$ rpki-client -vvf rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.mft File: YZBA6DW609z1wgE5bYVxmVp6zFA.mft (raw, json) Hash identifier: j2klaCfPARYV+smhNoz8ql+5dCZsqYz1p7/5ib5WxoU= Subject key identifier: 6F:D7:C6:24:E9:B3:E3:5E:4B:05:56:99:20:34:22:66:15:D9:59:6A Authority key identifier: 61:90:40:E8:35:BA:D3:DC:F5:C2:01:39:6D:85:71:99:5A:7A:CC:50 Certificate issuer: /CN=A91FABEF/serialNumber=619040E835BAD3DCF5C201396D8571995A7ACC50 Certificate serial: 010A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YZBA6DW609z1wgE5bYVxmVp6zFA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.mft Manifest number: 0106 Signing time: Thu 03 Jul 2025 05:16:09 +0000 Manifest this update: Thu 03 Jul 2025 05:16:09 +0000 Manifest next update: Thu 10 Jul 2025 05:16:09 +0000 Files and hashes: 1: YZBA6DW609z1wgE5bYVxmVp6zFA.crl (hash: SRPtSdf092wsh0BV1H3r8hQ6Y28UppS2I8kXNIsSnKs=) 2: 8045E9A4CEEC11EEAFFC5E36C4F9AE02.roa (hash: QQ0CP8HHmI7PCShWjhNg26xSyERliRPL6u4e6U+9a/k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.crl rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YZBA6DW609z1wgE5bYVxmVp6zFA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 266 (0x10a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FABEF, serialNumber=619040E835BAD3DCF5C201396D8571995A7ACC50 Validity Not Before: Jul 3 05:16:09 2025 GMT Not After : Jul 10 05:16:09 2025 GMT Subject: CN=68661219-ff7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:d9:2c:e8:41:0b:d9:06:cf:cb:6a:05:39:a2: c1:a6:b2:3b:09:01:70:27:f9:48:16:14:21:f7:ca: 4c:47:63:21:0e:17:a8:9b:a0:bf:85:f9:8a:e8:43: b7:47:2a:b4:23:e3:ca:54:73:4c:4a:8b:5c:58:5c: cc:10:57:5d:cd:7d:d3:76:e9:ca:60:47:85:5a:80: 0f:b6:25:33:a0:c9:42:fe:6b:ab:6a:70:5a:60:e0: 8e:b6:b2:d2:34:bf:cb:f5:a5:5e:64:c0:ca:d8:ab: fc:77:ca:11:ee:63:76:2a:90:63:86:7c:c5:f0:3e: f9:27:94:19:fb:17:25:82:33:f8:3e:e0:42:a2:9d: 9e:7a:87:35:74:c1:d2:ad:f0:d2:18:8a:db:ef:48: e7:44:ee:f9:6d:ae:64:45:21:78:3b:50:80:b1:88: 52:59:ed:aa:f2:5f:e1:53:12:2b:64:5f:19:40:89: 2c:61:ea:b4:e2:08:9b:b2:92:6c:e0:97:a5:f7:20: b1:8f:35:46:e5:dd:bd:17:17:cd:08:79:97:ee:23: a3:fc:6d:00:83:c9:96:82:8c:6e:d6:2f:30:8e:71: 39:76:75:01:ce:ea:33:a5:93:77:15:bd:53:a0:ca: 91:5e:79:49:f0:02:21:6a:23:74:73:4a:be:e2:0d: 64:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:D7:C6:24:E9:B3:E3:5E:4B:05:56:99:20:34:22:66:15:D9:59:6A X509v3 Authority Key Identifier: