$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft File: YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft (raw, json) Hash identifier: /1lJ7Kxmt5bve75rCbSMpMkbETCvG4jZosW4oO9JUp8= Subject key identifier: 7D:8F:AC:D3:4D:88:6F:C6:D0:4B:67:5F:DA:1C:BB:6B:61:25:61:4E Authority key identifier: 60:6E:E8:5D:C3:C4:67:FC:46:4A:89:4E:D4:7A:9F:1B:D3:21:B4:41 Certificate issuer: /CN=A91AF3C6/serialNumber=606EE85DC3C467FC464A894ED47A9F1BD321B441 Certificate serial: 07F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YG7oXcPEZ_xGSolO1HqfG9MhtEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft Manifest number: 07EB Signing time: Wed 02 Jul 2025 21:18:41 +0000 Manifest this update: Wed 02 Jul 2025 21:18:40 +0000 Manifest next update: Wed 09 Jul 2025 21:18:40 +0000 Files and hashes: 1: YG7oXcPEZ_xGSolO1HqfG9MhtEE.crl (hash: NSN7foYgKeeUvE1Wt6l/JxqBfLT+rOluid3fkGkz1M0=) 2: F7F2D20ABCE911EFB7786B63C4F9AE02.roa (hash: YDClsqxDW8aE74OivD5RPpVA+CxjmhxOOqfYIEgfLpM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.crl rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YG7oXcPEZ_xGSolO1HqfG9MhtEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 21:18:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2037 (0x7f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF3C6, serialNumber=606EE85DC3C467FC464A894ED47A9F1BD321B441 Validity Not Before: Jul 2 21:18:40 2025 GMT Not After : Jul 9 21:18:40 2025 GMT Subject: CN=6865a230-0c9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:f4:84:7f:33:bc:58:2c:be:54:06:f1:d1:ba: 02:11:7b:0b:a7:9c:bb:ed:02:c0:67:a9:35:b1:f8: 53:76:db:99:d2:1f:9d:36:37:0a:be:12:6b:35:96: 0b:e5:a2:5e:ae:ec:ba:d8:1f:6c:24:95:04:aa:57: 23:42:f1:17:0a:b6:ee:c7:0b:2d:a4:7f:72:0b:30: 51:36:64:97:86:55:2c:04:b3:c2:04:4b:41:3d:a3: cc:27:8e:23:a1:b3:2b:3e:63:c9:2d:9b:70:b6:8c: 66:ef:f7:65:72:f2:df:94:93:e8:3b:d5:16:ec:fe: 80:cd:0a:99:6a:46:af:0b:d8:a6:49:81:8e:3d:b3: fc:2c:d8:e9:d7:99:df:3c:f0:00:94:2a:d7:ec:b6: bf:e9:29:08:eb:7c:48:04:6d:44:e4:b5:3e:60:6e: 48:30:12:78:0b:4b:10:64:01:72:a1:22:0e:ab:e7: 84:35:46:5b:c2:e8:46:43:7d:e8:ec:4f:f2:13:10: 94:94:a4:0c:b4:8f:21:3d:a5:4c:3f:df:d0:4a:2a: 7a:e7:79:ad:e1:f3:72:a8:64:4e:a0:ed:e0:a9:06: e5:d8:6a:6c:6b:f5:da:a1:73:33:96:01:0c:25:4b: a4:8c:fc:40:56:10:ad:12:80:a7:fa:12:93:c4:6b: 59:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:8F:AC:D3:4D:88:6F:C6:D0:4B:67:5F:DA:1C:BB:6B:61:25:61:4E X509v3 Authority Key Identifier: