$ rpki-client -vvf rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.mft File: Y1kwnvSbRF9utTMb3wqUxcbvw3s.mft (raw, json) Hash identifier: OXe81u7at98H3fv0wnIrwGv1/6c6kTFEdQ2yO3spBW0= Subject key identifier: F3:CC:C4:BD:61:11:04:2A:63:68:D9:69:90:48:0B:24:0E:3A:28:EE Authority key identifier: 63:59:30:9E:F4:9B:44:5F:6E:B5:33:1B:DF:0A:94:C5:C6:EF:C3:7B Certificate issuer: /CN=A91A935D/serialNumber=6359309EF49B445F6EB5331BDF0A94C5C6EFC37B Certificate serial: 0662 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1kwnvSbRF9utTMb3wqUxcbvw3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.mft Manifest number: 065B Signing time: Mon 30 Jun 2025 22:51:00 +0000 Manifest this update: Mon 30 Jun 2025 22:51:00 +0000 Manifest next update: Mon 07 Jul 2025 22:51:00 +0000 Files and hashes: 1: Y1kwnvSbRF9utTMb3wqUxcbvw3s.crl (hash: +EaeIYn+Nz4pOAfDtoU9n31K0oH3FwZ+k6gsoeygi98=) 2: 47EB76428ABA11EB8A85C01BC4F9AE02.roa (hash: 1AEXU+7Y4PfWz8jQxA5HlFwuXkljqopTv6bNdtPTBW0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.crl rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1kwnvSbRF9utTMb3wqUxcbvw3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 22:50:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1634 (0x662) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A935D, serialNumber=6359309EF49B445F6EB5331BDF0A94C5C6EFC37B Validity Not Before: Jun 30 22:51:00 2025 GMT Not After : Jul 7 22:51:00 2025 GMT Subject: CN=686314d4-7aaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:43:66:4b:20:0f:9e:1e:18:a3:94:6e:18:78: b4:06:5b:04:51:5c:68:48:40:66:e8:40:37:eb:b1: 9b:b4:b2:9a:3f:28:a3:bf:f5:f4:bb:d8:3f:6f:84: 62:49:f4:1e:0d:42:a8:a3:71:ea:89:ad:5c:d1:98: 7d:ed:e0:21:3d:8a:07:1f:55:f5:91:fe:b2:25:83: 97:0e:1d:00:a6:c4:45:e1:6d:ca:06:0e:bc:e3:86: 9b:51:60:70:57:c1:37:6f:94:a1:5a:d2:ff:3d:6d: 0d:4e:8d:dd:88:fd:f4:36:8b:96:61:02:92:57:f7: 76:62:1d:79:2d:87:a8:a4:2e:ef:5a:99:0e:8b:49: 2d:b0:31:2e:ce:ac:dc:19:eb:e1:ce:5d:43:aa:cf: da:87:a5:b3:c7:c0:a9:e6:e6:17:bc:f3:80:f4:fa: 5c:ae:95:7e:98:82:88:dc:10:75:53:bd:e6:44:ab: 0a:8a:93:e9:5c:bf:68:29:ae:25:50:60:e2:a4:d9: c0:40:72:b0:36:64:3e:4e:64:5c:fd:b1:39:d7:d6: 5f:47:f6:ef:60:5d:09:4d:18:bd:33:1a:4c:a5:83: 22:49:0a:2f:19:c2:0e:1a:46:c9:1f:18:b2:0e:ce: c7:3b:2d:ba:e0:f1:13:51:91:1b:28:f5:7b:16:ae: c2:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:CC:C4:BD:61:11:04:2A:63:68:D9:69:90:48:0B:24:0E:3A:28:EE X509v3 Authority Key Identifier: keyid:63:59:30:9E:F4:9B:44:5F:6E:B5:33:1B:DF:0A:94:C5:C6:EF:C3:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1kwnvSbRF9utTMb3wqUxcbvw3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:7c:9b:d5:ab:43:dc:6b:30:e8:f4:25:5d:e7:a4:6f:c4:58: 64:1e:b2:9a:a1:50:07:c6:5b:e8:db:4a:25:68:0e:0a:3e:63: 22:5c:e0:bd:d4:89:12:41:48:23:da:9a:f0:fe:50:1d:47:f6: 61:06:45:08:53:c9:90:f8:32:dd:5a:88:cd:a5:5c:cf:ba:d1: 18:7a:6c:2f:ba:06:0d:03:9b:4f:d2:8b:83:56:18:bc:97:4b: ba:bf:fa:58:ea:95:71:35:c2:6e:e6:fd:9c:14:94:40:50:04: b4:70:ee:16:c4:29:7e:97:c3:e0:86:5b:e5:2b:72:9e:be:6b: 24:10:36:de:f6:3d:fd:e3:fe:10:ed:86:5d:73:50:50:97:82: 84:97:a3:ce:1e:35:4b:f6:b6:d9:ac:73:4d:c1:9b:45:dd:c4: 7c:17:4b:90:a5:4d:7c:63:81:77:10:1e:cc:50:0e:15:c3:9e: 29:26:ec:42:b5:21:be:7d:e9:9d:aa:f9:13:45:e7:15:ac:28: a3:40:3d:5f:aa:0a:d4:77:8d:ba:ad:fc:0a:0d:7d:fe:c3:aa: 43:7e:77:6e:73:a6:73:f8:2d:3a:cf:ed:70:15:67:bd:fb:cf: 42:79:77:48:0b:35:62:7f:05:98:5a:67:3f:0b:43:e1:de:0e: 0f:19:b8:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkzNUQxMTAvBgNVBAUTKDYzNTkzMDlFRjQ5QjQ0NUY2RUI1MzMxQkRGMEE5NEM1 QzZFRkMzN0IwHhcNMjUwNjMwMjI1MTAwWhcNMjUwNzA3MjI1MTAwWjAYMRYwFAYD VQQDEw02ODYzMTRkNC03YWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp0NmSyAPnh4Yo5RuGHi0BlsEUVxoSEBm6EA367GbtLKaPyijv/X0u9g/b4Ri SfQeDUKoo3Hqia1c0Zh97eAhPYoHH1X1kf6yJYOXDh0ApsRF4W3KBg6844abUWBw V8E3b5ShWtL/PW0NTo3diP30NouWYQKSV/d2Yh15LYeopC7vWpkOi0ktsDEuzqzc Gevhzl1Dqs/ah6Wzx8Cp5uYXvPOA9PpcrpV+mIKI3BB1U73mRKsKipPpXL9oKa4l UGDipNnAQHKwNmQ+TmRc/bE519ZfR/bvYF0JTRi9MxpMpYMiSQovGcIOGkbJHxiy Ds7HOy264PETUZEbKPV7Fq7CaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPPMxL1h EQQqY2jZaZBICyQOOijuMB8GA1UdIwQYMBaAFGNZMJ70m0RfbrUzG98KlMXG78N7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTM1RC9GNTAwRjcyODhB QjgxMUVCODcwN0UxMUFDNEY5QUUwMi9ZMWt3bnZTYlJGOXV0VE1iM3dxVXhjYnZ3 M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kxa3dudlNiUkY5dXRUTWIzd3FVeGNidnczcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTM1RC9GNTAwRjcyODhBQjgxMUVCODcwN0UxMUFDNEY5QUUwMi9ZMWt3bnZTYlJG OXV0VE1iM3dxVXhjYnZ3M3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+fJvVq0PcazDo9CVd56RvxFhkHrKaoVAHxlvo20olaA4KPmMiXOC9 1IkSQUgj2prw/lAdR/ZhBkUIU8mQ+DLdWojNpVzPutEYemwvugYNA5tP0ouDVhi8 l0u6v/pY6pVxNcJu5v2cFJRAUAS0cO4WxCl+l8PghlvlK3KevmskEDbe9j394/4Q 7YZdc1BQl4KEl6POHjVL9rbZrHNNwZtF3cR8F0uQpU18Y4F3EB7MUA4Vw54pJuxC tSG+femdqvkTRecVrCijQD1fqgrUd426rfwKDX3+w6pDfnduc6Zz+C06z+1wFWe9 +89CeXdICzVifwWYWmc/C0Ph3g4PGbjK -----END CERTIFICATE-----Generated at Wed Jul 2 15:54:08 2025 by rpki-client