$ rpki-client -vvf rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft File: YBi5hcOZywcxwWNM_ktHkS8q9dE.mft (raw, json) Hash identifier: TjpVxWl3TRK/cB+1XFAJFTBF1magjzTuugIT/7akS3s= Subject key identifier: 49:9C:BA:4C:A9:1B:02:9F:27:DA:A6:61:A7:78:01:0B:51:72:09:D9 Authority key identifier: 60:18:B9:85:C3:99:CB:07:31:C1:63:4C:FE:4B:47:91:2F:2A:F5:D1 Certificate issuer: /CN=A9183BA5/serialNumber=6018B985C399CB0731C1634CFE4B47912F2AF5D1 Certificate serial: 01EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft Manifest number: 01E5 Signing time: Sun 29 Jun 2025 01:49:55 +0000 Manifest this update: Sun 29 Jun 2025 01:49:54 +0000 Manifest next update: Sun 06 Jul 2025 01:49:54 +0000 Files and hashes: 1: YBi5hcOZywcxwWNM_ktHkS8q9dE.crl (hash: /p5yP4aFFCdGq9ox62UdW65t6qSDchPbshMIXjLFi/o=) 2: C386C06A706211EDA9CCDB76C4F9AE02.roa (hash: GPH0EzTOvf8jZ7f6MSDgIy6jbOQ54/6c8g2ijkFuu3Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.crl rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 01:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 490 (0x1ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9183BA5, serialNumber=6018B985C399CB0731C1634CFE4B47912F2AF5D1 Validity Not Before: Jun 29 01:49:54 2025 GMT Not After : Jul 6 01:49:54 2025 GMT Subject: CN=68609bc3-97c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:8d:a9:d5:54:1c:7f:8a:fb:5a:ef:ee:1f:ea: 69:52:69:28:b1:09:50:83:4d:b3:b2:f3:ee:13:ab: 70:90:a9:73:cd:dd:fd:ce:75:df:09:ae:aa:97:9e: 48:9c:a2:87:82:f0:45:a7:b3:b8:82:56:b5:97:24: f8:01:40:fb:c2:ce:a5:6d:23:64:e3:a4:e7:25:64: 0f:15:af:f1:97:e1:15:28:de:65:66:23:3c:c7:c8: 71:01:42:87:59:b4:47:4d:17:bf:ca:03:b8:4f:30: c0:a2:25:17:fc:eb:ee:ce:06:11:e2:e6:ac:37:0d: 77:ec:ac:8a:85:c5:a7:d1:81:e7:c6:42:e2:5b:eb: be:40:57:12:ea:41:c2:e2:21:71:3e:1f:41:2f:5b: 83:8e:43:38:6c:b3:1c:44:c7:4f:eb:fd:79:d9:4f: 05:72:6d:c0:a0:1f:47:a6:94:db:ec:e3:4d:a3:54: 89:d3:ff:b2:42:d6:d2:ac:f6:a0:bd:6a:8c:fd:2e: fd:48:17:ab:84:b8:17:00:ef:68:49:ef:d1:2c:fb: a9:21:ed:3a:a5:04:48:2a:cc:28:0d:9e:cb:56:33: b0:a8:83:02:59:71:33:06:30:30:97:01:04:7c:32: 6d:57:f4:86:84:bf:9c:36:c4:a3:be:59:d5:3a:2f: c7:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:9C:BA:4C:A9:1B:02:9F:27:DA:A6:61:A7:78:01:0B:51:72:09:D9 X509v3 Authority Key Identifier: keyid:60:18:B9:85:C3:99:CB:07:31:C1:63:4C:FE:4B:47:91:2F:2A:F5:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:12:27:74:9a:4f:2c:45:b8:ab:58:10:3e:d7:44:cd:3b:95: 