$ rpki-client -vvf rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.mft File: y3TVYT1zQs-5t_ed7wyfrYhceCI.mft (raw, json) Hash identifier: F3xOzITCAOXASy+8caR6AJCmbii/bXsuT5CSXZHLTPA= Subject key identifier: 43:06:57:5B:1D:03:91:D7:7C:24:EC:AF:73:DB:E7:1C:39:5B:8B:26 Authority key identifier: CB:74:D5:61:3D:73:42:CF:B9:B7:F7:9D:EF:0C:9F:AD:88:5C:78:22 Certificate issuer: /CN=A917845B/serialNumber=CB74D5613D7342CFB9B7F79DEF0C9FAD885C7822 Certificate serial: 0171 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y3TVYT1zQs-5t_ed7wyfrYhceCI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.mft Manifest number: 016F Signing time: Tue 01 Jul 2025 04:14:59 +0000 Manifest this update: Tue 01 Jul 2025 04:14:58 +0000 Manifest next update: Tue 08 Jul 2025 04:14:58 +0000 Files and hashes: 1: y3TVYT1zQs-5t_ed7wyfrYhceCI.crl (hash: /ITbaepRi50zt4+BCmNI0salwIwqvGX48rgBLEeHtiM=) 2: D5981734217611EE9EBE2F70C4F9AE02.roa (hash: mEyirxNNF/HUjbME+0mygxI2/51XwzfUXk7qYYI6cLw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.crl rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y3TVYT1zQs-5t_ed7wyfrYhceCI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 04:14:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 369 (0x171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917845B, serialNumber=CB74D5613D7342CFB9B7F79DEF0C9FAD885C7822 Validity Not Before: Jul 1 04:14:58 2025 GMT Not After : Jul 8 04:14:58 2025 GMT Subject: CN=686360c3-6075 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c0:71:3a:ec:56:bc:ad:75:4e:77:7c:66:28: 2c:e8:7e:a5:95:04:b4:97:00:d7:01:d1:b5:cc:4c: bc:b9:52:70:46:ff:d1:b6:a7:d4:35:c1:fe:29:a1: f6:ee:99:10:1c:b9:ef:62:45:c8:fe:0a:00:34:96: 4f:cc:d4:f2:25:36:fd:2c:38:9a:39:f5:65:45:4d: 4d:f2:30:56:9d:85:d8:12:8c:13:f8:ae:47:b0:b1: 08:f2:55:2f:2c:5b:35:6e:e2:bb:3c:43:92:d0:19: bb:2e:01:b7:26:7c:88:94:dd:08:fc:25:2f:2d:40: fc:01:7a:aa:93:06:5b:d0:9c:3f:eb:f8:43:1c:3d: c5:fc:14:8d:ff:f7:95:46:e2:a7:2e:c4:8f:4e:b1: 06:d1:da:43:5b:5d:c0:04:84:a8:2e:47:8f:e4:d4: c1:13:ad:9d:74:3b:5e:cc:8f:b6:ff:ed:fd:9c:63: 7f:d7:45:dc:08:33:fa:40:e7:83:9f:dd:1a:6e:6a: d4:59:2f:d1:40:84:35:c2:b8:55:01:41:54:b3:8d: 66:df:2e:5c:c3:a1:35:41:6c:c5:57:6b:35:4f:2d: 22:53:a2:aa:61:0b:a5:27:43:2e:d3:12:76:b3:85: 4b:be:b0:57:74:34:fc:ac:b4:13:a9:9d:b8:98:6c: a7:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:06:57:5B:1D:03:91:D7:7C:24:EC:AF:73:DB:E7:1C:39:5B:8B:26 X509v3 Authority Key Identifier: