$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft File: YbAiM19NheFtR3oAatyOPy_alGA.mft (raw, json) Hash identifier: ej3PdSTBqHipoi+0ScsqZXIXsvtbL60PRIWR15mPbLY= Subject key identifier: C1:CC:28:5F:51:30:B2:AA:80:79:E0:0A:D2:CD:F4:55:77:F8:C9:9E Authority key identifier: 61:B0:22:33:5F:4D:85:E1:6D:47:7A:00:6A:DC:8E:3F:2F:DA:94:60 Certificate issuer: /CN=A91A7C77/serialNumber=61B022335F4D85E16D477A006ADC8E3F2FDA9460 Certificate serial: 04A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft Manifest number: 049F Signing time: Sat 28 Jun 2025 23:31:40 +0000 Manifest this update: Sat 28 Jun 2025 23:31:39 +0000 Manifest next update: Sat 05 Jul 2025 23:31:39 +0000 Files and hashes: 1: YbAiM19NheFtR3oAatyOPy_alGA.crl (hash: kS3exf/wo3FQXebEMqtbJ4rcTZFd64BIVLEbCCxR8os=) 2: FF4EB6B2395811ECA422C462C4F9AE02.roa (hash: kkkJWZ9fDn1htzEtE1zpX7lAAG0cOZUfH1foPNvS114=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.crl rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 23:31:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1185 (0x4a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7C77, serialNumber=61B022335F4D85E16D477A006ADC8E3F2FDA9460 Validity Not Before: Jun 28 23:31:39 2025 GMT Not After : Jul 5 23:31:39 2025 GMT Subject: CN=68607b5c-54c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:20:5d:31:6b:3a:20:6c:16:52:fe:06:02:c7: 32:6b:30:f1:68:c7:3f:e0:4c:b5:28:fe:19:8f:97: ab:d2:31:97:93:be:90:7d:ec:c4:59:89:e2:b8:22: ef:a7:f4:d3:aa:77:4a:bd:ae:4d:42:26:68:b8:ed: 2e:d6:06:8e:2a:3f:eb:f1:bb:49:b6:44:f3:be:bb: b5:e1:8b:e8:ae:88:ad:c7:c1:1a:ee:cf:ba:4b:4e: 97:ec:84:7a:dc:44:a6:85:bb:f1:c8:bf:4e:93:7a: 39:d8:dc:a0:b1:8f:23:5e:53:30:68:41:66:14:b5: 05:7d:ef:83:15:d6:14:3d:e2:cc:62:ca:34:27:02: 00:dd:55:6f:e0:f6:68:e5:db:ba:c9:bb:7a:13:38: 9c:db:41:5a:52:63:c7:0e:b6:74:0b:0d:16:ac:fc: 72:92:57:b2:ed:56:7c:b9:89:72:b6:5c:f5:21:c7: 11:37:cb:91:a8:8e:1b:ae:f4:49:2a:2a:f2:66:6e: e7:76:2e:31:98:85:4f:c9:cd:38:b3:09:74:1e:63: 7e:67:67:2c:6f:6a:d0:f3:63:84:63:f2:4f:bc:9b: 16:fc:88:07:b3:3a:cb:00:2a:a0:15:86:4f:64:0b: f2:45:1c:ee:6d:52:b1:3e:c3:a3:f1:a5:99:20:03: 59:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:CC:28:5F:51:30:B2:AA:80:79:E0:0A:D2:CD:F4:55:77:F8:C9:9E X509v3 Authority Key Identifier: keyid:61:B0:22:33:5F:4D:85:E1:6D:47:7A:00:6A:DC:8E:3F:2F:DA:94:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:ba:6a:10:41:2b:be:4a:1e:35:89:e6:0c:7b:e5:d7:8e:1f: 