$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft File: YcuQhfAv-PpF5zL1gDQPQkngDKI.mft (raw, json) Hash identifier: AJFfnaJvWKYi8TGBf9UD6dti9AuBmKf5iWM9nGr+mRc= Subject key identifier: 5C:6C:5E:81:42:4E:FE:26:99:DE:98:8C:F8:6F:59:E4:E5:FB:DA:EA Authority key identifier: 61:CB:90:85:F0:2F:F8:FA:45:E7:32:F5:80:34:0F:42:49:E0:0C:A2 Certificate issuer: /CN=A91DCB25/serialNumber=61CB9085F02FF8FA45E732F580340F4249E00CA2 Certificate serial: 1194 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YcuQhfAv-PpF5zL1gDQPQkngDKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft Manifest number: 118B Signing time: Sat 28 Jun 2025 17:03:18 +0000 Manifest this update: Sat 28 Jun 2025 17:03:18 +0000 Manifest next update: Sat 05 Jul 2025 17:03:18 +0000 Files and hashes: 1: YcuQhfAv-PpF5zL1gDQPQkngDKI.crl (hash: vebl2nhKR5W4lt+5lWpfIIN95+QLhTmt5Cq9lPxZEyo=) 2: BDC1AB0AFDA611E88FA5E26DC4F9AE02.roa (hash: SB9Ipu4AFekvf7xWy+dJxrZfjpqZ4b1Xx/G1XVRpODY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.crl rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YcuQhfAv-PpF5zL1gDQPQkngDKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 17:03:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4500 (0x1194) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCB25, serialNumber=61CB9085F02FF8FA45E732F580340F4249E00CA2 Validity Not Before: Jun 28 17:03:18 2025 GMT Not After : Jul 5 17:03:18 2025 GMT Subject: CN=68602056-12b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:40:9a:96:a6:2a:3f:f6:df:98:89:e5:00:19: 01:4d:8b:8c:43:08:db:53:86:05:1a:82:27:0d:71: 16:88:1e:73:42:9c:a3:92:da:6d:ca:d2:80:ed:4a: 69:c1:68:50:35:6f:eb:a8:69:56:bc:ac:94:70:a1: 34:41:21:82:79:6b:d8:5e:bf:b7:7f:29:6e:4e:b0: d1:92:42:14:fd:12:02:f9:9d:f8:5c:fb:86:cb:09: c6:1f:1f:ed:16:aa:60:04:b4:42:4e:48:21:47:d9: e3:3b:07:59:56:dd:32:cf:bb:19:9d:0b:b5:c1:70: 42:07:40:9b:2d:3c:a9:90:5a:21:0b:74:0d:47:2a: 46:8f:05:ef:2b:62:24:76:28:8f:72:d8:35:06:74: f9:09:b2:d9:ea:75:7d:1f:72:cd:d2:ff:e9:1e:fd: 85:41:ac:e1:4c:fe:41:83:90:f2:00:9e:91:ce:e7: fd:67:75:5d:9a:a1:d2:9d:9a:8a:82:4b:d3:77:c6: 33:d1:64:e0:01:07:bf:79:cc:8e:11:a6:b1:ef:23: fb:d4:ea:fe:f5:86:f1:dc:42:dd:20:59:ad:39:6e: 97:6c:1e:d2:a0:a7:c7:be:9c:a0:a6:f9:e5:16:dc: 49:32:19:1b:22:6e:46:81:f2:2e:10:31:28:7a:25: ec:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:6C:5E:81:42:4E:FE:26:99:DE:98:8C:F8:6F:59:E4:E5:FB:DA:EA X509v3 Authority Key Identifier: keyid:61:CB:90:85:F0:2F:F8:FA:45:E7:32:F5:80:34:0F:42:49:E0:0C:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YcuQhfAv-PpF5zL1gDQPQkngDKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:18:8e:9c:28:e3:a4:cb:bd:64:28:7e:1c:73:19:81:14:80: e5:51:49:74:57:05:e6:fa:7c:a2:b4:48:0f:a2:d2:5e:71:80: 34:cc:37:17:d8:df:73:50:59:31:32:9e:37:10:f5:2e:73:58: 53:0c:f8:83:4a:35:51:f0:64:14:57:3f:46:35:bc:9c:b6:d5: 97:13:f5:43:57:39:32:1b:22:36:69:5e:8e:79:7a:28:45:48: 6a:3b:fb:54:2c:51:4c:a9:de:ed:55:47:4c:a3:31:f4:e9:c1: e8:58:da:01:b3:0e:b2:b2:34:49:a9:fc:a7:2a:62:fa:0a:3b: 21:31:dc:66:ff:6a:4d:09:30:8f:6f:ec:43:4f:8d:b7:fa:f1: 76:7b:b6:b6:1a:88:5b:cd:0a:fc:45:78:b7:97:26:e7:2c:aa: 31:3b:53:a0:37:5f:5b:e7:39:35:e7:b4:b6:1c:62:98:be:a5: cf:98:55:ca:82:38:3c:b9:51:7c:4a:cc:b3:fa:fd:3d:8e:09: 77:f4:b0:0b:e3:2d:a2:10:55:dd:30:a1:e3:b6:a2:05:8d:82: a9:f8:b3:41:bc:ea:28:9b:7e:72:db:fe:31:30:24:de:78:66: f0:71:e8:dd:8a:c4:fd:93:fc:5b:44:62:7d:73:ef:bc:9d:fc: 7b:fb:61:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENCMjUxMTAvBgNVBAUTKDYxQ0I5MDg1RjAyRkY4RkE0NUU3MzJGNTgwMzQwRjQy NDlFMDBDQTIwHhcNMjUwNjI4MTcwMzE4WhcNMjUwNzA1MTcwMzE4WjAYMRYwFAYD VQQDEw02ODYwMjA1Ni0xMmIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlkCalqYqP/bfmInlABkBTYuMQwjbU4YFGoInDXEWiB5zQpyjktptytKA7Upp wWhQNW/rqGlWvKyUcKE0QSGCeWvYXr+3fyluTrDRkkIU/RIC+Z34XPuGywnGHx/t FqpgBLRCTkghR9njOwdZVt0yz7sZnQu1wXBCB0CbLTypkFohC3QNRypGjwXvK2Ik diiPctg1BnT5CbLZ6nV9H3LN0v/pHv2FQazhTP5Bg5DyAJ6Rzuf9Z3VdmqHSnZqK gkvTd8Yz0WTgAQe/ecyOEaax7yP71Or+9Ybx3ELdIFmtOW6XbB7SoKfHvpygpvnl FtxJMhkbIm5GgfIuEDEoeiXs/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFxsXoFC Tv4mmd6YjPhvWeTl+9rqMB8GA1UdIwQYMBaAFGHLkIXwL/j6Recy9YA0D0JJ4Ayi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0IyNS8yQzYwREZEOEZE QTUxMUU4ODg1OUMwNkJDNEY5QUUwMi9ZY3VRaGZBdi1QcEY1ekwxZ0RRUFFrbmdE S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ljdVFoZkF2LVBwRjV6TDFnRFFQUWtuZ0RLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Q0IyNS8yQzYwREZEOEZEQTUxMUU4ODg1OUMwNkJDNEY5QUUwMi9ZY3VRaGZBdi1Q cEY1ekwxZ0RRUFFrbmdES0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyGI6cKOOky71kKH4ccxmBFIDlUUl0VwXm+nyitEgPotJecYA0zDcX 2N9zUFkxMp43EPUuc1hTDPiDSjVR8GQUVz9GNbycttWXE/VDVzkyGyI2aV6OeXoo RUhqO/tULFFMqd7tVUdMozH06cHoWNoBsw6ysjRJqfynKmL6CjshMdxm/2pNCTCP b+xDT423+vF2e7a2GohbzQr8RXi3lybnLKoxO1OgN19b5zk157S2HGKYvqXPmFXK gjg8uVF8Ssyz+v09jgl39LAL4y2iEFXdMKHjtqIFjYKp+LNBvOoom35y2/4xMCTe eGbwcejdisT9k/xbRGJ9c++8nfx7+2E6 -----END CERTIFICATE-----Generated at Mon Jun 30 14:41:03 2025 by rpki-client