keyid:CB:74:D5:61:3D:73:42:CF:B9:B7:F7:9D:EF:0C:9F:AD:88:5C:78:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y3TVYT1zQs-5t_ed7wyfrYhceCI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:2d:dc:44:0b:fa:09:05:24:da:4e:ef:28:48:4e:88:c6:3d: e0:41:4b:d7:b6:e0:43:9e:84:bc:9c:be:5f:e6:49:59:92:a5: 4c:80:99:e5:b1:92:f4:4f:8b:11:66:0c:87:f7:2e:11:e4:c6: 77:53:4c:45:b0:d0:45:7d:22:f8:ba:e6:cb:eb:c2:50:14:6a: 57:11:f7:67:da:ec:dc:0f:fc:1c:33:27:11:4a:1c:ff:39:55: 7f:0e:6c:2b:d2:6e:d2:6b:57:f9:95:b9:99:e0:fa:53:2b:c0: 2b:9f:ae:46:90:3c:bd:5e:6a:d3:61:99:7b:99:c9:fc:5c:a8: 60:9b:8d:60:64:d0:26:68:fb:ce:28:59:61:cb:18:d6:a8:41: 0f:9d:f3:c3:6a:99:77:7c:a0:58:54:0a:9e:a7:fa:c5:74:f5: 84:f6:04:71:1b:66:8c:35:68:83:f6:ae:f4:4c:a9:ed:83:49: 7c:7f:2e:21:a6:53:cb:7e:f0:9a:6e:62:03:dd:4b:79:be:9c: 03:06:01:e6:9a:e7:5b:56:20:59:ee:a0:e5:38:ce:fc:96:3d: 6a:f1:7d:4b:44:35:57:fd:98:ef:8d:f2:24:d2:4a:b9:a9:ab: 6a:bd:09:06:4b:68:0f:0f:5f:14:0e:d1:cc:16:75:ad:28:ef: 32:07:f3:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzg0NUIxMTAvBgNVBAUTKENCNzRENTYxM0Q3MzQyQ0ZCOUI3Rjc5REVGMEM5RkFE ODg1Qzc4MjIwHhcNMjUwNzAxMDQxNDU4WhcNMjUwNzA4MDQxNDU4WjAYMRYwFAYD VQQDEw02ODYzNjBjMy02MDc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz8BxOuxWvK11Tnd8Zigs6H6llQS0lwDXAdG1zEy8uVJwRv/RtqfUNcH+KaH2 7pkQHLnvYkXI/goANJZPzNTyJTb9LDiaOfVlRU1N8jBWnYXYEowT+K5HsLEI8lUv LFs1buK7PEOS0Bm7LgG3JnyIlN0I/CUvLUD8AXqqkwZb0Jw/6/hDHD3F/BSN//eV RuKnLsSPTrEG0dpDW13ABISoLkeP5NTBE62ddDtezI+2/+39nGN/10XcCDP6QOeD n90abmrUWS/RQIQ1wrhVAUFUs41m3y5cw6E1QWzFV2s1Ty0iU6KqYQulJ0Mu0xJ2 s4VLvrBXdDT8rLQTqZ24mGynLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEMGV1sd A5HXfCTsr3Pb5xw5W4smMB8GA1UdIwQYMBaAFMt01WE9c0LPubf3ne8Mn62IXHgi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3ODQ1Qi85NzM2OUI0NjIx NzYxMUVFQjRGM0FENkZDNEY5QUUwMi95M1RWWVQxelFzLTV0X2VkN3d5ZnJZaGNl Q0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kzVFZZVDF6UXMtNXRfZWQ3d3lmclloY2VDSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 ODQ1Qi85NzM2OUI0NjIxNzYxMUVFQjRGM0FENkZDNEY5QUUwMi95M1RWWVQxelFz LTV0X2VkN3d5ZnJZaGNlQ0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeLdxEC/oJBSTaTu8oSE6Ixj3gQUvXtuBDnoS8nL5f5klZkqVMgJnl sZL0T4sRZgyH9y4R5MZ3U0xFsNBFfSL4uubL68JQFGpXEfdn2uzcD/wcMycRShz/ OVV/Dmwr0m7Sa1f5lbmZ4PpTK8Arn65GkDy9XmrTYZl7mcn8XKhgm41gZNAmaPvO KFlhyxjWqEEPnfPDapl3fKBYVAqep/rFdPWE9gRxG2aMNWiD9q70TKntg0l8fy4h plPLfvCabmID3Ut5vpwDBgHmmudbViBZ7qDlOM78lj1q8X1LRDVX/ZjvjfIk0kq5 qatqvQkGS2gPD18UDtHMFnWtKO8yB/MO -----END CERTIFICATE-----Generated at Thu Jul 3 02:06:07 2025 by rpki-client