$ rpki-client -vvf rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.mft File: yL8GWnSCLvjMYvSlTlnVhxILb0c.mft (raw, json) Hash identifier: yJleO/kIpeUGKjhKiHxHhdJNYq4bLvTkuLPnJJHCL7E= Subject key identifier: 23:52:13:BC:A7:72:2C:26:3B:7D:84:4E:07:02:34:19:A9:2D:46:D1 Authority key identifier: C8:BF:06:5A:74:82:2E:F8:CC:62:F4:A5:4E:59:D5:87:12:0B:6F:47 Certificate issuer: /CN=A91E85F1/serialNumber=C8BF065A74822EF8CC62F4A54E59D587120B6F47 Certificate serial: 31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yL8GWnSCLvjMYvSlTlnVhxILb0c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.mft Manifest number: 30 Signing time: Tue 01 Jul 2025 08:27:46 +0000 Manifest this update: Tue 01 Jul 2025 08:27:46 +0000 Manifest next update: Tue 08 Jul 2025 08:27:46 +0000 Files and hashes: 1: yL8GWnSCLvjMYvSlTlnVhxILb0c.crl (hash: ZiHJ+u8uVNf/yYpogFLqMzFKa3GMo8hHVuGGlMi+1Cw=) 2: 4D144B780DFE11F09C46E054C4F9AE02.roa (hash: rxfflXV8vQ/KWVF6kuCP1iokmRw18P+QAjN4iDWpgsI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.crl rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yL8GWnSCLvjMYvSlTlnVhxILb0c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:27:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49 (0x31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E85F1, serialNumber=C8BF065A74822EF8CC62F4A54E59D587120B6F47 Validity Not Before: Jul 1 08:27:46 2025 GMT Not After : Jul 8 08:27:46 2025 GMT Subject: CN=68639c02-17b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:86:22:85:ea:67:2f:b9:47:1a:6b:a6:91:62: 14:36:02:e2:90:7b:4e:88:96:d3:27:ab:6a:66:39: 5c:43:1d:ac:e8:15:56:ce:3d:2e:e3:71:f1:0d:2a: 5c:83:96:35:d1:3e:5a:24:74:b7:66:b3:b2:08:c5: 70:b8:51:67:58:e1:c3:c9:03:a2:3f:8c:d5:8f:31: e2:4e:36:93:32:7d:0e:5d:76:65:42:53:0f:ee:ff: a2:18:0c:ec:8a:77:ac:03:3a:04:f5:e3:5e:5b:42: 35:a1:62:c5:e4:00:7b:c3:35:3b:10:1c:8e:71:2a: b6:9b:0f:7b:6b:08:45:68:84:d3:bd:c6:61:92:de: e7:15:c1:24:92:c4:ea:0c:ef:4b:04:c8:fb:2b:a2: 5b:a3:15:e4:12:cb:1b:40:34:62:18:99:03:ef:b5: 8c:c9:6b:47:ce:10:df:26:c6:f9:9e:6a:e6:0b:46: 92:28:70:78:88:06:91:9e:bb:76:94:18:99:e3:60: 94:a7:37:75:70:06:ff:e3:c5:e7:b0:3a:c0:95:02: 7e:df:dc:8a:0f:5e:16:39:16:30:e8:0d:59:d2:a8: 89:ed:bd:10:84:58:d1:23:d3:a2:8d:bc:4b:09:33: ec:2d:90:64:30:8c:7a:de:b2:c3:45:5c:82:58:2b: f8:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:52:13:BC:A7:72:2C:26:3B:7D:84:4E:07:02:34:19:A9:2D:46:D1 X509v3 Authority Key Identifier: keyid:C8:BF:06:5A:74:82:2E:F8:CC:62:F4:A5:4E:59:D5:87:12:0B:6F:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yL8GWnSCLvjMYvSlTlnVhxILb0c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:72:6f:29:4c:86:c3:3a:f0:26:41:2f:03:9e:23:bc:e0:94: c5:42:7f:d0:2e:9c:a4:3e:ea:5c:95:ad:9c:82:f7:05:31:0d: 97:dc:0c:10:ec:65:48:9f:c5:b4:26:c8:5a:17:09:f0:dd:be: 9f:fd:de:ac:a7:64:38:2d:f9:44:02:0b:6c:30:20:a8:d5:69: cf:2c:4e:4b:5e:3c:2a:4c:04:1f:c2:e2:71:6c:de:e1:9b:6d: 0d:68:fb:56:3a:33:67:e9:dd:67:54:ec:f8:16:86:54:b7:be: b9:16:5e:50:1d:9e:4d:29:f0:fa:c6:e4:81:bc:b1:2f:b2:2e: 2b:a1:ab:15:0b:5a:2b:48:8d:68:26:80:2d:24:76:4e:9b:23: 11:f3:38:3e:49:ad:5f:dc:d5:6d:95:1a:fb:01:1e:c8:2f:c9: eb:ac:d8:3d:94:28:19:70:dd:9d:d6:f2:f9:9b:72:6c:e5:ce: 96:05:ef:ba:ad:ed:ab:65:1a:e4:c7:5a:52:1e:a2:11:2a:d4: 80:30:df:34:eb:a4:55:ea:64:0f:4b:ad:2c:dd:ea:7d:49:13: 84:f6:39:91:54:47:e1:c0:f3:1a:84:0a:3f:4c:72:e8:b4:15: f9:f5:77:a1:9f:e4:7b:60:4f:be:4a:a3:51:04:17:30:77:cc: 25:6a:09:0d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF ODVGMTExMC8GA1UEBRMoQzhCRjA2NUE3NDgyMkVGOENDNjJGNEE1NEU1OUQ1ODcx MjBCNkY0NzAeFw0yNTA3MDEwODI3NDZaFw0yNTA3MDgwODI3NDZaMBgxFjAUBgNV BAMTDTY4NjM5YzAyLTE3YjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8hiKF6mcvuUcaa6aRYhQ2AuKQe06IltMnq2pmOVxDHazoFVbOPS7jcfENKlyD ljXRPlokdLdms7IIxXC4UWdY4cPJA6I/jNWPMeJONpMyfQ5ddmVCUw/u/6IYDOyK d6wDOgT1415bQjWhYsXkAHvDNTsQHI5xKrabD3trCEVohNO9xmGS3ucVwSSSxOoM 70sEyPsrolujFeQSyxtANGIYmQPvtYzJa0fOEN8mxvmeauYLRpIocHiIBpGeu3aU GJnjYJSnN3VwBv/jxeewOsCVAn7f3IoPXhY5FjDoDVnSqIntvRCEWNEj06KNvEsJ M+wtkGQwjHressNFXIJYK/gTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUI1ITvKdy LCY7fYROBwI0GaktRtEwHwYDVR0jBBgwFoAUyL8GWnSCLvjMYvSlTlnVhxILb0cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4NUYxLzZBQTRENjBBMERG QzExRjBBMUQ5ODA1M0M0RjlBRTAyL3lMOEdXblNDTHZqTVl2U2xUbG5WaHhJTGIw Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveUw4R1duU0NMdmpNWXZTbFRsblZoeElMYjBjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4 NUYxLzZBQTRENjBBMERGQzExRjBBMUQ5ODA1M0M0RjlBRTAyL3lMOEdXblNDTHZq TVl2U2xUbG5WaHhJTGIwYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABtybylMhsM68CZBLwOeI7zglMVCf9AunKQ+6lyVrZyC9wUxDZfcDBDs ZUifxbQmyFoXCfDdvp/93qynZDgt+UQCC2wwIKjVac8sTktePCpMBB/C4nFs3uGb bQ1o+1Y6M2fp3WdU7PgWhlS3vrkWXlAdnk0p8PrG5IG8sS+yLiuhqxULWitIjWgm gC0kdk6bIxHzOD5JrV/c1W2VGvsBHsgvyeus2D2UKBlw3Z3W8vmbcmzlzpYF77qt 7atlGuTHWlIeohEq1IAw3zTrpFXqZA9LrSzd6n1JE4T2OZFUR+HA8xqECj9Mcui0 Ffn1d6Gf5HtgT75Ko1EEFzB3zCVqCQ0= -----END CERTIFICATE-----Generated at Tue Jul 1 21:19:41 2025 by rpki-client