$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.mft File: Y7ooHVb6T-blNbEl4W34AdEvgJk.mft (raw, json) Hash identifier: exCTGDfCaTDOnscE4WhuDZ6xP/H7KS+tUQM6941KCgw= Subject key identifier: 86:3D:E7:2B:4C:E7:5A:F1:B7:4B:31:E0:E4:5B:B0:D2:F8:38:2E:5E Authority key identifier: 63:BA:28:1D:56:FA:4F:E6:E5:35:B1:25:E1:6D:F8:01:D1:2F:80:99 Certificate issuer: /CN=A91ECBD9/serialNumber=63BA281D56FA4FE6E535B125E16DF801D12F8099 Certificate serial: 9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y7ooHVb6T-blNbEl4W34AdEvgJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.mft Manifest number: 9D Signing time: Tue 01 Jul 2025 07:00:57 +0000 Manifest this update: Tue 01 Jul 2025 07:00:57 +0000 Manifest next update: Tue 08 Jul 2025 07:00:57 +0000 Files and hashes: 1: Y7ooHVb6T-blNbEl4W34AdEvgJk.crl (hash: PiVc1xoEBULgQrN0gZa66ZyAQWUcJa0pSJ0nBP3ofH0=) 2: 4E67247C681911EFA2640B43C4F9AE02.roa (hash: ucm8jiY7/TEfoe7vYt6Xy9WiiLrmTGt3Yko/V2TTwzI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.crl rsync://rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y7ooHVb6T-blNbEl4W34AdEvgJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 07:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 159 (0x9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECBD9, serialNumber=63BA281D56FA4FE6E535B125E16DF801D12F8099 Validity Not Before: Jul 1 07:00:57 2025 GMT Not After : Jul 8 07:00:57 2025 GMT Subject: CN=686387a9-e3b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:bb:5f:3f:3f:23:c2:1e:8c:5e:cc:7d:e6:29: 16:f3:6f:8a:c0:fb:4d:47:f5:85:8b:1d:fb:f9:6d: e9:92:37:d6:ec:38:3a:2b:3b:e4:88:34:d6:84:3a: 96:e2:72:57:a1:91:97:da:bb:97:04:84:32:d7:dc: dc:27:28:b4:d6:7a:7f:d9:70:6f:6e:ec:43:bb:65: 3f:a8:2b:6d:db:37:01:97:39:b1:88:22:9f:d1:6c: 47:0e:2e:e8:a5:ca:93:56:e1:37:23:e3:b7:eb:dd: dd:4f:ef:2d:a9:51:82:3e:22:c0:75:e1:93:d2:5e: 6a:ae:b8:2e:a5:db:bf:f7:e9:9a:1d:14:8d:be:f0: 8c:98:8e:c4:0f:a8:54:91:a2:b4:03:03:8b:df:3d: 14:fc:81:b5:a0:22:54:df:14:cf:0e:73:93:94:db: 7d:1c:2a:71:ef:04:67:2b:ab:36:5b:7d:6d:da:1c: e7:00:45:ce:d6:e5:d7:70:6c:85:f4:30:56:11:71: 65:21:b3:c6:24:a8:c7:26:9b:3a:7d:c9:ee:1d:a6: 13:11:2f:58:28:2a:1e:70:86:8d:2d:e5:55:e1:02: 98:66:c0:40:a5:4f:c1:23:59:98:49:d1:50:e0:0d: 7a:e8:dc:6c:d4:ff:12:00:eb:78:44:54:5e:92:87: a5:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:3D:E7:2B:4C:E7:5A:F1:B7:4B:31:E0:E4:5B:B0:D2:F8:38:2E:5E X509v3 Authority Key Identifier: keyid:63:BA:28:1D:56:FA:4F:E6:E5:35:B1:25:E1:6D:F8:01:D1:2F:80:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y7ooHVb6T-blNbEl4W34AdEvgJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:43:0d:21:42:4e:69:bc:2f:4b:eb:ed:17:de:bc:a7:c2:5e: 70:15:82:2d:cb:e3:94:f0:97:63:79:9a:0b:b5:de:f6:a1:d4: a5:35:60:62:c3:ed:6e:29:03:12:c5:fb:2f:2a:e1:1c:67:62: 88:67:c8:62:68:f3:3d:5e:83:3c:22:de:f0:29:f7:95:e5:8d: c3:82:cf:aa:0d:d3:38:b2:7d:c8:ae:cb:86:4a:e7:ca:9a:44: 65:b1:8d:75:60:de:09:96:c4:88:22:e7:18:b2:d7:3d:05:6f: 09:bc:4f:5a:f6:fe:16:55:27:30:b8:27:94:b3:c0:97:a8:2a: 7e:42:56:c6:6a:f2:5e:54:c1:52:69:a4:c2:83:ac:93:d4:b4: d7:4a:c7:76:10:ec:7b:86:dd:c2:d3:c1:fc:16:64:50:0b:f4: 88:0d:6d:a2:fa:43:2f:7d:eb:1d:71:6e:01:ef:40:3e:ba:52: 21:05:f1:14:31:0f:71:1f:23:17:54:69:18:41:dc:63:bc:0a: 13:77:14:c0:b4:20:72:43:18:09:e7:6d:36:72:88:03:06:39: 67:90:8c:74:91:8e:c6:c5:af:aa:b3:87:0c:d4:52:0e:93:f8: 7a:0f:d8:05:15:b4:30:58:a2:94:38:2e:d9:f3:52:71:23:3d: 5d:1a:cb:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNCRDkxMTAvBgNVBAUTKDYzQkEyODFENTZGQTRGRTZFNTM1QjEyNUUxNkRGODAx RDEyRjgwOTkwHhcNMjUwNzAxMDcwMDU3WhcNMjUwNzA4MDcwMDU3WjAYMRYwFAYD VQQDEw02ODYzODdhOS1lM2I1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1LtfPz8jwh6MXsx95ikW82+KwPtNR/WFix37+W3pkjfW7Dg6KzvkiDTWhDqW 4nJXoZGX2ruXBIQy19zcJyi01np/2XBvbuxDu2U/qCtt2zcBlzmxiCKf0WxHDi7o pcqTVuE3I+O3693dT+8tqVGCPiLAdeGT0l5qrrgupdu/9+maHRSNvvCMmI7ED6hU kaK0AwOL3z0U/IG1oCJU3xTPDnOTlNt9HCpx7wRnK6s2W31t2hznAEXO1uXXcGyF 9DBWEXFlIbPGJKjHJps6fcnuHaYTES9YKCoecIaNLeVV4QKYZsBApU/BI1mYSdFQ 4A166Nxs1P8SAOt4RFRekoelnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIY95ytM 51rxt0sx4ORbsNL4OC5eMB8GA1UdIwQYMBaAFGO6KB1W+k/m5TWxJeFt+AHRL4CZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0JEOS9FMDQ2QjBCNjY4 MTgxMUVGOUE1M0U5MThDNEY5QUUwMi9ZN29vSFZiNlQtYmxOYkVsNFczNEFkRXZn SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1k3b29IVmI2VC1ibE5iRWw0VzM0QWRFdmdKay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Q0JEOS9FMDQ2QjBCNjY4MTgxMUVGOUE1M0U5MThDNEY5QUUwMi9ZN29vSFZiNlQt YmxOYkVsNFczNEFkRXZnSmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaQw0hQk5pvC9L6+0X3rynwl5wFYIty+OU8JdjeZoLtd72odSlNWBi w+1uKQMSxfsvKuEcZ2KIZ8hiaPM9XoM8It7wKfeV5Y3Dgs+qDdM4sn3IrsuGSufK mkRlsY11YN4JlsSIIucYstc9BW8JvE9a9v4WVScwuCeUs8CXqCp+QlbGavJeVMFS aaTCg6yT1LTXSsd2EOx7ht3C08H8FmRQC/SIDW2i+kMvfesdcW4B70A+ulIhBfEU MQ9xHyMXVGkYQdxjvAoTdxTAtCByQxgJ5202cogDBjlnkIx0kY7Gxa+qs4cM1FIO k/h6D9gFFbQwWKKUOC7Z81JxIz1dGssg -----END CERTIFICATE-----Generated at Thu Jul 3 05:38:51 2025 by rpki-client