$ rpki-client -vvf rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.mft File: 0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.mft (raw, json) Hash identifier: BDBJms2ziec49kbBXkpZljwhalQBOgSl8r1HVGSHrts= Subject key identifier: 6E:A4:F9:09:EF:04:11:01:D3:8F:3A:1C:87:05:42:7C:54:7D:16:EF Authority key identifier: D1:8F:98:A4:1C:0A:DC:8C:81:84:B8:26:A7:1F:3E:F2:7F:19:53:23 Certificate issuer: /CN=A91F1B39/serialNumber=D18F98A41C0ADC8C8184B826A71F3EF27F195323 Certificate serial: 0203 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.mft Manifest number: 0200 Signing time: Thu 03 Jul 2025 02:25:22 +0000 Manifest this update: Thu 03 Jul 2025 02:25:22 +0000 Manifest next update: Thu 10 Jul 2025 02:25:22 +0000 Files and hashes: 1: 0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.crl (hash: n9qRtq8X80rUNoFrMlg0LC6adq5Y46B/J5S0O6v69xw=) 2: C18E7856446C11EDA55DB951C4F9AE02.roa (hash: AKVXd/DH9YanLRhXJZMqC5LiMXYq5bZo14nqm8XdwR0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.crl rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 02:25:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 515 (0x203) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F1B39, serialNumber=D18F98A41C0ADC8C8184B826A71F3EF27F195323 Validity Not Before: Jul 3 02:25:22 2025 GMT Not After : Jul 10 02:25:22 2025 GMT Subject: CN=6865ea12-ff41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:13:4a:26:1f:9c:0e:04:24:bb:bf:a5:77:5c: 59:d3:6c:fb:3b:22:18:ee:a0:43:ce:8f:58:98:4d: 2a:aa:7f:50:de:83:a8:38:63:9b:6f:f4:7f:95:bd: ca:23:cc:53:2f:99:d1:d3:b8:56:e5:86:05:92:2f: 17:ca:89:a3:d3:47:00:09:72:b8:5c:9d:7d:38:62: 45:10:01:c5:9a:38:fe:06:75:fe:9a:d6:2d:a5:a6: 7d:4e:f3:8e:9d:bd:4a:c6:13:3d:ee:75:28:45:ac: 5f:12:3a:cb:22:14:3b:1f:f5:47:b8:48:28:79:f9: 6d:79:14:f6:96:f6:50:36:03:35:37:09:61:20:59: da:89:82:29:78:bd:b0:36:cb:6e:ef:c1:71:e4:32: f9:6a:7a:c6:d5:c9:c3:be:a3:40:cb:97:6d:e7:b7: 80:d3:b5:5d:b7:6f:c7:b8:68:42:96:8a:67:54:ad: dd:48:03:77:75:7b:c3:3a:5a:c1:30:82:b1:21:11: 23:2d:72:cf:b5:97:3b:c0:94:80:f2:83:4f:3e:21: 13:bb:e9:34:f8:32:6e:6b:89:a3:97:f7:46:13:ee: aa:68:4a:30:c5:61:c3:26:d6:dc:43:ef:28:f5:fd: cf:54:be:c6:8e:0e:61:b7:f2:76:eb:5a:7a:7f:cb: d5:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:A4:F9:09:EF:04:11:01:D3:8F:3A:1C:87:05:42:7C:54:7D:16:EF X509v3 Authority Key Identifier: keyid:D1:8F:98:A4:1C:0A:DC:8C:81:84:B8:26:A7:1F:3E:F2:7F:19:53:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:2d:cb:92:d0:02:cd:16:85:85:ed:8b:ea:90:23:f1:79:79: 98:6d:65:74:4f:39:57:52:e7:51:bf:1c:ea:ea:1d:89:ed:f3: 71:9c:21:1a:c9:8d:02:ee:3d:1e:47:7c:31:fa:2a:75:25:2f: 05:37:e6:d0:5b:5d:c7:c7:6d:1e:fe:ef:79:19:a2:a6:eb:51: cf:5e:ad:b5:01:3f:61:ea:1c:ca:08:05:ba:f5:48:ff:23:8f: 93:4b:12:11:40:cb:e3:e4:8a:9f:d9:4c:eb:00:b6:d3:e7:9c: 5f:c6:62:4f:c2:5c:c6:73:16:37:a7:84:98:7b:26:9a:92:9f: 1c:96:3b:40:6f:72:ee:0b:5d:e4:73:1f:1a:84:0f:5b:33:d1: 49:74:4b:0a:c6:dd:83:73:2f:8a:5d:39:c2:ce:0c:a4:b8:07: bc:6b:be:07:28:e9:e8:20:b7:e8:93:de:0d:e9:bb:ae:5c:f2: ca:65:35:97:5b:13:da:e6:be:c8:1e:b3:33:10:de:ff:23:d7: 4f:cc:13:82:6a:0b:5f:b9:01:01:d8:9d:50:44:af:14:3f:71: f8:a2:61:e9:2d:f1:0c:9e:49:25:86:19:ed:d1:0c:39:69:b8: e1:04:4d:12:ce:91:17:05:57:b9:51:49:4d:ef:f1:68:da:3a: bf:96:14:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjFCMzkxMTAvBgNVBAUTKEQxOEY5OEE0MUMwQURDOEM4MTg0QjgyNkE3MUYzRUYy N0YxOTUzMjMwHhcNMjUwNzAzMDIyNTIyWhcNMjUwNzEwMDIyNTIyWjAYMRYwFAYD VQQDEw02ODY1ZWExMi1mZjQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzRNKJh+cDgQku7+ld1xZ02z7OyIY7qBDzo9YmE0qqn9Q3oOoOGObb/R/lb3K I8xTL5nR07hW5YYFki8Xyomj00cACXK4XJ19OGJFEAHFmjj+BnX+mtYtpaZ9TvOO nb1KxhM97nUoRaxfEjrLIhQ7H/VHuEgoeflteRT2lvZQNgM1NwlhIFnaiYIpeL2w Nstu78Fx5DL5anrG1cnDvqNAy5dt57eA07Vdt2/HuGhClopnVK3dSAN3dXvDOlrB MIKxIREjLXLPtZc7wJSA8oNPPiETu+k0+DJua4mjl/dGE+6qaEowxWHDJtbcQ+8o 9f3PVL7Gjg5ht/J261p6f8vVVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG6k+Qnv BBEB0486HIcFQnxUfRbvMB8GA1UdIwQYMBaAFNGPmKQcCtyMgYS4JqcfPvJ/GVMj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMUIzOS9CNzY5OUQyQzQ0 NjkxMUVEQkU0RTc5NENDNEY5QUUwMi8wWS1ZcEJ3SzNJeUJoTGdtcHg4LThuOFpV eU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBZLVlwQndLM0l5QmhMZ21weDgtOG44WlV5TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MUIzOS9CNzY5OUQyQzQ0NjkxMUVEQkU0RTc5NENDNEY5QUUwMi8wWS1ZcEJ3SzNJ eUJoTGdtcHg4LThuOFpVeU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1LcuS0ALNFoWF7YvqkCPxeXmYbWV0TzlXUudRvxzq6h2J7fNxnCEa yY0C7j0eR3wx+ip1JS8FN+bQW13Hx20e/u95GaKm61HPXq21AT9h6hzKCAW69Uj/ I4+TSxIRQMvj5Iqf2UzrALbT55xfxmJPwlzGcxY3p4SYeyaakp8cljtAb3LuC13k cx8ahA9bM9FJdEsKxt2Dcy+KXTnCzgykuAe8a74HKOnoILfok94N6buuXPLKZTWX WxPa5r7IHrMzEN7/I9dPzBOCagtfuQEB2J1QRK8UP3H4omHpLfEMnkklhhnt0Qw5 abjhBE0SzpEXBVe5UUlN7/Fo2jq/lhRD -----END CERTIFICATE-----Generated at Fri Jul 4 08:20:49 2025 by rpki-client