$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.mft File: y1McHsaSJfDcrkTOyl41mAzpwPI.mft (raw, json) Hash identifier: umD72BZYaUBTabESrNbYQ0MSk2qFiQ+1APayzXwbtnk= Subject key identifier: F7:43:37:8F:11:4E:8F:D3:E1:F7:C4:89:6F:3A:57:EC:31:88:62:5A Authority key identifier: CB:53:1C:1E:C6:92:25:F0:DC:AE:44:CE:CA:5E:35:98:0C:E9:C0:F2 Certificate issuer: /CN=A91CFFCB/serialNumber=CB531C1EC69225F0DCAE44CECA5E35980CE9C0F2 Certificate serial: 10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1McHsaSJfDcrkTOyl41mAzpwPI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.mft Manifest number: 0F Signing time: Sun 29 Jun 2025 07:05:59 +0000 Manifest this update: Sun 29 Jun 2025 07:05:58 +0000 Manifest next update: Sun 06 Jul 2025 07:05:58 +0000 Files and hashes: 1: y1McHsaSJfDcrkTOyl41mAzpwPI.crl (hash: bdFwIXSojpKlmR9qz5SW8nHaG5ECuVhAcd849VNKY5c=) 2: BB8F3118497B11F096DCA14EC4F9AE02.roa (hash: n0pGyYXueEy9F7Jw89IAbICySxf38MqDCZugETeFEBQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.crl rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1McHsaSJfDcrkTOyl41mAzpwPI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 06:03:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16 (0x10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFCB, serialNumber=CB531C1EC69225F0DCAE44CECA5E35980CE9C0F2 Validity Not Before: Jun 29 07:05:58 2025 GMT Not After : Jul 6 07:05:58 2025 GMT Subject: CN=6860e5d7-6799 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:1e:2e:c3:aa:58:a5:09:70:f6:6e:26:34:0c: 6b:43:20:17:26:a4:c5:da:98:a9:f9:09:db:89:3c: ff:61:8a:73:d8:95:0d:0b:d4:45:ce:44:37:21:4a: 8c:75:3a:ad:8c:a6:39:2e:4d:dd:63:5b:96:1e:02: e4:cc:4a:1a:20:8a:4a:d5:85:73:ec:a2:83:8e:c3: 1d:06:81:62:98:7a:24:65:d2:ba:00:61:14:8a:b6: 00:ef:2c:c5:26:43:bd:d8:51:69:80:85:61:a4:ce: d8:25:88:63:0c:9b:96:81:b9:8b:3c:1c:95:04:8b: 7c:ce:21:92:ed:d7:9c:c9:1a:66:9e:dd:10:48:db: 03:59:a7:1c:67:72:78:0f:19:0b:ed:9e:57:9a:2f: f6:41:97:a2:a6:e0:8c:0c:80:e7:e0:33:ad:5a:97: 17:2f:61:ff:b7:a5:5c:ff:5b:dd:58:fb:46:ec:9f: 6d:69:38:91:40:fb:cc:26:da:dd:cf:44:5f:c5:98: 57:43:61:c9:27:ad:28:9a:69:35:09:54:29:3b:e4: 49:8e:e3:11:30:cc:cb:e1:45:e9:cd:06:0e:3f:3b: da:ea:88:ad:f5:7f:d3:3c:d0:4a:7c:35:e0:02:82: d7:0b:62:29:a8:0f:73:d8:89:46:5a:f8:af:49:69: 3f:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:43:37:8F:11:4E:8F:D3:E1:F7:C4:89:6F:3A:57:EC:31:88:62:5A X509v3 Authority Key Identifier: keyid:CB:53:1C:1E:C6:92:25:F0:DC:AE:44:CE:CA:5E:35:98:0C:E9:C0:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1McHsaSJfDcrkTOyl41mAzpwPI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:80:8c:d2:12:67:dc:2a:f5:68:26:cc:fc:11:ab:27:3f:f1: f0:84:a3:5a:e1:85:27:06:7c:70:6b:96:69:a3:35:86:51:ad: 59:cf:d9:fc:b3:40:d3:46:d4:e5:71:23:25:04:8d:a0:c6:48: 3c:a8:4e:8c:fe:67:f4:69:32:fb:bd:41:58:5d:6a:97:b7:e3: e0:5d:81:15:23:60:7e:44:0f:af:16:0a:7c:a9:4d:8f:cb:1c: 1f:43:07:42:a6:55:d4:2c:54:df:cc:22:fa:50:53:bb:b5:e0: 52:b0:41:e6:dd:d6:7a:60:43:32:01:1b:c6:38:7a:3d:30:30: 31:a9:5a:5f:3d:90:1e:61:e0:c4:6b:41:96:08:d3:0d:84:c9: a5:63:10:d3:c8:59:30:a2:9f:fd:a0:ad:fd:6a:76:a9:3b:32: ee:0c:93:90:4f:69:fe:4c:2a:32:7d:3b:d0:1f:74:3d:2b:94: 6a:de:ea:b4:9c:e9:2b:92:53:d5:42:01:78:a4:f9:34:bb:89: cf:7f:67:fd:44:b8:cf:ca:fe:17:ac:99:e0:04:ab:de:a7:bf: a6:27:1e:5a:53:f4:cf:5b:eb:23:63:5d:ae:0f:c4:2d:ce:2b: e1:67:fa:6b:bc:88:3b:73:28:34:f3:10:36:03:d6:e3:71:2b: 84:f2:21:5c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RkZDQjExMC8GA1UEBRMoQ0I1MzFDMUVDNjkyMjVGMERDQUU0NENFQ0E1RTM1OTgw Q0U5QzBGMjAeFw0yNTA2MjkwNzA1NThaFw0yNTA3MDYwNzA1NThaMBgxFjAUBgNV BAMTDTY4NjBlNWQ3LTY3OTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxHi7DqlilCXD2biY0DGtDIBcmpMXamKn5CduJPP9hinPYlQ0L1EXORDchSox1 Oq2MpjkuTd1jW5YeAuTMShogikrVhXPsooOOwx0GgWKYeiRl0roAYRSKtgDvLMUm Q73YUWmAhWGkztgliGMMm5aBuYs8HJUEi3zOIZLt15zJGmae3RBI2wNZpxxncngP GQvtnleaL/ZBl6Km4IwMgOfgM61alxcvYf+3pVz/W91Y+0bsn21pOJFA+8wm2t3P RF/FmFdDYcknrSiaaTUJVCk75EmO4xEwzMvhRenNBg4/O9rqiK31f9M80Ep8NeAC gtcLYimoD3PYiUZa+K9JaT9hAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU90M3jxFO j9Ph98SJbzpX7DGIYlowHwYDVR0jBBgwFoAUy1McHsaSJfDcrkTOyl41mAzpwPIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNGRkNCL0Y1REI3QTE2NDIw NTExRjBCRjdBODcxMUM0RjlBRTAyL3kxTWNIc2FTSmZEY3JrVE95bDQxbUF6cHdQ SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveTFNY0hzYVNKZkRjcmtUT3lsNDFtQXpwd1BJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNG RkNCL0Y1REI3QTE2NDIwNTExRjBCRjdBODcxMUM0RjlBRTAyL3kxTWNIc2FTSmZE Y3JrVE95bDQxbUF6cHdQSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIOAjNISZ9wq9WgmzPwRqyc/8fCEo1rhhScGfHBrlmmjNYZRrVnP2fyz QNNG1OVxIyUEjaDGSDyoToz+Z/RpMvu9QVhdape34+BdgRUjYH5ED68WCnypTY/L HB9DB0KmVdQsVN/MIvpQU7u14FKwQebd1npgQzIBG8Y4ej0wMDGpWl89kB5h4MRr QZYI0w2EyaVjENPIWTCin/2grf1qdqk7Mu4Mk5BPaf5MKjJ9O9AfdD0rlGre6rSc 6SuSU9VCAXik+TS7ic9/Z/1EuM/K/hesmeAEq96nv6YnHlpT9M9b6yNjXa4PxC3O K+Fn+mu8iDtzKDTzEDYD1uNxK4TyIVw= -----END CERTIFICATE-----Generated at Sun Jun 29 13:36:04 2025 by rpki-client