$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft File: yoXhM8HiOWFMnFd4ARi9swlSjnY.mft (raw, json) Hash identifier: AA5fo3EqnA8RrG6yelT2ms3QaDSzGv2Skjd3sgIMNJk= Subject key identifier: D4:19:23:57:16:34:6E:F3:28:06:23:81:98:7C:05:85:41:01:F6:C0 Authority key identifier: CA:85:E1:33:C1:E2:39:61:4C:9C:57:78:01:18:BD:B3:09:52:8E:76 Certificate issuer: /CN=A91DC42E/serialNumber=CA85E133C1E239614C9C57780118BDB309528E76 Certificate serial: 07A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft Manifest number: 079D Signing time: Wed 02 Jul 2025 21:35:29 +0000 Manifest this update: Wed 02 Jul 2025 21:35:29 +0000 Manifest next update: Wed 09 Jul 2025 21:35:29 +0000 Files and hashes: 1: yoXhM8HiOWFMnFd4ARi9swlSjnY.crl (hash: ZuudZI4JZS66XznvTUktlzjI/x0IwJW6BLQmeaez0Do=) 2: 4AAD8CFE0D1E11EB83C9B637C4F9AE02.roa (hash: SKKgbqIxO8h2gMjhNkPa/ZI17L9sik+EpFHik6yG+pU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.crl rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 21:35:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1955 (0x7a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC42E, serialNumber=CA85E133C1E239614C9C57780118BDB309528E76 Validity Not Before: Jul 2 21:35:29 2025 GMT Not After : Jul 9 21:35:29 2025 GMT Subject: CN=6865a621-7f01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:86:f1:6f:1f:8d:e2:8e:12:9f:5b:ca:da:e5: 1c:08:1f:58:c9:ee:78:39:e9:06:8a:f6:73:cd:d6: ec:33:c0:24:3c:76:da:6f:e1:db:3b:75:ff:07:34: 11:96:5b:98:85:8b:2a:a2:22:a6:50:40:d7:e0:de: a3:97:1b:66:d0:5f:98:dd:f4:12:6a:f1:03:98:07: 20:bd:1f:84:40:b8:3c:66:dc:8d:f7:0c:18:c4:03: 5e:97:7a:9a:c0:8a:67:3d:fe:bd:69:3c:0a:57:b1: 95:e5:f6:f3:ef:9f:92:3e:06:20:17:68:2c:6c:d3: 75:6c:47:0f:d6:4f:e6:22:70:1d:f8:df:ad:d4:76: 49:4e:0b:c7:da:99:6a:d3:c7:69:bb:f2:d3:03:89: 99:c2:bf:a7:51:21:f7:19:d6:08:4e:a0:da:69:36: bf:fc:3e:13:a0:03:58:eb:8a:94:c1:65:bf:cf:10: ef:72:0c:40:a6:58:46:e9:c3:ed:6f:6b:de:2c:36: 2c:60:7a:bf:06:ce:b0:2e:ad:ef:7a:7d:21:47:34: b4:bd:b7:f8:f1:a5:04:66:16:c3:82:ce:21:9f:70: 68:90:40:0c:fc:f8:08:1e:1b:48:18:33:6c:55:46: 69:c5:f6:74:f8:1d:79:34:55:4e:55:55:c8:dd:1e: 6d:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:19:23:57:16:34:6E:F3:28:06:23:81:98:7C:05:85:41:01:F6:C0 X509v3 Authority Key Identifier: keyid:CA:85:E1:33:C1:E2:39:61:4C:9C:57:78:01:18:BD:B3:09:52:8E:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:ce:12:19:95:c6:ae:f6:10:d6:23:91:17:67:70:2b:4e:31: 