$ rpki-client -vvf rpki.apnic.net/member_repository/A91D008B/49E62716D75F11EB9BD24B1DC4F9AE02/yC1GI7edxaBABywRKhur60QWBBw.mft File: yC1GI7edxaBABywRKhur60QWBBw.mft (raw, json) Hash identifier: sP/fgwNbxXhTJ4pp4qpv/ATtVmgMmMivdvckhz8P5MM= Subject key identifier: 91:7C:61:CF:AF:69:F3:3A:54:D6:5F:B1:1A:ED:82:D9:FA:0D:A0:75 Authority key identifier: C8:2D:46:23:B7:9D:C5:A0:40:07:2C:11:2A:1B:AB:EB:44:16:04:1C Certificate issuer: /CN=A91D008B/serialNumber=C82D4623B79DC5A040072C112A1BABEB4416041C Certificate serial: 059E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yC1GI7edxaBABywRKhur60QWBBw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D008B/49E62716D75F11EB9BD24B1DC4F9AE02/yC1GI7edxaBABywRKhur60QWBBw.mft Manifest number: 0598 Signing time: Wed 02 Jul 2025 23:29:22 +0000 Manifest this update: Wed 02 Jul 2025 23:29:21 +0000 Manifest next update: Wed 09 Jul 2025 23:29:21 +0000 Files and hashes: 1: yC1GI7edxaBABywRKhur60QWBBw.crl (hash: 7wBbs9czatHmYvbs8DFDdxsCyt57i1oGMDqhI0dEQJY=) 2: 469C2676D76111EB97EB721DC4F9AE02.roa (hash: OTs+qw3AvV3H1ENDQyiXHEhtKPRt4PABgjp0FWH4nzU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D008B/49E62716D75F11EB9BD24B1DC4F9AE02/yC1GI7edxaBABywRKhur60QWBBw.crl rsync://rpki.apnic.net/member_repository/A91D008B/49E62716D75F11EB9BD24B1DC4F9AE02/yC1GI7edxaBABywRKhur60QWBBw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yC1GI7edxaBABywRKhur60QWBBw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:29:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1438 (0x59e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D008B, serialNumber=C82D4623B79DC5A040072C112A1BABEB4416041C Validity Not Before: Jul 2 23:29:21 2025 GMT Not After : Jul 9 23:29:21 2025 GMT Subject: CN=6865c0d2-6155 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:df:49:24:12:d2:ab:9e:36:0e:b6:25:03:3b: ec:ff:22:f1:ec:cf:c7:b3:70:15:06:05:0e:bd:38: c0:35:3f:c7:b1:41:aa:4e:9f:b0:78:a7:40:98:4d: d8:e1:1d:01:91:e2:34:91:d0:a1:d0:7b:5b:15:ca: 5f:39:4c:31:b2:69:22:c0:32:b5:7f:8c:1d:ab:81: a4:41:9f:89:f0:d5:c8:42:47:e4:ab:70:c1:fc:84: 10:4a:f1:02:43:fd:bf:0c:a0:8f:b4:15:a3:28:cb: 58:17:e2:12:8e:28:83:a9:5c:70:90:17:9c:04:60: 40:8d:ed:f6:4e:ac:10:a0:79:a0:02:05:7c:fa:32: a4:89:34:88:a7:cd:dd:0b:33:16:4c:09:0d:ac:ba: b2:62:24:06:07:5a:74:88:26:ac:ef:a0:09:ce:b6: e5:2c:dc:f9:04:22:cf:eb:4b:6f:a5:b1:d3:fc:fe: 3e:3b:11:21:22:21:79:08:7c:f6:d0:bc:2f:e3:86: e1:18:93:00:d5:31:af:b5:e2:55:b7:0d:95:02:70: c2:fb:ab:17:71:7e:02:f5:72:9c:2f:80:08:47:b3: 56:62:cc:91:20:3e:31:0a:ab:5e:bb:a6:d5:4f:c7: 8a:d0:64:3a:10:fa:03:6e:c0:da:3d:ab:30:1b:6d: 17:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:7C:61:CF:AF:69:F3:3A:54:D6:5F:B1:1A:ED:82:D9:FA:0D:A0:75 X509v3 Authority Key Identifier: