$ rpki-client -vvf rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft File: YeT4YWtiQmYakffQErbNHkCTiQs.mft (raw, json) Hash identifier: r4wlaoNupmhJmkphqidv4kxobjVIEcsd3cp/rP8tjDQ= Subject key identifier: 76:40:3E:FD:89:B6:42:03:85:BD:99:52:5E:71:8F:08:DF:E4:68:A2 Authority key identifier: 61:E4:F8:61:6B:62:42:66:1A:91:F7:D0:12:B6:CD:1E:40:93:89:0B Certificate issuer: /CN=A91605D7/serialNumber=61E4F8616B6242661A91F7D012B6CD1E4093890B Certificate serial: F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeT4YWtiQmYakffQErbNHkCTiQs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft Manifest number: F2 Signing time: Thu 03 Jul 2025 05:26:42 +0000 Manifest this update: Thu 03 Jul 2025 05:26:42 +0000 Manifest next update: Thu 10 Jul 2025 05:26:42 +0000 Files and hashes: 1: YeT4YWtiQmYakffQErbNHkCTiQs.crl (hash: TLF/5PeJiPYHZwBDwhnJwaH/F44XaJ09FHeumnx8uvc=) 2: EA46D7ECE57F11EE96F8FB39C4F9AE02.roa (hash: yl/E8QHLka4/lwMsB6BevGouPJwrIPgnFEOjdbPwsG0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.crl rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeT4YWtiQmYakffQErbNHkCTiQs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 245 (0xf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91605D7, serialNumber=61E4F8616B6242661A91F7D012B6CD1E4093890B Validity Not Before: Jul 3 05:26:42 2025 GMT Not After : Jul 10 05:26:42 2025 GMT Subject: CN=68661492-f9a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:8b:39:56:b7:09:6c:e6:8c:b4:aa:30:10:31: fc:fe:c6:dd:95:13:14:4a:a3:e9:db:0a:8d:d2:d8: 30:87:a0:f2:30:01:f7:d4:41:e9:84:1e:3b:41:be: f9:6c:d7:db:60:fb:f2:33:50:ba:74:a8:47:fa:7c: 5d:ab:6c:40:b8:b9:ef:27:ee:e1:1b:e9:52:0e:9f: d7:cb:ad:5d:76:f7:39:17:e2:28:b9:a2:2a:1b:e1: f4:10:8c:f4:1c:0f:f1:9d:4b:95:a6:5c:88:19:27: ae:c6:db:8d:b0:bc:24:83:27:5a:e1:f9:18:e8:ea: d2:a6:82:62:2a:ab:2b:53:9d:ee:24:0f:89:da:c1: c2:ba:cb:34:75:c3:9d:85:0e:fc:45:b2:7d:8e:a0: b9:0e:3d:58:0b:68:a2:28:9a:c8:13:53:88:45:01: 65:58:0b:99:12:86:95:43:71:37:04:38:92:94:a7: 8a:10:ab:3e:3a:a9:84:ee:c6:6b:33:86:10:a9:30: 45:46:57:e6:89:8f:ee:99:45:65:6d:8f:ab:3d:a2: be:50:75:90:13:72:d3:01:cb:3a:bd:ed:8a:43:2a: 3e:3b:01:1c:76:4a:90:6e:b4:09:57:58:01:5c:1d: 2d:7c:f7:ce:57:a2:04:51:93:07:9f:db:60:11:22: 97:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:40:3E:FD:89:B6:42:03:85:BD:99:52:5E:71:8F:08:DF:E4:68:A2 X509v3 Authority Key Identifier: keyid:61:E4:F8:61:6B:62:42:66:1A:91:F7:D0:12:B6:CD:1E:40:93:89:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeT4YWtiQmYakffQErbNHkCTiQs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:aa:70:d4:a4:ed:3d:45:bb:ca:f3:44:29:9f:84:fe:aa:29: f0:0f:69:07:47:84:39:54:ba:a7:93:ad:71:a0:bf:76:98:ca: 39:6a:b0:52:a0:b0:5e:14:4e:5b:35:89:6f:ac:16:e1:88:ab: b4:94:cd:a4:a4:54:a3:c9:1c:03:84:3b:b5:73:11:8d:c7:2c: 13:bb:84:07:0b:e5:98:8f:1b:ba:0a:54:7a:e6:6a:29:62:b8: ff:71:61:a1:8b:14:8f:13:d2:49:73:ac:05:ba:a3:cd:57:1a: f5:bc:aa:34:26:f5:0f:5d:ba:e2:3c:c2:57:98:25:b4:8f:b3: 61:fb:85:c2:8b:9f:77:b2:2c:67:d5:13:13:02:96:46:8f:a5: 60:3f:2c:3e:9f:32:5c:32:35:85:3d:4d:ef:54:5b:ab:39:21: ec:78:17:65:ca:21:de:7f:8e:94:30:22:df:60:97:8a:1b:4c: fe:13:4b:1e:d4:d2:d3:35:20:a4:86:8b:a7:e1:e2:28:1e:91: 67:c1:5e:3d:25:97:99:22:1e:2f:36:d5:46:be:f8:e4:d4:72: 50:3f:f0:33:da:6e:e5:9a:76:56:01:96:d1:0e:da:ee:ee:b7: e7:87:b1:bb:22:c9:2c:02:44:b1:6a:70:f2:42:6d:34:f4:66: 8c:5b:2b:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA1RDcxMTAvBgNVBAUTKDYxRTRGODYxNkI2MjQyNjYxQTkxRjdEMDEyQjZDRDFF NDA5Mzg5MEIwHhcNMjUwNzAzMDUyNjQyWhcNMjUwNzEwMDUyNjQyWjAYMRYwFAYD VQQDEw02ODY2MTQ5Mi1mOWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsYs5VrcJbOaMtKowEDH8/sbdlRMUSqPp2wqN0tgwh6DyMAH31EHphB47Qb75 bNfbYPvyM1C6dKhH+nxdq2xAuLnvJ+7hG+lSDp/Xy61ddvc5F+IouaIqG+H0EIz0 HA/xnUuVplyIGSeuxtuNsLwkgyda4fkY6OrSpoJiKqsrU53uJA+J2sHCuss0dcOd hQ78RbJ9jqC5Dj1YC2iiKJrIE1OIRQFlWAuZEoaVQ3E3BDiSlKeKEKs+OqmE7sZr M4YQqTBFRlfmiY/umUVlbY+rPaK+UHWQE3LTAcs6ve2KQyo+OwEcdkqQbrQJV1gB XB0tfPfOV6IEUZMHn9tgESKXDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHZAPv2J tkIDhb2ZUl5xjwjf5GiiMB8GA1UdIwQYMBaAFGHk+GFrYkJmGpH30BK2zR5Ak4kL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDVENy8zQjUwRjEzMkU1 N0YxMUVFQUYxRDI5MUJDNEY5QUUwMi9ZZVQ0WVd0aVFtWWFrZmZRRXJiTkhrQ1Rp UXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1llVDRZV3RpUW1ZYWtmZlFFcmJOSGtDVGlRcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDVENy8zQjUwRjEzMkU1N0YxMUVFQUYxRDI5MUJDNEY5QUUwMi9ZZVQ0WVd0aVFt WWFrZmZRRXJiTkhrQ1RpUXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDqnDUpO09RbvK80Qpn4T+qinwD2kHR4Q5VLqnk61xoL92mMo5arBS oLBeFE5bNYlvrBbhiKu0lM2kpFSjyRwDhDu1cxGNxywTu4QHC+WYjxu6ClR65mop Yrj/cWGhixSPE9JJc6wFuqPNVxr1vKo0JvUPXbriPMJXmCW0j7Nh+4XCi593sixn 1RMTApZGj6VgPyw+nzJcMjWFPU3vVFurOSHseBdlyiHef46UMCLfYJeKG0z+E0se 1NLTNSCkhoun4eIoHpFnwV49JZeZIh4vNtVGvvjk1HJQP/Az2m7lmnZWAZbRDtru 7rfnh7G7IsksAkSxanDyQm009GaMWyvU -----END CERTIFICATE-----Generated at Sat Jul 5 02:00:10 2025 by rpki-client