$ rpki-client -vvf rpki.apnic.net/member_repository/A91E28D8/6B24BCC21ABF11EDB5B4CC4CC4F9AE02/lY1wluouaxa8JKHQRXGdLsUUSX4.mft File: lY1wluouaxa8JKHQRXGdLsUUSX4.mft (raw, json) Hash identifier: wzNCX2t4/WZnYJpdxjXqHdRlfNN0VOP6+bZwjRE+awM= Subject key identifier: 9C:FF:90:7C:8F:79:CA:0C:77:36:AA:8A:38:93:3E:35:CD:E1:37:63 Authority key identifier: 95:8D:70:96:EA:2E:6B:16:BC:24:A1:D0:45:71:9D:2E:C5:14:49:7E Certificate issuer: /CN=A91E28D8/serialNumber=958D7096EA2E6B16BC24A1D045719D2EC514497E Certificate serial: 0268 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lY1wluouaxa8JKHQRXGdLsUUSX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E28D8/6B24BCC21ABF11EDB5B4CC4CC4F9AE02/lY1wluouaxa8JKHQRXGdLsUUSX4.mft Manifest number: 0265 Signing time: Thu 03 Jul 2025 02:10:43 +0000 Manifest this update: Thu 03 Jul 2025 02:10:42 +0000 Manifest next update: Thu 10 Jul 2025 02:10:42 +0000 Files and hashes: 1: lY1wluouaxa8JKHQRXGdLsUUSX4.crl (hash: 66lZTAsBAJQdLOch064nCTLwkGabFxQaeHLQ7ZEE7u8=) 2: 01109D481B9011EDBC68484CC4F9AE02.roa (hash: c791advS7FJxJQliNVREZFMZhHtkZDtdWCzXey8hKmc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E28D8/6B24BCC21ABF11EDB5B4CC4CC4F9AE02/lY1wluouaxa8JKHQRXGdLsUUSX4.crl rsync://rpki.apnic.net/member_repository/A91E28D8/6B24BCC21ABF11EDB5B4CC4CC4F9AE02/lY1wluouaxa8JKHQRXGdLsUUSX4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lY1wluouaxa8JKHQRXGdLsUUSX4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 02:10:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 616 (0x268) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E28D8, serialNumber=958D7096EA2E6B16BC24A1D045719D2EC514497E Validity Not Before: Jul 3 02:10:42 2025 GMT Not After : Jul 10 02:10:42 2025 GMT Subject: CN=6865e6a2-00c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:bb:95:b9:a9:ab:8b:bf:02:be:4e:7b:34:de: 47:cf:bf:bf:10:b2:d5:aa:f5:be:dc:0d:3e:ee:d3: 5e:5c:e0:f4:2c:0e:e7:b6:f1:26:65:3b:35:2a:fd: 22:b1:54:eb:1c:75:c3:7b:6b:73:0e:fd:bc:81:f8: c4:37:de:b7:55:d4:d1:06:56:0b:1c:46:c1:38:95: f3:a8:ad:03:5b:2b:6b:9a:52:c3:b3:48:a9:eb:dc: ec:91:d0:95:67:93:8c:3f:ee:d7:a2:6e:e2:6d:6b: 04:6e:df:b3:51:57:b9:ae:25:7e:d7:68:09:b2:52: fc:05:f3:21:d3:c4:f2:16:fe:6c:6c:0b:48:23:90: 13:e5:f0:7b:c0:c7:05:b0:25:ac:2e:99:86:44:44: e8:80:a8:e5:9f:17:10:37:f5:2e:ef:05:a0:da:a0: eb:2e:e5:69:b7:f5:55:db:67:a4:08:77:32:89:df: a9:c3:ac:2e:ae:88:5e:3a:15:14:35:47:9e:90:d2: 26:49:74:02:18:16:f1:79:55:e4:31:4a:1d:05:a1: 82:52:2e:d4:2d:55:38:5f:e3:04:b3:5f:c5:ef:7a: f0:04:5b:90:1f:92:bf:26:b1:35:64:af:df:f8:94: ca:2e:73:0e:e0:1d:1e:af:bf:eb:16:0a:f2:6e:f5: ba:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:FF:90:7C:8F:79:CA:0C:77:36:AA:8A:38:93:3E:35:CD:E1:37:63 X509v3 Authority Key Identifier: keyid:95:8D:70:96:EA:2E:6B:16:BC:24:A1:D0:45:71:9D:2E:C5:14:49:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E28D8/6B24BCC21ABF11EDB5B4CC4CC4F9AE02/lY1wluouaxa8JKHQRXGdLsUUSX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lY1wluouaxa8JKHQRXGdLsUUSX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E28D8/6B24BCC21ABF11EDB5B4CC4CC4F9AE02/lY1wluouaxa8JKHQRXGdLsUUSX4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:1a:6f:f1:55:c0:aa:c0:3e:fd:47:1d:c8:d8:c9:0f:3c:54: 6d:b4:c1:66:7b:25:81:65:22:f6:ec:26:78:74:3e:d8:43:93: 75:1a:0b:6c:54:71:2a:6d:f3:d1:d9:6f:5f:c2:2f:d4:5f:2d: f7:d7:e2:37:bf:a6:4a:49:22:2e:b9:37:11:03:e5:06:ac:8d: 41:02:44:cd:29:0f:88:a8:70:09:bb:c6:5b:61:2b:c5:ee:a1: f9:dc:bf:f1:bf:28:e3:64:27:6b:a9:29:1f:dc:a5:a2:ba:d9: 7c:64:2f:5d:81:e7:41:c5:5d:63:67:db:f4:03:0f:98:70:61: ab:04:34:5c:22:e8:f2:63:7f:2b:47:d4:0a:f9:3f:1a:c5:38: d6:e7:58:5c:d0:f8:bf:2d:68:b2:1f:d6:b0:86:13:47:a1:83: 6f:d2:e5:a7:ed:45:60:37:74:8d:a4:fb:22:3b:77:30:c4:66: bc:0c:41:a9:41:6b:3c:23:8a:73:e9:0b:3f:22:c8:fa:51:17: 9b:ae:14:da:87:b2:6b:34:61:8d:24:02:54:19:fa:9b:63:9d: 78:63:48:5d:7e:f6:37:3f:30:08:39:f3:8d:fc:b5:e4:ae:53: b2:77:1f:1e:99:45:6e:68:4b:e2:8c:a7:60:32:f8:d5:cb:09: 87:24:05:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI4RDgxMTAvBgNVBAUTKDk1OEQ3MDk2RUEyRTZCMTZCQzI0QTFEMDQ1NzE5RDJF QzUxNDQ5N0UwHhcNMjUwNzAzMDIxMDQyWhcNMjUwNzEwMDIxMDQyWjAYMRYwFAYD VQQDEw02ODY1ZTZhMi0wMGM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz7uVuamri78Cvk57NN5Hz7+/ELLVqvW+3A0+7tNeXOD0LA7ntvEmZTs1Kv0i sVTrHHXDe2tzDv28gfjEN963VdTRBlYLHEbBOJXzqK0DWytrmlLDs0ip69zskdCV Z5OMP+7Xom7ibWsEbt+zUVe5riV+12gJslL8BfMh08TyFv5sbAtII5AT5fB7wMcF sCWsLpmGRETogKjlnxcQN/Uu7wWg2qDrLuVpt/VV22ekCHcyid+pw6wuroheOhUU NUeekNImSXQCGBbxeVXkMUodBaGCUi7ULVU4X+MEs1/F73rwBFuQH5K/JrE1ZK/f +JTKLnMO4B0er7/rFgrybvW6FQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJz/kHyP ecoMdzaqijiTPjXN4TdjMB8GA1UdIwQYMBaAFJWNcJbqLmsWvCSh0EVxnS7FFEl+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjhEOC82QjI0QkNDMjFB QkYxMUVEQjVCNENDNENDNEY5QUUwMi9sWTF3bHVvdWF4YThKS0hRUlhHZExzVVVT WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xZMXdsdW91YXhhOEpLSFFSWEdkTHNVVVNYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjhEOC82QjI0QkNDMjFBQkYxMUVEQjVCNENDNENDNEY5QUUwMi9sWTF3bHVvdWF4 YThKS0hRUlhHZExzVVVTWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgGm/xVcCqwD79Rx3I2MkPPFRttMFmeyWBZSL27CZ4dD7YQ5N1Ggts VHEqbfPR2W9fwi/UXy331+I3v6ZKSSIuuTcRA+UGrI1BAkTNKQ+IqHAJu8ZbYSvF 7qH53L/xvyjjZCdrqSkf3KWiutl8ZC9dgedBxV1jZ9v0Aw+YcGGrBDRcIujyY38r R9QK+T8axTjW51hc0Pi/LWiyH9awhhNHoYNv0uWn7UVgN3SNpPsiO3cwxGa8DEGp QWs8I4pz6Qs/Isj6URebrhTah7JrNGGNJAJUGfqbY514Y0hdfvY3PzAIOfON/LXk rlOydx8emUVuaEvijKdgMvjVywmHJAXV -----END CERTIFICATE-----Generated at Thu Jul 3 07:05:24 2025 by rpki-client