$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.mft File: yod6eu8duwRWSH9h_uaZNjdUHl0.mft (raw, json) Hash identifier: v3CJVMBWVFOLnWflICvgMRp68hoAMulSTMdLSfHV15c= Subject key identifier: B2:64:E0:C8:E6:C0:D4:FC:E6:10:4B:F9:3F:76:7D:D7:03:D3:C9:92 Authority key identifier: CA:87:7A:7A:EF:1D:BB:04:56:48:7F:61:FE:E6:99:36:37:54:1E:5D Certificate issuer: /CN=A91AA053/serialNumber=CA877A7AEF1DBB0456487F61FEE6993637541E5D Certificate serial: B7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yod6eu8duwRWSH9h_uaZNjdUHl0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.mft Manifest number: B6 Signing time: Wed 02 Jul 2025 22:01:28 +0000 Manifest this update: Wed 02 Jul 2025 22:01:27 +0000 Manifest next update: Wed 09 Jul 2025 22:01:27 +0000 Files and hashes: 1: yod6eu8duwRWSH9h_uaZNjdUHl0.crl (hash: 3GMio/X51AKery9Paeclw/Hw6i36vBiyrKsJd55fAT8=) 2: E098BB864FA311F0B96FBA3DC4F9AE02.roa (hash: C+d1LQ7j4suoEMqt6jmxPLK9+SyxrHsAW+pg0qKDarw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.crl rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yod6eu8duwRWSH9h_uaZNjdUHl0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:01:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 183 (0xb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA053, serialNumber=CA877A7AEF1DBB0456487F61FEE6993637541E5D Validity Not Before: Jul 2 22:01:27 2025 GMT Not After : Jul 9 22:01:27 2025 GMT Subject: CN=6865ac38-dc36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:08:b1:14:10:d7:6e:bd:3b:bf:2d:23:4f:4c: 8f:22:4e:98:71:0c:7a:18:5e:2a:c2:02:b5:f0:e2: 54:0b:1a:a8:fe:ee:81:3c:56:ea:97:a7:be:d1:00: 46:46:e4:d9:d2:a6:11:df:80:c0:32:f1:82:52:2b: c6:e9:0d:27:2e:1f:56:cf:05:8d:6f:d3:35:e7:fe: 0f:50:cd:2f:c3:41:e1:9c:d4:73:7b:74:6a:18:5f: 7d:c4:a7:4a:1f:06:57:d7:8a:97:0f:38:3f:0e:d6: 65:2f:30:ee:df:73:e0:46:a4:02:59:a9:27:fa:20: 9a:71:27:ed:4a:63:4a:04:9c:cb:79:b8:93:43:e0: 8e:12:34:1f:69:45:1f:84:d5:a7:9e:7e:4e:5c:a2: b5:64:0d:4a:e2:dd:4a:ce:87:4a:52:e4:40:d8:72: bb:56:0c:fb:96:7a:f7:02:8c:3b:6f:65:b3:57:82: 19:02:59:99:f7:03:39:c3:41:83:2a:5b:6f:68:0d: e7:3a:c1:d0:94:fe:1f:20:47:2b:3b:c0:dc:36:1e: 35:d6:9d:d4:02:2c:c3:ca:ea:9a:fc:f4:6a:2d:b1: 91:b5:2b:c8:3e:aa:9e:3d:2d:ce:bf:8d:4e:23:11: a8:b3:80:5d:49:d8:d0:df:a2:51:d2:9f:16:96:fd: 05:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:64:E0:C8:E6:C0:D4:FC:E6:10:4B:F9:3F:76:7D:D7:03:D3:C9:92 X509v3 Authority Key Identifier: keyid:CA:87:7A:7A:EF:1D:BB:04:56:48:7F:61:FE:E6:99:36:37:54:1E:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yod6eu8duwRWSH9h_uaZNjdUHl0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:4a:3b:88:b8:39:bc:ac:d9:f7:20:81:10:b7:1c:30:4c:d8: e8:a5:66:56:3f:a9:25:df:cb:25:09:e7:1a:66:1e:22:09:0a: 1d:f0:ea:57:71:37:a8:73:4c:2e:b1:fe:40:bb:54:00:ba:4e: 4d:47:6c:5c:97:dc:2a:04:22:97:0d:9d:4b:5b:8c:e8:c4:c9: 7c:55:af:7e:6a:66:5c:76:b0:ac:ad:96:b1:18:c1:27:4d:ec: 1a:09:7d:dc:8b:11:28:63:ab:63:a7:99:03:8c:f8:e9:3a:7f: bc:a5:ca:b7:c2:3b:5d:0e:94:bc:c7:fa:09:a6:58:e3:97:c6: 4a:19:bd:46:26:b0:f3:58:20:f7:82:ad:70:05:99:70:0f:69: 22:f7:b9:f0:7b:ca:15:84:b7:18:70:24:b5:b8:fe:17:85:6b: 54:53:6e:6d:7d:91:4b:59:96:71:42:96:ef:e5:ea:fd:88:ae: f9:f7:b3:b0:2e:99:a5:32:a2:8e:78:bd:e8:88:3c:00:dc:fc: 48:a2:e3:3a:39:cc:e6:8f:0b:b6:d2:ee:96:50:0b:60:27:ef: 96:0a:c2:cd:d3:a8:c3:56:7a:19:2e:33:66:91:90:d9:70:60: e4:70:45:c5:f0:67:57:50:c8:86:db:df:24:5d:15:f0:d8:25: 35:6f:8f:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUEwNTMxMTAvBgNVBAUTKENBODc3QTdBRUYxREJCMDQ1NjQ4N0Y2MUZFRTY5OTM2 Mzc1NDFFNUQwHhcNMjUwNzAyMjIwMTI3WhcNMjUwNzA5MjIwMTI3WjAYMRYwFAYD VQQDEw02ODY1YWMzOC1kYzM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2gixFBDXbr07vy0jT0yPIk6YcQx6GF4qwgK18OJUCxqo/u6BPFbql6e+0QBG RuTZ0qYR34DAMvGCUivG6Q0nLh9WzwWNb9M15/4PUM0vw0HhnNRze3RqGF99xKdK HwZX14qXDzg/DtZlLzDu33PgRqQCWakn+iCacSftSmNKBJzLebiTQ+COEjQfaUUf hNWnnn5OXKK1ZA1K4t1KzodKUuRA2HK7Vgz7lnr3Aow7b2WzV4IZAlmZ9wM5w0GD KltvaA3nOsHQlP4fIEcrO8DcNh411p3UAizDyuqa/PRqLbGRtSvIPqqePS3Ov41O IxGos4BdSdjQ36JR0p8Wlv0F0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLJk4Mjm wNT85hBL+T92fdcD08mSMB8GA1UdIwQYMBaAFMqHenrvHbsEVkh/Yf7mmTY3VB5d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTA1My84NzIwMzA1RTQ0 OTkxMUVGQkFDNjcxNTNDNEY5QUUwMi95b2Q2ZXU4ZHV3UldTSDloX3VhWk5qZFVI bDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3lvZDZldThkdXdSV1NIOWhfdWFaTmpkVUhsMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTA1My84NzIwMzA1RTQ0OTkxMUVGQkFDNjcxNTNDNEY5QUUwMi95b2Q2ZXU4ZHV3 UldTSDloX3VhWk5qZFVIbDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBESjuIuDm8rNn3IIEQtxwwTNjopWZWP6kl38slCecaZh4iCQod8OpX cTeoc0wusf5Au1QAuk5NR2xcl9wqBCKXDZ1LW4zoxMl8Va9+amZcdrCsrZaxGMEn TewaCX3cixEoY6tjp5kDjPjpOn+8pcq3wjtdDpS8x/oJpljjl8ZKGb1GJrDzWCD3 gq1wBZlwD2ki97nwe8oVhLcYcCS1uP4XhWtUU25tfZFLWZZxQpbv5er9iK7597Ow LpmlMqKOeL3oiDwA3PxIouM6Oczmjwu20u6WUAtgJ++WCsLN06jDVnoZLjNmkZDZ cGDkcEXF8GdXUMiG298kXRXw2CU1b4/V -----END CERTIFICATE-----Generated at Thu Jul 3 21:02:18 2025 by rpki-client