$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0277/D419D81075CB11EB952DD66AC4F9AE02/YdkJSUqsCZ5dxnvZ3sz-vkS3d3k.mft File: YdkJSUqsCZ5dxnvZ3sz-vkS3d3k.mft (raw, json) Hash identifier: NBO3CZYCDAHWC6xTl21W2lFnccrtA+EB7S+wzrzjjZI= Subject key identifier: 32:D8:0B:CC:A5:B4:E2:61:04:F7:08:35:F7:DB:E7:B4:0B:24:E9:21 Authority key identifier: 61:D9:09:49:4A:AC:09:9E:5D:C6:7B:D9:DE:CC:FE:BE:44:B7:77:79 Certificate issuer: /CN=A91A0277/serialNumber=61D909494AAC099E5DC67BD9DECCFEBE44B77779 Certificate serial: 06AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YdkJSUqsCZ5dxnvZ3sz-vkS3d3k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0277/D419D81075CB11EB952DD66AC4F9AE02/YdkJSUqsCZ5dxnvZ3sz-vkS3d3k.mft Manifest number: 069D Signing time: Wed 02 Jul 2025 22:30:59 +0000 Manifest this update: Wed 02 Jul 2025 22:30:59 +0000 Manifest next update: Wed 09 Jul 2025 22:30:59 +0000 Files and hashes: 1: YdkJSUqsCZ5dxnvZ3sz-vkS3d3k.crl (hash: zor3GlYoE61/MUOL6Af7oguTQIa1aJShxdqR6GDJ+4E=) 2: 56A937F2360411EF8AA77687C4F9AE02.roa (hash: jBtUWO90hOewkZT/IOz6vgpi/ww1P3BMTXwB63qoFnQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0277/D419D81075CB11EB952DD66AC4F9AE02/YdkJSUqsCZ5dxnvZ3sz-vkS3d3k.crl rsync://rpki.apnic.net/member_repository/A91A0277/D419D81075CB11EB952DD66AC4F9AE02/YdkJSUqsCZ5dxnvZ3sz-vkS3d3k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YdkJSUqsCZ5dxnvZ3sz-vkS3d3k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:30:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1710 (0x6ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0277, serialNumber=61D909494AAC099E5DC67BD9DECCFEBE44B77779 Validity Not Before: Jul 2 22:30:59 2025 GMT Not After : Jul 9 22:30:59 2025 GMT Subject: CN=6865b323-3e03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:26:19:81:c3:31:c6:15:91:40:a0:d1:f9:76: e2:6c:91:a6:a8:88:2b:8d:f4:88:f1:cc:16:2a:ea: 47:05:64:0e:e2:7a:3f:7e:f0:ae:3b:3d:04:cb:cc: 83:16:43:32:95:68:56:dc:54:4d:fe:1a:28:f5:3b: b3:85:1a:63:ef:d4:cc:1b:4e:3f:74:50:7b:70:d5: e1:cc:ae:1e:98:bb:01:ab:32:7b:8f:92:b9:e3:a5: 33:4a:78:b0:a1:e4:4c:3e:eb:b2:38:16:f6:6a:6e: da:30:26:65:34:18:0a:3e:46:b6:2f:13:ce:3e:89: ed:0d:5f:f7:69:ae:f1:58:29:e8:7b:ac:6d:7e:0c: 21:b8:ec:5b:b2:2f:67:a6:0b:42:0a:a6:e7:46:cc: b5:f1:20:5c:8d:9b:4e:70:0d:a6:49:53:fe:4c:83: e1:df:d8:18:4c:28:71:86:38:1f:9f:f4:ac:27:57: 74:3f:24:87:e6:13:0c:f5:4c:40:a2:b2:c9:51:7f: 24:05:93:d5:a9:3d:1a:6f:0c:ed:47:17:d9:15:4f: 99:ce:81:67:7e:40:5e:a0:15:e3:c8:21:3b:fe:52: 7d:1e:6c:20:19:92:98:da:38:87:ba:e4:6d:78:6e: e3:9e:b7:8e:42:61:89:b0:11:ae:28:c0:4a:4e:a8: 49:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:D8:0B:CC:A5:B4:E2:61:04:F7:08:35:F7:DB:E7:B4:0B:24:E9:21 X509v3 Authority Key Identifier: keyid:61:D9:09:49:4A:AC:09:9E:5D:C6:7B:D9:DE:CC:FE:BE:44:B7:77:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0277/D419D81075CB11EB952DD66AC4F9AE02/YdkJSUqsCZ5dxnvZ3sz-vkS3d3k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YdkJSUqsCZ5dxnvZ3sz-vkS3d3k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0277/D419D81075CB11EB952DD66AC4F9AE02/YdkJSUqsCZ5dxnvZ3sz-vkS3d3k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:d2:95:ba:db:94:b0:bb:91:86:5a:55:b4:85:02:b6:d0:8c: 37:a7:63:26:db:83:c6:a6:46:f7:5c:0b:8b:34:b9:07:1b:dd: ef:82:af:36:7a:f0:cf:6c:b9:47:3f:6a:9b:4e:c0:8f:95:27: 97:8f:e4:ef:74:ac:6e:b7:54:6d:13:94:23:71:8f:42:66:94: 4b:c8:cd:57:8f:cc:47:77:a9:e2:1c:a5:bc:5d:c7:2a:e7:84: 7b:83:7e:46:2e:f9:e7:64:6d:67:b4:f2:32:1c:20:51:4c:fe: 04:41:75:51:5b:72:4c:25:a7:e8:22:ce:18:79:3b:43:26:82: c4:dd:64:d5:d1:d4:ea:a1:da:42:b7:cf:de:9c:b1:f6:bf:1d: 76:e1:f2:6f:c3:db:f6:58:a1:be:d8:fa:8e:a5:da:da:28:dc: 32:c5:31:40:ed:3f:2b:11:40:df:20:c5:5a:4c:db:17:67:6b: 11:8d:fe:cb:a2:2a:87:4d:4c:8d:a8:f9:c9:4b:fa:fb:bc:eb: 08:bb:02:fc:e1:42:df:1e:53:c7:93:24:52:fa:42:24:85:da: 7e:e9:6e:bf:70:71:13:d2:c8:20:1c:be:44:5e:7d:db:fc:81: 25:cb:9a:50:29:c9:d4:4a:51:7d:0e:e8:d8:3f:bd:af:cc:e0: c0:d7:18:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBq4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTAyNzcxMTAvBgNVBAUTKDYxRDkwOTQ5NEFBQzA5OUU1REM2N0JEOURFQ0NGRUJF NDRCNzc3NzkwHhcNMjUwNzAyMjIzMDU5WhcNMjUwNzA5MjIzMDU5WjAYMRYwFAYD VQQDEw02ODY1YjMyMy0zZTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAryYZgcMxxhWRQKDR+XbibJGmqIgrjfSI8cwWKupHBWQO4no/fvCuOz0Ey8yD FkMylWhW3FRN/hoo9TuzhRpj79TMG04/dFB7cNXhzK4emLsBqzJ7j5K546UzSniw oeRMPuuyOBb2am7aMCZlNBgKPka2LxPOPontDV/3aa7xWCnoe6xtfgwhuOxbsi9n pgtCCqbnRsy18SBcjZtOcA2mSVP+TIPh39gYTChxhjgfn/SsJ1d0PySH5hMM9UxA orLJUX8kBZPVqT0abwztRxfZFU+ZzoFnfkBeoBXjyCE7/lJ9HmwgGZKY2jiHuuRt eG7jnreOQmGJsBGuKMBKTqhJsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDLYC8yl tOJhBPcINffb57QLJOkhMB8GA1UdIwQYMBaAFGHZCUlKrAmeXcZ72d7M/r5Et3d5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDI3Ny9ENDE5RDgxMDc1 Q0IxMUVCOTUyREQ2NkFDNEY5QUUwMi9ZZGtKU1Vxc0NaNWR4bnZaM3N6LXZrUzNk M2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lka0pTVXFzQ1o1ZHhudlozc3otdmtTM2Qzay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDI3Ny9ENDE5RDgxMDc1Q0IxMUVCOTUyREQ2NkFDNEY5QUUwMi9ZZGtKU1Vxc0Na NWR4bnZaM3N6LXZrUzNkM2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAo0pW625Swu5GGWlW0hQK20Iw3p2Mm24PGpkb3XAuLNLkHG93vgq82 evDPbLlHP2qbTsCPlSeXj+TvdKxut1RtE5QjcY9CZpRLyM1Xj8xHd6niHKW8Xccq 54R7g35GLvnnZG1ntPIyHCBRTP4EQXVRW3JMJafoIs4YeTtDJoLE3WTV0dTqodpC t8/enLH2vx124fJvw9v2WKG+2PqOpdraKNwyxTFA7T8rEUDfIMVaTNsXZ2sRjf7L oiqHTUyNqPnJS/r7vOsIuwL84ULfHlPHkyRS+kIkhdp+6W6/cHET0sggHL5EXn3b /IEly5pQKcnUSlF9DujYP72vzODA1xh9 -----END CERTIFICATE-----Generated at Thu Jul 3 09:48:43 2025 by rpki-client