$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft File: Yt3ChdqLPiCesA6qNnGEXaps8oY.mft (raw, json) Hash identifier: ExfvvFIKMULYzqk7RiPpPI/85xl7QzRxbR4+/MLW3CE= Subject key identifier: B6:AA:29:79:ED:5D:6B:E7:AF:27:18:2F:9D:E2:9A:F6:E5:85:2A:39 Authority key identifier: 62:DD:C2:85:DA:8B:3E:20:9E:B0:0E:AA:36:71:84:5D:AA:6C:F2:86 Certificate issuer: /CN=A91CE5A6/serialNumber=62DDC285DA8B3E209EB00EAA3671845DAA6CF286 Certificate serial: 0156 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft Manifest number: 0150 Signing time: Thu 03 Jul 2025 04:18:30 +0000 Manifest this update: Thu 03 Jul 2025 04:18:29 +0000 Manifest next update: Thu 10 Jul 2025 04:18:29 +0000 Files and hashes: 1: Yt3ChdqLPiCesA6qNnGEXaps8oY.crl (hash: jyXuZuSx2YZSYKKU31dHdhCilfLa4F+8c98mD+PCx18=) 2: 64120230B2C211EFA43BF057C4F9AE02.roa (hash: 9h3davUQ9pNDA3U7SYojAK+YEhrIBkhT56ukToleizY=) 3: 3B8DEFBCB2CD11EFBEB6A532C4F9AE02.roa (hash: DgTHE1vd+LuLJ/6bYp2I4wVbGI057+J0uGiHNmi5Ok4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.crl rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 342 (0x156) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE5A6, serialNumber=62DDC285DA8B3E209EB00EAA3671845DAA6CF286 Validity Not Before: Jul 3 04:18:29 2025 GMT Not After : Jul 10 04:18:29 2025 GMT Subject: CN=68660496-7049 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a6:e0:87:bb:5a:fd:91:38:ad:de:5e:cb:4f: c7:58:55:b7:de:b6:45:d7:73:b8:46:c4:81:5a:04: 31:85:77:3b:2e:91:de:75:e4:ca:99:d5:07:d2:d4: 56:61:2b:52:38:24:55:83:d9:79:f7:c0:03:e8:22: 05:81:d5:72:35:e1:04:e0:12:60:4b:d5:20:ef:18: a7:7a:ef:2f:d8:a9:53:13:ee:bf:08:b4:c6:f8:ff: 99:f4:ff:50:45:e0:af:c0:4c:54:46:9c:97:65:1f: 57:54:c4:6e:9f:a1:ce:68:23:3d:d0:69:87:bb:12: 01:43:ba:50:98:20:f7:8f:7c:e7:d3:bd:4a:78:5d: 81:15:e6:f3:35:5a:ad:f5:be:17:38:b6:0f:28:e5: b7:ce:cd:80:ac:05:57:88:15:03:3c:1a:17:74:d3: e4:3f:8a:06:68:a1:17:7a:52:22:c9:74:90:67:4f: 40:f8:65:23:e5:fc:2a:82:b1:ba:23:7d:b2:37:09: e0:c6:17:c6:05:21:d9:b0:bf:35:c2:aa:cd:a7:1c: 4b:03:ae:79:90:a2:61:74:2f:75:69:13:4e:d0:44: c0:f3:4c:2e:b9:42:d2:f9:7f:c5:e7:98:e2:5e:b3: 26:c0:f6:15:f8:21:01:b5:31:43:9d:95:08:7d:ad: a6:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:AA:29:79:ED:5D:6B:E7:AF:27:18:2F:9D:E2:9A:F6:E5:85:2A:39 X509v3 Authority Key Identifier: keyid:62:DD:C2:85:DA:8B:3E:20:9E:B0:0E:AA:36:71:84:5D:AA:6C:F2:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:9d:ed:b5:bf:8a:1e:81:0a:5a:d6:86:57:62:e5:76:2b:5d: fc:9b:c0:e9:d7:4c:26:df:b9:ee:68:9d:92:f6:b1:51:38:52: f7:a4:08:52:1b:db:81:6a:65:cd:78:f7:d6:58:3f:3c:99:f8: 23:b5:d2:9a:7d:2b:80:4f:18:f7:e9:d3:a5:26:74:f9:39:ac: 3d:78:70:a3:06:ac:7e:80:fa:36:b0:e8:9f:3d:1d:35:c9:9e: f5:97:e0:99:6e:f3:39:65:f7:50:ed:d7:77:05:85:53:af:04: ba:b6:1b:04:c9:87:e7:d4:b2:99:2a:6a:6a:e9:ae:1a:58:a6: 74:45:e4:d1:3d:0a:45:16:ed:1a:dd:41:cd:5f:f3:38:85:b4: 7a:e3:44:b3:32:bc:95:a1:94:69:15:c8:ad:f5:ca:24:93:6d: 8d:c1:f6:df:df:54:09:2c:69:50:c4:72:e2:ab:cb:66:b6:45: 70:fa:52:79:28:d8:15:0f:43:0d:e1:19:d2:f0:9d:6b:5b:cd: 6e:6f:1b:f0:38:c7:5e:76:94:c3:38:78:aa:f4:cc:3a:57:54: 84:b1:e1:e1:33:e5:4b:28:d9:16:16:b7:f9:68:a0:37:6e:f0: cf:fc:ff:c8:00:fe:f3:1d:77:11:b7:d3:9b:75:99:7e:99:2f: f8:e5:4e:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1QTYxMTAvBgNVBAUTKDYyRERDMjg1REE4QjNFMjA5RUIwMEVBQTM2NzE4NDVE QUE2Q0YyODYwHhcNMjUwNzAzMDQxODI5WhcNMjUwNzEwMDQxODI5WjAYMRYwFAYD VQQDEw02ODY2MDQ5Ni03MDQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwqbgh7ta/ZE4rd5ey0/HWFW33rZF13O4RsSBWgQxhXc7LpHedeTKmdUH0tRW YStSOCRVg9l598AD6CIFgdVyNeEE4BJgS9Ug7xineu8v2KlTE+6/CLTG+P+Z9P9Q ReCvwExURpyXZR9XVMRun6HOaCM90GmHuxIBQ7pQmCD3j3zn071KeF2BFebzNVqt 9b4XOLYPKOW3zs2ArAVXiBUDPBoXdNPkP4oGaKEXelIiyXSQZ09A+GUj5fwqgrG6 I32yNwngxhfGBSHZsL81wqrNpxxLA655kKJhdC91aRNO0ETA80wuuULS+X/F55ji XrMmwPYV+CEBtTFDnZUIfa2mwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLaqKXnt XWvnrycYL53imvblhSo5MB8GA1UdIwQYMBaAFGLdwoXaiz4gnrAOqjZxhF2qbPKG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTVBNi9BQUIzM0U0QzVC M0YxMUVFOEYxRDNENkVDNEY5QUUwMi9ZdDNDaGRxTFBpQ2VzQTZxTm5HRVhhcHM4 b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1l0M0NoZHFMUGlDZXNBNnFObkdFWGFwczhvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTVBNi9BQUIzM0U0QzVCM0YxMUVFOEYxRDNENkVDNEY5QUUwMi9ZdDNDaGRxTFBp Q2VzQTZxTm5HRVhhcHM4b1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHne21v4oegQpa1oZXYuV2K138m8Dp10wm37nuaJ2S9rFROFL3pAhS G9uBamXNePfWWD88mfgjtdKafSuATxj36dOlJnT5Oaw9eHCjBqx+gPo2sOifPR01 yZ71l+CZbvM5ZfdQ7dd3BYVTrwS6thsEyYfn1LKZKmpq6a4aWKZ0ReTRPQpFFu0a 3UHNX/M4hbR640SzMryVoZRpFcit9cokk22Nwfbf31QJLGlQxHLiq8tmtkVw+lJ5 KNgVD0MN4RnS8J1rW81ubxvwOMdedpTDOHiq9Mw6V1SEseHhM+VLKNkWFrf5aKA3 bvDP/P/IAP7zHXcRt9ObdZl+mS/45U5c -----END CERTIFICATE-----Generated at Fri Jul 4 10:03:43 2025 by rpki-client