$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft File: 1ybobzALJko1PClnPgdxb1RUteI.mft (raw, json) Hash identifier: clILJKGYYHtbc27doRrnDcpP4AQIjOp3KnYNf3dcwjs= Subject key identifier: 45:82:E7:A4:F9:0F:E8:CB:92:33:67:F7:34:09:DF:61:8B:B0:9F:A9 Authority key identifier: D7:26:E8:6F:30:0B:26:4A:35:3C:29:67:3E:07:71:6F:54:54:B5:E2 Certificate issuer: /CN=A91B4053/serialNumber=D726E86F300B264A353C29673E07716F5454B5E2 Certificate serial: 09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ybobzALJko1PClnPgdxb1RUteI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft Manifest number: 08 Signing time: Thu 03 Jul 2025 08:26:34 +0000 Manifest this update: Thu 03 Jul 2025 08:26:34 +0000 Manifest next update: Thu 10 Jul 2025 08:26:34 +0000 Files and hashes: 1: 1ybobzALJko1PClnPgdxb1RUteI.crl (hash: COPq4CDTzuZaNYoHmDj9borRyr99aRAkGkxwZ6GAfJM=) 2: D28B7DD450E411F081600061C4F9AE02.roa (hash: l4xDR8XfunCSdDdqhrbj6MNAoikH4sPGdjRT4Op4rI8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.crl rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ybobzALJko1PClnPgdxb1RUteI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9 (0x9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4053, serialNumber=D726E86F300B264A353C29673E07716F5454B5E2 Validity Not Before: Jul 3 08:26:34 2025 GMT Not After : Jul 10 08:26:34 2025 GMT Subject: CN=68663eba-6c04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:a0:11:a3:8f:67:3b:bc:53:89:ff:f8:a2:b0: aa:45:a4:5b:d0:26:df:06:c8:4d:dd:5b:2c:c3:cf: 60:30:71:ed:71:0b:ac:f4:b1:e5:3f:00:ed:cb:56: d3:f8:f5:5c:5f:4c:99:21:40:c5:f5:e4:cc:04:66: fa:ee:e2:7d:a3:d5:f8:d0:d8:ae:c9:31:a2:2f:25: 73:30:28:91:aa:29:e2:37:32:e6:7a:92:95:8e:20: f6:b6:df:d0:66:7d:32:ed:2b:10:c5:32:65:1d:82: 28:3e:02:20:a9:2b:21:df:24:89:26:41:51:02:4c: 07:67:e8:a6:8a:05:31:f2:d5:c0:78:b3:6b:58:79: 0e:9b:17:67:37:0d:d7:94:12:fb:1a:3a:ca:87:d6: 33:c8:ea:e8:17:70:18:b7:76:9b:6e:0e:7e:e8:33: 8e:c9:e2:20:c2:71:78:6e:36:49:4b:5e:11:13:5a: bf:1c:1b:0f:c2:24:42:b4:47:35:1c:58:5d:af:5e: 37:b8:b8:b6:c5:33:75:28:93:44:4f:3d:bc:1e:1c: 4d:2e:86:86:eb:bc:84:c0:98:6d:e0:9f:bb:e8:77: 1f:69:e1:7e:da:e7:ca:b6:99:5b:73:1e:c1:a2:1a: fb:22:3e:d4:ab:19:91:a0:85:b4:c5:33:7b:7f:58: 04:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:82:E7:A4:F9:0F:E8:CB:92:33:67:F7:34:09:DF:61:8B:B0:9F:A9 X509v3 Authority Key Identifier: keyid:D7:26:E8:6F:30:0B:26:4A:35:3C:29:67:3E:07:71:6F:54:54:B5:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ybobzALJko1PClnPgdxb1RUteI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:59:68:c6:23:c7:86:1d:f4:fb:06:f3:84:f3:fa:a4:34:e0: 9e:65:ae:bd:c2:50:c7:36:b7:aa:1c:92:16:b8:12:97:f3:5c: 75:11:5a:de:48:4d:4a:0c:42:e9:24:1a:bf:6e:24:d1:54:68: 06:b9:ca:9c:d3:2e:02:f6:c2:95:07:10:78:15:f1:0b:13:80: d3:d6:93:e1:1a:f9:f6:8d:16:96:c8:d1:24:8a:a3:38:57:df: 16:42:6d:e2:af:f0:48:0a:f8:e9:6c:6e:9c:e6:e5:8f:8c:a5: fe:c9:7d:32:73:e9:cc:b8:64:f8:05:6b:27:3f:96:5c:7e:b0: 13:6f:d1:fc:2d:fc:4a:b9:e3:84:de:0c:7a:88:b2:11:df:b0: ba:70:b2:52:c7:1b:d7:df:df:92:9b:65:ff:1c:04:ad:46:ac: 38:62:c6:55:40:e6:19:fa:0a:db:87:a6:90:39:a5:6c:ce:76: ff:af:07:5a:8c:36:37:f0:9b:59:f8:a3:c1:b8:cb:fd:10:9c: a3:e3:05:1c:59:b4:b6:de:a4:eb:a3:32:fc:ee:a6:cc:39:ec: 91:0e:4d:ee:0b:3e:cc:2f:aa:e7:a1:1f:fc:ac:85:4f:0d:73: 32:06:02:c4:fe:fb:35:f8:c9:2f:d3:a9:0a:73:5f:d0:7c:5f: e3:06:cd:3d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NDA1MzExMC8GA1UEBRMoRDcyNkU4NkYzMDBCMjY0QTM1M0MyOTY3M0UwNzcxNkY1 NDU0QjVFMjAeFw0yNTA3MDMwODI2MzRaFw0yNTA3MTAwODI2MzRaMBgxFjAUBgNV BAMTDTY4NjYzZWJhLTZjMDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGoBGjj2c7vFOJ//iisKpFpFvQJt8GyE3dWyzDz2Awce1xC6z0seU/AO3LVtP4 9VxfTJkhQMX15MwEZvru4n2j1fjQ2K7JMaIvJXMwKJGqKeI3MuZ6kpWOIPa239Bm fTLtKxDFMmUdgig+AiCpKyHfJIkmQVECTAdn6KaKBTHy1cB4s2tYeQ6bF2c3DdeU EvsaOsqH1jPI6ugXcBi3dptuDn7oM47J4iDCcXhuNklLXhETWr8cGw/CJEK0RzUc WF2vXje4uLbFM3Uok0RPPbweHE0uhobrvITAmG3gn7vodx9p4X7a58q2mVtzHsGi GvsiPtSrGZGghbTFM3t/WAQZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQURYLnpPkP 6MuSM2f3NAnfYYuwn6kwHwYDVR0jBBgwFoAU1ybobzALJko1PClnPgdxb1RUteIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0MDUzLzNFREI4M0ZDNTBF MTExRjA5MUM0QkI3NEM0RjlBRTAyLzF5Ym9iekFMSmtvMVBDbG5QZ2R4YjFSVXRl SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMXlib2J6QUxKa28xUENsblBnZHhiMVJVdGVJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0 MDUzLzNFREI4M0ZDNTBFMTExRjA5MUM0QkI3NEM0RjlBRTAyLzF5Ym9iekFMSmtv MVBDbG5QZ2R4YjFSVXRlSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJNZaMYjx4Yd9PsG84Tz+qQ04J5lrr3CUMc2t6ockha4EpfzXHURWt5I TUoMQukkGr9uJNFUaAa5ypzTLgL2wpUHEHgV8QsTgNPWk+Ea+faNFpbI0SSKozhX 3xZCbeKv8EgK+Olsbpzm5Y+Mpf7JfTJz6cy4ZPgFayc/llx+sBNv0fwt/Eq544Te DHqIshHfsLpwslLHG9ff35KbZf8cBK1GrDhixlVA5hn6CtuHppA5pWzOdv+vB1qM Njfwm1n4o8G4y/0QnKPjBRxZtLbepOujMvzupsw57JEOTe4LPswvquehH/yshU8N czIGAsT++zX4yS/TqQpzX9B8X+MGzT0= -----END CERTIFICATE-----Generated at Thu Jul 3 18:16:52 2025 by rpki-client