$ rpki-client -vvf rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft File: YDUU_FCDUUDwM--oQ87pOWOWol0.mft (raw, json) Hash identifier: 1krbiPmmcVKBIavJrHchUPjd9BOQhvLW5UGs+BEbVB4= Subject key identifier: 07:7C:6D:0F:F7:97:43:B3:91:D5:2F:88:A5:75:6B:48:7E:5F:44:AE Authority key identifier: 60:35:14:FC:50:83:51:40:F0:33:EF:A8:43:CE:E9:39:63:96:A2:5D Certificate issuer: /CN=A91118FA/serialNumber=603514FC50835140F033EFA843CEE9396396A25D Certificate serial: 0B1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDUU_FCDUUDwM--oQ87pOWOWol0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft Manifest number: 0B18 Signing time: Fri 20 Jun 2025 19:10:17 +0000 Manifest this update: Fri 20 Jun 2025 19:10:16 +0000 Manifest next update: Fri 27 Jun 2025 19:10:16 +0000 Files and hashes: 1: YDUU_FCDUUDwM--oQ87pOWOWol0.crl (hash: qbeBKL8oq50caRTRemy4gRZ1N0kr/HjhDrH1b3DDAzM=) 2: 42EE36A240EC11EA875BC545C4F9AE02.roa (hash: YIrw4KxM8ISIt1Ah1KvT99pW3vrO49ALdJTT54SyTO8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.crl rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDUU_FCDUUDwM--oQ87pOWOWol0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 19:10:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2846 (0xb1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91118FA, serialNumber=603514FC50835140F033EFA843CEE9396396A25D Validity Not Before: Jun 20 19:10:16 2025 GMT Not After : Jun 27 19:10:16 2025 GMT Subject: CN=6855b218-a8d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:0a:04:95:ce:2b:e4:66:d4:64:f7:2a:30:ac: 6c:c7:87:eb:0c:4d:5d:e0:63:3b:a6:c5:65:ac:53: 5f:29:5d:b8:93:9c:d0:88:35:7f:bc:a8:2e:bb:14: 2c:bc:f2:4e:87:fe:70:c8:71:cf:60:a5:25:73:cc: da:e4:8c:f0:11:3e:c2:e0:28:78:13:7b:f3:c1:18: 05:c7:dc:64:02:86:85:98:d0:ba:24:f0:5b:1a:53: de:38:48:29:50:a0:59:67:d4:c4:b6:7c:b8:a8:c8: 8a:e5:b2:ba:77:81:3e:bb:ad:6e:9a:81:0c:32:ad: 2f:76:1e:37:a6:05:48:b4:6a:93:5c:c6:ef:1e:ab: dd:56:3e:6f:23:a8:22:8a:a0:bc:8e:53:ad:61:ae: 99:83:1c:d8:92:39:8d:38:57:2c:e3:97:e2:b0:b5: 80:59:4d:9d:16:1c:38:6a:f0:e5:0f:1b:1e:c4:83: 42:ce:38:20:06:f2:d3:d8:bb:87:5b:5f:89:16:01: e3:31:ca:e2:4c:b7:cd:a4:5a:61:df:10:d5:b6:da: f0:44:f2:08:fa:b1:9e:14:63:94:00:d7:1c:ab:bd: 7f:0b:b7:a8:4e:a4:c2:ac:de:cf:1d:8f:47:7c:41: 45:b3:99:49:7b:8e:d5:fb:03:42:78:ed:0d:86:f5: aa:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:7C:6D:0F:F7:97:43:B3:91:D5:2F:88:A5:75:6B:48:7E:5F:44:AE X509v3 Authority Key Identifier: keyid:60:35:14:FC:50:83:51:40:F0:33:EF:A8:43:CE:E9:39:63:96:A2:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDUU_FCDUUDwM--oQ87pOWOWol0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:6d:d8:bb:5f:45:f6:1e:ab:00:0e:c2:38:2c:f8:1a:39:a1: 82:ed:07:b3:4e:ec:fe:5d:63:02:96:71:b6:a9:ce:0b:56:ce: 34:0c:fa:43:3f:47:27:e2:59:96:6c:1d:df:d3:58:8a:8e:60: 77:fd:76:a5:dc:18:5a:36:70:f8:58:56:9e:f5:24:d9:b0:8a: cb:da:55:96:47:d5:1f:a9:7c:38:04:f6:db:e9:09:41:64:89: 8b:b9:94:81:f8:c3:90:02:dd:30:23:81:ac:ec:e6:12:64:f5: 20:ff:78:54:47:76:1b:e5:a3:12:8c:02:6f:40:52:94:5c:1b: da:11:a6:40:8b:31:29:7e:cf:f0:14:97:87:53:3a:e5:c8:56: 00:76:e7:fe:a9:e5:21:9c:8a:df:b5:49:7f:b7:88:61:a2:62: a4:70:75:d2:83:11:07:7b:0c:06:31:c1:ec:32:1b:34:17:50: 4a:05:9f:bc:a2:96:04:ec:31:28:5f:22:d4:17:88:ae:6c:b4: ab:91:29:4e:46:31:06:f2:48:14:6c:ff:65:4b:b5:85:92:99: 4a:1d:3d:af:15:a3:11:29:24:7f:10:b7:8d:b1:b5:ae:08:c9: 49:82:74:f6:e7:14:cf:9a:78:cc:72:b2:fa:1e:21:b7:c2:b0: 2a:80:28:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCx4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTE4RkExMTAvBgNVBAUTKDYwMzUxNEZDNTA4MzUxNDBGMDMzRUZBODQzQ0VFOTM5 NjM5NkEyNUQwHhcNMjUwNjIwMTkxMDE2WhcNMjUwNjI3MTkxMDE2WjAYMRYwFAYD VQQDEw02ODU1YjIxOC1hOGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5QoElc4r5GbUZPcqMKxsx4frDE1d4GM7psVlrFNfKV24k5zQiDV/vKguuxQs vPJOh/5wyHHPYKUlc8za5IzwET7C4Ch4E3vzwRgFx9xkAoaFmNC6JPBbGlPeOEgp UKBZZ9TEtny4qMiK5bK6d4E+u61umoEMMq0vdh43pgVItGqTXMbvHqvdVj5vI6gi iqC8jlOtYa6ZgxzYkjmNOFcs45fisLWAWU2dFhw4avDlDxsexINCzjggBvLT2LuH W1+JFgHjMcriTLfNpFph3xDVttrwRPII+rGeFGOUANccq71/C7eoTqTCrN7PHY9H fEFFs5lJe47V+wNCeO0NhvWqdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAd8bQ/3 l0OzkdUviKV1a0h+X0SuMB8GA1UdIwQYMBaAFGA1FPxQg1FA8DPvqEPO6TljlqJd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMThGQS85ODQyNDQ5QzQw RUExMUVBQkIwMUJENDJDNEY5QUUwMi9ZRFVVX0ZDRFVVRHdNLS1vUTg3cE9XT1dv bDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lEVVVfRkNEVVVEd00tLW9RODdwT1dPV29sMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MThGQS85ODQyNDQ5QzQwRUExMUVBQkIwMUJENDJDNEY5QUUwMi9ZRFVVX0ZDRFVV RHdNLS1vUTg3cE9XT1dvbDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpbdi7X0X2HqsADsI4LPgaOaGC7QezTuz+XWMClnG2qc4LVs40DPpD P0cn4lmWbB3f01iKjmB3/Xal3BhaNnD4WFae9STZsIrL2lWWR9UfqXw4BPbb6QlB ZImLuZSB+MOQAt0wI4Gs7OYSZPUg/3hUR3Yb5aMSjAJvQFKUXBvaEaZAizEpfs/w FJeHUzrlyFYAduf+qeUhnIrftUl/t4hhomKkcHXSgxEHewwGMcHsMhs0F1BKBZ+8 opYE7DEoXyLUF4iubLSrkSlORjEG8kgUbP9lS7WFkplKHT2vFaMRKSR/ELeNsbWu CMlJgnT25xTPmnjMcrL6HiG3wrAqgCj7 -----END CERTIFICATE-----Generated at Fri Jun 20 23:09:20 2025 by rpki-client