6b:34:c1:3b:e5:68:2b:d0:73:9e:b7:ab:8f:ac:83:38:78:89: 06:3e:25:a9:60:c9:02:90:53:27:83:98:c1:bf:4b:da:90:66: 34:3a:fd:d1:b7:9b:9e:8e:c6:02:fb:19:2b:31:8c:69:3e:63: 0d:7f:a9:54:72:ec:4f:7e:9c:ed:d2:e0:74:dc:be:15:9a:d8: c4:76:0b:0c:bd:5a:41:63:f7:bc:15:57:87:74:90:d2:0e:ea: df:48:63:1d:be:00:06:ab:0f:63:07:99:fd:44:a0:64:98:b2: bf:27:b2:b3:3b:14:2a:93:60:55:68:20:ec:72:a4:02:a4:ec: 55:e1:d8:86:55:44:33:fc:8f:d1:78:7c:e9:d5:23:5a:ba:e1: 4e:23:54:d5:04:e7:1d:b7:cb:51:a8:0a:e0:0b:89:0e:47:3d: f4:72:00:6c:58:99:49:ff:cf:c8:8f:5c:9d:6e:64:f6:3e:e5: cd:17:3e:14:21:25:98:08:63:d8:7e:37:2a:44:96:d9:61:4b: f1:25:3a:dd:26:b4:85:23:e7:56:8c:d8:91:c1:f7:21:5a:c6: f3:a8:21:76:2e:30:fc:ed:52:88:5f:01:dc:d1:69:c3:29:fa: f4:aa:eb:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODNCQTUxMTAvBgNVBAUTKDYwMThCOTg1QzM5OUNCMDczMUMxNjM0Q0ZFNEI0Nzkx MkYyQUY1RDEwHhcNMjUwNjI5MDE0OTU0WhcNMjUwNzA2MDE0OTU0WjAYMRYwFAYD VQQDEw02ODYwOWJjMy05N2M5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4I2p1VQcf4r7Wu/uH+ppUmkosQlQg02zsvPuE6twkKlzzd39znXfCa6ql55I nKKHgvBFp7O4gla1lyT4AUD7ws6lbSNk46TnJWQPFa/xl+EVKN5lZiM8x8hxAUKH WbRHTRe/ygO4TzDAoiUX/OvuzgYR4uasNw137KyKhcWn0YHnxkLiW+u+QFcS6kHC 4iFxPh9BL1uDjkM4bLMcRMdP6/152U8Fcm3AoB9HppTb7ONNo1SJ0/+yQtbSrPag vWqM/S79SBerhLgXAO9oSe/RLPupIe06pQRIKswoDZ7LVjOwqIMCWXEzBjAwlwEE fDJtV/SGhL+cNsSjvlnVOi/HOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEmcukyp GwKfJ9qmYad4AQtRcgnZMB8GA1UdIwQYMBaAFGAYuYXDmcsHMcFjTP5LR5EvKvXR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4M0JBNS8yODYyMENDNDcw NUUxMUVEQkMwN0YxNThDNEY5QUUwMi9ZQmk1aGNPWnl3Y3h3V05NX2t0SGtTOHE5 ZEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lCaTVoY09aeXdjeHdXTk1fa3RIa1M4cTlkRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 M0JBNS8yODYyMENDNDcwNUUxMUVEQkMwN0YxNThDNEY5QUUwMi9ZQmk1aGNPWnl3 Y3h3V05NX2t0SGtTOHE5ZEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFEid0mk8sRbirWBA+10TNO5VrNME75Wgr0HOet6uPrIM4eIkGPiWp YMkCkFMng5jBv0vakGY0Ov3Rt5uejsYC+xkrMYxpPmMNf6lUcuxPfpzt0uB03L4V mtjEdgsMvVpBY/e8FVeHdJDSDurfSGMdvgAGqw9jB5n9RKBkmLK/J7KzOxQqk2BV aCDscqQCpOxV4diGVUQz/I/ReHzp1SNauuFOI1TVBOcdt8tRqArgC4kORz30cgBs WJlJ/8/Ij1ydbmT2PuXNFz4UISWYCGPYfjcqRJbZYUvxJTrdJrSFI+dWjNiRwfch WsbzqCF2LjD87VKIXwHc0WnDKfr0quvD -----END CERTIFICATE-----Generated at Sun Jun 29 19:30:27 2025 by rpki-client