1d:95:de:f0:99:2a:75:85:4d:b0:3f:5d:15:7b:8f:9a:e6:ad: a9:f0:d9:88:d5:91:86:aa:3a:07:e5:bb:b4:a8:9c:92:14:d4: 38:a6:04:0f:f6:a7:41:45:17:04:1b:d5:7c:aa:29:ed:3e:b3: 96:b9:b5:f3:53:79:ef:66:ad:e6:37:61:9a:8a:14:43:21:83: ab:c0:7d:5e:73:ee:95:0d:d8:3e:1c:f0:00:66:51:b6:30:04: df:03:fe:63:7d:f9:26:89:25:2f:ba:90:6e:5f:00:62:3b:f1: b3:98:2a:c7:da:cd:ba:56:53:03:73:d1:93:99:a9:47:a4:c7: 1c:7f:7e:98:0a:f2:3c:a2:41:02:8f:20:f0:a7:13:48:c5:d3: df:2d:63:f7:2d:70:df:81:d5:30:6b:14:f0:a8:23:17:0f:84: a1:ea:62:08:04:f9:41:18:dc:b6:31:04:0d:b5:57:a1:89:4a: f5:07:3d:fd:be:0b:c5:47:ca:1c:a1:97:af:8a:c8:c6:b5:30: d3:1c:e5:e6:97:3f:86:8d:e7:42:bb:19:8a:06:ac:66:f9:60: 06:c7:17:f9:80:e1:c3:d8:da:dd:09:68:f1:3a:66:3a:33:5d: 99:ec:87:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0MkUxMTAvBgNVBAUTKENBODVFMTMzQzFFMjM5NjE0QzlDNTc3ODAxMThCREIz MDk1MjhFNzYwHhcNMjUwNzAyMjEzNTI5WhcNMjUwNzA5MjEzNTI5WjAYMRYwFAYD VQQDEw02ODY1YTYyMS03ZjAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl4bxbx+N4o4Sn1vK2uUcCB9Yye54OekGivZzzdbsM8AkPHbab+HbO3X/BzQR lluYhYsqoiKmUEDX4N6jlxtm0F+Y3fQSavEDmAcgvR+EQLg8ZtyN9wwYxANel3qa wIpnPf69aTwKV7GV5fbz75+SPgYgF2gsbNN1bEcP1k/mInAd+N+t1HZJTgvH2plq 08dpu/LTA4mZwr+nUSH3GdYITqDaaTa//D4ToANY64qUwWW/zxDvcgxAplhG6cPt b2veLDYsYHq/Bs6wLq3ven0hRzS0vbf48aUEZhbDgs4hn3BokEAM/PgIHhtIGDNs VUZpxfZ0+B15NFVOVVXI3R5tSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNQZI1cW NG7zKAYjgZh8BYVBAfbAMB8GA1UdIwQYMBaAFMqF4TPB4jlhTJxXeAEYvbMJUo52 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzQyRS9ENkE3RkY0ODBE MTcxMUVCQTc0MUE1MEFDNEY5QUUwMi95b1hoTThIaU9XRk1uRmQ0QVJpOXN3bFNq blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lvWGhNOEhpT1dGTW5GZDRBUmk5c3dsU2puWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzQyRS9ENkE3RkY0ODBEMTcxMUVCQTc0MUE1MEFDNEY5QUUwMi95b1hoTThIaU9X Rk1uRmQ0QVJpOXN3bFNqblkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbzhIZlcau9hDWI5EXZ3ArTjEdld7wmSp1hU2wP10Ve4+a5q2p8NmI 1ZGGqjoH5bu0qJySFNQ4pgQP9qdBRRcEG9V8qintPrOWubXzU3nvZq3mN2GaihRD IYOrwH1ec+6VDdg+HPAAZlG2MATfA/5jffkmiSUvupBuXwBiO/GzmCrH2s26VlMD c9GTmalHpMccf36YCvI8okECjyDwpxNIxdPfLWP3LXDfgdUwaxTwqCMXD4Sh6mII BPlBGNy2MQQNtVehiUr1Bz39vgvFR8ocoZevisjGtTDTHOXmlz+GjedCuxmKBqxm +WAGxxf5gOHD2NrdCWjxOmY6M12Z7IdG -----END CERTIFICATE-----Generated at Fri Jul 4 00:21:15 2025 by rpki-client