$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft File: yCFQSaXsETZftnQLghcGdiaArRc.mft (raw, json) Hash identifier: WfIMMHpoasH2Vd/VOQU9c2VpBctjSVN3CkXGrRWHupw= Subject key identifier: 02:CC:B9:FC:81:47:F5:82:96:37:62:9F:26:C2:10:00:07:F8:3B:49 Authority key identifier: C8:21:50:49:A5:EC:11:36:5F:B6:74:0B:82:17:06:76:26:80:AD:17 Certificate issuer: /CN=A91DC459/serialNumber=C8215049A5EC11365FB6740B821706762680AD17 Certificate serial: E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft Manifest number: E5 Signing time: Tue 01 Jul 2025 05:57:31 +0000 Manifest this update: Tue 01 Jul 2025 05:57:30 +0000 Manifest next update: Tue 08 Jul 2025 05:57:30 +0000 Files and hashes: 1: yCFQSaXsETZftnQLghcGdiaArRc.crl (hash: yZbB620LexNp1VgRrgbg62AcHRZt0K15OCDq5EFfXMM=) 2: 264C45FAFA3F11EE8A884F09C4F9AE02.roa (hash: 5Qk7wqUj4bSez6DKvrGbvLq6LTkbYNIBEPZBlcBLEEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.crl rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 05:57:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 231 (0xe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC459, serialNumber=C8215049A5EC11365FB6740B821706762680AD17 Validity Not Before: Jul 1 05:57:30 2025 GMT Not After : Jul 8 05:57:30 2025 GMT Subject: CN=686378cb-04e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:43:ee:19:46:15:bb:31:37:83:a1:47:76:bf: 08:54:3e:b7:4a:6f:64:8e:4c:8f:11:42:47:64:53: ab:71:92:ba:5c:b3:43:df:d4:5a:82:7c:a1:96:b6: 3b:cc:a2:3a:b0:74:b5:00:b8:66:43:34:0b:f5:6a: b5:da:49:2e:d6:95:f8:73:1f:69:f1:f2:d7:39:c1: ba:19:cb:b6:27:ea:0a:1b:6c:dd:84:08:a7:56:17: 89:87:2a:63:6b:a4:b7:bf:62:0c:19:9f:fe:14:cf: 6a:86:a6:92:cd:c0:42:48:11:58:bc:d5:c5:7c:65: 01:78:3d:4e:86:b5:5b:94:b2:5c:37:39:48:85:ba: 1e:51:db:27:a8:41:3b:40:9a:dd:82:bd:c0:80:65: 94:cd:cb:d7:e5:b4:bb:a6:bf:56:65:94:e4:c2:fa: cb:f3:26:6c:eb:3b:ec:c6:91:c9:c2:13:90:31:4a: 53:21:0d:9e:df:5c:c4:6a:fa:e0:f9:da:bd:0a:fc: 7a:21:97:74:9f:44:74:68:08:35:50:43:36:1c:35: 1e:b8:ae:f0:d0:ac:b1:b7:e5:4a:1e:c6:5f:72:d8: cb:39:c9:aa:45:86:91:93:97:e6:2c:2f:c3:32:d9: 46:e9:d8:8e:37:70:69:c0:62:04:0f:36:e7:6c:fd: 8d:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:CC:B9:FC:81:47:F5:82:96:37:62:9F:26:C2:10:00:07:F8:3B:49 X509v3 Authority Key Identifier: keyid:C8:21:50:49:A5:EC:11:36:5F:B6:74:0B:82:17:06:76:26:80:AD:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:30:3c:65:2f:a2:b5:63:bb:d9:97:8f:9a:f3:ab:e6:bb:9d: 