$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft File: yq3LrMUbKkZS3XMHTygsM00BAnc.mft (raw, json) Hash identifier: TGcvURp8WNy50LQixDKndG6SQ2e0EzPy56xv8mLc3FM= Subject key identifier: 8B:8A:12:E3:B2:32:C0:96:69:4A:49:8B:0E:08:C4:0C:0B:72:B7:4E Authority key identifier: CA:AD:CB:AC:C5:1B:2A:46:52:DD:73:07:4F:28:2C:33:4D:01:02:77 Certificate issuer: /CN=A91DCCB3/serialNumber=CAADCBACC51B2A4652DD73074F282C334D010277 Certificate serial: 09AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yq3LrMUbKkZS3XMHTygsM00BAnc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft Manifest number: 09A9 Signing time: Mon 30 Jun 2025 20:10:28 +0000 Manifest this update: Mon 30 Jun 2025 20:10:28 +0000 Manifest next update: Mon 07 Jul 2025 20:10:28 +0000 Files and hashes: 1: yq3LrMUbKkZS3XMHTygsM00BAnc.crl (hash: a6UUefgRhKau2seWsxN1LeI4uan3Mh5wqocUmzAjY7M=) 2: 57EE11D0895D11EA81B43245C4F9AE02.roa (hash: LX76oihYc6Vcq0IqMjxINDxugVvobb/j/buf30BAPmQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.crl rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yq3LrMUbKkZS3XMHTygsM00BAnc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 20:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2479 (0x9af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCCB3, serialNumber=CAADCBACC51B2A4652DD73074F282C334D010277 Validity Not Before: Jun 30 20:10:28 2025 GMT Not After : Jul 7 20:10:28 2025 GMT Subject: CN=6862ef34-ab90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:a3:33:a5:43:68:7f:e9:92:ec:e5:73:97:55: a1:ff:38:09:c2:87:c3:70:9d:0a:52:de:96:d0:d5: 8a:f0:22:7a:70:40:b2:10:e2:c6:f8:e3:34:d7:e9: 28:b6:71:b7:6b:cc:2e:27:e6:84:e6:a3:65:9a:e8: 90:90:2e:73:27:34:bb:e6:a6:18:51:a9:f1:e5:8c: 5d:20:4c:06:ea:55:95:52:48:64:28:3c:c9:3a:d7: 52:71:2b:72:5b:ec:f0:15:61:c8:20:93:ce:fd:37: c6:dc:a0:c7:1b:ea:43:0f:96:4c:fc:3b:91:c4:3a: 58:2d:97:21:15:9a:73:4d:b7:3e:01:d5:10:70:14: 20:99:21:ff:f7:57:00:13:8d:80:fd:98:ca:0a:13: 30:d1:28:0d:e4:30:09:9c:4d:1a:6a:c9:59:19:ba: 6d:3b:b2:5e:94:a4:5d:01:bf:31:a1:a6:11:57:89: 89:8c:b7:ae:c1:24:95:40:8f:66:19:eb:37:fa:6d: af:8c:dc:3a:bd:b3:1b:36:e5:7c:1b:b4:d2:f2:3a: 35:4c:3d:65:59:74:c5:fa:40:79:52:45:8d:99:07: c7:75:97:0f:17:7f:7b:ff:b6:49:91:42:8e:38:69: d9:1e:8d:98:25:4d:b1:d3:7e:5c:98:4c:71:75:2a: ac:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:8A:12:E3:B2:32:C0:96:69:4A:49:8B:0E:08:C4:0C:0B:72:B7:4E X509v3 Authority Key Identifier: keyid:CA:AD:CB:AC:C5:1B:2A:46:52:DD:73:07:4F:28:2C:33:4D:01:02:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yq3LrMUbKkZS3XMHTygsM00BAnc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:29:57:46:cc:e8:76:03:ea:3f:94:db:49:60:cd:15:d3:d2: 70:5e:95:3f:e1:af:15:ce:55:77:87:1c:c6:e6:cc:32:40:2a: 93:13:b1:c6:af:99:58:86:e0:02:9b:c0:af:3c:81:34:2e:0f: c3:73:c9:cc:7a:4a:20:be:7d:ff:a6:5c:5b:66:8f:e1:69:b0: 9b:72:7a:b4:8e:5c:8d:a8:90:44:90:78:68:3d:11:90:18:d8: 49:7a:70:df:7f:f2:68:f9:de:41:a7:a1:60:0a:95:6c:8a:5c: a9:af:10:e8:30:c8:e4:95:a2:6d:d8:d8:a6:7f:a3:cf:44:e9: 8e:ab:6b:bc:1b:a1:0f:c0:21:05:22:e0:51:0c:d0:19:d5:a4: e1:c2:90:7f:6f:59:fa:17:a7:cf:4f:d9:4e:e5:f2:a1:99:c7: 03:13:5a:cb:ab:22:d7:4c:9e:0d:92:71:27:ea:99:36:9e:d1: 38:f5:8a:91:a2:64:20:e2:64:cf:93:0e:12:83:c3:47:2e:bb: 19:f2:e0:97:76:93:a5:ef:a4:1a:dd:d4:1e:45:47:f1:84:d9: ee:24:cd:71:6c:94:0e:b9:5e:94:76:83:47:e0:47:5d:a6:3d: bc:3f:03:2b:50:5f:09:52:1f:b4:23:e3:c5:e9:cf:a8:72:4d: fd:19:bc:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENDQjMxMTAvBgNVBAUTKENBQURDQkFDQzUxQjJBNDY1MkRENzMwNzRGMjgyQzMz NEQwMTAyNzcwHhcNMjUwNjMwMjAxMDI4WhcNMjUwNzA3MjAxMDI4WjAYMRYwFAYD VQQDEw02ODYyZWYzNC1hYjkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq6MzpUNof+mS7OVzl1Wh/zgJwofDcJ0KUt6W0NWK8CJ6cECyEOLG+OM01+ko tnG3a8wuJ+aE5qNlmuiQkC5zJzS75qYYUanx5YxdIEwG6lWVUkhkKDzJOtdScSty W+zwFWHIIJPO/TfG3KDHG+pDD5ZM/DuRxDpYLZchFZpzTbc+AdUQcBQgmSH/91cA E42A/ZjKChMw0SgN5DAJnE0aaslZGbptO7JelKRdAb8xoaYRV4mJjLeuwSSVQI9m Ges3+m2vjNw6vbMbNuV8G7TS8jo1TD1lWXTF+kB5UkWNmQfHdZcPF397/7ZJkUKO OGnZHo2YJU2x035cmExxdSqsbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIuKEuOy MsCWaUpJiw4IxAwLcrdOMB8GA1UdIwQYMBaAFMqty6zFGypGUt1zB08oLDNNAQJ3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0NCMy80MUZENjAxNjg5 NUMxMUVBODkwQzYzNDNDNEY5QUUwMi95cTNMck1VYktrWlMzWE1IVHlnc00wMEJB bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lxM0xyTVViS2taUzNYTUhUeWdzTTAwQkFuYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Q0NCMy80MUZENjAxNjg5NUMxMUVBODkwQzYzNDNDNEY5QUUwMi95cTNMck1VYktr WlMzWE1IVHlnc00wMEJBbmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpKVdGzOh2A+o/lNtJYM0V09JwXpU/4a8VzlV3hxzG5swyQCqTE7HG r5lYhuACm8CvPIE0Lg/Dc8nMekogvn3/plxbZo/habCbcnq0jlyNqJBEkHhoPRGQ GNhJenDff/Jo+d5Bp6FgCpVsilyprxDoMMjklaJt2Nimf6PPROmOq2u8G6EPwCEF IuBRDNAZ1aThwpB/b1n6F6fPT9lO5fKhmccDE1rLqyLXTJ4NknEn6pk2ntE49YqR omQg4mTPkw4Sg8NHLrsZ8uCXdpOl76Qa3dQeRUfxhNnuJM1xbJQOuV6UdoNH4Edd pj28PwMrUF8JUh+0I+PF6c+ock39Gbzn -----END CERTIFICATE-----Generated at Tue Jul 1 18:19:05 2025 by rpki-client