ZEdpTkpKU2k2ZDNfTjBqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDU4OS81RkM2MjdDNDYxQzQxMUVFQkIxNTFDNEJDNEY5QUUwMi9SWXpkeWo2UHRr eWRHaU5KSlNpNmQzX04walEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkCuwBzfRqqVe2ditf12sWHEkQ62gsNrlZAyUw6bGzA86h8IVyV1xA 7pC4Wiv+aLPBHBNBCqX+dsCKtyPeQ02N2w8aZaL+mIghYQLmQblsPrzuQd0KkDco Sm/vlM+7rFUJCIQZHYa8YAea5E318JvLFXKedtOyZK+OGgtaNFGcjV/9mzkUbTl5 KMjQuRnjNqrAg6Doo72IZMuAtK9hcXcVp3DzRVAv6CO5BV34bE6N9s5C587g6No4 L8+Lmj3JpriQYx5SUm/Wdi1NFHgScGlP9PFxZktTQS60jBpF4qKo86ffj5upzUky JJBddfLY8WuEw5/pqemiCbHlDVqpsbTI -----END CERTIFICATE-----Generated at Thu Jul 3 09:10:21 2025 by rpki-client