keyid:61:90:40:E8:35:BA:D3:DC:F5:C2:01:39:6D:85:71:99:5A:7A:CC:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YZBA6DW609z1wgE5bYVxmVp6zFA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:3e:04:2d:60:b5:bc:7f:4a:fb:fd:bb:90:e5:49:e6:e7:94: 0e:d2:1b:52:7f:7f:40:53:28:ad:94:68:8c:c8:06:b8:81:ce: e6:4c:17:08:2b:69:6e:2c:14:d4:2e:a3:70:e8:c4:58:b4:ef: 3e:87:6d:1a:a1:2f:d9:ca:16:43:4d:fa:77:a8:f1:a7:71:9b: f5:12:25:ac:ea:bd:4a:cd:09:c4:2a:83:c4:23:68:78:f3:a0: 56:d4:7e:d1:f8:f2:69:73:5f:f1:91:5d:67:e7:46:15:d4:72: a0:35:06:40:5d:9d:66:6d:58:44:68:b0:2d:20:1d:bf:e8:a7: fc:90:bf:97:b4:1d:82:af:7f:6c:6c:c6:db:bd:42:b9:96:e5: 74:3c:b5:85:3a:82:17:78:39:56:fb:0f:91:a8:66:2a:1e:55: 66:27:d6:61:05:05:64:87:85:95:dd:cc:85:c1:35:5a:bc:57: b4:04:1b:cc:8b:75:53:fc:27:40:b9:0d:35:f3:4f:d5:b8:c4: 27:98:e4:bc:a0:c7:c4:c9:a4:17:f1:6c:64:99:0e:e8:f6:26: 86:77:9f:0b:22:c1:cd:55:71:f7:9a:5b:70:b2:66:c2:49:1d: ec:e9:02:6f:d7:9b:2f:05:d0:ee:36:11:f1:3f:19:2a:08:2b: 6d:00:70:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFCRUYxMTAvBgNVBAUTKDYxOTA0MEU4MzVCQUQzRENGNUMyMDEzOTZEODU3MTk5 NUE3QUNDNTAwHhcNMjUwNzAzMDUxNjA5WhcNMjUwNzEwMDUxNjA5WjAYMRYwFAYD VQQDEw02ODY2MTIxOS1mZjdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqtks6EEL2QbPy2oFOaLBprI7CQFwJ/lIFhQh98pMR2MhDheom6C/hfmK6EO3 Ryq0I+PKVHNMSotcWFzMEFddzX3TdunKYEeFWoAPtiUzoMlC/muranBaYOCOtrLS NL/L9aVeZMDK2Kv8d8oR7mN2KpBjhnzF8D75J5QZ+xclgjP4PuBCop2eeoc1dMHS rfDSGIrb70jnRO75ba5kRSF4O1CAsYhSWe2q8l/hUxIrZF8ZQIksYeq04gibspJs 4Jel9yCxjzVG5d29FxfNCHmX7iOj/G0Ag8mWgoxu1i8wjnE5dnUBzuozpZN3Fb1T oMqRXnlJ8AIhaiN0c0q+4g1kUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG/XxiTp s+NeSwVWmSA0ImYV2VlqMB8GA1UdIwQYMBaAFGGQQOg1utPc9cIBOW2FcZlaesxQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUJFRi9DMDc2NDU3MkNC MTkxMUVFODE1RkFCNjhDNEY5QUUwMi9ZWkJBNkRXNjA5ejF3Z0U1YllWeG1WcDZ6 RkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1laQkE2RFc2MDl6MXdnRTViWVZ4bVZwNnpGQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUJFRi9DMDc2NDU3MkNCMTkxMUVFODE1RkFCNjhDNEY5QUUwMi9ZWkJBNkRXNjA5 ejF3Z0U1YllWeG1WcDZ6RkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9PgQtYLW8f0r7/buQ5Unm55QO0htSf39AUyitlGiMyAa4gc7mTBcI K2luLBTULqNw6MRYtO8+h20aoS/ZyhZDTfp3qPGncZv1EiWs6r1KzQnEKoPEI2h4 86BW1H7R+PJpc1/xkV1n50YV1HKgNQZAXZ1mbVhEaLAtIB2/6Kf8kL+XtB2Cr39s bMbbvUK5luV0PLWFOoIXeDlW+w+RqGYqHlVmJ9ZhBQVkh4WV3cyFwTVavFe0BBvM i3VT/CdAuQ0180/VuMQnmOS8oMfEyaQX8WxkmQ7o9iaGd58LIsHNVXH3mltwsmbC SR3s6QJv15svBdDuNhHxPxkqCCttAHCU -----END CERTIFICATE-----Generated at Fri Jul 4 14:11:53 2025 by rpki-client