$ rpki-client -vvf rpki.apnic.net/member_repository/A91FECFD/37A04264AF7711EA8118311BC4F9AE02/Y35CcZzKBnZlOgprNKBujlSsBe8.mft File: Y35CcZzKBnZlOgprNKBujlSsBe8.mft (raw, json) Hash identifier: lLLZcckfV35Odwyukr+i+1SqOfzogqUHdHbH3vZp9Ng= Subject key identifier: 27:6F:D9:C2:1C:83:54:44:77:1E:AF:02:A7:FC:F0:E1:E6:68:65:F3 Authority key identifier: 63:7E:42:71:9C:CA:06:76:65:3A:0A:6B:34:A0:6E:8E:54:AC:05:EF Certificate issuer: /CN=A91FECFD/serialNumber=637E42719CCA0676653A0A6B34A06E8E54AC05EF Certificate serial: 08EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y35CcZzKBnZlOgprNKBujlSsBe8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FECFD/37A04264AF7711EA8118311BC4F9AE02/Y35CcZzKBnZlOgprNKBujlSsBe8.mft Manifest number: 08E9 Signing time: Mon 30 Jun 2025 20:33:34 +0000 Manifest this update: Mon 30 Jun 2025 20:33:34 +0000 Manifest next update: Mon 07 Jul 2025 20:33:34 +0000 Files and hashes: 1: Y35CcZzKBnZlOgprNKBujlSsBe8.crl (hash: QtyNk9PMFzqrrAcOPojOwK9dfpBhDjT2KlkZMrz6mwM=) 2: 995F3DCEAF7811EABCA9AC1DC4F9AE02.roa (hash: ZNkH5Sj7XHBs6ufHKPHidPlMntGP72EIG2BMLfQDnC4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FECFD/37A04264AF7711EA8118311BC4F9AE02/Y35CcZzKBnZlOgprNKBujlSsBe8.crl rsync://rpki.apnic.net/member_repository/A91FECFD/37A04264AF7711EA8118311BC4F9AE02/Y35CcZzKBnZlOgprNKBujlSsBe8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y35CcZzKBnZlOgprNKBujlSsBe8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 20:33:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2287 (0x8ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FECFD, serialNumber=637E42719CCA0676653A0A6B34A06E8E54AC05EF Validity Not Before: Jun 30 20:33:34 2025 GMT Not After : Jul 7 20:33:34 2025 GMT Subject: CN=6862f49e-8553 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:da:3f:df:65:22:71:ab:90:08:2b:79:34:a4: 66:02:ae:6f:af:aa:78:75:43:9f:5e:3f:92:a7:2d: b2:88:5f:24:7f:6a:df:8b:0a:02:61:95:94:2a:e4: 06:2f:93:19:58:67:85:fb:5c:d1:e5:ba:29:9d:20: aa:36:19:1a:a2:11:82:b8:c3:f8:3a:20:f6:dc:8f: f5:95:c9:c1:51:38:9a:b4:8c:89:c8:77:d3:1f:5a: a8:40:da:8d:a1:9d:a8:90:97:09:1a:8a:52:a1:50: 76:aa:c5:b4:ca:b3:49:a0:1c:19:cf:c8:0b:5e:ab: 50:e1:66:db:d3:dd:7d:c9:99:d5:07:bd:b6:52:e6: 8a:4a:67:c9:65:7a:f8:86:fd:f3:60:da:25:04:a8: 16:31:b3:2b:2e:69:a6:51:32:93:2d:5f:05:6a:60: a2:45:dd:3c:b6:3c:d8:68:0f:5a:0f:d4:c4:ca:d1: 9b:e8:fd:26:b9:28:a8:17:31:74:92:fc:c1:cd:32: 4c:42:e1:47:b7:f4:f9:3b:db:78:8d:11:7f:16:5d: a2:70:0d:70:17:86:72:31:12:70:d7:73:e1:d3:d5: 86:69:3a:53:a0:be:9b:db:2a:4a:24:8f:40:bf:c3: c3:a9:2e:44:7d:47:3d:d0:9a:69:0a:ef:79:18:80: e6:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:6F:D9:C2:1C:83:54:44:77:1E:AF:02:A7:FC:F0:E1:E6:68:65:F3 X509v3 Authority Key Identifier: