$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA66B/142BCB96C4FA11ED9BDF3157C4F9AE02/YmfJfrSg3wHtvW-dQahqh54CeX8.mft File: YmfJfrSg3wHtvW-dQahqh54CeX8.mft (raw, json) Hash identifier: 33Cr+J70mx9BQJsl7PlTN0fYwjk9MgQ7OOtzpsEeWsQ= Subject key identifier: F2:25:9F:89:46:9E:04:2C:2B:6A:F6:99:E4:7B:0A:1A:19:DD:58:7C Authority key identifier: 62:67:C9:7E:B4:A0:DF:01:ED:BD:6F:9D:41:A8:6A:87:9E:02:79:7F Certificate issuer: /CN=A91FA66B/serialNumber=6267C97EB4A0DF01EDBD6F9D41A86A879E02797F Certificate serial: 01B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YmfJfrSg3wHtvW-dQahqh54CeX8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA66B/142BCB96C4FA11ED9BDF3157C4F9AE02/YmfJfrSg3wHtvW-dQahqh54CeX8.mft Manifest number: 01B5 Signing time: Thu 03 Jul 2025 03:16:18 +0000 Manifest this update: Thu 03 Jul 2025 03:16:18 +0000 Manifest next update: Thu 10 Jul 2025 03:16:18 +0000 Files and hashes: 1: YmfJfrSg3wHtvW-dQahqh54CeX8.crl (hash: /ZXGpAyuorQuq3z5ZBiJIOnzwcyZro/MjjpHHI8ac/U=) 2: B2DE2498C4FD11ED909F2770C4F9AE02.roa (hash: sz+mmIZs/29Io2xKT3w1Go850hnuQbV97uqO5OCD7zA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA66B/142BCB96C4FA11ED9BDF3157C4F9AE02/YmfJfrSg3wHtvW-dQahqh54CeX8.crl rsync://rpki.apnic.net/member_repository/A91FA66B/142BCB96C4FA11ED9BDF3157C4F9AE02/YmfJfrSg3wHtvW-dQahqh54CeX8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YmfJfrSg3wHtvW-dQahqh54CeX8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 440 (0x1b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA66B, serialNumber=6267C97EB4A0DF01EDBD6F9D41A86A879E02797F Validity Not Before: Jul 3 03:16:18 2025 GMT Not After : Jul 10 03:16:18 2025 GMT Subject: CN=6865f602-f11f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:36:d4:4d:6c:d9:79:91:a5:50:07:90:d5:d3: 46:47:00:37:3b:82:cc:f9:46:76:56:bb:e3:c6:17: 36:9e:bc:e4:fc:73:22:24:c4:c8:26:e8:eb:ad:5b: be:cd:43:2d:cf:c4:e9:bc:29:75:fc:48:ff:33:ab: c9:83:c8:30:ab:97:1f:66:ff:56:00:14:12:73:09: 16:51:b3:86:2e:78:7b:70:32:84:15:46:e4:23:de: 6e:71:ee:fd:57:09:c0:63:09:0b:cd:c7:9d:a1:2a: 60:ab:ae:bf:66:2b:68:97:88:9b:14:c7:10:22:83: de:ac:e8:89:a4:7d:70:bd:be:34:48:4c:f1:de:4a: 68:52:e1:f0:dc:38:a3:ee:79:9b:98:69:a6:d4:93: bc:bb:1a:d3:80:09:4b:d5:15:29:31:ad:34:9a:7a: a4:b7:93:c0:16:98:6c:62:73:f5:dc:0d:8b:fb:e2: c4:0e:33:c6:8e:16:b6:30:b1:94:0b:85:40:93:4a: 8b:8e:0d:d0:f1:c9:cb:db:8c:14:b2:8e:b7:c9:0b: 8f:53:36:15:7d:a7:00:75:41:33:93:37:6c:35:b8: 0b:20:df:bf:86:e6:fd:13:dc:45:e1:b2:15:60:70: 38:84:01:3b:0a:6e:87:38:e5:40:cf:8e:4c:66:cf: 14:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:25:9F:89:46:9E:04:2C:2B:6A:F6:99:E4:7B:0A:1A:19:DD:58:7C X509v3 Authority Key Identifier: keyid:62:67:C9:7E:B4:A0:DF:01:ED:BD:6F:9D:41:A8:6A:87:9E:02:79:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA66B/142BCB96C4FA11ED9BDF3157C4F9AE02/YmfJfrSg3wHtvW-dQahqh54CeX8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YmfJfrSg3wHtvW-dQahqh54CeX8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA66B/142BCB96C4FA11ED9BDF3157C4F9AE02/YmfJfrSg3wHtvW-dQahqh54CeX8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:90:59:2a:b5:3e:95:59:b6:01:a3:7e:c2:f4:1a:1a:0f:10: 8c:9b:fd:a9:2f:78:51:45:4e:e2:b4:c5:d7:1e:41:84:5a:7d: cf:ee:6f:9c:e4:01:91:94:00:28:db:76:e0:98:36:a5:8d:f3: 81:5e:36:29:02:7b:02:1e:91:ac:35:bd:4e:df:e1:a6:e7:c9: 95:c6:64:c5:b9:35:db:96:a7:7b:41:91:1d:62:e3:63:8e:f9: 65:87:ea:80:04:cf:35:bd:a6:e2:3a:85:a1:f8:d0:39:fb:4f: b6:1e:c3:9b:53:51:a0:81:9d:7b:2c:df:2f:39:ec:f5:96:ba: 7c:f6:28:38:01:b6:77:e1:9c:c8:47:11:ef:b8:5c:e2:cb:d9: 27:27:36:11:19:86:85:c7:d7:6d:84:31:d4:23:3a:e2:e6:fe: 13:bd:f4:40:69:ba:70:07:c8:be:50:93:19:2e:83:49:12:66: c9:63:54:96:62:9a:05:55:cd:08:39:f6:cb:bb:a9:49:c3:2c: 63:b2:42:42:46:6e:fe:49:1b:08:a4:84:99:b9:9a:ba:5a:27: 09:39:c0:1f:c7:ce:60:88:23:5b:42:3d:8c:b5:eb:31:a1:04: 40:f9:80:cd:3e:22:ba:2b:81:16:74:cc:9d:16:5d:0b:c9:58: 9b:ab:87:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE2NkIxMTAvBgNVBAUTKDYyNjdDOTdFQjRBMERGMDFFREJENkY5RDQxQTg2QTg3 OUUwMjc5N0YwHhcNMjUwNzAzMDMxNjE4WhcNMjUwNzEwMDMxNjE4WjAYMRYwFAYD VQQDEw02ODY1ZjYwMi1mMTFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwTbUTWzZeZGlUAeQ1dNGRwA3O4LM+UZ2Vrvjxhc2nrzk/HMiJMTIJujrrVu+ zUMtz8TpvCl1/Ej/M6vJg8gwq5cfZv9WABQScwkWUbOGLnh7cDKEFUbkI95uce79 VwnAYwkLzcedoSpgq66/Zitol4ibFMcQIoPerOiJpH1wvb40SEzx3kpoUuHw3Dij 7nmbmGmm1JO8uxrTgAlL1RUpMa00mnqkt5PAFphsYnP13A2L++LEDjPGjha2MLGU C4VAk0qLjg3Q8cnL24wUso63yQuPUzYVfacAdUEzkzdsNbgLIN+/hub9E9xF4bIV YHA4hAE7Cm6HOOVAz45MZs8U1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPIln4lG ngQsK2r2meR7ChoZ3Vh8MB8GA1UdIwQYMBaAFGJnyX60oN8B7b1vnUGoaoeeAnl/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTY2Qi8xNDJCQ0I5NkM0 RkExMUVEOUJERjMxNTdDNEY5QUUwMi9ZbWZKZnJTZzN3SHR2Vy1kUWFocWg1NENl WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ltZkpmclNnM3dIdHZXLWRRYWhxaDU0Q2VYOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTY2Qi8xNDJCQ0I5NkM0RkExMUVEOUJERjMxNTdDNEY5QUUwMi9ZbWZKZnJTZzN3 SHR2Vy1kUWFocWg1NENlWDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEkFkqtT6VWbYBo37C9BoaDxCMm/2pL3hRRU7itMXXHkGEWn3P7m+c 5AGRlAAo23bgmDaljfOBXjYpAnsCHpGsNb1O3+Gm58mVxmTFuTXblqd7QZEdYuNj jvllh+qABM81vabiOoWh+NA5+0+2HsObU1GggZ17LN8vOez1lrp89ig4AbZ34ZzI RxHvuFziy9knJzYRGYaFx9dthDHUIzri5v4TvfRAabpwB8i+UJMZLoNJEmbJY1SW YpoFVc0IOfbLu6lJwyxjskJCRm7+SRsIpISZuZq6WicJOcAfx85giCNbQj2Mtesx oQRA+YDNPiK6K4EWdMydFl0LyVibq4fY -----END CERTIFICATE-----Generated at Thu Jul 3 09:41:00 2025 by rpki-client