$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft File: YB71rSfD3A1NmC22u0dsBsvHAKA.mft (raw, json) Hash identifier: 3AY2UUbqnusqMHnEtOOd5Yd3jWKDYMUKhl/geg63DQA= Subject key identifier: B4:C5:2D:D7:8A:60:6E:28:81:54:BB:1A:AB:9F:12:4C:68:CC:EF:0D Authority key identifier: 60:1E:F5:AD:27:C3:DC:0D:4D:98:2D:B6:BB:47:6C:06:CB:C7:00:A0 Certificate issuer: /CN=A91BFE4E/serialNumber=601EF5AD27C3DC0D4D982DB6BB476C06CBC700A0 Certificate serial: 8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB71rSfD3A1NmC22u0dsBsvHAKA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft Manifest number: 8F Signing time: Tue 01 Jul 2025 07:10:38 +0000 Manifest this update: Tue 01 Jul 2025 07:10:37 +0000 Manifest next update: Tue 08 Jul 2025 07:10:37 +0000 Files and hashes: 1: YB71rSfD3A1NmC22u0dsBsvHAKA.crl (hash: ewgkS4jQzMS46NHr1/5CPB5LSya24/7txR5IgyTaTV0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.crl rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB71rSfD3A1NmC22u0dsBsvHAKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 07:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 143 (0x8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFE4E, serialNumber=601EF5AD27C3DC0D4D982DB6BB476C06CBC700A0 Validity Not Before: Jul 1 07:10:37 2025 GMT Not After : Jul 8 07:10:37 2025 GMT Subject: CN=686389ee-f2d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:3e:14:6a:37:82:c6:44:30:00:97:81:5c:81: 4e:e4:31:8a:a9:be:83:78:c8:a6:7a:ca:7f:27:ee: 76:8d:ea:ec:0c:f9:0f:2b:82:55:84:09:41:6a:88: 50:c9:c7:6b:7c:08:46:75:2f:88:fd:ca:ac:c9:33: be:8f:70:57:ba:e6:67:e2:e6:4b:da:91:09:ce:74: 79:cf:38:59:68:a4:77:98:6b:39:cc:05:9e:97:26: 8a:4f:56:f2:f7:32:d7:e6:3b:ab:fb:78:b4:27:18: 15:6b:27:58:67:35:cd:25:89:9b:b8:62:9f:e9:ba: d3:cb:fc:dc:28:20:af:89:8e:3d:40:7d:8d:7e:a9: bf:63:16:0c:3b:62:81:43:38:7e:a1:a2:ac:8a:fe: e8:04:94:d3:ea:9d:14:1f:f8:78:70:2a:81:5e:29: d2:3c:5c:ff:c2:88:c0:9d:10:72:ca:6f:55:01:77: 6a:9e:fb:80:8d:b3:8a:07:4c:8e:32:f0:b8:bb:36: c4:09:c6:82:ff:8f:b6:70:9b:38:45:b8:cb:29:81: 3a:a2:d4:e7:2c:c8:0e:21:42:cb:04:06:c5:cd:1f: 7f:f7:33:60:aa:ae:f0:b1:ce:15:f7:2c:32:38:59: 7e:2f:22:71:58:21:cb:07:3a:fa:ab:80:26:99:bf: ea:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:C5:2D:D7:8A:60:6E:28:81:54:BB:1A:AB:9F:12:4C:68:CC:EF:0D X509v3 Authority Key Identifier: keyid:60:1E:F5:AD:27:C3:DC:0D:4D:98:2D:B6:BB:47:6C:06:CB:C7:00:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB71rSfD3A1NmC22u0dsBsvHAKA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:16:e3:fa:56:ca:76:9f:fa:ca:7b:6a:05:50:ec:35:76:49: c0:cf:60:a3:5a:3e:23:c2:6a:22:92:42:01:2b:69:48:d1:e2: fc:ae:b6:3d:d9:6e:fb:2d:8e:f0:ad:9b:2e:21:f2:5b:fa:39: 6c:b2:e6:28:76:2f:07:03:0b:6d:63:75:6b:b3:d2:30:b8:3e: 9a:78:e0:06:0f:a3:e3:29:c7:86:73:95:13:fe:0d:0b:73:02: 54:76:04:52:9f:f0:c6:49:97:17:ce:e5:4f:3b:fd:c4:a6:40: 1b:b5:69:64:2e:0b:fd:16:47:86:fd:4a:60:fb:d4:df:9b:a5: 34:3c:b6:4c:5c:5e:a8:1a:2c:e0:4c:ad:0e:11:41:e4:b1:69: 34:eb:5e:cb:7e:7d:e9:fe:64:4e:ea:2d:3d:e0:07:25:c5:78: 4e:1f:06:37:bb:35:10:67:74:00:55:a3:d9:2a:05:53:c1:59: 59:ac:2b:3f:e9:93:6a:52:bf:47:89:bc:04:cf:1b:67:16:4e: 3c:eb:94:04:d3:da:b2:fb:f9:82:0c:ad:9c:c1:c9:05:37:c5: a7:88:9d:4a:12:7a:60:20:24:e6:7b:2f:e4:f1:01:ab:87:58: d9:74:19:20:b8:e3:29:71:68:42:7f:96:03:a6:7a:3f:83:5c: eb:67:cb:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkZFNEUxMTAvBgNVBAUTKDYwMUVGNUFEMjdDM0RDMEQ0RDk4MkRCNkJCNDc2QzA2 Q0JDNzAwQTAwHhcNMjUwNzAxMDcxMDM3WhcNMjUwNzA4MDcxMDM3WjAYMRYwFAYD VQQDEw02ODYzODllZS1mMmQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5D4UajeCxkQwAJeBXIFO5DGKqb6DeMimesp/J+52jersDPkPK4JVhAlBaohQ ycdrfAhGdS+I/cqsyTO+j3BXuuZn4uZL2pEJznR5zzhZaKR3mGs5zAWelyaKT1by 9zLX5jur+3i0JxgVaydYZzXNJYmbuGKf6brTy/zcKCCviY49QH2Nfqm/YxYMO2KB Qzh+oaKsiv7oBJTT6p0UH/h4cCqBXinSPFz/wojAnRByym9VAXdqnvuAjbOKB0yO MvC4uzbECcaC/4+2cJs4RbjLKYE6otTnLMgOIULLBAbFzR9/9zNgqq7wsc4V9ywy OFl+LyJxWCHLBzr6q4Ammb/qdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLTFLdeK YG4ogVS7GqufEkxozO8NMB8GA1UdIwQYMBaAFGAe9a0nw9wNTZgttrtHbAbLxwCg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRkU0RS9EQTNENzFBODdC RTMxMUVGODhEOUM3NTNDNEY5QUUwMi9ZQjcxclNmRDNBMU5tQzIydTBkc0JzdkhB S0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lCNzFyU2ZEM0ExTm1DMjJ1MGRzQnN2SEFLQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RkU0RS9EQTNENzFBODdCRTMxMUVGODhEOUM3NTNDNEY5QUUwMi9ZQjcxclNmRDNB MU5tQzIydTBkc0JzdkhBS0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7FuP6Vsp2n/rKe2oFUOw1dknAz2CjWj4jwmoikkIBK2lI0eL8rrY9 2W77LY7wrZsuIfJb+jlssuYodi8HAwttY3Vrs9IwuD6aeOAGD6PjKceGc5UT/g0L cwJUdgRSn/DGSZcXzuVPO/3EpkAbtWlkLgv9FkeG/Upg+9Tfm6U0PLZMXF6oGizg TK0OEUHksWk0617Lfn3p/mRO6i094AclxXhOHwY3uzUQZ3QAVaPZKgVTwVlZrCs/ 6ZNqUr9HibwEzxtnFk4865QE09qy+/mCDK2cwckFN8WniJ1KEnpgICTmey/k8QGr h1jZdBkguOMpcWhCf5YDpno/g1zrZ8vx -----END CERTIFICATE-----Generated at Thu Jul 3 00:50:51 2025 by rpki-client