keyid:C8:2D:46:23:B7:9D:C5:A0:40:07:2C:11:2A:1B:AB:EB:44:16:04:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D008B/49E62716D75F11EB9BD24B1DC4F9AE02/yC1GI7edxaBABywRKhur60QWBBw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yC1GI7edxaBABywRKhur60QWBBw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D008B/49E62716D75F11EB9BD24B1DC4F9AE02/yC1GI7edxaBABywRKhur60QWBBw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:e0:a3:1b:57:3e:89:59:1b:f5:93:27:bc:bf:b4:61:c9:aa: 65:d6:bb:aa:14:47:56:02:bb:7b:ea:b4:ce:ea:3d:ca:c3:00: 6b:46:af:64:70:a9:3e:33:3c:8d:43:f9:f4:96:6c:b0:26:38: c2:ff:32:0e:8b:7c:f5:26:24:3a:3c:6b:29:29:59:d3:24:74: e1:64:4b:a9:3e:6e:f4:cd:27:81:3f:7b:ac:92:ab:71:23:43: 2b:02:3b:e0:21:e4:d2:56:67:ec:c5:35:3e:b0:03:d6:43:6c: 7f:33:5d:37:08:23:07:a7:95:ba:3f:a5:48:4e:56:2d:ac:81: c0:86:60:4a:48:90:a2:66:51:39:48:86:02:2c:6f:9e:dc:ca: 4a:3a:8d:f9:d2:2d:eb:79:26:09:e1:da:f4:26:de:cf:2b:bc: e6:0a:da:8f:9c:b9:94:9e:41:c3:a2:a6:b3:96:88:61:67:17: c3:38:36:78:d7:d2:3b:c9:fb:7c:71:96:cc:e2:dd:74:45:56: e2:ab:ac:41:bb:0b:87:05:27:64:28:82:09:3c:f0:bf:dd:1c: b2:49:db:92:dc:68:ff:42:90:aa:ec:84:9f:5f:46:66:58:b9: 01:5a:70:fe:06:1e:9e:0c:80:43:80:64:c6:cf:ef:a9:24:fe: 79:e8:d7:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDAwOEIxMTAvBgNVBAUTKEM4MkQ0NjIzQjc5REM1QTA0MDA3MkMxMTJBMUJBQkVC NDQxNjA0MUMwHhcNMjUwNzAyMjMyOTIxWhcNMjUwNzA5MjMyOTIxWjAYMRYwFAYD VQQDEw02ODY1YzBkMi02MTU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwd9JJBLSq542DrYlAzvs/yLx7M/Hs3AVBgUOvTjANT/HsUGqTp+weKdAmE3Y 4R0BkeI0kdCh0HtbFcpfOUwxsmkiwDK1f4wdq4GkQZ+J8NXIQkfkq3DB/IQQSvEC Q/2/DKCPtBWjKMtYF+ISjiiDqVxwkBecBGBAje32TqwQoHmgAgV8+jKkiTSIp83d CzMWTAkNrLqyYiQGB1p0iCas76AJzrblLNz5BCLP60tvpbHT/P4+OxEhIiF5CHz2 0Lwv44bhGJMA1TGvteJVtw2VAnDC+6sXcX4C9XKcL4AIR7NWYsyRID4xCqteu6bV T8eK0GQ6EPoDbsDaPaswG20XBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJF8Yc+v afM6VNZfsRrtgtn6DaB1MB8GA1UdIwQYMBaAFMgtRiO3ncWgQAcsESobq+tEFgQc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDA4Qi80OUU2MjcxNkQ3 NUYxMUVCOUJEMjRCMURDNEY5QUUwMi95QzFHSTdlZHhhQkFCeXdSS2h1cjYwUVdC QncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lDMUdJN2VkeGFCQUJ5d1JLaHVyNjBRV0JCdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MDA4Qi80OUU2MjcxNkQ3NUYxMUVCOUJEMjRCMURDNEY5QUUwMi95QzFHSTdlZHhh QkFCeXdSS2h1cjYwUVdCQncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAC4KMbVz6JWRv1kye8v7Rhyapl1ruqFEdWArt76rTO6j3KwwBrRq9k cKk+MzyNQ/n0lmywJjjC/zIOi3z1JiQ6PGspKVnTJHThZEupPm70zSeBP3uskqtx I0MrAjvgIeTSVmfsxTU+sAPWQ2x/M103CCMHp5W6P6VITlYtrIHAhmBKSJCiZlE5 SIYCLG+e3MpKOo350i3reSYJ4dr0Jt7PK7zmCtqPnLmUnkHDoqazlohhZxfDODZ4 19I7yft8cZbM4t10RVbiq6xBuwuHBSdkKIIJPPC/3RyySduS3Gj/QpCq7ISfX0Zm WLkBWnD+Bh6eDIBDgGTGz++pJP556Nfj -----END CERTIFICATE-----Generated at Fri Jul 4 14:46:21 2025 by rpki-client