$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft File: Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft (raw, json) Hash identifier: BQjvMo4Gp9J3hGF3IObix3LWM3Xs+h6bOQRlYNOV5U4= Subject key identifier: B6:C7:CD:77:9E:EF:3A:2A:A0:B5:5E:E9:76:4A:C3:8A:B9:96:73:4F Authority key identifier: 63:0E:FC:8B:C8:24:7F:99:A0:12:80:74:1E:4A:1A:0D:B7:F1:47:B0 Certificate issuer: /CN=A91BB629/serialNumber=630EFC8BC8247F99A01280741E4A1A0DB7F147B0 Certificate serial: B6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft Manifest number: B4 Signing time: Thu 03 Jul 2025 06:11:33 +0000 Manifest this update: Thu 03 Jul 2025 06:11:32 +0000 Manifest next update: Thu 10 Jul 2025 06:11:32 +0000 Files and hashes: 1: Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl (hash: 1/BT4RONhiq9MQaUhNUrecxjnx3s6iWSBgCZRrE564o=) 2: 7CE4326245B511EFBAC06E1EC4F9AE02.roa (hash: bllAWJknG6t7sgMmQWLY59vxPXpNHKXKelWOMC8ypAI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 182 (0xb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB629, serialNumber=630EFC8BC8247F99A01280741E4A1A0DB7F147B0 Validity Not Before: Jul 3 06:11:32 2025 GMT Not After : Jul 10 06:11:32 2025 GMT Subject: CN=68661f14-4ff2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:cc:fb:15:50:6b:d9:52:95:f8:d0:ba:ac:63: 4d:46:6b:17:eb:5a:3b:21:56:85:10:f9:2b:01:f0: b9:35:e8:6a:5d:a4:73:43:b1:59:fc:e8:92:66:aa: c0:5b:10:c9:09:8d:b5:2e:99:1d:26:b9:bd:fb:80: ef:71:a0:8f:9b:1b:76:cb:33:52:8d:f5:5d:e7:cc: bc:22:f5:ef:97:bb:81:c4:97:b1:22:a2:2a:64:2f: 2b:63:73:9b:e2:84:ed:fd:85:f5:ae:af:1c:a8:7d: 1d:05:8a:14:89:fd:a8:f3:88:0d:dd:28:cd:ad:76: 68:31:10:59:d5:43:f1:0c:de:40:17:05:29:65:2c: 1d:0d:4f:3a:45:df:1a:08:59:de:fb:3e:82:29:b9: 47:b7:f8:80:cd:3b:08:bb:c9:e7:35:ea:c4:e6:d1: 6b:1e:5a:e3:76:62:70:a6:25:54:6d:3e:70:68:40: ba:a2:cb:aa:ee:c5:f4:b3:cf:bd:1a:40:2c:b1:d7: 47:49:da:47:15:f2:5e:f2:af:7c:d3:57:97:47:87: c0:32:cf:06:e5:5e:45:5b:87:a8:c7:9d:91:42:43: 02:6a:29:b1:f0:dd:92:a3:fc:14:75:80:64:84:f6: 77:36:fa:30:47:fa:7f:a2:3e:ca:37:37:64:a4:44: 07:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:C7:CD:77:9E:EF:3A:2A:A0:B5:5E:E9:76:4A:C3:8A:B9:96:73:4F X509v3 Authority Key Identifier: keyid:63:0E:FC:8B:C8:24:7F:99:A0:12:80:74:1E:4A:1A:0D:B7:F1:47:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:20:74:81:8d:d4:97:46:c4:7a:bd:88:eb:60:5e:ca:0e:fd: 