$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft File: y8ZgM3D76EzM4GToT08m7b7CZ7E.mft (raw, json) Hash identifier: X0AHjM5UEiPJvFzW2C1v1btlL6tBpVvxlP29hxM+m4w= Subject key identifier: 22:79:37:8B:66:14:E8:8C:B1:20:84:14:7B:36:39:54:55:64:2E:04 Authority key identifier: CB:C6:60:33:70:FB:E8:4C:CC:E0:64:E8:4F:4F:26:ED:BE:C2:67:B1 Certificate issuer: /CN=A91D9CA8/serialNumber=CBC6603370FBE84CCCE064E84F4F26EDBEC267B1 Certificate serial: 64 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft Manifest number: 59 Signing time: Thu 03 Jul 2025 07:33:32 +0000 Manifest this update: Thu 03 Jul 2025 07:33:32 +0000 Manifest next update: Thu 10 Jul 2025 07:33:32 +0000 Files and hashes: 1: y8ZgM3D76EzM4GToT08m7b7CZ7E.crl (hash: jP/U1W76Zv/1qCBcX8N3SFPMCt5aF7w2hE18kAW/9tI=) 2: 459A40A0399111F0B589186BC4F9AE02.roa (hash: m6LxhqSKzKitfbLvhayOz3v+ioNxwddzbxWryqPlX6o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.crl rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 100 (0x64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9CA8, serialNumber=CBC6603370FBE84CCCE064E84F4F26EDBEC267B1 Validity Not Before: Jul 3 07:33:32 2025 GMT Not After : Jul 10 07:33:32 2025 GMT Subject: CN=6866324c-7de5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:8e:50:af:41:7d:a8:46:50:65:6d:88:0d:c8: ca:c4:38:81:4a:5d:21:83:ab:6b:de:ba:5b:45:75: f6:7c:85:d3:17:41:86:cd:1b:c6:c8:2e:fe:e5:d2: 6c:e8:49:98:8c:7e:f6:91:e7:6c:34:67:77:fe:33: 13:64:bf:e9:0e:72:33:31:20:48:bc:be:78:e4:05: f4:0e:b2:d0:67:01:2e:a4:9b:80:6c:cb:4c:88:a9: 76:cc:03:8b:04:20:e5:e0:57:4d:ac:ea:94:97:35: 5d:41:23:73:b8:29:5a:03:ab:c2:4e:73:fe:e4:70: c3:a5:19:61:8a:fa:0e:a2:2e:27:48:ca:cd:ab:ce: a9:7c:ed:d1:f8:6c:0b:89:a0:07:6d:12:98:af:ae: b3:90:49:47:d9:90:bc:db:24:66:46:0c:d7:c7:7b: 48:c6:bf:b8:e3:f2:b3:e8:fd:6b:ac:5c:10:20:ee: f9:79:e6:8a:bb:e8:e1:5d:b5:e5:83:0a:ca:87:c5: 40:57:56:f0:34:12:2d:d1:86:e8:2a:40:23:43:c0: f2:80:ee:40:ec:4d:6e:c4:24:ad:a1:9d:6d:1d:41: c8:74:dc:40:87:6c:10:c9:82:02:b9:97:c9:29:22: 89:2a:07:69:01:6e:32:c9:d9:f2:6e:ac:cb:eb:32: 54:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:79:37:8B:66:14:E8:8C:B1:20:84:14:7B:36:39:54:55:64:2E:04 X509v3 Authority Key Identifier: keyid:CB:C6:60:33:70:FB:E8:4C:CC:E0:64:E8:4F:4F:26:ED:BE:C2:67:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:58:4b:f0:02:86:84:bc:0b:fb:79:8c:b7:2c:1d:28:a4:96: 