$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft File: YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft (raw, json) Hash identifier: sSIzkR2GY/gMQ75PlvXNieEP5V2U84gJz2ERuu4lbw0= Subject key identifier: 50:52:CD:F9:51:6C:6E:57:A7:EF:59:8A:19:1F:03:17:D5:6E:46:83 Authority key identifier: 60:5B:DA:3D:7A:DC:C0:2D:AC:73:86:AE:39:14:7A:64:65:93:A8:9D Certificate issuer: /CN=A91FC01A/serialNumber=605BDA3D7ADCC02DAC7386AE39147A646593A89D Certificate serial: 0326 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YFvaPXrcwC2sc4auORR6ZGWTqJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft Manifest number: 0322 Signing time: Thu 03 Jul 2025 01:32:29 +0000 Manifest this update: Thu 03 Jul 2025 01:32:29 +0000 Manifest next update: Thu 10 Jul 2025 01:32:29 +0000 Files and hashes: 1: YFvaPXrcwC2sc4auORR6ZGWTqJ0.crl (hash: wyc+mtvNaCfRYEFsu+NHhCE0WSrlc870+Ig3bQuBats=) 2: 426D5CEAD12111ECBBAC1B7DC4F9AE02.roa (hash: PuEOajLEUChOIrthB/05mvECIB7cIWFQzgLmdVBLTBc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.crl rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YFvaPXrcwC2sc4auORR6ZGWTqJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:32:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 806 (0x326) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC01A, serialNumber=605BDA3D7ADCC02DAC7386AE39147A646593A89D Validity Not Before: Jul 3 01:32:29 2025 GMT Not After : Jul 10 01:32:29 2025 GMT Subject: CN=6865ddad-191e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:50:32:15:a4:38:b7:15:bf:d4:59:df:16:98: 10:a7:31:19:ea:34:c6:a6:65:11:92:cc:8b:0f:aa: 98:59:96:96:b9:e3:10:66:94:cd:77:72:e0:2f:0a: e0:9c:70:a0:3e:d0:b1:b5:a2:de:0d:3f:1f:9a:98: 2c:f0:49:f1:fd:d7:66:fd:c4:14:c4:be:39:ac:d8: 00:1f:79:a3:fd:3b:c4:a3:12:96:14:9c:f1:31:4a: 15:3e:8a:b4:f2:b7:99:fb:64:d9:82:77:45:33:2f: 7a:e5:e8:02:24:5a:50:ce:7b:42:92:53:1a:4e:89: ba:11:d7:ee:4d:5d:85:4e:74:80:6b:10:3b:60:4b: 5b:5a:f3:6d:f0:81:d7:01:ff:6e:83:5b:45:0e:13: ec:e9:49:55:cd:e2:00:eb:e6:87:4a:43:67:21:91: b8:cd:cc:ec:5a:77:8d:51:2e:cc:4b:9c:ce:bd:b0: 70:4a:51:5b:61:d4:94:40:0c:a4:82:49:84:35:85: d9:33:fc:e8:59:28:78:f7:8e:a6:b6:33:1d:b6:6c: a8:a4:42:be:87:0a:6f:78:0b:e8:58:26:52:cb:85: 62:62:c8:75:22:89:0c:78:35:d3:61:2e:39:a4:e0: a8:9a:d8:64:d0:07:d5:7a:81:37:44:d8:66:2d:45: f6:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:52:CD:F9:51:6C:6E:57:A7:EF:59:8A:19:1F:03:17:D5:6E:46:83 X509v3 Authority Key Identifier: keyid:60:5B:DA:3D:7A:DC:C0:2D:AC:73:86:AE:39:14:7A:64:65:93:A8:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YFvaPXrcwC2sc4auORR6ZGWTqJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:61:af:cf:62:dd:45:5c:ec:db:9c:33:21:d3:aa:cc:c9:73: ab:25:51:6b:c7:c5:d0:f5:29:f8:59:fa:a3:84:e3:07:40:fc: 14:7c:bb:18:51:ea:2e:73:14:c7:c9:85:70:2b:9c:49:c7:31: bc:1f:b1:45:56:21:75:cf:f4:7f:27:8d:18:59:44:00:3b:1a: ed:98:5c:75:d0:c1:ff:88:c2:cf:18:d2:39:64:dd:fe:77:89: c2:b1:7f:cd:a8:ce:f3:4e:15:d7:34:ec:bc:99:99:f9:5d:18: c8:c2:59:1e:3d:93:44:fb:96:ee:98:88:da:07:c7:ee:6c:d5: 57:7a:8a:eb:1d:0e:17:81:8b:9c:6a:ad:5d:87:e1:c0:28:29: 36:53:0b:93:d4:4d:5e:4c:4f:3f:0a:f6:85:47:06:7d:16:95: 29:0a:2f:55:da:f7:82:39:b7:b5:80:33:5e:14:cd:5a:b2:38: 70:61:76:62:24:3f:3f:bd:e5:b0:7f:a6:9d:32:60:40:0c:2b: c7:d4:e9:1e:0c:20:3d:a7:c6:d3:80:51:46:34:ac:0d:19:e8: 2f:34:91:b1:6c:b1:5b:24:a1:69:ae:52:c2:27:05:8d:e8:df: f0:67:29:c0:29:a8:7d:f0:dc:91:eb:cb:15:1e:4e:79:66:e9: 37:93:02:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAyYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkMwMUExMTAvBgNVBAUTKDYwNUJEQTNEN0FEQ0MwMkRBQzczODZBRTM5MTQ3QTY0 NjU5M0E4OUQwHhcNMjUwNzAzMDEzMjI5WhcNMjUwNzEwMDEzMjI5WjAYMRYwFAYD VQQDEw02ODY1ZGRhZC0xOTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyFAyFaQ4txW/1FnfFpgQpzEZ6jTGpmURksyLD6qYWZaWueMQZpTNd3LgLwrg nHCgPtCxtaLeDT8fmpgs8Enx/ddm/cQUxL45rNgAH3mj/TvEoxKWFJzxMUoVPoq0 8reZ+2TZgndFMy965egCJFpQzntCklMaTom6EdfuTV2FTnSAaxA7YEtbWvNt8IHX Af9ug1tFDhPs6UlVzeIA6+aHSkNnIZG4zczsWneNUS7MS5zOvbBwSlFbYdSUQAyk gkmENYXZM/zoWSh4946mtjMdtmyopEK+hwpveAvoWCZSy4ViYsh1IokMeDXTYS45 pOComthk0AfVeoE3RNhmLUX2RwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFBSzflR bG5Xp+9ZihkfAxfVbkaDMB8GA1UdIwQYMBaAFGBb2j163MAtrHOGrjkUemRlk6id MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzAxQS8wRjg1MDE0Q0Qx MUQxMUVDODE2OTYzNjNDNEY5QUUwMi9ZRnZhUFhyY3dDMnNjNGF1T1JSNlpHV1Rx SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lGdmFQWHJjd0Myc2M0YXVPUlI2WkdXVHFKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzAxQS8wRjg1MDE0Q0QxMUQxMUVDODE2OTYzNjNDNEY5QUUwMi9ZRnZhUFhyY3dD MnNjNGF1T1JSNlpHV1RxSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWYa/PYt1FXOzbnDMh06rMyXOrJVFrx8XQ9Sn4WfqjhOMHQPwUfLsY UeoucxTHyYVwK5xJxzG8H7FFViF1z/R/J40YWUQAOxrtmFx10MH/iMLPGNI5ZN3+ d4nCsX/NqM7zThXXNOy8mZn5XRjIwlkePZNE+5bumIjaB8fubNVXeorrHQ4XgYuc aq1dh+HAKCk2UwuT1E1eTE8/CvaFRwZ9FpUpCi9V2veCObe1gDNeFM1asjhwYXZi JD8/veWwf6adMmBADCvH1OkeDCA9p8bTgFFGNKwNGegvNJGxbLFbJKFprlLCJwWN 6N/wZynAKah98NyR68sVHk55Zuk3kwLh -----END CERTIFICATE-----Generated at Thu Jul 3 08:06:57 2025 by rpki-client