$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft File: YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft (raw, json) Hash identifier: UbIfuqUgsDZgRA7wxXvbUotwHthDT3PDiOLWOeEIW+I= Subject key identifier: 74:8F:91:B3:97:D0:44:6A:66:BF:FB:27:4A:37:FF:B6:2D:88:A3:51 Authority key identifier: 61:7F:05:4E:3C:E4:51:E0:C3:E7:F4:46:DD:09:F7:86:46:52:B6:56 Certificate issuer: /CN=A91A1CAA/serialNumber=617F054E3CE451E0C3E7F446DD09F7864652B656 Certificate serial: 0104 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YX8FTjzkUeDD5_RG3Qn3hkZStlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft Manifest number: 0101 Signing time: Tue 01 Jul 2025 05:38:00 +0000 Manifest this update: Tue 01 Jul 2025 05:37:59 +0000 Manifest next update: Tue 08 Jul 2025 05:37:59 +0000 Files and hashes: 1: YX8FTjzkUeDD5_RG3Qn3hkZStlY.crl (hash: FM9y5pj1ZrBjqW5Lf272GNgS1INIjBiMFXZy6R/Y3LE=) 2: E75FB4F0CE4A11EE95C15E20C4F9AE02.roa (hash: utq11zi2cO+ldR8mXOv++lb25ZgD5tUSUW03iRiwBL0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.crl rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YX8FTjzkUeDD5_RG3Qn3hkZStlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 05:37:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 260 (0x104) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1CAA, serialNumber=617F054E3CE451E0C3E7F446DD09F7864652B656 Validity Not Before: Jul 1 05:37:59 2025 GMT Not After : Jul 8 05:37:59 2025 GMT Subject: CN=68637438-9cc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:1e:a1:0e:ce:78:0f:f9:b9:27:85:2b:ef:83: 21:ac:d0:be:b3:03:31:3f:5c:80:5b:1e:f2:29:6a: ca:9c:20:37:aa:25:03:c6:ba:ac:51:16:75:91:e6: 31:7e:43:06:ad:59:f5:76:66:6b:41:e9:b8:52:f8: 58:d7:24:51:a9:80:5d:2e:e9:ac:69:53:44:ca:4c: 70:48:9f:6c:7b:38:2d:38:73:f4:7b:00:38:7c:0a: 2c:6b:f8:83:39:3f:94:ee:f0:60:35:44:d5:4c:4a: d6:dc:d1:89:1a:41:53:86:9e:c3:ee:da:34:3c:79: ff:c2:a3:9c:b6:ad:c0:c9:99:e4:86:c7:98:e6:69: 6a:70:dd:e1:37:a5:9d:6b:09:f4:9f:20:48:7b:92: 17:d6:4a:42:5e:57:34:9e:6c:c0:fd:90:91:4e:2e: b2:2d:5e:a9:0b:90:7f:32:44:7c:be:dd:1a:ca:52: 0f:5e:09:0c:c5:8b:7e:1b:7a:4f:a7:6f:a3:bd:93: 3d:57:c1:9b:e4:38:e5:4a:0a:ef:77:8e:83:04:24: 38:46:58:46:39:f8:6c:ff:82:b0:cb:4c:45:28:3a: e6:eb:49:06:70:2d:86:8e:a3:e1:67:c6:07:58:b3: 8c:8d:8c:17:2e:29:7b:93:1f:17:c1:2b:d8:1a:8e: 3c:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:8F:91:B3:97:D0:44:6A:66:BF:FB:27:4A:37:FF:B6:2D:88:A3:51 X509v3 Authority Key Identifier: keyid:61:7F:05:4E:3C:E4:51:E0:C3:E7:F4:46:DD:09:F7:86:46:52:B6:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YX8FTjzkUeDD5_RG3Qn3hkZStlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:c3:5c:0c:ec:f0:8f:1d:77:a6:73:65:24:6c:71:0d:5a:7c: de:e4:0c:a6:01:d9:80:c3:42:44:a2:59:e9:ea:72:bd:3d:75: 2a:4d:1f:bd:b5:63:02:1b:0e:ab:d6:f9:47:17:5a:fa:f6:f9: 57:86:76:5f:92:ef:73:0f:94:ab:59:5b:51:a6:a5:a1:c0:8b: f5:89:38:36:e6:86:a6:4c:3d:6b:2d:99:5f:37:09:81:67:60: c6:48:60:c8:1e:cc:f0:ce:38:5f:7a:1b:7d:05:9b:e8:0e:f7: 0a:01:5d:8f:ba:6d:41:59:8a:90:9c:03:c4:94:6e:36:14:11: 60:32:9b:20:85:77:97:36:b7:e5:42:5d:fa:f1:5a:88:3b:d8: f8:8a:35:4b:5f:da:86:48:e8:66:42:7b:fe:6b:a7:d5:e7:2b: 45:3a:f2:12:89:3c:d1:30:33:34:4f:3c:d1:b4:b8:f4:2f:30: f2:3d:39:7f:07:b8:8f:c3:f3:05:bb:1e:92:4d:25:0a:77:bf: 05:7c:f6:fe:ff:19:1c:bb:ea:92:58:9c:48:89:69:1d:6e:a7: 6e:c7:f1:10:77:bd:40:85:2d:62:60:94:91:ab:54:1f:5b:4f: 60:40:6e:15:fd:d3:86:bc:b8:58:7a:89:b1:00:23:b4:30:8d: c5:26:d2:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFDQUExMTAvBgNVBAUTKDYxN0YwNTRFM0NFNDUxRTBDM0U3RjQ0NkREMDlGNzg2 NDY1MkI2NTYwHhcNMjUwNzAxMDUzNzU5WhcNMjUwNzA4MDUzNzU5WjAYMRYwFAYD VQQDEw02ODYzNzQzOC05Y2MxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwh6hDs54D/m5J4Ur74MhrNC+swMxP1yAWx7yKWrKnCA3qiUDxrqsURZ1keYx fkMGrVn1dmZrQem4UvhY1yRRqYBdLumsaVNEykxwSJ9sezgtOHP0ewA4fAosa/iD OT+U7vBgNUTVTErW3NGJGkFThp7D7to0PHn/wqOctq3AyZnkhseY5mlqcN3hN6Wd awn0nyBIe5IX1kpCXlc0nmzA/ZCRTi6yLV6pC5B/MkR8vt0aylIPXgkMxYt+G3pP p2+jvZM9V8Gb5DjlSgrvd46DBCQ4RlhGOfhs/4Kwy0xFKDrm60kGcC2GjqPhZ8YH WLOMjYwXLil7kx8XwSvYGo48bwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHSPkbOX 0ERqZr/7J0o3/7YtiKNRMB8GA1UdIwQYMBaAFGF/BU485FHgw+f0Rt0J94ZGUrZW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUNBQS84RTI3NUExRUNF NEExMUVFOERFOUU1MUZDNEY5QUUwMi9ZWDhGVGp6a1VlREQ1X1JHM1FuM2hrWlN0 bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lYOEZUanprVWVERDVfUkczUW4zaGtaU3RsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUNBQS84RTI3NUExRUNFNEExMUVFOERFOUU1MUZDNEY5QUUwMi9ZWDhGVGp6a1Vl REQ1X1JHM1FuM2hrWlN0bFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1w1wM7PCPHXemc2UkbHENWnze5AymAdmAw0JEolnp6nK9PXUqTR+9 tWMCGw6r1vlHF1r69vlXhnZfku9zD5SrWVtRpqWhwIv1iTg25oamTD1rLZlfNwmB Z2DGSGDIHszwzjhfeht9BZvoDvcKAV2Pum1BWYqQnAPElG42FBFgMpsghXeXNrfl Ql368VqIO9j4ijVLX9qGSOhmQnv+a6fV5ytFOvISiTzRMDM0TzzRtLj0LzDyPTl/ B7iPw/MFux6STSUKd78FfPb+/xkcu+qSWJxIiWkdbqdux/EQd71AhS1iYJSRq1Qf W09gQG4V/dOGvLhYeomxACO0MI3FJtKT -----END CERTIFICATE-----Generated at Wed Jul 2 15:06:37 2025 by rpki-client