23:42:93:d2:05:b0:c6:60:7e:e2:1d:70:e1:7e:e7:5a:0e:7d: 89:3b:f7:76:c9:56:e4:87:e0:ad:66:c9:55:65:f1:f4:58:db: a3:56:56:e4:7f:82:97:32:ab:8e:5c:77:1f:00:26:a4:d3:af: f0:85:63:2c:96:ef:38:ae:02:aa:c3:72:91:15:ae:6c:e6:2e: b3:1e:9b:37:8d:4b:0b:a0:ef:9e:df:af:5e:c0:67:e0:8f:1d: a8:ad:ce:e8:b5:8e:cb:00:4c:84:7a:54:cb:c6:7f:de:92:fd: 17:d8:95:9b:92:e8:7b:dd:db:98:c1:06:39:2d:32:51:dd:39: 9b:60:fc:16:48:f2:f2:42:14:3a:35:37:fe:5f:22:2d:70:79: ac:99:2b:ff:2f:91:ea:3b:89:35:ab:dc:2b:3b:05:db:b3:d3: 31:10:95:c4:19:11:42:df:38:f0:69:6f:49:84:15:1d:9c:ee: 38:3a:9d:36:1a:7d:9f:ff:af:1e:a0:7d:b0:c1:18:de:69:a6: 20:fc:50:ee:9d:b9:11:79:b8:4c:2c:c2:2d:a9:ce:0e:20:32: 2b:69:69:19:eb:d1:6b:19:f7:fa:7e:ea:a1:1b:28:4e:35:a6: 08:ed:94:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDNzcxMTAvBgNVBAUTKDYxQjAyMjMzNUY0RDg1RTE2RDQ3N0EwMDZBREM4RTNG MkZEQTk0NjAwHhcNMjUwNjI4MjMzMTM5WhcNMjUwNzA1MjMzMTM5WjAYMRYwFAYD VQQDEw02ODYwN2I1Yy01NGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0CBdMWs6IGwWUv4GAscyazDxaMc/4Ey1KP4Zj5er0jGXk76QfezEWYniuCLv p/TTqndKva5NQiZouO0u1gaOKj/r8btJtkTzvru14Yvoroitx8Ea7s+6S06X7IR6 3ESmhbvxyL9Ok3o52NygsY8jXlMwaEFmFLUFfe+DFdYUPeLMYso0JwIA3VVv4PZo 5du6ybt6Ezic20FaUmPHDrZ0Cw0WrPxykley7VZ8uYlytlz1IccRN8uRqI4brvRJ KiryZm7ndi4xmIVPyc04swl0HmN+Z2csb2rQ82OEY/JPvJsW/IgHszrLACqgFYZP ZAvyRRzubVKxPsOj8aWZIANZTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMHMKF9R MLKqgHngCtLN9FV3+MmeMB8GA1UdIwQYMBaAFGGwIjNfTYXhbUd6AGrcjj8v2pRg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0M3Ny9EQzIwMUFGRTM5 NTQxMUVDODBEOUQzNTlDNEY5QUUwMi9ZYkFpTTE5TmhlRnRSM29BYXR5T1B5X2Fs R0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liQWlNMTlOaGVGdFIzb0FhdHlPUHlfYWxHQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0M3Ny9EQzIwMUFGRTM5NTQxMUVDODBEOUQzNTlDNEY5QUUwMi9ZYkFpTTE5Tmhl RnRSM29BYXR5T1B5X2FsR0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWumoQQSu+Sh41ieYMe+XXjh8jQpPSBbDGYH7iHXDhfudaDn2JO/d2 yVbkh+CtZslVZfH0WNujVlbkf4KXMquOXHcfACak06/whWMslu84rgKqw3KRFa5s 5i6zHps3jUsLoO+e369ewGfgjx2orc7otY7LAEyEelTLxn/ekv0X2JWbkuh73duY wQY5LTJR3TmbYPwWSPLyQhQ6NTf+XyItcHmsmSv/L5HqO4k1q9wrOwXbs9MxEJXE GRFC3zjwaW9JhBUdnO44Op02Gn2f/68eoH2wwRjeaaYg/FDunbkRebhMLMItqc4O IDIraWkZ69FrGff6fuqhGyhONaYI7ZRG -----END CERTIFICATE-----Generated at Mon Jun 30 20:08:31 2025 by rpki-client