$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft File: 0ypa3AVCwugXwgK-a3KB6GnReJc.mft (raw, json) Hash identifier: xW/q1tSaI5YQWwxxt7KJoj3ROUWLuAihq6MLANtvU/U= Subject key identifier: DD:1E:BB:40:85:3C:86:E8:53:07:4E:83:59:E5:95:4B:B1:03:EF:36 Authority key identifier: D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97 Certificate issuer: /CN=A91E0855/serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897 Certificate serial: B9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft Manifest number: B6 Signing time: Fri 04 Jul 2025 09:31:28 +0000 Manifest this update: Fri 04 Jul 2025 09:31:27 +0000 Manifest next update: Fri 11 Jul 2025 09:31:27 +0000 Files and hashes: 1: 0ypa3AVCwugXwgK-a3KB6GnReJc.crl (hash: 3621DNZSBtju6USnFF0KrTk9J5dOdvMAj6hnWSosIgg=) 2: 1818952C8D5811EFAD3A5D3BC4F9AE02.roa (hash: tKSHJqdsSmpGgJzA0ThHFbJCNwhgg/q9aM0ZWxNfpP8=) 3: 30C3ECA444B811EF8C81962AC4F9AE02.roa (hash: YRkHlOrrGzxXTEGbxmwj8yAFxeMrCPHch9CuERcM2OI=) 4: A717F73658B911F085B39880C4F9AE02.roa (hash: GRaZt0pedz3CCCklqX2hkq6cs1hiTnf3botIHYa4ZiY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.crl rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 185 (0xb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0855, serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897 Validity Not Before: Jul 4 09:31:27 2025 GMT Not After : Jul 11 09:31:27 2025 GMT Subject: CN=68679f6f-1dd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:1f:1d:50:e6:ab:79:1d:25:37:68:15:f1:f9: fc:f5:97:2d:03:4e:53:87:c9:19:7a:d3:eb:4c:a9: 6f:4c:c4:e5:8d:bb:5d:94:93:3c:d3:30:4c:7a:03: f1:84:85:45:b1:6c:33:0b:77:8b:8b:24:13:43:e8: da:54:74:a8:f2:00:7a:51:c0:b6:86:9a:43:89:1b: a9:b7:81:f1:97:da:ae:79:75:2d:75:78:c5:9d:ab: ab:1f:cb:4c:0b:0f:6f:5a:2f:ab:64:14:1a:32:ca: 3f:37:0a:08:11:6b:07:63:1e:10:36:67:d4:48:b7: cc:c0:70:49:40:b8:72:6a:9f:59:34:3e:d1:ad:42: 73:4a:df:d8:6a:4f:63:3f:53:5c:f3:e9:2a:ce:0f: 9e:90:34:98:bb:0f:19:0e:b4:1c:a4:76:5e:f7:8e: 8f:44:be:30:c4:fc:cd:af:de:d2:4d:84:c8:4a:2a: 71:c5:22:2c:80:d5:34:18:d0:46:92:1a:23:37:18: 14:db:dd:31:71:48:97:d6:c8:30:ef:9f:10:98:b1: c3:40:d6:06:5b:20:41:a7:ed:55:d9:13:6d:6d:bb: 1f:13:fe:47:01:29:35:e9:5b:5f:73:b3:2a:5d:21: 9d:a9:a2:c0:fa:ea:03:af:a4:7e:24:11:e0:e6:e3: 52:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:1E:BB:40:85:3C:86:E8:53:07:4E:83:59:E5:95:4B:B1:03:EF:36 X509v3 Authority Key Identifier: keyid:D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:49:fb:88:94:a8:6e:7c:51:0f:6b:bc:8d:56:82:00:be:b4: f2:8f:f1:1f:c5:88:d0:bb:6b:1f:c4:bc:de:4c:dc:20:26:fd: 10:ee:f5:e3:32:52:af:c2:6a:83:1c:49:82:92:b1:57:d7:5e: 89:3d:f9:5b:3a:08:b6:9a:dd:51:cf:7b:74:39:b8:27:4c:b6: b1:42:78:02:18:f6:61:a7:2c:df:dc:7b:01:55:96:d6:28:76: e5:e5:d9:1c:9a:10:d9:7e:31:bc:f4:ed:34:5b:39:56:4c:18: db:39:57:ae:e2:0f:b7:ca:90:34:51:13:29:f8:51:f8:21:10: a5:44:98:79:eb:e4:9a:59:bc:3f:10:22:5a:cf:3c:2e:f9:33: 70:7c:8b:70:7d:a9:d3:12:f8:2c:8c:f3:48:f0:0f:0b:d0:95: 03:1b:58:26:8a:a9:58:bd:81:d1:66:f4:a7:00:23:3f:40:aa: 7a:d3:a7:08:8d:2c:e1:fc:31:82:9f:8c:6b:71:e5:26:93:39: 3e:82:a6:30:b6:70:6b:10:84:f5:8a:af:48:bd:00:e4:25:83: 8f:9f:c0:98:ae:d2:35:f0:ef:7d:01:52:20:74:b4:d5:cb:1e: 8f:51:8d:01:c0:5b:79:38:eb:34:98:32:3f:f6:4f:42:0c:30: 36:c2:1c:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTA4NTUxMTAvBgNVBAUTKEQzMkE1QURDMDU0MkMyRTgxN0MyMDJCRTZCNzI4MUU4 NjlEMTc4OTcwHhcNMjUwNzA0MDkzMTI3WhcNMjUwNzExMDkzMTI3WjAYMRYwFAYD VQQDEw02ODY3OWY2Zi0xZGQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5R8dUOareR0lN2gV8fn89ZctA05Th8kZetPrTKlvTMTljbtdlJM80zBMegPx hIVFsWwzC3eLiyQTQ+jaVHSo8gB6UcC2hppDiRupt4Hxl9queXUtdXjFnaurH8tM Cw9vWi+rZBQaMso/NwoIEWsHYx4QNmfUSLfMwHBJQLhyap9ZND7RrUJzSt/Yak9j P1Nc8+kqzg+ekDSYuw8ZDrQcpHZe946PRL4wxPzNr97STYTISipxxSIsgNU0GNBG khojNxgU290xcUiX1sgw758QmLHDQNYGWyBBp+1V2RNtbbsfE/5HASk16Vtfc7Mq XSGdqaLA+uoDr6R+JBHg5uNSPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN0eu0CF PIboUwdOg1nllUuxA+82MB8GA1UdIwQYMBaAFNMqWtwFQsLoF8ICvmtygehp0XiX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDg1NS81MDRDRkZFMjQ0 OTYxMUVGOEU4NEU2M0RDNEY5QUUwMi8weXBhM0FWQ3d1Z1h3Z0stYTNLQjZHblJl SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzB5cGEzQVZDd3VnWHdnSy1hM0tCNkduUmVKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDg1NS81MDRDRkZFMjQ0OTYxMUVGOEU4NEU2M0RDNEY5QUUwMi8weXBhM0FWQ3d1 Z1h3Z0stYTNLQjZHblJlSmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlSfuIlKhufFEPa7yNVoIAvrTyj/EfxYjQu2sfxLzeTNwgJv0Q7vXj MlKvwmqDHEmCkrFX116JPflbOgi2mt1Rz3t0ObgnTLaxQngCGPZhpyzf3HsBVZbW KHbl5dkcmhDZfjG89O00WzlWTBjbOVeu4g+3ypA0URMp+FH4IRClRJh56+SaWbw/ ECJazzwu+TNwfItwfanTEvgsjPNI8A8L0JUDG1gmiqlYvYHRZvSnACM/QKp606cI jSzh/DGCn4xrceUmkzk+gqYwtnBrEIT1iq9IvQDkJYOPn8CYrtI18O99AVIgdLTV yx6PUY0BwFt5OOs0mDI/9k9CDDA2whyf -----END CERTIFICATE-----Generated at Fri Jul 4 10:34:50 2025 by rpki-client