$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft File: YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft (raw, json) Hash identifier: vCQ56yvKuH4Tnocw29S+cGsMvZWLtvUqXvu9HNDvfC4= Subject key identifier: 3D:4D:7A:3F:F2:8D:CD:1E:48:79:45:E3:94:8E:44:1C:8D:4F:D8:B4 Authority key identifier: 60:06:B9:65:83:13:D8:64:99:16:19:D6:97:9B:0F:7E:01:E4:B6:68 Certificate issuer: /CN=A91E5A08/serialNumber=6006B9658313D864991619D6979B0F7E01E4B668 Certificate serial: 019E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft Manifest number: 019B Signing time: Thu 03 Jul 2025 03:27:18 +0000 Manifest this update: Thu 03 Jul 2025 03:27:18 +0000 Manifest next update: Thu 10 Jul 2025 03:27:18 +0000 Files and hashes: 1: YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl (hash: 3TS+HXratHewh8G/0VWDIjxsmgXNLSKxF44mK02xbUA=) 2: EC9A7C9EE26811EDBB19B85EC4F9AE02.roa (hash: b95mpJ4EM9DYq2FEBTGRF8becbveDJsLEHAflxFwbco=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 414 (0x19e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5A08, serialNumber=6006B9658313D864991619D6979B0F7E01E4B668 Validity Not Before: Jul 3 03:27:18 2025 GMT Not After : Jul 10 03:27:18 2025 GMT Subject: CN=6865f896-80a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:67:dc:6a:46:98:52:03:d1:d7:30:16:1e:05: f6:13:2e:dc:92:92:be:7f:88:ac:6f:00:24:2b:2d: e6:72:90:4d:12:82:27:89:92:52:ed:84:e9:f0:7b: 9e:6d:2d:c3:40:1b:83:cc:e0:7d:fc:fd:1d:a4:50: dd:e8:e2:22:45:1a:81:c9:53:a9:ad:96:13:67:30: 5b:6c:16:03:15:0f:aa:c2:53:d6:70:a5:83:e6:c8: ec:d5:f0:87:67:0b:76:f9:4a:92:7d:f8:6a:92:bd: 98:3d:23:d7:87:19:fa:4f:0b:3a:39:49:f8:ea:51: c9:83:f0:68:09:4c:24:5e:67:0f:f2:45:93:d3:0a: 9c:9c:f8:d6:de:26:4a:47:37:1c:2a:13:f8:6c:f1: bd:e1:2a:b6:8a:76:69:26:a6:0b:85:19:ca:c5:d2: 8c:95:3d:17:8e:11:98:56:92:16:f8:40:1f:00:1a: 47:64:7d:65:de:37:4a:80:37:ab:1e:eb:77:d3:a3: e7:02:b4:d5:22:bd:f9:aa:4d:b7:cc:73:3b:ab:ce: 19:41:14:40:41:46:31:02:11:3b:8e:75:ea:f3:60: f7:f8:df:89:f9:ee:d8:e2:3d:3e:a0:34:78:ea:cc: 9d:88:e1:dd:92:2c:4f:0f:05:81:59:03:c4:65:99: 0b:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:4D:7A:3F:F2:8D:CD:1E:48:79:45:E3:94:8E:44:1C:8D:4F:D8:B4 X509v3 Authority Key Identifier: keyid:60:06:B9:65:83:13:D8:64:99:16:19:D6:97:9B:0F:7E:01:E4:B6:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:bb:90:af:90:bb:8e:c4:42:29:6b:24:01:1e:a3:5f:18:b4: 