$ rpki-client -vvf rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.mft File: yCt7N51v7So8MMRTfg-HzLYIIus.mft (raw, json) Hash identifier: He4BkZzEvXYRY0Vux8gSXTkjTmlzSpQ7fZ5Kho2P5Ws= Subject key identifier: 83:EE:21:BE:75:91:48:4E:3B:37:E9:50:BE:82:01:13:6E:74:72:B6 Authority key identifier: C8:2B:7B:37:9D:6F:ED:2A:3C:30:C4:53:7E:0F:87:CC:B6:08:22:EB Certificate issuer: /CN=A917EB96/serialNumber=C82B7B379D6FED2A3C30C4537E0F87CCB60822EB Certificate serial: 0178 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCt7N51v7So8MMRTfg-HzLYIIus.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.mft Manifest number: 0174 Signing time: Thu 03 Jul 2025 03:50:38 +0000 Manifest this update: Thu 03 Jul 2025 03:50:38 +0000 Manifest next update: Thu 10 Jul 2025 03:50:38 +0000 Files and hashes: 1: yCt7N51v7So8MMRTfg-HzLYIIus.crl (hash: 2iebZa8APr3O3iz2N4wRuvt/g7wc6h7vGjGpBhiimtw=) 2: B50ECD32A57E11EEB4533738C4F9AE02.roa (hash: BkdlPGBhBetu9r/R8RI86aafR+sAmMSSEW9hm5cCW00=) 3: 348BAEE41C2D11EEB362491FC4F9AE02.roa (hash: ABPxiDdG7YwQPZkFSTV8BYz3BNZi1RIYblf+R4M0eLY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.crl rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCt7N51v7So8MMRTfg-HzLYIIus.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 376 (0x178) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917EB96, serialNumber=C82B7B379D6FED2A3C30C4537E0F87CCB60822EB Validity Not Before: Jul 3 03:50:38 2025 GMT Not After : Jul 10 03:50:38 2025 GMT Subject: CN=6865fe0e-a4d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:dc:03:26:cd:eb:3b:44:ca:7f:d2:49:a2:6a: 79:20:34:97:2e:e8:81:e1:00:da:38:d7:48:01:f8: 6c:a2:7f:8a:5d:3c:59:3b:1d:78:c4:ac:a6:6d:67: 13:ff:04:9c:10:aa:00:a8:0d:14:fa:a7:48:ad:1b: f5:5f:d7:30:73:c0:32:d8:a3:30:45:20:70:cd:9b: 03:8b:eb:bb:cb:b3:86:45:3a:1f:70:31:00:be:42: 4c:17:83:60:98:6c:e1:97:2d:ed:81:9b:df:cc:89: 63:73:a6:11:96:22:ec:8b:64:2a:d7:db:79:14:49: fa:df:2b:95:fe:77:db:b1:be:db:6f:b1:11:53:da: 92:61:d0:2e:5a:1d:0e:51:4e:be:46:92:de:31:00: e1:12:84:28:c1:2f:0a:72:30:d1:4a:b1:1e:ec:01: 24:a0:44:72:71:6c:76:c2:9a:1d:57:99:22:b9:1d: 9c:48:93:8a:3f:bf:07:cd:71:13:56:08:17:b7:64: 30:cb:93:4d:a1:b1:0b:55:04:fe:e3:a1:39:47:83: 66:25:7f:ab:ef:08:ee:23:c5:30:18:98:08:f1:ba: 9f:9a:44:98:4c:28:05:e6:1f:79:71:36:2a:50:14: d5:ef:20:92:4c:9a:58:e8:8e:a0:f0:e4:98:29:62: b3:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:EE:21:BE:75:91:48:4E:3B:37:E9:50:BE:82:01:13:6E:74:72:B6 X509v3 Authority Key Identifier: keyid:C8:2B:7B:37:9D:6F:ED:2A:3C:30:C4:53:7E:0F:87:CC:B6:08:22:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCt7N51v7So8MMRTfg-HzLYIIus.