$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft File: y_Kp2oisCPjVEG3svXLW-gnIGOk.mft (raw, json) Hash identifier: I3UmP1Z7JYBiTZTd4oNWwqHIglY8yDEniM5LL2rGSIA= Subject key identifier: 6F:77:30:92:56:A3:3F:DC:CC:C5:74:FB:3E:CB:AF:83:E9:93:97:D3 Authority key identifier: CB:F2:A9:DA:88:AC:08:F8:D5:10:6D:EC:BD:72:D6:FA:09:C8:18:E9 Certificate issuer: /CN=A91D5C25/serialNumber=CBF2A9DA88AC08F8D5106DECBD72D6FA09C818E9 Certificate serial: 0F33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft Manifest number: 0F2A Signing time: Wed 02 Jul 2025 17:49:27 +0000 Manifest this update: Wed 02 Jul 2025 17:49:26 +0000 Manifest next update: Wed 09 Jul 2025 17:49:26 +0000 Files and hashes: 1: y_Kp2oisCPjVEG3svXLW-gnIGOk.crl (hash: +sCX3dBjvnEE62TmsiIL1W9nBq7465sFsS87/hp/KVc=) 2: 4ECF0A4C765C11E9A01A6E34C4F9AE02.roa (hash: pLwEgd+VwWLgIg3V6a+yYMrZGmHsHcB345LFbQql9+8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.crl rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:49:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3891 (0xf33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5C25, serialNumber=CBF2A9DA88AC08F8D5106DECBD72D6FA09C818E9 Validity Not Before: Jul 2 17:49:26 2025 GMT Not After : Jul 9 17:49:26 2025 GMT Subject: CN=68657126-0414 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:46:a9:c5:ba:30:5b:78:d0:76:9f:6f:71:a9: 78:aa:9a:40:12:49:fd:44:d6:be:ce:cd:1f:de:81: 87:18:d1:b3:06:66:27:42:02:7b:34:5d:25:82:99: cc:fb:37:d0:9e:0b:2a:53:48:16:bb:fb:d7:d5:ae: 09:3f:cc:16:70:71:7d:8e:55:ee:5f:b3:11:46:cb: 9f:5d:2f:7f:82:c2:a3:2d:90:05:30:0c:2b:3e:43: 0c:07:4d:70:0d:57:73:a3:28:7c:61:ab:2c:d3:d5: 0b:80:8a:6f:62:e8:1b:18:e3:fa:a8:da:63:42:34: c1:f0:f5:b2:88:d3:05:b7:eb:4d:32:26:46:f3:31: 4d:4b:59:63:5b:67:0e:29:2c:df:b3:a5:52:f8:86: 17:f7:fd:17:0e:57:34:a3:8c:60:31:a3:c4:b7:ff: 7b:91:86:b9:35:46:e1:72:01:85:49:92:ab:17:e3: ca:cf:5a:ee:6e:ea:6a:39:11:24:53:f4:82:5e:66: ca:7a:dc:26:d4:4b:5b:71:ec:96:07:f9:14:34:3b: 33:9d:b8:52:22:18:7b:7f:8e:35:6f:40:ee:61:16: cf:b8:47:21:c1:8c:e3:49:38:38:4c:7e:d5:62:c2: 08:70:e4:06:e8:bb:8f:d5:0d:b8:13:fd:bf:5f:65: 3e:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:77:30:92:56:A3:3F:DC:CC:C5:74:FB:3E:CB:AF:83:E9:93:97:D3 X509v3 Authority Key Identifier: keyid:CB:F2:A9:DA:88:AC:08:F8:D5:10:6D:EC:BD:72:D6:FA:09:C8:18:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:5c:84:97:ff:bf:5c:67:54:95:ba:e4:a9:93:23:f7:c6:ca: 