47:32:48:da:58:3b:40:ea:93:97:04:94:0b:b4:cb:d6:4e:a0: aa:62:04:d7:3c:1b:d5:94:79:b8:0a:cf:16:59:73:be:da:f8: 3b:14:10:fd:43:8b:66:21:4f:4a:af:e1:71:70:d5:2b:1c:17: 3a:5d:58:da:ce:da:84:c6:cb:cf:85:80:e4:d9:76:1c:db:54: 4e:2e:97:62:3e:1e:d5:4b:74:5d:24:42:e8:b2:97:20:3b:b0: 89:1e:97:d7:ca:bd:0f:34:78:51:8f:c7:e8:3f:43:33:81:27: a4:f5:05:ac:3e:4e:1b:6b:86:f7:76:d1:77:8f:9c:44:c0:ba: e8:fd:42:a1:f0:ca:9e:ba:09:ef:e6:7b:d9:97:f7:c6:60:bc: bb:5e:0e:fc:61:d0:0e:84:95:5c:4e:df:f8:a1:b9:ff:10:f9: ef:2b:96:75:3d:72:4d:a5:4f:bf:ba:84:d4:32:ba:2a:45:98: a0:a6:22:75:8b:af:25:b8:19:b3:7b:9a:ba:a0:9d:f5:d5:02: d4:3b:a1:4a:45:41:bb:4d:9f:a1:a1:36:83:51:8f:d8:1d:b1: d6:a8:b2:ef:9b:e2:77:a2:63:f8:9e:1b:b7:26:4d:3e:ba:da: 4f:62:e3:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVBMDgxMTAvBgNVBAUTKDYwMDZCOTY1ODMxM0Q4NjQ5OTE2MTlENjk3OUIwRjdF MDFFNEI2NjgwHhcNMjUwNzAzMDMyNzE4WhcNMjUwNzEwMDMyNzE4WjAYMRYwFAYD VQQDEw02ODY1Zjg5Ni04MGE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw2fcakaYUgPR1zAWHgX2Ey7ckpK+f4isbwAkKy3mcpBNEoIniZJS7YTp8Hue bS3DQBuDzOB9/P0dpFDd6OIiRRqByVOprZYTZzBbbBYDFQ+qwlPWcKWD5sjs1fCH Zwt2+UqSffhqkr2YPSPXhxn6Tws6OUn46lHJg/BoCUwkXmcP8kWT0wqcnPjW3iZK RzccKhP4bPG94Sq2inZpJqYLhRnKxdKMlT0XjhGYVpIW+EAfABpHZH1l3jdKgDer Hut306PnArTVIr35qk23zHM7q84ZQRRAQUYxAhE7jnXq82D3+N+J+e7Y4j0+oDR4 6sydiOHdkixPDwWBWQPEZZkLrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD1Nej/y jc0eSHlF45SORByNT9i0MB8GA1UdIwQYMBaAFGAGuWWDE9hkmRYZ1pebD34B5LZo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUEwOC9CMDYwQ0M1NEUy NjUxMUVEODUwQ0RFNTRDNEY5QUUwMi9ZQWE1WllNVDJHU1pGaG5XbDVzUGZnSGt0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lBYTVaWU1UMkdTWkZobldsNXNQZmdIa3RtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUEwOC9CMDYwQ0M1NEUyNjUxMUVEODUwQ0RFNTRDNEY5QUUwMi9ZQWE1WllNVDJH U1pGaG5XbDVzUGZnSGt0bWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgu5CvkLuOxEIpayQBHqNfGLRHMkjaWDtA6pOXBJQLtMvWTqCqYgTX PBvVlHm4Cs8WWXO+2vg7FBD9Q4tmIU9Kr+FxcNUrHBc6XVjaztqExsvPhYDk2XYc 21ROLpdiPh7VS3RdJELospcgO7CJHpfXyr0PNHhRj8foP0MzgSek9QWsPk4ba4b3 dtF3j5xEwLro/UKh8Mqeugnv5nvZl/fGYLy7Xg78YdAOhJVcTt/4obn/EPnvK5Z1 PXJNpU+/uoTUMroqRZigpiJ1i68luBmze5q6oJ311QLUO6FKRUG7TZ+hoTaDUY/Y HbHWqLLvm+J3omP4nhu3Jk0+utpPYuNF -----END CERTIFICATE-----Generated at Thu Jul 3 08:07:50 2025 by rpki-client