$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.mft File: y4244fF7x3I0bdn_uyByz6j9plI.mft (raw, json) Hash identifier: dBbf+89pZVPNi0scIaHsrwiMlbdmvakAonIBbT+toLU= Subject key identifier: 8B:E5:9B:9C:A8:B0:FD:23:64:F5:F9:C2:D7:F5:4F:25:F4:01:D5:54 Authority key identifier: CB:8D:B8:E1:F1:7B:C7:72:34:6D:D9:FF:BB:20:72:CF:A8:FD:A6:52 Certificate issuer: /CN=A91DB7E9/serialNumber=CB8DB8E1F17BC772346DD9FFBB2072CFA8FDA652 Certificate serial: 0143 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y4244fF7x3I0bdn_uyByz6j9plI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.mft Manifest number: 0143 Signing time: Thu 03 Jul 2025 04:28:10 +0000 Manifest this update: Thu 03 Jul 2025 04:28:09 +0000 Manifest next update: Thu 10 Jul 2025 04:28:09 +0000 Files and hashes: 1: y4244fF7x3I0bdn_uyByz6j9plI.crl (hash: /3+6cjb2YBeUvndzmoCWI2jWnr9R8C+w70Bm/QAuWUM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.crl rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y4244fF7x3I0bdn_uyByz6j9plI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 323 (0x143) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB7E9, serialNumber=CB8DB8E1F17BC772346DD9FFBB2072CFA8FDA652 Validity Not Before: Jul 3 04:28:09 2025 GMT Not After : Jul 10 04:28:09 2025 GMT Subject: CN=686606da-6d2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:4f:81:69:f8:9d:3d:bf:d8:ee:88:0c:75:13: 39:1c:3a:47:da:f8:7c:27:1c:49:ce:14:70:80:39: 04:42:0b:62:65:ee:15:d7:10:65:b3:22:59:af:2c: 2f:16:7f:ce:65:72:dc:85:f9:a8:c9:f6:d0:9d:c1: 03:c6:3c:aa:d0:b2:c1:e9:92:74:8f:a3:c0:89:92: 26:02:15:5b:b5:4d:83:4d:91:a1:f1:84:88:4d:b3: 40:d7:5a:54:2a:ca:13:1a:4a:55:34:64:a9:9f:b7: 60:d5:02:a9:62:2c:aa:80:27:3e:b3:f4:24:d7:a7: ad:2e:20:e6:1d:5b:c9:39:f7:e5:51:2e:38:3a:a8: 38:f6:4f:87:cf:a3:f0:a8:ae:2b:f1:fc:31:d7:27: 75:20:e3:35:5f:be:f5:11:e5:33:c4:2b:06:76:2e: 85:bf:d2:38:9d:23:86:b1:55:c3:ec:ff:1a:83:02: 7e:f5:c4:a7:22:d5:8a:39:dc:b2:ca:42:71:76:d7: b6:ac:e6:30:66:40:ae:07:91:83:da:8e:f7:c6:f6: 34:74:ac:cf:32:29:89:95:0f:d5:18:c5:da:d5:73: d0:bc:d4:d4:90:23:56:12:b0:35:1e:5a:a9:38:70: e3:87:51:8f:1d:64:d0:53:a5:84:c3:45:6c:d4:a2: 47:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:E5:9B:9C:A8:B0:FD:23:64:F5:F9:C2:D7:F5:4F:25:F4:01:D5:54 X509v3 Authority Key Identifier: keyid:CB:8D:B8:E1:F1:7B:C7:72:34:6D:D9:FF:BB:20:72:CF:A8:FD:A6:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y4244fF7x3I0bdn_uyByz6j9plI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:0b:09:6a:ee:2e:d2:8e:13:12:1c:8a:37:57:1e:01:75:5a: 