22:78:61:9a:12:37:6b:b7:f5:ec:4a:68:30:7b:12:ea:91:04: 83:c5:78:9e:06:a0:5e:c3:a0:8c:60:98:91:b4:74:c6:84:8b: 62:b1:79:b8:1c:d2:28:48:54:5b:18:81:2a:85:ac:69:30:36: 5c:af:1a:66:07:c6:a8:0f:3e:8e:16:6b:fd:e6:95:27:ff:2a: 30:45:8b:5d:ed:8a:77:79:76:d2:79:ac:97:13:9c:81:b5:7d: 3c:9c:31:15:19:aa:8e:31:dc:54:01:fa:ad:8a:49:32:6a:cf: 48:bd:2f:46:42:51:55:27:e6:6d:a0:bc:66:c5:4d:a4:5a:a9: 6a:b2:53:f2:1d:3b:bd:62:e1:4b:dd:54:5b:57:ce:c5:24:fa: 37:c5:1c:20:7c:d4:cc:1d:c2:2b:5c:41:26:ef:8e:04:69:a4: 5a:aa:7b:31:29:d7:9b:ce:4a:b4:7c:48:f4:6c:74:f7:88:94: 58:06:34:40:6d:d6:80:a3:e1:8b:70:ec:52:0c:bc:03:03:c5: ea:97:83:8e:b8:7a:ed:23:8d:b1:19:38:22:d5:6d:e9:ee:6b: 6d:3e:e8:eb:60:37:85:ab:23:d4:f2:c9:9d:bf:7e:46:3c:ea: 08:88:41:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVDMjUxMTAvBgNVBAUTKENCRjJBOURBODhBQzA4RjhENTEwNkRFQ0JENzJENkZB MDlDODE4RTkwHhcNMjUwNzAyMTc0OTI2WhcNMjUwNzA5MTc0OTI2WjAYMRYwFAYD VQQDEw02ODY1NzEyNi0wNDE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAokapxbowW3jQdp9vcal4qppAEkn9RNa+zs0f3oGHGNGzBmYnQgJ7NF0lgpnM +zfQngsqU0gWu/vX1a4JP8wWcHF9jlXuX7MRRsufXS9/gsKjLZAFMAwrPkMMB01w DVdzoyh8Yass09ULgIpvYugbGOP6qNpjQjTB8PWyiNMFt+tNMiZG8zFNS1ljW2cO KSzfs6VS+IYX9/0XDlc0o4xgMaPEt/97kYa5NUbhcgGFSZKrF+PKz1rubupqOREk U/SCXmbKetwm1EtbceyWB/kUNDsznbhSIhh7f441b0DuYRbPuEchwYzjSTg4TH7V YsIIcOQG6LuP1Q24E/2/X2U+kQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG93MJJW oz/czMV0+z7Lr4Ppk5fTMB8GA1UdIwQYMBaAFMvyqdqIrAj41RBt7L1y1voJyBjp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUMyNS82ODdBMTBBNjc2 NUExMUU5OUQwMUU0MkVDNEY5QUUwMi95X0twMm9pc0NQalZFRzNzdlhMVy1nbklH T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lfS3Ayb2lzQ1BqVkVHM3N2WExXLWduSUdPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUMyNS82ODdBMTBBNjc2NUExMUU5OUQwMUU0MkVDNEY5QUUwMi95X0twMm9pc0NQ alZFRzNzdlhMVy1nbklHT2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHXISX/79cZ1SVuuSpkyP3xsoieGGaEjdrt/XsSmgwexLqkQSDxXie BqBew6CMYJiRtHTGhItisXm4HNIoSFRbGIEqhaxpMDZcrxpmB8aoDz6OFmv95pUn /yowRYtd7Yp3eXbSeayXE5yBtX08nDEVGaqOMdxUAfqtikkyas9IvS9GQlFVJ+Zt oLxmxU2kWqlqslPyHTu9YuFL3VRbV87FJPo3xRwgfNTMHcIrXEEm744EaaRaqnsx Kdebzkq0fEj0bHT3iJRYBjRAbdaAo+GLcOxSDLwDA8Xql4OOuHrtI42xGTgi1W3p 7mttPujrYDeFqyPU8smdv35GPOoIiEGz -----END CERTIFICATE-----Generated at Thu Jul 3 18:08:08 2025 by rpki-client