$ rpki-client -vvf rpki.apnic.net/member_repository/A91D46FD/59BF214E745111ECA9E9F858C4F9AE02/u99YzWESke9boarLayzE7VCwEVc.mft File: u99YzWESke9boarLayzE7VCwEVc.mft (raw, json) Hash identifier: pJoQfvJtUvXr6u434GRt/lj+XI4fZR6Lod2Cu45FJsY= Subject key identifier: 6C:00:3D:9B:9C:E7:CF:B8:12:D6:AC:95:6B:53:C3:7A:17:09:4A:21 Authority key identifier: BB:DF:58:CD:61:12:91:EF:5B:A1:AA:CB:6B:2C:C4:ED:50:B0:11:57 Certificate issuer: /CN=A91D46FD/serialNumber=BBDF58CD611291EF5BA1AACB6B2CC4ED50B01157 Certificate serial: 0440 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u99YzWESke9boarLayzE7VCwEVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D46FD/59BF214E745111ECA9E9F858C4F9AE02/u99YzWESke9boarLayzE7VCwEVc.mft Manifest number: 0427 Signing time: Sat 28 Jun 2025 23:58:40 +0000 Manifest this update: Sat 28 Jun 2025 23:58:39 +0000 Manifest next update: Sat 05 Jul 2025 23:58:39 +0000 Files and hashes: 1: u99YzWESke9boarLayzE7VCwEVc.crl (hash: W0peDMRE5C3sklQpbDl8aBXYjVDatm5KSk0zM+sp7RU=) 2: 08241A166B1111EE99759439C4F9AE02.roa (hash: ySASg3k7OY7oJkXL5Ws/83THPGLSCp+zucNat555hyg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D46FD/59BF214E745111ECA9E9F858C4F9AE02/u99YzWESke9boarLayzE7VCwEVc.crl rsync://rpki.apnic.net/member_repository/A91D46FD/59BF214E745111ECA9E9F858C4F9AE02/u99YzWESke9boarLayzE7VCwEVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u99YzWESke9boarLayzE7VCwEVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 23:58:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1088 (0x440) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D46FD, serialNumber=BBDF58CD611291EF5BA1AACB6B2CC4ED50B01157 Validity Not Before: Jun 28 23:58:39 2025 GMT Not After : Jul 5 23:58:39 2025 GMT Subject: CN=686081af-e9a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:8a:36:97:59:da:d2:4a:e6:54:1a:49:46:93: a8:17:60:ce:96:4f:25:b1:57:8f:53:88:93:67:82: 88:2a:da:7d:74:3c:95:99:ac:50:61:ec:70:2b:b3: e8:a8:6c:cf:0c:43:7d:f7:9b:f5:cc:49:72:40:6b: e2:b5:d5:90:ef:46:ce:71:56:cc:10:be:e0:4f:61: 86:f6:48:75:db:8c:4f:70:31:91:38:bc:24:56:8a: 56:91:07:48:a0:6e:fb:3f:cf:30:c7:d6:be:c1:b6: 75:4a:fe:a1:53:20:35:3b:bc:d4:7b:3b:6f:19:62: 56:e1:b3:04:74:1c:bb:33:f6:86:5a:48:a0:7e:a3: 82:62:c6:4e:ff:7f:37:4e:fc:d3:4b:ec:12:68:cc: da:96:25:b6:a7:97:07:fe:9e:bd:36:91:c1:9d:2f: e9:ee:6c:05:b4:3c:d2:af:22:0e:69:f4:6f:5b:db: 08:00:23:de:2a:bb:ce:f3:cc:83:0d:33:05:53:73: 0e:93:32:68:8f:10:32:ca:d0:91:70:11:45:b9:10: 74:5a:62:ab:af:05:dc:eb:90:88:81:3e:1f:41:b0: fa:be:03:46:c1:ac:52:80:40:cd:ca:63:f4:fe:af: c0:43:86:f6:92:0b:84:ff:e0:f7:a0:d2:ba:22:e0: 70:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:00:3D:9B:9C:E7:CF:B8:12:D6:AC:95:6B:53:C3:7A:17:09:4A:21 X509v3 Authority Key Identifier: keyid:BB:DF:58:CD:61:12:91:EF:5B:A1:AA:CB:6B:2C:C4:ED:50:B0:11:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D46FD/59BF214E745111ECA9E9F858C4F9AE02/u99YzWESke9boarLayzE7VCwEVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u99YzWESke9boarLayzE7VCwEVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D46FD/59BF214E745111ECA9E9F858C4F9AE02/u99YzWESke9boarLayzE7VCwEVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:09:39:a8:6e:31:9b:3c:37:93:a7:c6:9c:c9:44:39:95:13: 88:c4:1b:a4:97:37:84:7f:f0:96:c2:e1:72:48:92:18:8d:db: bb:d2:76:7f:1b:49:4a:28:1f:29:bd:4e:10:c4:22:b7:74:98: 68:69:6c:20:07:38:4e:4e:3b:c9:d1:62:c1:a2:3b:93:bd:76: 2f:61:10:a3:7a:81:67:33:81:61:8d:b6:1b:51:24:2e:92:2d: dc:ed:bd:3c:ff:7d:e8:11:df:78:27:75:a0:dc:1e:f0:69:c5: b8:d7:44:9c:56:d6:4b:21:02:0e:a9:97:b6:75:c4:79:42:49: e4:2c:d8:ed:93:24:53:cc:ac:39:e4:43:9a:94:40:63:8b:57: ce:87:d0:fe:af:a9:3e:02:59:cc:d1:51:bf:11:a6:8f:0d:50: db:8d:eb:b7:72:24:ad:a6:d7:eb:2b:e6:57:ab:39:bd:9c:3c: a2:29:1f:12:99:04:34:ce:8d:6a:a4:c7:f1:ef:6a:0f:10:26: 0b:c6:81:67:72:22:ee:2f:88:8c:0b:32:48:a0:84:ea:60:d1: d6:94:cf:d6:88:a9:17:c2:22:56:e3:2a:f8:a3:32:7c:ec:ea: 1d:f9:c6:62:3c:72:a7:1b:88:c2:37:00:cc:2a:33:48:aa:f6: 41:f1:13:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ2RkQxMTAvBgNVBAUTKEJCREY1OENENjExMjkxRUY1QkExQUFDQjZCMkNDNEVE NTBCMDExNTcwHhcNMjUwNjI4MjM1ODM5WhcNMjUwNzA1MjM1ODM5WjAYMRYwFAYD VQQDEw02ODYwODFhZi1lOWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm4o2l1na0krmVBpJRpOoF2DOlk8lsVePU4iTZ4KIKtp9dDyVmaxQYexwK7Po qGzPDEN995v1zElyQGvitdWQ70bOcVbMEL7gT2GG9kh124xPcDGROLwkVopWkQdI oG77P88wx9a+wbZ1Sv6hUyA1O7zUeztvGWJW4bMEdBy7M/aGWkigfqOCYsZO/383 TvzTS+wSaMzaliW2p5cH/p69NpHBnS/p7mwFtDzSryIOafRvW9sIACPeKrvO88yD DTMFU3MOkzJojxAyytCRcBFFuRB0WmKrrwXc65CIgT4fQbD6vgNGwaxSgEDNymP0 /q/AQ4b2kguE/+D3oNK6IuBwNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGwAPZuc 58+4EtaslWtTw3oXCUohMB8GA1UdIwQYMBaAFLvfWM1hEpHvW6Gqy2ssxO1QsBFX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDZGRC81OUJGMjE0RTc0 NTExMUVDQTlFOUY4NThDNEY5QUUwMi91OTlZeldFU2tlOWJvYXJMYXl6RTdWQ3dF VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U5OVl6V0VTa2U5Ym9hckxheXpFN1ZDd0VWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDZGRC81OUJGMjE0RTc0NTExMUVDQTlFOUY4NThDNEY5QUUwMi91OTlZeldFU2tl OWJvYXJMYXl6RTdWQ3dFVmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMCTmobjGbPDeTp8acyUQ5lROIxBuklzeEf/CWwuFySJIYjdu70nZ/ G0lKKB8pvU4QxCK3dJhoaWwgBzhOTjvJ0WLBojuTvXYvYRCjeoFnM4FhjbYbUSQu ki3c7b08/33oEd94J3Wg3B7wacW410ScVtZLIQIOqZe2dcR5QknkLNjtkyRTzKw5 5EOalEBji1fOh9D+r6k+AlnM0VG/EaaPDVDbjeu3ciStptfrK+ZXqzm9nDyiKR8S mQQ0zo1qpMfx72oPECYLxoFnciLuL4iMCzJIoITqYNHWlM/WiKkXwiJW4yr4ozJ8 7Ood+cZiPHKnG4jCNwDMKjNIqvZB8RN+ -----END CERTIFICATE-----Generated at Sun Jun 29 21:05:54 2025 by rpki-client