$ rpki-client -vvf rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.mft File: ry1FO-u_318ptjrBZ1THjRsPy4g.mft (raw, json) Hash identifier: GdEMsvMiq6OZjtZzrGMkDhpB1jH+Ae8l6r909Y8/saE= Subject key identifier: 61:00:A2:B7:22:84:4A:0F:F3:D6:61:03:02:C5:00:AF:5C:D9:55:5A Authority key identifier: AF:2D:45:3B:EB:BF:DF:5F:29:B6:3A:C1:67:54:C7:8D:1B:0F:CB:88 Certificate issuer: /CN=A91557BA/serialNumber=AF2D453BEBBFDF5F29B63AC16754C78D1B0FCB88 Certificate serial: 0C60 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ry1FO-u_318ptjrBZ1THjRsPy4g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.mft Manifest number: 0C57 Signing time: Wed 02 Jul 2025 18:36:17 +0000 Manifest this update: Wed 02 Jul 2025 18:36:17 +0000 Manifest next update: Wed 09 Jul 2025 18:36:17 +0000 Files and hashes: 1: ry1FO-u_318ptjrBZ1THjRsPy4g.crl (hash: J2zmXpYNRgPdNRX9JLeKjiz56a7WfxV4cBEh+1yMgGw=) 2: 157A1BFC59EE11EBA398AA0AC4F9AE02.roa (hash: JpCVaZ9JZD1Afq3DjPUJqYLTP1v40h6qnEBodBPkfj4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.crl rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ry1FO-u_318ptjrBZ1THjRsPy4g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:36:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3168 (0xc60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91557BA, serialNumber=AF2D453BEBBFDF5F29B63AC16754C78D1B0FCB88 Validity Not Before: Jul 2 18:36:17 2025 GMT Not After : Jul 9 18:36:17 2025 GMT Subject: CN=68657c21-fc58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:18:e4:bf:84:66:c2:86:0f:d0:13:4e:5e:cc: 0e:ef:35:52:77:10:26:74:fc:83:7e:ad:12:c3:3d: 8a:c8:ef:2c:b7:88:a4:bc:5d:2e:93:15:f9:a6:f1: 2b:c9:da:ee:6b:c1:98:8a:a2:2a:58:87:90:95:9d: 6d:b1:ca:dd:58:ec:48:cc:b2:6d:dc:69:93:a6:8e: aa:ec:f1:f0:02:f0:37:a6:1a:ca:fc:ac:6d:d6:21: d2:6d:c9:77:80:5b:99:0c:58:b1:f6:f7:e0:4b:63: 6e:5b:4f:f9:c5:b2:2b:f0:ac:ff:93:d8:75:79:93: 54:31:0b:35:54:bb:40:c2:17:85:de:99:52:c8:1e: 04:fb:e1:96:cf:a4:e1:8a:c9:e0:a0:2c:b5:78:33: 99:0d:68:25:13:0f:46:5a:eb:7b:6b:c0:bb:46:2b: e4:12:bf:7a:67:d9:4f:a8:e7:60:3c:b6:c3:55:54: 6b:de:4b:fd:4a:5a:0a:25:9c:d6:ca:9b:bb:cc:8c: 2c:5c:01:fe:54:5c:7f:da:a6:7e:f6:ec:22:b5:61: b0:7e:40:1d:63:9c:25:82:fe:88:00:6a:b3:85:71: f8:ff:df:d4:cd:b7:cf:52:78:49:58:a8:42:cd:a4: d6:94:cb:c6:e6:c0:62:63:90:cf:06:5a:de:df:2f: a9:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:00:A2:B7:22:84:4A:0F:F3:D6:61:03:02:C5:00:AF:5C:D9:55:5A X509v3 Authority Key Identifier: keyid:AF:2D:45:3B:EB:BF:DF:5F:29:B6:3A:C1:67:54:C7:8D:1B:0F:CB:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ry1FO-u_318ptjrBZ1THjRsPy4g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:a5:4d:2b:f3:82:f1:c9:1e:32:4b:4c:47:bb:5c:5b:89:19: 5c:64:12:13:23:52:7a:87:9a:43:eb:c7:85:10:9f:a2:6e:77: c8:0e:63:f4:dd:46:f0:57:fa:ab:ff:61:10:8e:9d:78:ee:39: 62:f5:97:4a:08:44:f5:ca:63:aa:c9:30:95:df:99:1a:fa:07: 54:fb:1f:de:20:07:cf:8d:61:a5:c8:4f:bd:fb:24:23:cd:6d: ad:47:bb:d0:ea:26:95:19:65:00:f9:de:00:99:1d:3d:68:38: ff:61:3a:ba:d7:b1:62:e3:9f:f0:18:e2:d4:8b:73:19:c7:70: b2:2c:64:0f:52:03:c5:41:4a:25:b3:84:75:02:60:17:7c:4d: be:d5:1f:35:4e:e8:8a:f8:75:9d:82:88:bd:51:50:fc:75:30: ee:24:aa:fc:ec:a3:59:fe:ed:11:45:89:c7:51:db:3d:51:cd: bc:84:af:0c:32:25:c4:c7:38:b2:29:3d:66:9b:8b:7f:53:d3: 51:0b:56:bf:89:a0:99:92:c0:58:14:91:d7:1a:99:be:ec:53: 3c:bd:ed:0d:8d:ff:22:4f:f0:f5:c1:8b:f8:d3:60:d1:2c:c0: 2b:0f:08:93:41:dc:f9:ad:01:1b:76:7e:d5:a9:1d:04:3c:53: dd:46:b0:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU3QkExMTAvBgNVBAUTKEFGMkQ0NTNCRUJCRkRGNUYyOUI2M0FDMTY3NTRDNzhE MUIwRkNCODgwHhcNMjUwNzAyMTgzNjE3WhcNMjUwNzA5MTgzNjE3WjAYMRYwFAYD VQQDEw02ODY1N2MyMS1mYzU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyRjkv4RmwoYP0BNOXswO7zVSdxAmdPyDfq0Swz2KyO8st4ikvF0ukxX5pvEr ydrua8GYiqIqWIeQlZ1tscrdWOxIzLJt3GmTpo6q7PHwAvA3phrK/Kxt1iHSbcl3 gFuZDFix9vfgS2NuW0/5xbIr8Kz/k9h1eZNUMQs1VLtAwheF3plSyB4E++GWz6Th isngoCy1eDOZDWglEw9GWut7a8C7RivkEr96Z9lPqOdgPLbDVVRr3kv9SloKJZzW ypu7zIwsXAH+VFx/2qZ+9uwitWGwfkAdY5wlgv6IAGqzhXH4/9/UzbfPUnhJWKhC zaTWlMvG5sBiY5DPBlre3y+pGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGEAorci hEoP89ZhAwLFAK9c2VVaMB8GA1UdIwQYMBaAFK8tRTvrv99fKbY6wWdUx40bD8uI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTdCQS82ODEyREY5MjA0 RUIxMUVBQTcyRkEzNjNDNEY5QUUwMi9yeTFGTy11XzMxOHB0anJCWjFUSGpSc1B5 NGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3J5MUZPLXVfMzE4cHRqckJaMVRIalJzUHk0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTdCQS82ODEyREY5MjA0RUIxMUVBQTcyRkEzNjNDNEY5QUUwMi9yeTFGTy11XzMx OHB0anJCWjFUSGpSc1B5NGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqpU0r84LxyR4yS0xHu1xbiRlcZBITI1J6h5pD68eFEJ+ibnfIDmP0 3UbwV/qr/2EQjp147jli9ZdKCET1ymOqyTCV35ka+gdU+x/eIAfPjWGlyE+9+yQj zW2tR7vQ6iaVGWUA+d4AmR09aDj/YTq617Fi45/wGOLUi3MZx3CyLGQPUgPFQUol s4R1AmAXfE2+1R81TuiK+HWdgoi9UVD8dTDuJKr87KNZ/u0RRYnHUds9Uc28hK8M MiXExziyKT1mm4t/U9NRC1a/iaCZksBYFJHXGpm+7FM8ve0Njf8iT/D1wYv402DR LMArDwiTQdz5rQEbdn7VqR0EPFPdRrDd -----END CERTIFICATE-----Generated at Thu Jul 3 20:35:54 2025 by rpki-client