$ rpki-client -vvf rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.mft File: yil3R0MKG-s0C8o51iIv0mQZt9s.mft (raw, json) Hash identifier: dW2ema0owSeAG4QGRyEI4dHARQkUSIlfkXjtT1F8C1A= Subject key identifier: B7:F8:59:2B:6E:D5:E1:75:62:7E:6E:33:50:40:C2:2F:27:4A:79:18 Authority key identifier: CA:29:77:47:43:0A:1B:EB:34:0B:CA:39:D6:22:2F:D2:64:19:B7:DB Certificate issuer: /CN=A91417B0/serialNumber=CA297747430A1BEB340BCA39D6222FD26419B7DB Certificate serial: 59 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yil3R0MKG-s0C8o51iIv0mQZt9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.mft Manifest number: 57 Signing time: Thu 03 Jul 2025 07:28:36 +0000 Manifest this update: Thu 03 Jul 2025 07:28:35 +0000 Manifest next update: Thu 10 Jul 2025 07:28:35 +0000 Files and hashes: 1: yil3R0MKG-s0C8o51iIv0mQZt9s.crl (hash: IxX8A/oL+hFvP4hUTkBBBc6Jm8OJzEJo/JjCbwmoEQY=) 2: 5909D86203DB11F0B7D5DD29C4F9AE02.roa (hash: vXg2V9oSq+UecV6UR/hi4Z0CckYReJT3wpjl4H/MqsM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.crl rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yil3R0MKG-s0C8o51iIv0mQZt9s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 89 (0x59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91417B0, serialNumber=CA297747430A1BEB340BCA39D6222FD26419B7DB Validity Not Before: Jul 3 07:28:35 2025 GMT Not After : Jul 10 07:28:35 2025 GMT Subject: CN=68663123-ec26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:6c:76:c9:31:eb:fa:39:44:61:3b:02:ee:7c: a2:ca:2e:e2:0a:05:61:7d:d3:7c:34:91:f0:05:53: f3:a1:14:f1:97:83:7f:d1:14:ed:5d:2a:31:e3:65: 24:af:fa:0a:aa:72:ae:aa:77:6c:93:39:db:4d:70: fa:58:fa:bf:b2:0d:97:d7:6c:a3:eb:0a:16:97:08: 3c:0c:9a:f2:c5:a4:ff:c7:8a:4f:8f:b1:b7:16:24: 26:a7:c2:9e:9c:6d:c7:16:a6:1c:19:15:3d:b2:30: 3c:6a:32:09:6c:24:44:de:3c:06:7e:f3:db:4f:13: 89:f7:dd:8c:bc:01:a1:61:cb:49:78:1b:1d:e2:e4: 2a:ab:61:b9:8b:73:6d:c3:79:47:80:15:f4:70:19: 24:2c:93:61:39:c0:6a:4e:36:51:1f:c5:ba:4c:2e: 1d:fb:b0:a5:69:b5:f9:60:4c:ce:4f:ff:bc:00:a0: c8:83:c7:49:49:4c:4d:c4:87:9f:30:d5:54:b0:7e: ef:78:3d:b9:b7:50:8e:90:8f:e6:a8:e4:07:c6:1f: 30:47:f5:e7:e9:43:b7:2d:27:76:18:09:ca:34:1c: d8:3b:06:85:4c:36:1a:3f:29:02:fc:6e:82:63:5e: e7:8e:8c:b7:40:b4:33:e6:1e:95:11:f8:9c:33:96: d2:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:F8:59:2B:6E:D5:E1:75:62:7E:6E:33:50:40:C2:2F:27:4A:79:18 X509v3 Authority Key Identifier: keyid:CA:29:77:47:43:0A:1B:EB:34:0B:CA:39:D6:22:2F:D2:64:19:B7:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yil3R0MKG-s0C8o51iIv0mQZt9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:2c:46:48:b2:cc:d0:79:37:3b:11:85:3f:a0:56:8c:6d:e3: f0:98:c2:64:18:4a:0e:66:db:fd:c0:88:56:cc:37:60:f4:2f: 34:c3:fa:6b:88:a4:a4:94:a7:fc:1a:3d:b3:69:13:82:18:1a: 65:70:25:19:fe:fa:1a:36:68:ad:4a:bc:87:82:0c:7f:f1:0e: 0f:40:7f:e9:4f:b9:8d:17:2c:3f:5f:d0:2e:a5:67:93:2b:76: 69:25:19:b7:22:77:9a:a5:a8:a0:57:4f:fb:56:b7:b0:c6:72: 3d:d3:86:06:06:af:c2:63:80:58:2c:1d:be:bc:3c:31:9e:b3: e7:eb:26:a7:bc:5f:b2:e3:e7:2b:22:d9:fb:ed:f5:30:09:dc: f9:60:2f:2e:81:ee:55:ef:d8:21:d5:00:f9:42:f6:46:7f:da: ca:57:bb:49:5e:4a:15:15:1b:ee:28:6e:68:51:03:f3:9b:e6: 41:0f:50:aa:f7:87:58:41:17:19:24:7b:dd:1a:e9:b2:ed:e6: 4f:1a:59:fe:33:ba:49:28:db:c1:6f:a3:fa:2d:7c:b3:5d:c3: d7:7b:39:38:ae:64:66:b7:02:eb:c3:24:e9:82:3d:d8:1e:4b: 3d:fd:90:ae:11:2d:61:56:a7:d4:4a:33:29:1a:e5:a1:73:45: 53:f1:25:48 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MTdCMDExMC8GA1UEBRMoQ0EyOTc3NDc0MzBBMUJFQjM0MEJDQTM5RDYyMjJGRDI2 NDE5QjdEQjAeFw0yNTA3MDMwNzI4MzVaFw0yNTA3MTAwNzI4MzVaMBgxFjAUBgNV BAMTDTY4NjYzMTIzLWVjMjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCqbHbJMev6OURhOwLufKLKLuIKBWF903w0kfAFU/OhFPGXg3/RFO1dKjHjZSSv +gqqcq6qd2yTOdtNcPpY+r+yDZfXbKPrChaXCDwMmvLFpP/Hik+PsbcWJCanwp6c bccWphwZFT2yMDxqMglsJETePAZ+89tPE4n33Yy8AaFhy0l4Gx3i5CqrYbmLc23D eUeAFfRwGSQsk2E5wGpONlEfxbpMLh37sKVptflgTM5P/7wAoMiDx0lJTE3Eh58w 1VSwfu94Pbm3UI6Qj+ao5AfGHzBH9efpQ7ctJ3YYCco0HNg7BoVMNho/KQL8boJj XueOjLdAtDPmHpUR+JwzltJJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUt/hZK27V 4XVifm4zUEDCLydKeRgwHwYDVR0jBBgwFoAUyil3R0MKG+s0C8o51iIv0mQZt9sw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQxN0IwL0UxQUM4MjEwRDg4 MzExRUY5NTRBM0Q3MEM0RjlBRTAyL3lpbDNSME1LRy1zMEM4bzUxaUl2MG1RWnQ5 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIveWlsM1IwTUtHLXMwQzhvNTFpSXYwbVFadDlzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQx N0IwL0UxQUM4MjEwRDg4MzExRUY5NTRBM0Q3MEM0RjlBRTAyL3lpbDNSME1LRy1z MEM4bzUxaUl2MG1RWnQ5cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABMsRkiyzNB5NzsRhT+gVoxt4/CYwmQYSg5m2/3AiFbMN2D0LzTD+muI pKSUp/waPbNpE4IYGmVwJRn++ho2aK1KvIeCDH/xDg9Af+lPuY0XLD9f0C6lZ5Mr dmklGbcid5qlqKBXT/tWt7DGcj3ThgYGr8JjgFgsHb68PDGes+frJqe8X7Lj5ysi 2fvt9TAJ3PlgLy6B7lXv2CHVAPlC9kZ/2spXu0leShUVG+4obmhRA/Ob5kEPUKr3 h1hBFxkke90a6bLt5k8aWf4zukko28Fvo/otfLNdw9d7OTiuZGa3AuvDJOmCPdge Sz39kK4RLWFWp9RKMyka5aFzRVPxJUg= -----END CERTIFICATE-----Generated at Fri Jul 4 12:00:13 2025 by rpki-client