8e:56:02:de:a6:84:a7:f7:51:a3:4f:a0:9d:c4:7e:d5:af:24: 7d:5e:ae:2b:ee:b9:4b:83:53:ff:eb:3b:fe:d4:8a:04:19:ea: 1a:12:29:20:c6:28:3e:ed:b9:d2:92:a1:c3:24:84:25:dd:4c: 13:11:63:83:b3:26:aa:8b:7d:c6:97:f9:a2:31:19:05:2f:c0: 3f:ee:09:0d:2e:2b:ce:af:ad:e8:2f:4c:23:fc:b9:e9:ea:50: 65:df:39:15:99:90:e8:af:26:a1:97:41:af:e8:87:e5:32:e7: 57:38:3b:2a:27:1e:39:9b:c0:0c:ab:76:bf:0c:d7:a3:c1:86: 89:6b:73:0a:ab:67:ff:a9:be:68:98:8e:1e:0b:b9:a5:2d:d2: 96:55:bc:2d:40:a2:eb:51:a9:ca:cd:7c:14:87:04:32:8e:96: 74:41:5c:db:34:2d:66:40:cb:0f:19:cc:5b:d5:05:30:9d:de: 32:df:d7:02:01:09:67:0a:b1:93:1b:d1:b5:80:19:ec:56:db: fc:07:5b:ef:7b:43:ad:75:c4:3d:0c:5e:42:1a:28:a0:20:fd: cc:01:a7:5a:06:a0:73:2b:83:fb:db:e7:ff:52:42:45:db:95: d4:d3:b6:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI3RTkxMTAvBgNVBAUTKENCOERCOEUxRjE3QkM3NzIzNDZERDlGRkJCMjA3MkNG QThGREE2NTIwHhcNMjUwNzAzMDQyODA5WhcNMjUwNzEwMDQyODA5WjAYMRYwFAYD VQQDEw02ODY2MDZkYS02ZDJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwU+BafidPb/Y7ogMdRM5HDpH2vh8JxxJzhRwgDkEQgtiZe4V1xBlsyJZrywv Fn/OZXLchfmoyfbQncEDxjyq0LLB6ZJ0j6PAiZImAhVbtU2DTZGh8YSITbNA11pU KsoTGkpVNGSpn7dg1QKpYiyqgCc+s/Qk16etLiDmHVvJOfflUS44Oqg49k+Hz6Pw qK4r8fwx1yd1IOM1X771EeUzxCsGdi6Fv9I4nSOGsVXD7P8agwJ+9cSnItWKOdyy ykJxdte2rOYwZkCuB5GD2o73xvY0dKzPMimJlQ/VGMXa1XPQvNTUkCNWErA1Hlqp OHDjh1GPHWTQU6WEw0Vs1KJHiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIvlm5yo sP0jZPX5wtf1TyX0AdVUMB8GA1UdIwQYMBaAFMuNuOHxe8dyNG3Z/7sgcs+o/aZS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjdFOS9FMEM0NjEzMDZF MkUxMUVFODVEOTJEMzJDNEY5QUUwMi95NDI0NGZGN3gzSTBiZG5fdXlCeXo2ajlw bEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3k0MjQ0ZkY3eDNJMGJkbl91eUJ5ejZqOXBsSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjdFOS9FMEM0NjEzMDZFMkUxMUVFODVEOTJEMzJDNEY5QUUwMi95NDI0NGZGN3gz STBiZG5fdXlCeXo2ajlwbEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOCwlq7i7SjhMSHIo3Vx4BdVqOVgLepoSn91GjT6CdxH7VryR9Xq4r 7rlLg1P/6zv+1IoEGeoaEikgxig+7bnSkqHDJIQl3UwTEWODsyaqi33Gl/miMRkF L8A/7gkNLivOr63oL0wj/Lnp6lBl3zkVmZDoryahl0Gv6IflMudXODsqJx45m8AM q3a/DNejwYaJa3MKq2f/qb5omI4eC7mlLdKWVbwtQKLrUanKzXwUhwQyjpZ0QVzb NC1mQMsPGcxb1QUwnd4y39cCAQlnCrGTG9G1gBnsVtv8B1vve0OtdcQ9DF5CGiig IP3MAadaBqBzK4P72+f/UkJF25XU07aG -----END CERTIFICATE-----Generated at Fri Jul 4 00:27:25 2025 by rpki-client