keyid:60:6E:E8:5D:C3:C4:67:FC:46:4A:89:4E:D4:7A:9F:1B:D3:21:B4:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YG7oXcPEZ_xGSolO1HqfG9MhtEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:5c:71:cc:78:c7:de:df:43:ee:32:71:7f:29:d6:78:39:c6: c8:9f:6f:6a:94:1a:d1:40:5d:0e:26:4c:0d:6f:20:6e:b5:5b: b8:7e:ad:7f:8f:9b:a6:e0:58:8e:45:92:16:2d:d6:70:fb:95: aa:d9:94:1c:72:6e:b4:e5:ed:a8:c9:c0:30:0a:3b:5e:07:d3: 64:48:0e:2e:99:41:af:52:5a:03:ff:e8:da:1f:8c:57:97:4c: ff:e4:f1:e1:f6:a1:7d:a2:2c:a7:71:d0:8c:37:dd:a0:6c:18: 19:1b:04:9e:89:c2:08:1d:ca:00:3a:c9:2d:b1:3a:69:0e:0d: 8f:b5:7e:79:63:bd:dd:34:9b:0d:09:21:e9:74:12:e2:73:9d: a1:80:65:fe:71:57:23:00:9c:a2:e4:3e:2c:83:d3:86:80:16: be:84:c2:1a:14:d5:a4:32:07:4e:73:b0:c3:9d:6a:0a:6c:51: 78:e4:04:f8:df:89:ab:1c:9d:17:e7:26:04:0e:6b:54:f6:a2: 57:eb:cb:1d:b9:0c:93:ac:60:b4:80:6c:0d:f2:47:24:69:f1: 6c:3a:52:46:8e:d7:db:87:93:4d:dd:5e:28:41:ca:3a:9c:6d: a5:28:16:7d:27:89:c1:64:4e:ef:42:af:07:91:61:c5:bf:de: 83:2f:7f:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYzQzYxMTAvBgNVBAUTKDYwNkVFODVEQzNDNDY3RkM0NjRBODk0RUQ0N0E5RjFC RDMyMUI0NDEwHhcNMjUwNzAyMjExODQwWhcNMjUwNzA5MjExODQwWjAYMRYwFAYD VQQDEw02ODY1YTIzMC0wYzlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2fSEfzO8WCy+VAbx0boCEXsLp5y77QLAZ6k1sfhTdtuZ0h+dNjcKvhJrNZYL 5aJeruy62B9sJJUEqlcjQvEXCrbuxwstpH9yCzBRNmSXhlUsBLPCBEtBPaPMJ44j obMrPmPJLZtwtoxm7/dlcvLflJPoO9UW7P6AzQqZakavC9imSYGOPbP8LNjp15nf PPAAlCrX7La/6SkI63xIBG1E5LU+YG5IMBJ4C0sQZAFyoSIOq+eENUZbwuhGQ33o 7E/yExCUlKQMtI8hPaVMP9/QSip653mt4fNyqGROoO3gqQbl2Gpsa/XaoXMzlgEM JUukjPxAVhCtEoCn+hKTxGtZwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH2PrNNN iG/G0EtnX9ocu2thJWFOMB8GA1UdIwQYMBaAFGBu6F3DxGf8RkqJTtR6nxvTIbRB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjNDNi82MzFDQzE2MEYz MzgxMUVBQTYzRDQxNTRDNEY5QUUwMi9ZRzdvWGNQRVpfeEdTb2xPMUhxZkc5TWh0 RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lHN29YY1BFWl94R1NvbE8xSHFmRzlNaHRFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjNDNi82MzFDQzE2MEYzMzgxMUVBQTYzRDQxNTRDNEY5QUUwMi9ZRzdvWGNQRVpf eEdTb2xPMUhxZkc5TWh0RUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMXHHMeMfe30PuMnF/KdZ4OcbIn29qlBrRQF0OJkwNbyButVu4fq1/ j5um4FiORZIWLdZw+5Wq2ZQccm605e2oycAwCjteB9NkSA4umUGvUloD/+jaH4xX l0z/5PHh9qF9oiyncdCMN92gbBgZGwSeicIIHcoAOsktsTppDg2PtX55Y73dNJsN CSHpdBLic52hgGX+cVcjAJyi5D4sg9OGgBa+hMIaFNWkMgdOc7DDnWoKbFF45AT4 34mrHJ0X5yYEDmtU9qJX68sduQyTrGC0gGwN8kckafFsOlJGjtfbh5NN3V4oQco6 nG2lKBZ9J4nBZE7vQq8HkWHFv96DL39V -----END CERTIFICATE-----Generated at Thu Jul 3 23:27:02 2025 by rpki-client