$ rpki-client -vvf rpki.apnic.net/member_repository/A91389E7/99D28C9C4C0911F09F38B628C4F9AE02/BYl-c1406PZYdVSprzc0CCziidk.mft File: BYl-c1406PZYdVSprzc0CCziidk.mft (raw, json) Hash identifier: QdJRhygp74tv9OTzWnYUggqjvhzJvj2/2XJ0EiRCbEU= Subject key identifier: E4:1C:B6:97:B8:89:DE:24:8C:69:F4:E1:5E:74:D5:D4:9A:66:3D:51 Authority key identifier: 05:89:7E:73:5E:34:E8:F6:58:75:54:A9:AF:37:34:08:2C:E2:89:D9 Certificate issuer: /CN=A91389E7/serialNumber=05897E735E34E8F6587554A9AF3734082CE289D9 Certificate serial: 14 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BYl-c1406PZYdVSprzc0CCziidk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91389E7/99D28C9C4C0911F09F38B628C4F9AE02/BYl-c1406PZYdVSprzc0CCziidk.mft Manifest number: 12 Signing time: Tue 15 Jul 2025 08:22:55 +0000 Manifest this update: Tue 15 Jul 2025 08:22:54 +0000 Manifest next update: Tue 22 Jul 2025 08:22:54 +0000 Files and hashes: 1: BYl-c1406PZYdVSprzc0CCziidk.crl (hash: tQoM3XXffF6SNvDcZNERzVfG+iPPNZ4Y2KPj3184cXg=) 2: 2C3D8AAA50B511F09288303CC4F9AE02.roa (hash: BRO70xst4iX7U+BsAkMQkxP1DSIFJqspyvz/A47AIrw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91389E7/99D28C9C4C0911F09F38B628C4F9AE02/BYl-c1406PZYdVSprzc0CCziidk.crl rsync://rpki.apnic.net/member_repository/A91389E7/99D28C9C4C0911F09F38B628C4F9AE02/BYl-c1406PZYdVSprzc0CCziidk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BYl-c1406PZYdVSprzc0CCziidk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Jul 2025 08:22:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20 (0x14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91389E7, serialNumber=05897E735E34E8F6587554A9AF3734082CE289D9 Validity Not Before: Jul 15 08:22:54 2025 GMT Not After : Jul 22 08:22:54 2025 GMT Subject: CN=68760fde-3e9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:14:88:33:be:b0:cc:ef:54:69:a3:f2:36:ba: 0d:e0:d0:6b:e5:48:cc:24:14:8d:1b:f9:1e:1f:7a: 8c:c2:3f:e7:a3:9f:c3:30:97:1e:62:9e:d0:b1:13: ca:c8:86:92:7e:5a:cd:bf:24:f6:27:14:04:ca:0d: 12:0c:ea:1f:e1:b2:60:92:2d:2f:9f:47:f8:5c:2f: d8:a0:7d:27:91:03:c6:10:e1:52:d6:ce:37:19:b7: 0b:15:54:a5:55:3d:12:79:42:33:61:29:70:e0:ea: a8:a9:0f:25:ed:a5:f0:9e:8f:82:5b:ea:ea:22:4e: 38:aa:da:15:3d:8d:b3:1e:cb:4f:cc:b2:39:82:1c: 6c:97:3b:12:53:d9:8e:61:1e:53:74:96:e1:d0:81: d8:36:83:ff:43:88:9f:2e:95:32:5f:12:8b:90:f6: 28:d4:df:c9:ff:cb:5d:72:fc:73:43:a3:8e:5d:e2: 41:47:a7:02:4f:c7:a2:8e:ee:64:1a:e5:dc:5c:aa: f8:6d:21:29:d1:df:76:e5:db:98:be:a7:a0:7e:78: 43:fd:2d:33:8d:8d:a9:9a:c1:5c:59:12:16:84:7c: ea:a7:bd:af:e4:b3:e9:bb:2a:f5:33:02:9a:f4:e2: 2b:28:67:6d:00:4d:66:90:ad:3e:7d:20:8f:a2:54: 1d:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:1C:B6:97:B8:89:DE:24:8C:69:F4:E1:5E:74:D5:D4:9A:66:3D:51 X509v3 Authority Key Identifier: keyid:05:89:7E:73:5E:34:E8:F6:58:75:54:A9:AF:37:34:08:2C:E2:89:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91389E7/99D28C9C4C0911F09F38B628C4F9AE02/BYl-c1406PZYdVSprzc0CCziidk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BYl-c1406PZYdVSprzc0CCziidk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91389E7/99D28C9C4C0911F09F38B628C4F9AE02/BYl-c1406PZYdVSprzc0CCziidk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:1b:fc:54:93:4b:f2:e8:2e:77:3a:25:30:b0:de:ae:04:45: 79:a4:f5:2c:40:11:2d:fc:3c:13:f8:07:44:7a:f9:55:ab:50: bb:bd:0b:bf:3d:d3:51:12:c1:8e:99:8e:8b:50:87:f5:56:a7: fe:c2:68:c0:ca:dc:82:41:f8:8b:e6:46:4e:69:83:8d:95:14: 26:82:2c:98:9d:50:bf:ac:a1:8a:ba:28:da:02:74:48:34:00: e4:69:ca:ee:05:04:cc:00:72:1c:76:90:87:74:1b:1b:8c:9f: e8:c0:ad:27:21:02:d7:b0:6f:72:83:e5:4d:a6:71:f3:39:d6: 7d:b5:04:ed:16:34:43:3c:d2:86:6d:f1:44:62:64:f2:96:21: 16:12:4a:b2:9d:f3:dc:a9:85:e0:2e:59:58:67:b4:3f:2c:a5: 56:d5:cc:86:34:27:81:6d:8e:4a:ac:38:34:0e:43:76:0e:0a: 84:46:65:08:f0:7c:c0:69:92:c5:1d:3f:cc:ae:de:05:d5:b7: f4:7f:ae:1b:41:98:35:8a:b4:c4:ee:b8:f5:27:e2:d6:f5:df: 0d:02:73:40:e4:1a:81:f7:52:a4:67:8a:ad:04:6b:76:b2:a8: 13:ea:d3:fe:ba:3c:e9:56:ee:52:4a:31:c9:9e:68:c7:76:d6: 3c:6d:d1:87 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz ODlFNzExMC8GA1UEBRMoMDU4OTdFNzM1RTM0RThGNjU4NzU1NEE5QUYzNzM0MDgy Q0UyODlEOTAeFw0yNTA3MTUwODIyNTRaFw0yNTA3MjIwODIyNTRaMBgxFjAUBgNV BAMTDTY4NzYwZmRlLTNlOWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDsFIgzvrDM71Rpo/I2ug3g0GvlSMwkFI0b+R4feozCP+ejn8Mwlx5intCxE8rI hpJ+Ws2/JPYnFATKDRIM6h/hsmCSLS+fR/hcL9igfSeRA8YQ4VLWzjcZtwsVVKVV PRJ5QjNhKXDg6qipDyXtpfCej4Jb6uoiTjiq2hU9jbMey0/MsjmCHGyXOxJT2Y5h HlN0luHQgdg2g/9DiJ8ulTJfEouQ9ijU38n/y11y/HNDo45d4kFHpwJPx6KO7mQa 5dxcqvhtISnR33bl25i+p6B+eEP9LTONjamawVxZEhaEfOqnva/ks+m7KvUzApr0 4isoZ20ATWaQrT59II+iVB0JAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU5By2l7iJ 3iSMafThXnTV1JpmPVEwHwYDVR0jBBgwFoAUBYl+c1406PZYdVSprzc0CCziidkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM4OUU3Lzk5RDI4QzlDNEMw OTExRjA5RjM4QjYyOEM0RjlBRTAyL0JZbC1jMTQwNlBaWWRWU3ByemMwQ0N6aWlk ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQllsLWMxNDA2UFpZZFZTcHJ6YzBDQ3ppaWRrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM4 OUU3Lzk5RDI4QzlDNEMwOTExRjA5RjM4QjYyOEM0RjlBRTAyL0JZbC1jMTQwNlBa WWRWU3ByemMwQ0N6aWlkay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB8b/FSTS/LoLnc6JTCw3q4ERXmk9SxAES38PBP4B0R6+VWrULu9C789 01ESwY6ZjotQh/VWp/7CaMDK3IJB+IvmRk5pg42VFCaCLJidUL+soYq6KNoCdEg0 AORpyu4FBMwAchx2kId0GxuMn+jArSchAtewb3KD5U2mcfM51n21BO0WNEM80oZt 8URiZPKWIRYSSrKd89ypheAuWVhntD8spVbVzIY0J4FtjkqsODQOQ3YOCoRGZQjw fMBpksUdP8yu3gXVt/R/rhtBmDWKtMTuuPUn4tb13w0Cc0DkGoH3UqRniq0Ea3ay qBPq0/66POlW7lJKMcmeaMd21jxt0Yc= -----END CERTIFICATE-----Generated at Wed Jul 16 23:09:43 2025 by rpki-client