$ rpki-client -vvf rpki.apnic.net/member_repository/A911A0B9/2E06D6DE6FB811ECA5677C78C4F9AE02/dBBmhNVnVypTS-yentek_D2x4sY.mft File: dBBmhNVnVypTS-yentek_D2x4sY.mft (raw, json) Hash identifier: XYmTm0XpzsGf64Ov8cAOsIBraNosryNQ55/PP4+9+hs= Subject key identifier: 72:98:6B:BB:2B:70:17:5E:BB:0B:1E:33:29:E5:AE:91:B6:DF:83:2E Authority key identifier: 74:10:66:84:D5:67:57:2A:53:4B:EC:9E:9E:D7:A4:FC:3D:B1:E2:C6 Certificate issuer: /CN=A911A0B9/serialNumber=74106684D567572A534BEC9E9ED7A4FC3DB1E2C6 Certificate serial: 0422 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dBBmhNVnVypTS-yentek_D2x4sY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A0B9/2E06D6DE6FB811ECA5677C78C4F9AE02/dBBmhNVnVypTS-yentek_D2x4sY.mft Manifest number: 0419 Signing time: Thu 12 Jun 2025 23:58:40 +0000 Manifest this update: Thu 12 Jun 2025 23:58:39 +0000 Manifest next update: Thu 19 Jun 2025 23:58:39 +0000 Files and hashes: 1: dBBmhNVnVypTS-yentek_D2x4sY.crl (hash: OmY3HczELRvOXfge1ZNEXcws7tApt9PtPLdupJ+Oyh8=) 2: 8C891848A8C511EC8F560C42C4F9AE02.roa (hash: lF0CFYohN2oja301WKea0PFfbTXXVh54QBYO4Syk2bo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A0B9/2E06D6DE6FB811ECA5677C78C4F9AE02/dBBmhNVnVypTS-yentek_D2x4sY.crl rsync://rpki.apnic.net/member_repository/A911A0B9/2E06D6DE6FB811ECA5677C78C4F9AE02/dBBmhNVnVypTS-yentek_D2x4sY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dBBmhNVnVypTS-yentek_D2x4sY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 23:58:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1058 (0x422) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A0B9, serialNumber=74106684D567572A534BEC9E9ED7A4FC3DB1E2C6 Validity Not Before: Jun 12 23:58:39 2025 GMT Not After : Jun 19 23:58:39 2025 GMT Subject: CN=684b69af-6f5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:de:a7:21:21:c2:0d:26:63:e4:cb:14:26:cf: bb:04:98:15:eb:ea:7d:fd:1e:4c:7c:b8:53:91:54: a9:54:ff:64:d1:cc:02:5d:43:32:3f:85:68:c6:7b: 2d:7e:c7:51:d3:8b:fe:e9:c6:89:f0:2d:c1:ed:6c: 31:2e:49:3d:a9:86:13:cf:b0:a5:2c:29:0e:bb:1b: 55:f2:7b:05:e8:87:fb:8f:a0:8e:2f:64:62:63:40: c2:ff:9b:49:0f:63:ab:da:0b:d2:73:d9:79:2c:a7: 40:d8:4e:10:c8:f2:fb:73:f7:c5:ae:6a:92:43:7c: 1b:4b:f4:00:8b:0e:b0:df:a4:7d:2e:ca:d9:0d:32: 70:89:70:47:43:04:3d:fb:da:7e:29:59:6f:f6:65: 37:8e:f2:d2:10:d2:d5:3b:62:87:53:b8:92:9c:f2: d6:8e:54:81:8b:f7:de:17:e3:2c:bd:af:45:89:bd: d6:cd:4e:1f:97:44:74:8f:63:c7:0e:ca:b9:8c:61: f5:36:1b:48:5e:00:cc:6d:a7:7c:0f:49:af:d6:28: 00:09:7b:54:01:65:9f:1c:de:40:1c:97:31:d9:8e: d9:11:ca:96:f5:0a:2f:c8:cd:c7:50:63:ab:4c:cf: 65:69:04:da:dd:39:84:15:ff:ad:8d:5e:ea:63:54: 8c:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:98:6B:BB:2B:70:17:5E:BB:0B:1E:33:29:E5:AE:91:B6:DF:83:2E X509v3 Authority Key Identifier: keyid:74:10:66:84:D5:67:57:2A:53:4B:EC:9E:9E:D7:A4:FC:3D:B1:E2:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A0B9/2E06D6DE6FB811ECA5677C78C4F9AE02/dBBmhNVnVypTS-yentek_D2x4sY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dBBmhNVnVypTS-yentek_D2x4sY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A0B9/2E06D6DE6FB811ECA5677C78C4F9AE02/dBBmhNVnVypTS-yentek_D2x4sY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:6a:9d:f7:26:d9:02:b3:ac:51:7c:aa:17:77:af:0e:b8:20: fc:bf:f6:6d:23:fa:1b:23:7a:94:1c:0f:51:3e:a6:7b:19:2f: 09:1c:a7:86:77:25:02:f6:f0:bf:b7:bb:d0:ba:12:ce:cd:23: c8:6b:42:97:49:16:e5:59:d8:36:24:ce:e1:bb:9a:b3:fe:a9: bd:e2:69:80:37:f0:eb:d9:58:12:92:b1:a2:6d:8c:9d:8a:52: 6b:50:c8:cc:ec:59:15:4b:8b:19:eb:46:d2:9c:6c:ad:44:0d: fa:34:67:5d:12:3c:30:af:4c:14:51:75:3e:16:a6:7e:7d:24: 43:5e:4d:34:38:99:d2:27:c2:81:9b:d2:3d:65:75:58:52:6e: 07:48:04:c4:7e:8e:c5:f6:75:9b:14:b8:af:a1:d3:b4:ea:b0: 1a:31:5a:2f:6f:96:3f:b2:50:2c:ac:9e:7a:4a:1a:bf:4e:f9: ad:c7:73:39:2f:a5:54:89:52:df:5a:c1:e7:56:e5:69:ba:77: 58:98:cf:d4:a1:f5:6e:37:d5:2f:a3:46:c9:6b:8d:ab:c5:da: e3:37:c6:81:1c:97:66:ba:91:37:eb:14:5b:d5:26:ca:3e:b6: 01:41:79:95:0f:f9:74:8f:fb:97:e9:43:f2:ee:ae:bb:e0:29: 45:ee:dd:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUEwQjkxMTAvBgNVBAUTKDc0MTA2Njg0RDU2NzU3MkE1MzRCRUM5RTlFRDdBNEZD M0RCMUUyQzYwHhcNMjUwNjEyMjM1ODM5WhcNMjUwNjE5MjM1ODM5WjAYMRYwFAYD VQQDEw02ODRiNjlhZi02ZjVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtN6nISHCDSZj5MsUJs+7BJgV6+p9/R5MfLhTkVSpVP9k0cwCXUMyP4Voxnst fsdR04v+6caJ8C3B7WwxLkk9qYYTz7ClLCkOuxtV8nsF6If7j6COL2RiY0DC/5tJ D2Or2gvSc9l5LKdA2E4QyPL7c/fFrmqSQ3wbS/QAiw6w36R9LsrZDTJwiXBHQwQ9 +9p+KVlv9mU3jvLSENLVO2KHU7iSnPLWjlSBi/feF+Msva9Fib3WzU4fl0R0j2PH Dsq5jGH1NhtIXgDMbad8D0mv1igACXtUAWWfHN5AHJcx2Y7ZEcqW9QovyM3HUGOr TM9laQTa3TmEFf+tjV7qY1SMvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHKYa7sr cBdeuwseMynlrpG234MuMB8GA1UdIwQYMBaAFHQQZoTVZ1cqU0vsnp7XpPw9seLG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTBCOS8yRTA2RDZERTZG QjgxMUVDQTU2NzdDNzhDNEY5QUUwMi9kQkJtaE5WblZ5cFRTLXllbnRla19EMng0 c1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RCQm1oTlZuVnlwVFMteWVudGVrX0QyeDRzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QTBCOS8yRTA2RDZERTZGQjgxMUVDQTU2NzdDNzhDNEY5QUUwMi9kQkJtaE5WblZ5 cFRTLXllbnRla19EMng0c1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABap33JtkCs6xRfKoXd68OuCD8v/ZtI/obI3qUHA9RPqZ7GS8JHKeG dyUC9vC/t7vQuhLOzSPIa0KXSRblWdg2JM7hu5qz/qm94mmAN/Dr2VgSkrGibYyd ilJrUMjM7FkVS4sZ60bSnGytRA36NGddEjwwr0wUUXU+FqZ+fSRDXk00OJnSJ8KB m9I9ZXVYUm4HSATEfo7F9nWbFLivodO06rAaMVovb5Y/slAsrJ56Shq/Tvmtx3M5 L6VUiVLfWsHnVuVpundYmM/UofVuN9Uvo0bJa42rxdrjN8aBHJdmupE36xRb1SbK PrYBQXmVD/l0j/uX6UPy7q674ClF7t1q -----END CERTIFICATE-----Generated at Sat Jun 14 19:39:56 2025 by rpki-client