87:ea:bb:09:df:ab:03:ba:1d:f4:3a:91:10:87:41:c6:4c:50: a9:84:58:55:ee:1a:f6:e4:0c:0e:78:0c:4a:31:90:2d:26:85: 1e:d1:97:dc:1a:51:a0:94:48:06:fb:32:e1:2d:7b:19:b1:f0: 8b:21:9f:c5:ca:92:05:a8:87:1f:aa:f9:33:27:7a:bb:1f:9e: 82:19:70:19:e0:1d:22:56:bb:04:f0:d7:7f:21:77:77:59:51: 29:71:4f:a5:e8:39:06:4b:45:98:43:3c:27:8b:46:72:d8:b8: ba:d1:b6:cd:cf:43:b8:46:dc:13:cb:eb:4d:10:47:18:0c:00: c5:f2:72:d2:52:96:58:15:3d:7a:c2:9e:08:c0:cc:9c:4b:01: b9:4d:a5:b4:92:15:97:f1:f4:79:69:1b:3c:a8:7a:8e:b1:0e: 4a:38:3b:cb:5e:61:0c:c1:e0:29:e7:df:24:43:37:bc:6d:85: 06:e8:22:4e:65:7b:89:1b:21:60:b7:fd:98:74:1d:33:cf:09: e7:d0:8f:cc:0c:63:cb:36:26:89:60:20:4e:0d:c8:cc:32:bd: d4:c3:2b:6b:76:fd:d2:92:29:51:81:a7:f3:ca:a0:18:58:d5: 96:46:8d:63 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE OUNBODExMC8GA1UEBRMoQ0JDNjYwMzM3MEZCRTg0Q0NDRTA2NEU4NEY0RjI2RURC RUMyNjdCMTAeFw0yNTA3MDMwNzMzMzJaFw0yNTA3MTAwNzMzMzJaMBgxFjAUBgNV BAMTDTY4NjYzMjRjLTdkZTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIjlCvQX2oRlBlbYgNyMrEOIFKXSGDq2veultFdfZ8hdMXQYbNG8bILv7l0mzo SZiMfvaR52w0Z3f+MxNkv+kOcjMxIEi8vnjkBfQOstBnAS6km4Bsy0yIqXbMA4sE IOXgV02s6pSXNV1BI3O4KVoDq8JOc/7kcMOlGWGK+g6iLidIys2rzql87dH4bAuJ oAdtEpivrrOQSUfZkLzbJGZGDNfHe0jGv7jj8rPo/WusXBAg7vl55oq76OFdteWD CsqHxUBXVvA0Ei3RhugqQCNDwPKA7kDsTW7EJK2hnW0dQch03ECHbBDJggK5l8kp IokqB2kBbjLJ2fJurMvrMlRxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUInk3i2YU 6IyxIIQUezY5VFVkLgQwHwYDVR0jBBgwFoAUy8ZgM3D76EzM4GToT08m7b7CZ7Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5Q0E4LzIwREEyNzQ2RTRG RDExRUZBQzFDRTY3RkM0RjlBRTAyL3k4WmdNM0Q3NkV6TTRHVG9UMDhtN2I3Q1o3 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIveThaZ00zRDc2RXpNNEdUb1QwOG03YjdDWjdFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5 Q0E4LzIwREEyNzQ2RTRGRDExRUZBQzFDRTY3RkM0RjlBRTAyL3k4WmdNM0Q3NkV6 TTRHVG9UMDhtN2I3Q1o3RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFJYS/AChoS8C/t5jLcsHSiklofquwnfqwO6HfQ6kRCHQcZMUKmEWFXu GvbkDA54DEoxkC0mhR7Rl9waUaCUSAb7MuEtexmx8Ishn8XKkgWohx+q+TMnersf noIZcBngHSJWuwTw138hd3dZUSlxT6XoOQZLRZhDPCeLRnLYuLrRts3PQ7hG3BPL 600QRxgMAMXyctJSllgVPXrCngjAzJxLAblNpbSSFZfx9HlpGzyoeo6xDko4O8te YQzB4Cnn3yRDN7xthQboIk5le4kbIWC3/Zh0HTPPCefQj8wMY8s2JolgIE4NyMwy vdTDK2t2/dKSKVGBp/PKoBhY1ZZGjWM= -----END CERTIFICATE-----Generated at Fri Jul 4 06:17:34 2025 by rpki-client