97:6e:7e:18:b0:8f:28:42:c6:e7:cc:cb:10:b3:f7:35:d7:7c: 2c:9f:07:69:3b:43:37:26:1d:d2:a4:61:ec:37:a6:17:ce:a4: ae:a2:89:21:4e:49:1c:c6:27:e7:80:40:a5:43:c3:b6:35:80: d7:8e:b3:fd:3f:0c:63:4a:0c:19:44:c8:1c:1a:08:0d:fd:76: d7:52:83:2a:eb:8b:1f:9d:89:fc:65:39:c3:07:66:a9:22:7d: 66:65:ce:37:55:50:17:24:19:88:15:a0:c9:1e:e1:0a:00:fb: bc:98:20:7c:3f:5a:dc:5a:1d:ca:1a:f1:ab:e9:04:39:17:48: 9a:eb:1d:1c:aa:a4:b8:f2:81:55:cb:2b:a9:10:0e:df:c3:6c: 3f:5b:1f:e6:34:80:6b:f0:ec:5d:8f:22:92:5c:a6:a4:10:65: 9d:78:e5:b4:8c:4b:c3:f7:75:c6:e6:7a:58:e4:53:8b:c6:98: 33:25:2c:82:c5:f2:54:ae:64:af:20:cb:1b:31:cb:97:79:9e: 84:d2:ab:55:9b:da:01:e7:d2:62:2e:e5:5e:a4:0f:15:b3:9b: 2d:47:dc:bc:39:2b:74:74:f1:03:44:4b:1b:e4:a8:45:52:cf: 27:e6:c6:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0NTkxMTAvBgNVBAUTKEM4MjE1MDQ5QTVFQzExMzY1RkI2NzQwQjgyMTcwNjc2 MjY4MEFEMTcwHhcNMjUwNzAxMDU1NzMwWhcNMjUwNzA4MDU1NzMwWjAYMRYwFAYD VQQDEw02ODYzNzhjYi0wNGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2kPuGUYVuzE3g6FHdr8IVD63Sm9kjkyPEUJHZFOrcZK6XLND39RagnyhlrY7 zKI6sHS1ALhmQzQL9Wq12kku1pX4cx9p8fLXOcG6Gcu2J+oKG2zdhAinVheJhypj a6S3v2IMGZ/+FM9qhqaSzcBCSBFYvNXFfGUBeD1OhrVblLJcNzlIhboeUdsnqEE7 QJrdgr3AgGWUzcvX5bS7pr9WZZTkwvrL8yZs6zvsxpHJwhOQMUpTIQ2e31zEavrg +dq9Cvx6IZd0n0R0aAg1UEM2HDUeuK7w0Kyxt+VKHsZfctjLOcmqRYaRk5fmLC/D MtlG6diON3BpwGIEDzbnbP2N8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFALMufyB R/WCljdinybCEAAH+DtJMB8GA1UdIwQYMBaAFMghUEml7BE2X7Z0C4IXBnYmgK0X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzQ1OS9BOTM1MDdCQ0Y2 RDUxMUVFQjg3ODNDMUVDNEY5QUUwMi95Q0ZRU2FYc0VUWmZ0blFMZ2hjR2RpYUFy UmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lDRlFTYVhzRVRaZnRuUUxnaGNHZGlhQXJSYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzQ1OS9BOTM1MDdCQ0Y2RDUxMUVFQjg3ODNDMUVDNEY5QUUwMi95Q0ZRU2FYc0VU WmZ0blFMZ2hjR2RpYUFyUmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6MDxlL6K1Y7vZl4+a86vmu52Xbn4YsI8oQsbnzMsQs/c113wsnwdp O0M3Jh3SpGHsN6YXzqSuookhTkkcxifngEClQ8O2NYDXjrP9PwxjSgwZRMgcGggN /XbXUoMq64sfnYn8ZTnDB2apIn1mZc43VVAXJBmIFaDJHuEKAPu8mCB8P1rcWh3K GvGr6QQ5F0ia6x0cqqS48oFVyyupEA7fw2w/Wx/mNIBr8OxdjyKSXKakEGWdeOW0 jEvD93XG5npY5FOLxpgzJSyCxfJUrmSvIMsbMcuXeZ6E0qtVm9oB59JiLuVepA8V s5stR9y8OSt0dPEDREsb5KhFUs8n5sap -----END CERTIFICATE-----Generated at Wed Jul 2 20:02:59 2025 by rpki-client