keyid:63:7E:42:71:9C:CA:06:76:65:3A:0A:6B:34:A0:6E:8E:54:AC:05:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FECFD/37A04264AF7711EA8118311BC4F9AE02/Y35CcZzKBnZlOgprNKBujlSsBe8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y35CcZzKBnZlOgprNKBujlSsBe8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FECFD/37A04264AF7711EA8118311BC4F9AE02/Y35CcZzKBnZlOgprNKBujlSsBe8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:a8:83:4d:65:f9:c5:05:3b:2d:a0:c9:39:c0:88:99:f4:1b: eb:c8:be:06:e8:af:3f:5a:26:36:2a:83:71:c4:4c:f7:85:46: 75:16:e3:6c:ee:d6:69:c9:ba:34:f8:40:af:53:00:82:0d:7f: 17:a5:ff:1c:ec:af:23:91:3f:61:2d:45:30:01:fb:f8:58:78: c7:89:04:a2:5e:7f:a2:d1:a4:07:b7:ed:63:7b:e2:b6:8d:26: c2:3e:71:73:cf:73:6a:87:1b:90:62:ba:00:71:63:a4:53:95: 96:4e:a9:cf:20:04:d9:1f:86:75:f7:73:79:10:b6:30:db:a3: e6:a5:d8:e4:54:ed:6f:1c:9c:16:2b:50:8d:5b:9e:f7:a4:c5: 86:0a:ae:f5:1a:98:9e:e4:ef:57:27:43:07:8b:9a:a4:e4:22: dd:cf:56:2f:8b:7d:7c:44:ff:6a:df:ae:36:2c:b5:a2:b1:60: 12:d4:15:bb:fe:e0:de:18:5f:68:08:75:5e:1a:ef:46:78:ed: 07:bf:75:ac:2b:aa:33:5a:39:13:33:58:ce:f1:55:fb:bd:90: 5f:6d:31:62:00:24:83:38:89:bf:96:27:43:fd:92:f9:6e:11: 12:15:49:bf:41:ae:d1:ba:bb:bb:43:af:65:c8:c4:75:92:56: 3b:b4:02:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVDRkQxMTAvBgNVBAUTKDYzN0U0MjcxOUNDQTA2NzY2NTNBMEE2QjM0QTA2RThF NTRBQzA1RUYwHhcNMjUwNjMwMjAzMzM0WhcNMjUwNzA3MjAzMzM0WjAYMRYwFAYD VQQDEw02ODYyZjQ5ZS04NTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzto/32UicauQCCt5NKRmAq5vr6p4dUOfXj+Spy2yiF8kf2rfiwoCYZWUKuQG L5MZWGeF+1zR5bopnSCqNhkaohGCuMP4OiD23I/1lcnBUTiatIyJyHfTH1qoQNqN oZ2okJcJGopSoVB2qsW0yrNJoBwZz8gLXqtQ4Wbb0919yZnVB722UuaKSmfJZXr4 hv3zYNolBKgWMbMrLmmmUTKTLV8FamCiRd08tjzYaA9aD9TEytGb6P0muSioFzF0 kvzBzTJMQuFHt/T5O9t4jRF/Fl2icA1wF4ZyMRJw13Ph09WGaTpToL6b2ypKJI9A v8PDqS5EfUc90JppCu95GIDmQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCdv2cIc g1REdx6vAqf88OHmaGXzMB8GA1UdIwQYMBaAFGN+QnGcygZ2ZToKazSgbo5UrAXv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUNGRC8zN0EwNDI2NEFG NzcxMUVBODExODMxMUJDNEY5QUUwMi9ZMzVDY1p6S0JuWmxPZ3ByTktCdWpsU3NC ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kzNUNjWnpLQm5abE9ncHJOS0J1amxTc0JlOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RUNGRC8zN0EwNDI2NEFGNzcxMUVBODExODMxMUJDNEY5QUUwMi9ZMzVDY1p6S0Ju WmxPZ3ByTktCdWpsU3NCZTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzqINNZfnFBTstoMk5wIiZ9BvryL4G6K8/WiY2KoNxxEz3hUZ1FuNs 7tZpybo0+ECvUwCCDX8Xpf8c7K8jkT9hLUUwAfv4WHjHiQSiXn+i0aQHt+1je+K2 jSbCPnFzz3NqhxuQYroAcWOkU5WWTqnPIATZH4Z193N5ELYw26PmpdjkVO1vHJwW K1CNW573pMWGCq71Gpie5O9XJ0MHi5qk5CLdz1Yvi318RP9q3642LLWisWAS1BW7 /uDeGF9oCHVeGu9GeO0Hv3WsK6ozWjkTM1jO8VX7vZBfbTFiACSDOIm/lidD/ZL5 bhESFUm/Qa7Ruru7Q69lyMR1klY7tAIn -----END CERTIFICATE-----Generated at Wed Jul 2 05:09:41 2025 by rpki-client