$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft File: rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft (raw, json) Hash identifier: enrZtRvc3JN9THLsccxcvuv0Co77kjU3hPMMaj7kwAI= Subject key identifier: F1:19:55:B4:ED:FD:15:FC:1D:B5:E4:E7:F5:81:CF:61:E3:E7:1D:10 Authority key identifier: AD:84:F4:BC:BE:B3:C9:36:5F:28:27:15:3B:A6:9C:ED:2A:99:12:E2 Certificate issuer: /CN=A91EF8B6/serialNumber=AD84F4BCBEB3C9365F2827153BA69CED2A9912E2 Certificate serial: 0B51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYT0vL6zyTZfKCcVO6ac7SqZEuI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft Manifest number: 0B46 Signing time: Mon 30 Jun 2025 19:18:51 +0000 Manifest this update: Mon 30 Jun 2025 19:18:50 +0000 Manifest next update: Mon 07 Jul 2025 19:18:50 +0000 Files and hashes: 1: rYT0vL6zyTZfKCcVO6ac7SqZEuI.crl (hash: 9UFW8iPCUCa4H0vOegwO+SVUtka75+f8C3nIYp4LoM4=) 2: FB6D5292263C11EEB9F5DB43C4F9AE02.roa (hash: F4+ANWrgSV1BYAbYrEyoAC+HEYBZsl5dMdzlHwWIwy8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.crl rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYT0vL6zyTZfKCcVO6ac7SqZEuI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 19:18:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2897 (0xb51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF8B6, serialNumber=AD84F4BCBEB3C9365F2827153BA69CED2A9912E2 Validity Not Before: Jun 30 19:18:50 2025 GMT Not After : Jul 7 19:18:50 2025 GMT Subject: CN=6862e31b-cce0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:61:75:bc:e2:6d:93:7f:53:59:e5:3c:a7:43: 27:58:e4:ad:5c:82:d0:d5:9c:18:ff:64:e9:18:d7: 6d:1d:77:b3:a0:51:b5:20:19:56:12:2d:7c:4a:1d: f3:17:3a:35:f6:b8:0c:a3:13:42:92:02:c9:b9:73: 45:58:74:d9:b0:82:57:6b:a5:5e:3c:ff:61:7f:a8: 34:f8:df:54:b3:34:05:57:10:5b:fc:ce:ec:72:17: e3:42:d4:c7:e0:7b:ab:eb:81:fd:2e:82:48:1c:63: a4:d0:5f:19:89:a4:71:04:56:17:fd:91:d0:61:7e: 02:a8:26:76:7c:56:0b:a5:1b:a9:d4:65:a7:e3:0a: b7:9d:6b:7c:07:97:1b:91:ba:62:ef:88:16:54:22: 31:84:ed:7a:c3:6b:99:fd:79:3d:35:1b:a2:40:68: e9:20:a8:62:34:95:c1:54:fa:96:20:ed:d9:a3:32: 48:73:99:04:38:2a:b4:8f:63:c0:01:aa:c5:94:56: 1c:db:dd:8e:c9:56:dc:71:49:83:51:10:e0:db:99: a5:82:50:fb:a5:f8:c6:60:8d:63:8b:bd:0c:97:dc: 61:2b:9f:be:11:37:ca:d9:46:5e:86:62:18:68:09: 32:05:93:70:bf:cf:44:35:f7:13:d7:e4:d1:60:29: af:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:19:55:B4:ED:FD:15:FC:1D:B5:E4:E7:F5:81:CF:61:E3:E7:1D:10 X509v3 Authority Key Identifier: keyid:AD:84:F4:BC:BE:B3:C9:36:5F:28:27:15:3B:A6:9C:ED:2A:99:12:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYT0vL6zyTZfKCcVO6ac7SqZEuI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:26:61:64:95:dc:68:1a:b5:43:75:fa:36:ca:46:86:99:17: 27:9e:e4:1c:de:2c:74:44:d0:09:bd:ab:fb:88:33:44:18:34: 0a:f6:82:d5:7e:a3:7e:64:b5:50:51:76:5a:90:e6:da:3a:4f: 67:7b:46:73:70:29:00:c7:5e:b5:a6:d7:58:c4:e3:d2:52:d2: 16:13:1e:49:82:2c:1b:e1:2c:bc:26:15:f5:08:0c:e1:a6:5e: a0:63:04:34:52:37:d9:7b:97:5d:3c:4d:41:9e:71:de:af:e4: 60:ee:b8:f3:28:0a:94:b4:d6:39:78:00:5f:d7:02:80:f1:6e: 78:db:c8:18:06:d7:ea:9d:cc:26:84:b8:48:75:80:5e:33:9c: 0d:26:07:f6:98:79:51:4d:53:54:5a:ee:01:71:a4:89:ca:d0: f3:37:f7:95:e8:ad:e5:f8:06:52:34:ee:ea:be:94:31:51:7c: 63:a8:ed:b3:19:58:f0:ea:06:b3:de:92:e6:f1:9d:37:6b:9a: 96:7c:d8:d2:c8:7a:25:45:d0:68:b0:b8:0e:66:e8:82:75:be: c5:c3:88:ee:0d:a1:39:6a:15:6e:c2:8c:85:94:be:60:fd:ba: e4:76:60:4e:b3:2b:62:d8:b7:43:be:e3:54:77:3d:07:f1:11: 0c:24:c5:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC1EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUY4QjYxMTAvBgNVBAUTKEFEODRGNEJDQkVCM0M5MzY1RjI4MjcxNTNCQTY5Q0VE MkE5OTEyRTIwHhcNMjUwNjMwMTkxODUwWhcNMjUwNzA3MTkxODUwWjAYMRYwFAYD VQQDEw02ODYyZTMxYi1jY2UwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1mF1vOJtk39TWeU8p0MnWOStXILQ1ZwY/2TpGNdtHXezoFG1IBlWEi18Sh3z Fzo19rgMoxNCkgLJuXNFWHTZsIJXa6VePP9hf6g0+N9UszQFVxBb/M7schfjQtTH 4Hur64H9LoJIHGOk0F8ZiaRxBFYX/ZHQYX4CqCZ2fFYLpRup1GWn4wq3nWt8B5cb kbpi74gWVCIxhO16w2uZ/Xk9NRuiQGjpIKhiNJXBVPqWIO3ZozJIc5kEOCq0j2PA AarFlFYc292OyVbccUmDURDg25mlglD7pfjGYI1ji70Ml9xhK5++ETfK2UZehmIY aAkyBZNwv89ENfcT1+TRYCmvSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPEZVbTt /RX8HbXk5/WBz2Hj5x0QMB8GA1UdIwQYMBaAFK2E9Ly+s8k2XygnFTumnO0qmRLi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjhCNi80MEU3RkFCQTNB QTYxMUVBQUM4RjE4NzVDNEY5QUUwMi9yWVQwdkw2enlUWmZLQ2NWTzZhYzdTcVpF dUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JZVDB2TDZ6eVRaZktDY1ZPNmFjN1NxWkV1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjhCNi80MEU3RkFCQTNBQTYxMUVBQUM4RjE4NzVDNEY5QUUwMi9yWVQwdkw2enlU WmZLQ2NWTzZhYzdTcVpFdUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOJmFkldxoGrVDdfo2ykaGmRcnnuQc3ix0RNAJvav7iDNEGDQK9oLV fqN+ZLVQUXZakObaOk9ne0ZzcCkAx161ptdYxOPSUtIWEx5Jgiwb4Sy8JhX1CAzh pl6gYwQ0UjfZe5ddPE1BnnHer+Rg7rjzKAqUtNY5eABf1wKA8W5428gYBtfqncwm hLhIdYBeM5wNJgf2mHlRTVNUWu4BcaSJytDzN/eV6K3l+AZSNO7qvpQxUXxjqO2z GVjw6gaz3pLm8Z03a5qWfNjSyHolRdBosLgOZuiCdb7Fw4juDaE5ahVuwoyFlL5g /brkdmBOsyti2LdDvuNUdz0H8REMJMXu -----END CERTIFICATE-----Generated at Tue Jul 1 20:59:41 2025 by rpki-client