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:2e:71:f4:e2:f4:96:65:37:86:72:82:e4:f9:d7:c4:36:b4: d6:74:37:d4:42:02:94:28:8c:75:90:b6:1f:2f:ec:cc:d3:48: 30:b2:f3:5e:86:7b:3c:4d:42:ec:17:2c:b2:11:78:0e:74:9c: cd:6d:f6:72:a3:fa:a6:69:72:aa:ae:d3:6a:8a:b6:50:34:f6: d5:8e:f6:db:e9:6c:ce:f9:6d:f5:77:21:f3:8c:ab:9b:85:32: bb:d4:09:20:de:be:f4:14:1d:3d:85:17:b6:e1:13:c7:69:03: cf:f7:bf:68:c8:c4:35:73:ec:5c:11:4a:23:1c:c2:fa:01:83: 21:a2:cb:83:e3:87:f7:01:00:68:de:ac:b6:f8:b2:56:5e:d5: d7:67:b5:94:ab:58:5d:83:4c:78:f6:00:5b:47:a0:80:a9:e7: 60:a1:ce:d7:07:dd:35:c1:4c:c8:65:1c:21:99:9f:00:78:4c: b2:42:c7:1e:72:c5:d0:25:9f:42:04:d5:94:ef:5d:a8:e6:fa: f6:e0:35:f3:62:15:e2:6f:38:56:24:82:2c:12:1c:ae:e5:ec: 25:d9:4b:fa:ea:f8:62:7f:07:64:3f:e8:d4:d9:a7:83:69:5d: 83:73:e1:7e:03:34:79:8e:3a:54:26:1c:ca:48:1c:e7:16:2a: 54:cf:77:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VCOTYxMTAvBgNVBAUTKEM4MkI3QjM3OUQ2RkVEMkEzQzMwQzQ1MzdFMEY4N0ND QjYwODIyRUIwHhcNMjUwNzAzMDM1MDM4WhcNMjUwNzEwMDM1MDM4WjAYMRYwFAYD VQQDEw02ODY1ZmUwZS1hNGQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq9wDJs3rO0TKf9JJomp5IDSXLuiB4QDaONdIAfhson+KXTxZOx14xKymbWcT /wScEKoAqA0U+qdIrRv1X9cwc8Ay2KMwRSBwzZsDi+u7y7OGRTofcDEAvkJMF4Ng mGzhly3tgZvfzIljc6YRliLsi2Qq19t5FEn63yuV/nfbsb7bb7ERU9qSYdAuWh0O UU6+RpLeMQDhEoQowS8KcjDRSrEe7AEkoERycWx2wpodV5kiuR2cSJOKP78HzXET VggXt2Qwy5NNobELVQT+46E5R4NmJX+r7wjuI8UwGJgI8bqfmkSYTCgF5h95cTYq UBTV7yCSTJpY6I6g8OSYKWKzjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIPuIb51 kUhOOzfpUL6CARNudHK2MB8GA1UdIwQYMBaAFMgrezedb+0qPDDEU34Ph8y2CCLr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUI5Ni82NEQ2QkRDQzFD MjkxMUVFOUQwNkY5MEFDNEY5QUUwMi95Q3Q3TjUxdjdTbzhNTVJUZmctSHpMWUlJ dXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lDdDdONTF2N1NvOE1NUlRmZy1IekxZSUl1cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RUI5Ni82NEQ2QkRDQzFDMjkxMUVFOUQwNkY5MEFDNEY5QUUwMi95Q3Q3TjUxdjdT bzhNTVJUZmctSHpMWUlJdXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAILnH04vSWZTeGcoLk+dfENrTWdDfUQgKUKIx1kLYfL+zM00gwsvNe hns8TULsFyyyEXgOdJzNbfZyo/qmaXKqrtNqirZQNPbVjvbb6WzO+W31dyHzjKub hTK71Akg3r70FB09hRe24RPHaQPP979oyMQ1c+xcEUojHML6AYMhosuD44f3AQBo 3qy2+LJWXtXXZ7WUq1hdg0x49gBbR6CAqedgoc7XB901wUzIZRwhmZ8AeEyyQsce csXQJZ9CBNWU712o5vr24DXzYhXibzhWJIIsEhyu5ewl2Uv66vhifwdkP+jU2aeD aV2Dc+F+AzR5jjpUJhzKSBznFipUz3dC -----END CERTIFICATE-----Generated at Fri Jul 4 02:22:51 2025 by rpki-client