$ rpki-client -vvf rpki.apnic.net/member_repository/A919FA55/0F9E616E40FC11EEB8206744C4F9AE02/YCdrQR9t9pTdNkxP04LyXJ5qYGI.mft File: YCdrQR9t9pTdNkxP04LyXJ5qYGI.mft (raw, json) Hash identifier: LsQFBA0IsYGPh4XAL6CJvHut1x5KTn5UmtIcEfTQx60= Subject key identifier: 4C:EA:FD:E6:AC:D6:B0:0A:55:AE:C4:4E:99:C3:CB:2E:8D:2C:B3:E3 Authority key identifier: 60:27:6B:41:1F:6D:F6:94:DD:36:4C:4F:D3:82:F2:5C:9E:6A:60:62 Certificate issuer: /CN=A919FA55/serialNumber=60276B411F6DF694DD364C4FD382F25C9E6A6062 Certificate serial: 016A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCdrQR9t9pTdNkxP04LyXJ5qYGI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919FA55/0F9E616E40FC11EEB8206744C4F9AE02/YCdrQR9t9pTdNkxP04LyXJ5qYGI.mft Manifest number: 0164 Signing time: Thu 03 Jul 2025 04:06:23 +0000 Manifest this update: Thu 03 Jul 2025 04:06:23 +0000 Manifest next update: Thu 10 Jul 2025 04:06:23 +0000 Files and hashes: 1: YCdrQR9t9pTdNkxP04LyXJ5qYGI.crl (hash: eWtp4z58sP4TLh2XTXmJjmc2TrOsfNhMbOcNu1NEw2I=) 2: 730BFF8C428B11EEB9A5EA63C4F9AE02.roa (hash: kkjE94BBiiWiAJ9He43Jc/0GO/LlMOG+ydM9xjAZ/oQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919FA55/0F9E616E40FC11EEB8206744C4F9AE02/YCdrQR9t9pTdNkxP04LyXJ5qYGI.crl rsync://rpki.apnic.net/member_repository/A919FA55/0F9E616E40FC11EEB8206744C4F9AE02/YCdrQR9t9pTdNkxP04LyXJ5qYGI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCdrQR9t9pTdNkxP04LyXJ5qYGI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 362 (0x16a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919FA55, serialNumber=60276B411F6DF694DD364C4FD382F25C9E6A6062 Validity Not Before: Jul 3 04:06:23 2025 GMT Not After : Jul 10 04:06:23 2025 GMT Subject: CN=686601bf-af1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:43:47:46:5b:10:4d:bb:5b:08:1f:6d:e2:19: 75:26:51:4f:bd:43:4b:83:cf:6a:d8:e7:5f:ec:c2: cd:0c:8c:cb:1f:28:94:08:5f:a5:7b:8e:6a:0c:1f: 99:ee:90:b0:99:56:b8:d1:3f:f7:f2:10:de:40:92: ed:c8:32:21:92:08:26:f8:77:27:04:e4:d6:03:91: 8e:de:22:d1:ce:6d:85:0a:0d:ab:50:90:8d:1d:ed: 74:fa:7c:cd:24:de:ec:38:e9:30:4b:3b:5f:29:34: fc:4c:d3:f9:ac:fd:c3:7d:7b:c7:04:81:e5:a8:4a: 35:a8:13:01:61:a0:a3:07:a6:d4:3c:89:66:7e:a1: e5:54:fa:2f:71:f4:1c:3b:60:f3:a2:7f:6b:73:be: 17:eb:04:68:4b:f0:7c:63:25:7a:35:d6:0b:31:2a: 9f:73:4e:fe:7a:f8:26:8d:b5:f7:82:7c:23:aa:45: b6:f2:80:51:6d:3d:58:90:c0:20:3f:4c:0f:60:1c: eb:28:54:42:5d:4d:86:2e:59:e0:b0:57:5f:69:80: ad:f1:78:d8:81:52:25:c4:60:f2:8a:ec:fd:31:28: 06:85:9c:55:d7:b5:ea:3a:6f:bd:1f:2c:ec:99:02: df:02:83:a4:58:25:2c:b8:19:4f:ce:89:bf:8e:ca: f0:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:EA:FD:E6:AC:D6:B0:0A:55:AE:C4:4E:99:C3:CB:2E:8D:2C:B3:E3 X509v3 Authority Key Identifier: keyid:60:27:6B:41:1F:6D:F6:94:DD:36:4C:4F:D3:82:F2:5C:9E:6A:60:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919FA55/0F9E616E40FC11EEB8206744C4F9AE02/YCdrQR9t9pTdNkxP04LyXJ5qYGI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCdrQR9t9pTdNkxP04LyXJ5qYGI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FA55/0F9E616E40FC11EEB8206744C4F9AE02/YCdrQR9t9pTdNkxP04LyXJ5qYGI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:11:cf:99:9f:af:f7:92:4d:45:95:ed:51:30:97:39:92:68: 31:f8:bf:01:2f:f4:65:8c:b1:24:6b:dc:f6:ca:93:18:3c:56: 1b:47:8e:b5:59:c6:c3:1b:e6:df:2a:75:81:b0:d6:c4:7d:5c: 71:07:ec:b6:9b:4e:0b:74:4b:e3:eb:43:20:d8:50:94:4b:0f: 17:d7:bd:a4:a5:8a:ea:62:f1:6e:09:92:f4:f1:06:ff:50:ac: 12:a3:0a:8e:42:17:91:83:44:d6:72:1e:4f:07:e0:14:57:92: 19:3c:29:9b:71:ec:8d:b7:51:af:24:d5:cd:7a:5a:ed:fd:6a: d5:14:f7:81:7a:30:1b:41:cc:bf:16:23:b2:cb:99:96:9d:5e: 2b:f8:72:a4:6e:c7:ad:b0:06:15:0b:d1:4f:57:cd:94:3d:37: f1:79:c6:9f:b2:fc:09:60:bd:d4:c5:8d:dc:3e:5f:02:ea:63: d1:c4:8d:f4:51:13:64:72:bd:59:47:cf:f4:9f:7d:1e:f2:44: 2f:72:f5:b3:65:56:41:ab:8f:b7:f8:77:1e:b0:ff:63:33:b0: a1:ac:0b:09:34:d3:77:43:e0:81:76:84:1a:ce:b0:a2:e3:36: 2c:35:0b:f0:60:84:eb:f2:28:60:ed:d2:71:5e:f4:7b:c5:b7: 6e:f4:ee:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUZBNTUxMTAvBgNVBAUTKDYwMjc2QjQxMUY2REY2OTRERDM2NEM0RkQzODJGMjVD OUU2QTYwNjIwHhcNMjUwNzAzMDQwNjIzWhcNMjUwNzEwMDQwNjIzWjAYMRYwFAYD VQQDEw02ODY2MDFiZi1hZjFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz0NHRlsQTbtbCB9t4hl1JlFPvUNLg89q2Odf7MLNDIzLHyiUCF+le45qDB+Z 7pCwmVa40T/38hDeQJLtyDIhkggm+HcnBOTWA5GO3iLRzm2FCg2rUJCNHe10+nzN JN7sOOkwSztfKTT8TNP5rP3DfXvHBIHlqEo1qBMBYaCjB6bUPIlmfqHlVPovcfQc O2Dzon9rc74X6wRoS/B8YyV6NdYLMSqfc07+evgmjbX3gnwjqkW28oBRbT1YkMAg P0wPYBzrKFRCXU2GLlngsFdfaYCt8XjYgVIlxGDyiuz9MSgGhZxV17XqOm+9Hyzs mQLfAoOkWCUsuBlPzom/jsrw0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEzq/eas 1rAKVa7ETpnDyy6NLLPjMB8GA1UdIwQYMBaAFGAna0EfbfaU3TZMT9OC8lyeamBi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RkE1NS8wRjlFNjE2RTQw RkMxMUVFQjgyMDY3NDRDNEY5QUUwMi9ZQ2RyUVI5dDlwVGROa3hQMDRMeVhKNXFZ R0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lDZHJRUjl0OXBUZE5reFAwNEx5WEo1cVlHSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RkE1NS8wRjlFNjE2RTQwRkMxMUVFQjgyMDY3NDRDNEY5QUUwMi9ZQ2RyUVI5dDlw VGROa3hQMDRMeVhKNXFZR0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4Ec+Zn6/3kk1Fle1RMJc5kmgx+L8BL/RljLEka9z2ypMYPFYbR461 WcbDG+bfKnWBsNbEfVxxB+y2m04LdEvj60Mg2FCUSw8X172kpYrqYvFuCZL08Qb/ UKwSowqOQheRg0TWch5PB+AUV5IZPCmbceyNt1GvJNXNelrt/WrVFPeBejAbQcy/ FiOyy5mWnV4r+HKkbsetsAYVC9FPV82UPTfxecafsvwJYL3UxY3cPl8C6mPRxI30 URNkcr1ZR8/0n30e8kQvcvWzZVZBq4+3+HcesP9jM7ChrAsJNNN3Q+CBdoQazrCi 4zYsNQvwYITr8ihg7dJxXvR7xbdu9O4x -----END CERTIFICATE-----Generated at Fri Jul 4 23:09:05 2025 by rpki-client