99:9a:52:d8:46:47:da:24:34:4b:cf:b6:d9:be:80:3f:6c:fd: c5:2f:77:4f:5b:0d:8d:fd:8b:93:fc:70:d5:64:8e:94:40:32: 7d:70:da:70:ca:6f:14:e6:65:ec:c5:9b:d0:18:b2:5e:2a:4d: 5e:ca:ad:07:c1:bd:c7:86:d7:88:1b:6a:29:57:7d:fd:56:ae: d6:0c:4e:a0:e0:fb:71:0a:e4:86:13:61:23:71:d2:b7:ac:d8: 01:09:5c:81:c3:98:16:f4:ae:ab:17:6d:f3:6d:d2:ac:1c:da: ab:75:5c:1d:df:87:9d:bf:aa:5e:c8:66:f1:08:84:bd:ad:fd: 60:eb:da:7a:5d:b7:49:dd:43:a8:af:70:a7:c6:6e:62:0b:92: e7:d0:26:bc:10:b4:48:46:6b:cd:f7:98:0a:a7:c0:8e:e8:a8: 5f:5c:61:48:03:8d:7c:0e:1d:6c:d5:65:00:09:ac:4b:09:15: 16:72:27:51:d3:77:32:b1:f1:19:32:44:69:f4:36:dc:b9:59: 04:54:37:48:df:01:82:85:5a:51:0e:16:42:b4:eb:6c:0f:d1: 18:ec:55:5c:99:49:ff:6d:7a:8e:5f:81:98:ab:d9:6e:2f:3b: 70:fb:7b:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI2MjkxMTAvBgNVBAUTKDYzMEVGQzhCQzgyNDdGOTlBMDEyODA3NDFFNEExQTBE QjdGMTQ3QjAwHhcNMjUwNzAzMDYxMTMyWhcNMjUwNzEwMDYxMTMyWjAYMRYwFAYD VQQDEw02ODY2MWYxNC00ZmYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtsz7FVBr2VKV+NC6rGNNRmsX61o7IVaFEPkrAfC5NehqXaRzQ7FZ/OiSZqrA WxDJCY21LpkdJrm9+4DvcaCPmxt2yzNSjfVd58y8IvXvl7uBxJexIqIqZC8rY3Ob 4oTt/YX1rq8cqH0dBYoUif2o84gN3SjNrXZoMRBZ1UPxDN5AFwUpZSwdDU86Rd8a CFne+z6CKblHt/iAzTsIu8nnNerE5tFrHlrjdmJwpiVUbT5waEC6osuq7sX0s8+9 GkAssddHSdpHFfJe8q9801eXR4fAMs8G5V5FW4eox52RQkMCaimx8N2So/wUdYBk hPZ3NvowR/p/oj7KNzdkpEQHbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLbHzXee 7zoqoLVe6XZKw4q5lnNPMB8GA1UdIwQYMBaAFGMO/IvIJH+ZoBKAdB5KGg238Uew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjYyOS9FMkNGOTQwQTQ1 QjQxMUVGOEZEQjc0MURDNEY5QUUwMi9Zdzc4aThna2Y1bWdFb0IwSGtvYURiZnhS N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1l3NzhpOGdrZjVtZ0VvQjBIa29hRGJmeFI3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjYyOS9FMkNGOTQwQTQ1QjQxMUVGOEZEQjc0MURDNEY5QUUwMi9Zdzc4aThna2Y1 bWdFb0IwSGtvYURiZnhSN0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnIHSBjdSXRsR6vYjrYF7KDv2ZmlLYRkfaJDRLz7bZvoA/bP3FL3dP Ww2N/YuT/HDVZI6UQDJ9cNpwym8U5mXsxZvQGLJeKk1eyq0Hwb3HhteIG2opV339 Vq7WDE6g4PtxCuSGE2EjcdK3rNgBCVyBw5gW9K6rF23zbdKsHNqrdVwd34edv6pe yGbxCIS9rf1g69p6XbdJ3UOor3Cnxm5iC5Ln0Ca8ELRIRmvN95gKp8CO6KhfXGFI A418Dh1s1WUACaxLCRUWcidR03cysfEZMkRp9DbcuVkEVDdI3wGChVpRDhZCtOts D9EY7FVcmUn/bXqOX4GYq9luLztw+3to -----END CERTIFICATE-----Generated at Thu Jul 3 23:18:58 2025 by rpki-client