$ rpki-client -vvf rpki.apnic.net/member_repository/A9174C7A/44F14AFC404611F09BF0D84FC4F9AE02/pYrazvnSRVOlVka1puvM6rGfL7w.mft File: pYrazvnSRVOlVka1puvM6rGfL7w.mft (raw, json) Hash identifier: hKgnwmPTPZ5WVCulwFeRbf1KjZJN6WtuYABH8qvU8SU= Subject key identifier: D4:42:1E:89:C6:03:E6:76:25:0A:AF:63:ED:14:13:15:E5:35:1F:CA Authority key identifier: A5:8A:DA:CE:F9:D2:45:53:A5:56:46:B5:A6:EB:CC:EA:B1:9F:2F:BC Certificate issuer: /CN=A9174C7A/serialNumber=A58ADACEF9D24553A55646B5A6EBCCEAB19F2FBC Certificate serial: 12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pYrazvnSRVOlVka1puvM6rGfL7w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174C7A/44F14AFC404611F09BF0D84FC4F9AE02/pYrazvnSRVOlVka1puvM6rGfL7w.mft Manifest number: 11 Signing time: Thu 03 Jul 2025 08:19:30 +0000 Manifest this update: Thu 03 Jul 2025 08:19:29 +0000 Manifest next update: Thu 10 Jul 2025 08:19:29 +0000 Files and hashes: 1: pYrazvnSRVOlVka1puvM6rGfL7w.crl (hash: oE4epgm+t6HaFoKVpBVmYOFYz2JW0502GRHEi8uQyuo=) 2: 8D052914404911F0A4BD357BC4F9AE02.roa (hash: WkC734Z9YLqp46ED9zzrP9DX1ES2VdVVIimzvDKW6/8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174C7A/44F14AFC404611F09BF0D84FC4F9AE02/pYrazvnSRVOlVka1puvM6rGfL7w.crl rsync://rpki.apnic.net/member_repository/A9174C7A/44F14AFC404611F09BF0D84FC4F9AE02/pYrazvnSRVOlVka1puvM6rGfL7w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pYrazvnSRVOlVka1puvM6rGfL7w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18 (0x12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174C7A, serialNumber=A58ADACEF9D24553A55646B5A6EBCCEAB19F2FBC Validity Not Before: Jul 3 08:19:29 2025 GMT Not After : Jul 10 08:19:29 2025 GMT Subject: CN=68663d11-db5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:e0:d9:de:c4:66:26:f9:77:a2:d4:a2:0f:c1: c4:b7:f8:8d:6e:0e:e3:5b:e5:0e:21:e8:90:04:15: c5:cd:df:78:cb:61:6e:21:97:14:78:2e:2a:ff:c6: f7:38:e4:b1:b0:d2:a1:8e:2b:6f:e2:6d:5a:0d:2b: 6c:03:ef:d6:77:25:cb:07:94:92:74:35:05:fa:fe: 66:1e:4a:e2:1c:99:67:9f:98:64:f8:6b:a2:c4:76: de:5c:b9:82:bb:3f:78:2a:ec:69:18:c0:4a:24:4c: f0:b3:11:b4:bb:1b:b0:35:8b:1d:32:63:ec:89:b3: b1:82:b4:34:b7:38:16:b9:f1:5c:41:f1:31:2f:a1: ab:d8:a5:a4:eb:bd:74:ab:2c:29:1b:f7:d3:ab:d7: c7:e7:f9:40:af:af:35:6a:ea:ff:50:74:da:da:de: 91:f3:80:57:3c:ca:02:0b:68:65:ad:23:0f:16:e8: 5e:bc:b6:c9:50:01:31:7b:f8:f3:be:1c:dd:9d:cc: bb:9a:82:0e:87:28:9d:d0:ea:d8:eb:a2:71:f8:b7: ed:63:98:21:0b:7a:02:8a:58:a0:1f:1e:31:44:63: 46:a2:ed:2d:77:09:5c:58:a6:e5:09:e5:54:bf:22: 62:1a:2a:ab:33:b9:d1:4b:c9:c8:08:99:51:aa:19: ed:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:42:1E:89:C6:03:E6:76:25:0A:AF:63:ED:14:13:15:E5:35:1F:CA X509v3 Authority Key Identifier: keyid:A5:8A:DA:CE:F9:D2:45:53:A5:56:46:B5:A6:EB:CC:EA:B1:9F:2F:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174C7A/44F14AFC404611F09BF0D84FC4F9AE02/pYrazvnSRVOlVka1puvM6rGfL7w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pYrazvnSRVOlVka1puvM6rGfL7w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174C7A/44F14AFC404611F09BF0D84FC4F9AE02/pYrazvnSRVOlVka1puvM6rGfL7w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:a6:d0:ba:66:ff:85:6d:dd:57:6c:87:f4:1e:cc:3d:dc:28: c8:3c:24:da:44:e9:57:5d:1d:0e:9b:09:d4:37:79:0c:6b:f4: b2:d5:3d:26:c0:fa:0e:12:e3:24:55:cc:9b:16:6c:c8:aa:05: e1:6e:7a:67:06:10:33:55:e9:1d:84:a0:1b:12:38:6f:86:2d: 66:77:9d:e9:d8:a7:7d:d6:61:61:8e:8a:52:d3:51:20:f6:aa: db:16:1a:d1:34:97:43:d2:e6:65:b1:ac:72:a8:17:3c:f7:59: 65:00:df:68:b5:6c:4b:d9:ca:52:32:ad:55:87:c4:12:b1:ce: 95:07:e5:75:ad:6b:74:cb:e6:9a:c0:40:6c:f4:9c:77:ef:9e: 02:73:4a:33:07:d1:f0:54:c4:a9:82:ef:fc:6b:8b:c7:71:09: c0:6c:f6:0a:7b:6b:9e:6b:b8:fb:75:78:13:73:1f:e9:52:be: 17:61:04:1a:26:cb:a8:f8:9c:65:1a:21:ce:6d:28:ea:e3:96: fd:83:47:a8:aa:f1:21:5b:52:d0:74:15:0e:09:bf:17:8f:15: ac:b6:40:ad:48:be:97:62:5b:3b:51:c0:c4:4c:03:46:dd:25: af:a9:7a:8d:5d:76:70:50:e0:74:3e:76:9c:40:4d:e9:1b:ff: b0:bd:11:a3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NEM3QTExMC8GA1UEBRMoQTU4QURBQ0VGOUQyNDU1M0E1NTY0NkI1QTZFQkNDRUFC MTlGMkZCQzAeFw0yNTA3MDMwODE5MjlaFw0yNTA3MTAwODE5MjlaMBgxFjAUBgNV BAMTDTY4NjYzZDExLWRiNWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCh4NnexGYm+Xei1KIPwcS3+I1uDuNb5Q4h6JAEFcXN33jLYW4hlxR4Lir/xvc4 5LGw0qGOK2/ibVoNK2wD79Z3JcsHlJJ0NQX6/mYeSuIcmWefmGT4a6LEdt5cuYK7 P3gq7GkYwEokTPCzEbS7G7A1ix0yY+yJs7GCtDS3OBa58VxB8TEvoavYpaTrvXSr LCkb99Or18fn+UCvrzVq6v9QdNra3pHzgFc8ygILaGWtIw8W6F68tslQATF7+PO+ HN2dzLuagg6HKJ3Q6tjronH4t+1jmCELegKKWKAfHjFEY0ai7S13CVxYpuUJ5VS/ ImIaKqszudFLycgImVGqGe0pAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU1EIeicYD 5nYlCq9j7RQTFeU1H8owHwYDVR0jBBgwFoAUpYrazvnSRVOlVka1puvM6rGfL7ww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc0QzdBLzQ0RjE0QUZDNDA0 NjExRjA5QkYwRDg0RkM0RjlBRTAyL3BZcmF6dm5TUlZPbFZrYTFwdXZNNnJHZkw3 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcFlyYXp2blNSVk9sVmthMXB1dk02ckdmTDd3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc0 QzdBLzQ0RjE0QUZDNDA0NjExRjA5QkYwRDg0RkM0RjlBRTAyL3BZcmF6dm5TUlZP bFZrYTFwdXZNNnJHZkw3dy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAD6m0Lpm/4Vt3Vdsh/QezD3cKMg8JNpE6VddHQ6bCdQ3eQxr9LLVPSbA +g4S4yRVzJsWbMiqBeFuemcGEDNV6R2EoBsSOG+GLWZ3nenYp33WYWGOilLTUSD2 qtsWGtE0l0PS5mWxrHKoFzz3WWUA32i1bEvZylIyrVWHxBKxzpUH5XWta3TL5prA QGz0nHfvngJzSjMH0fBUxKmC7/xri8dxCcBs9gp7a55ruPt1eBNzH+lSvhdhBBom y6j4nGUaIc5tKOrjlv2DR6iq8SFbUtB0FQ4JvxePFay2QK1IvpdiWztRwMRMA0bd Ja+peo1ddnBQ4HQ+dpxATekb/7C9EaM= -----END CERTIFICATE-----Generated at Fri Jul 4 08:17:36 2025 by rpki-client