$ rpki-client -vvf rpki.apnic.net/member_repository/A9184AB8/3B0A9C64D1B011EF8C20DD32C4F9AE02/MYj5ufXpCvsNsN5lZfAskL7qSNA.mft File: MYj5ufXpCvsNsN5lZfAskL7qSNA.mft (raw, json) Hash identifier: hzBd385ovJRfn7ZWQspiytG5osLHDCCQqwFs5p0fDyw= Subject key identifier: 43:F0:07:99:AD:C5:30:36:47:EA:ED:A7:7F:41:26:63:78:5C:F1:DF Authority key identifier: 31:88:F9:B9:F5:E9:0A:FB:0D:B0:DE:65:65:F0:2C:90:BE:EA:48:D0 Certificate issuer: /CN=A9184AB8/serialNumber=3188F9B9F5E90AFB0DB0DE6565F02C90BEEA48D0 Certificate serial: 61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MYj5ufXpCvsNsN5lZfAskL7qSNA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9184AB8/3B0A9C64D1B011EF8C20DD32C4F9AE02/MYj5ufXpCvsNsN5lZfAskL7qSNA.mft Manifest number: 5D Signing time: Tue 01 Jul 2025 07:57:06 +0000 Manifest this update: Tue 01 Jul 2025 07:57:05 +0000 Manifest next update: Tue 08 Jul 2025 07:57:05 +0000 Files and hashes: 1: MYj5ufXpCvsNsN5lZfAskL7qSNA.crl (hash: ZYS+ih7ClZCaa4oYwMZVHhVMhdvZsN6lBtXdvK5xE64=) 2: ED63E306F5EC11EFBB174335C4F9AE02.roa (hash: sDxPGPWuMnoYPL5SXwZzSX89Yi7Im2b2Bj3YLGK0a00=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9184AB8/3B0A9C64D1B011EF8C20DD32C4F9AE02/MYj5ufXpCvsNsN5lZfAskL7qSNA.crl rsync://rpki.apnic.net/member_repository/A9184AB8/3B0A9C64D1B011EF8C20DD32C4F9AE02/MYj5ufXpCvsNsN5lZfAskL7qSNA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MYj5ufXpCvsNsN5lZfAskL7qSNA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 07:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 97 (0x61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9184AB8, serialNumber=3188F9B9F5E90AFB0DB0DE6565F02C90BEEA48D0 Validity Not Before: Jul 1 07:57:05 2025 GMT Not After : Jul 8 07:57:05 2025 GMT Subject: CN=686394d2-195c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:02:1c:39:bf:80:ea:55:a5:34:34:a5:09:55: d2:87:4d:3b:79:c9:87:ab:9c:ef:3d:be:b1:c4:d1: c9:42:4e:7d:40:65:74:72:cb:71:70:4c:85:5e:86: 0b:95:95:07:f0:e9:f0:0d:c1:41:d9:dc:a6:9b:fc: ea:7f:cc:0e:19:71:87:5b:84:27:58:d8:12:9b:06: c1:1a:88:9b:42:6b:9b:43:6a:d5:f9:cd:9c:a5:86: 71:78:cf:01:b7:91:e0:8e:0a:ba:27:d1:90:a2:ab: 44:55:62:0e:53:3a:54:65:61:f5:e4:53:4b:34:cc: d6:74:f5:9b:30:77:67:c4:0c:c4:de:7d:0a:42:b7: 0d:e7:5e:0c:f3:36:44:68:56:c9:ee:86:7c:fb:48: 22:13:4b:61:10:64:ef:98:8b:e0:48:a8:87:76:f9: c5:73:4d:55:e5:08:95:84:80:ba:c0:b9:0c:f3:09: 23:3c:ff:9d:0c:38:46:76:d7:74:6a:8f:2d:1f:ba: 42:35:18:db:96:38:ca:2d:0d:f0:db:92:5d:de:5a: e0:27:46:53:e6:b0:7b:b4:ff:f1:83:03:fe:9a:7b: 5a:e3:70:d3:e5:d3:e1:8f:94:a5:4d:03:39:09:e3: 63:99:00:1c:45:e7:d3:d2:80:86:40:69:54:b2:be: e8:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:F0:07:99:AD:C5:30:36:47:EA:ED:A7:7F:41:26:63:78:5C:F1:DF X509v3 Authority Key Identifier: keyid:31:88:F9:B9:F5:E9:0A:FB:0D:B0:DE:65:65:F0:2C:90:BE:EA:48:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9184AB8/3B0A9C64D1B011EF8C20DD32C4F9AE02/MYj5ufXpCvsNsN5lZfAskL7qSNA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MYj5ufXpCvsNsN5lZfAskL7qSNA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9184AB8/3B0A9C64D1B011EF8C20DD32C4F9AE02/MYj5ufXpCvsNsN5lZfAskL7qSNA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:9f:59:56:2f:3d:a2:ed:3f:69:c6:87:d2:a0:a9:2e:4f:06: 65:00:4c:4e:3f:c9:53:84:ad:44:3a:ae:c6:76:2d:ae:b8:c2: ee:13:d6:9e:ae:74:cf:3c:6a:6a:78:54:48:e3:4e:a7:2a:33: 1c:c2:34:dc:8c:a7:d2:85:05:8c:fd:2f:49:a8:46:08:9b:3d: 72:32:4f:14:64:2c:7e:87:36:38:13:92:9b:d0:d5:32:78:f1: f9:e0:31:6d:27:b5:7e:bb:5d:94:96:7d:af:2b:10:8a:07:6b: c3:05:b1:5d:f7:19:94:37:2f:c4:8c:d7:05:79:14:10:1e:d7: bd:1c:41:ae:a2:54:0d:07:4e:c2:ad:86:60:7e:f5:b6:2d:8b: 24:c1:86:72:41:04:9d:d2:3e:9d:bc:01:36:cd:ac:65:fd:78: 76:52:bf:36:d1:3a:2f:d3:2a:92:2f:9a:aa:12:ee:1f:7c:50: 4d:7b:9a:b6:06:22:72:64:47:c6:aa:58:6d:18:b0:e1:68:4c: 18:ca:40:97:d4:b2:18:be:e8:b5:4c:8d:e6:ee:53:b4:56:90: fd:79:2e:9b:2e:d1:48:27:ea:a4:fb:f5:ae:ac:fb:03:0b:3f: 85:91:8b:fb:5e:88:32:9d:c6:04:eb:79:e2:27:d8:a9:e2:cb: 4c:14:42:53 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NEFCODExMC8GA1UEBRMoMzE4OEY5QjlGNUU5MEFGQjBEQjBERTY1NjVGMDJDOTBC RUVBNDhEMDAeFw0yNTA3MDEwNzU3MDVaFw0yNTA3MDgwNzU3MDVaMBgxFjAUBgNV BAMTDTY4NjM5NGQyLTE5NWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCkAhw5v4DqVaU0NKUJVdKHTTt5yYernO89vrHE0clCTn1AZXRyy3FwTIVehguV lQfw6fANwUHZ3Kab/Op/zA4ZcYdbhCdY2BKbBsEaiJtCa5tDatX5zZylhnF4zwG3 keCOCron0ZCiq0RVYg5TOlRlYfXkU0s0zNZ09Zswd2fEDMTefQpCtw3nXgzzNkRo Vsnuhnz7SCITS2EQZO+Yi+BIqId2+cVzTVXlCJWEgLrAuQzzCSM8/50MOEZ213Rq jy0fukI1GNuWOMotDfDbkl3eWuAnRlPmsHu0//GDA/6ae1rjcNPl0+GPlKVNAzkJ 42OZABxF59PSgIZAaVSyvugxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQ/AHma3F MDZH6u2nf0EmY3hc8d8wHwYDVR0jBBgwFoAUMYj5ufXpCvsNsN5lZfAskL7qSNAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg0QUI4LzNCMEE5QzY0RDFC MDExRUY4QzIwREQzMkM0RjlBRTAyL01ZajV1ZlhwQ3ZzTnNONWxaZkFza0w3cVNO QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTVlqNXVmWHBDdnNOc041bFpmQXNrTDdxU05BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg0 QUI4LzNCMEE5QzY0RDFCMDExRUY4QzIwREQzMkM0RjlBRTAyL01ZajV1ZlhwQ3Zz TnNONWxaZkFza0w3cVNOQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAK2fWVYvPaLtP2nGh9KgqS5PBmUATE4/yVOErUQ6rsZ2La64wu4T1p6u dM88amp4VEjjTqcqMxzCNNyMp9KFBYz9L0moRgibPXIyTxRkLH6HNjgTkpvQ1TJ4 8fngMW0ntX67XZSWfa8rEIoHa8MFsV33GZQ3L8SM1wV5FBAe170cQa6iVA0HTsKt hmB+9bYtiyTBhnJBBJ3SPp28ATbNrGX9eHZSvzbROi/TKpIvmqoS7h98UE17mrYG InJkR8aqWG0YsOFoTBjKQJfUshi+6LVMjebuU7RWkP15Lpsu0Ugn6qT79a6s+wML P4WRi/teiDKdxgTreeIn2Kniy0wUQlM= -----END CERTIFICATE-----Generated at Thu Jul 3 01:12:41 2025 by rpki-client