$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft File: yozvXh2MPaWsm67lsZbvBmCaOVk.mft (raw, json) Hash identifier: wB85TB52UrnfpuzGXY0bRSMZVGOa37h9nig4kkY3hUM= Subject key identifier: AD:D9:AE:D1:9F:36:52:16:D3:E7:EB:AA:F0:E4:11:81:CA:80:0B:5E Authority key identifier: CA:8C:EF:5E:1D:8C:3D:A5:AC:9B:AE:E5:B1:96:EF:06:60:9A:39:59 Certificate issuer: /CN=A911B5BA/serialNumber=CA8CEF5E1D8C3DA5AC9BAEE5B196EF06609A3959 Certificate serial: 0B27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yozvXh2MPaWsm67lsZbvBmCaOVk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft Manifest number: 0B25 Signing time: Sat 14 Jun 2025 19:02:56 +0000 Manifest this update: Sat 14 Jun 2025 19:02:55 +0000 Manifest next update: Sat 21 Jun 2025 19:02:55 +0000 Files and hashes: 1: yozvXh2MPaWsm67lsZbvBmCaOVk.crl (hash: QrbmsR6a9dcmget4dV94w9EmkVCtDAAuqE1IOx4TnmY=) 2: 410BAD2095F011EFA9137C67C4F9AE02.roa (hash: SNO/bBZDGGjsIOKkc1Q9a6n7NxtIrWP6e7L/IhWULh8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.crl rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yozvXh2MPaWsm67lsZbvBmCaOVk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 19:02:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2855 (0xb27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5BA, serialNumber=CA8CEF5E1D8C3DA5AC9BAEE5B196EF06609A3959 Validity Not Before: Jun 14 19:02:55 2025 GMT Not After : Jun 21 19:02:55 2025 GMT Subject: CN=684dc760-621c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:3a:f6:c5:60:7e:b1:83:34:32:c7:ff:1b:ca: 38:50:ef:da:ee:f5:a8:13:e8:e4:80:7c:f1:d5:52: 47:9b:ed:24:26:95:17:16:98:ea:60:52:11:9a:93: da:b5:a5:74:69:d9:8e:15:3e:1b:0d:4b:d6:c3:23: 1b:99:de:6e:f7:d0:62:6e:6a:48:ce:37:0c:2e:89: c3:75:54:8a:23:26:1a:4c:80:12:eb:20:67:44:da: 4b:a0:f0:5a:c6:39:39:f1:59:e3:ff:38:af:09:bd: f6:11:e0:21:53:7d:d9:d1:84:28:60:e2:bd:04:ba: 2f:47:b2:15:a3:6c:cb:c4:c2:54:1b:94:23:e4:0c: 76:e5:5a:36:91:3e:f6:eb:d3:67:0f:45:52:a9:c1: 24:96:83:9b:2b:e1:21:45:aa:2b:da:cf:43:7b:a3: 28:a7:c3:e5:38:d1:68:aa:35:2b:96:19:b0:9b:a9: af:51:6f:a0:72:49:fb:cf:0f:91:39:02:34:eb:7d: c5:fd:06:c4:9c:f6:82:93:11:f5:9e:c6:df:79:fd: 26:fd:2e:26:63:58:d9:4a:d0:7d:ca:c8:5d:63:40: 0f:c1:96:17:77:b7:86:19:93:d9:14:c6:1d:39:52: c9:51:55:5f:30:b0:49:6f:ae:17:eb:c6:71:25:6e: f8:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:D9:AE:D1:9F:36:52:16:D3:E7:EB:AA:F0:E4:11:81:CA:80:0B:5E X509v3 Authority Key Identifier: keyid:CA:8C:EF:5E:1D:8C:3D:A5:AC:9B:AE:E5:B1:96:EF:06:60:9A:39:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yozvXh2MPaWsm67lsZbvBmCaOVk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:e1:c5:20:74:98:9c:4b:1c:7d:b5:37:2a:bb:73:fc:92:00: 24:f3:1a:6f:28:81:0f:4f:de:47:b0:c9:9c:d1:94:a3:df:60: cc:cd:fd:54:7f:8e:8f:07:e3:b6:56:65:ca:f1:86:3f:71:d8: 38:a7:ff:5b:aa:cb:67:3a:ee:2a:27:3d:bc:03:9b:cc:30:3d: ff:ad:c5:05:fb:32:d3:a3:c1:8e:5d:78:08:91:5d:df:ba:9e: 88:d3:c1:de:76:81:50:ad:1b:f2:5d:ed:f4:9c:a0:3b:14:43: 4b:1a:7d:ab:f8:86:de:3d:19:27:42:6f:5b:fa:33:b3:bb:13: 73:ac:66:dc:a0:d0:7c:d4:57:19:48:ff:0a:5f:bd:9f:54:df: 43:af:be:ad:5c:6c:79:38:c6:86:01:6d:9c:ab:50:75:d2:dd: 37:74:b4:14:51:a3:2f:21:8f:40:96:10:7b:9d:bb:10:80:e3: ad:0e:83:f1:4c:8f:70:97:67:de:8a:9e:10:f3:f6:ef:80:19: 19:a2:04:00:47:59:b8:ec:72:83:d9:c0:47:d8:90:f1:71:31: 29:38:3d:1f:f4:67:29:a7:4c:ce:97:91:68:34:42:10:ef:76: f3:98:eb:50:e1:91:fa:bf:82:0b:bc:3a:e2:bd:c4:d0:39:49: 72:18:21:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCycwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1QkExMTAvBgNVBAUTKENBOENFRjVFMUQ4QzNEQTVBQzlCQUVFNUIxOTZFRjA2 NjA5QTM5NTkwHhcNMjUwNjE0MTkwMjU1WhcNMjUwNjIxMTkwMjU1WjAYMRYwFAYD VQQDEw02ODRkYzc2MC02MjFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwjr2xWB+sYM0Msf/G8o4UO/a7vWoE+jkgHzx1VJHm+0kJpUXFpjqYFIRmpPa taV0admOFT4bDUvWwyMbmd5u99BibmpIzjcMLonDdVSKIyYaTIAS6yBnRNpLoPBa xjk58Vnj/zivCb32EeAhU33Z0YQoYOK9BLovR7IVo2zLxMJUG5Qj5Ax25Vo2kT72 69NnD0VSqcEkloObK+EhRaor2s9De6Mop8PlONFoqjUrlhmwm6mvUW+gckn7zw+R OQI0633F/QbEnPaCkxH1nsbfef0m/S4mY1jZStB9yshdY0APwZYXd7eGGZPZFMYd OVLJUVVfMLBJb64X68ZxJW74eQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK3ZrtGf NlIW0+frqvDkEYHKgAteMB8GA1UdIwQYMBaAFMqM714djD2lrJuu5bGW7wZgmjlZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVCQS85M0UyRkIwQzNE QTMxMUVBQTREQzNBNTlDNEY5QUUwMi95b3p2WGgyTVBhV3NtNjdsc1pidkJtQ2FP VmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lvenZYaDJNUGFXc202N2xzWmJ2Qm1DYU9Way5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjVCQS85M0UyRkIwQzNEQTMxMUVBQTREQzNBNTlDNEY5QUUwMi95b3p2WGgyTVBh V3NtNjdsc1pidkJtQ2FPVmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCa4cUgdJicSxx9tTcqu3P8kgAk8xpvKIEPT95HsMmc0ZSj32DMzf1U f46PB+O2VmXK8YY/cdg4p/9bqstnOu4qJz28A5vMMD3/rcUF+zLTo8GOXXgIkV3f up6I08HedoFQrRvyXe30nKA7FENLGn2r+IbePRknQm9b+jOzuxNzrGbcoNB81FcZ SP8KX72fVN9Dr76tXGx5OMaGAW2cq1B10t03dLQUUaMvIY9AlhB7nbsQgOOtDoPx TI9wl2feip4Q8/bvgBkZogQAR1m47HKD2cBH2JDxcTEpOD0f9Gcpp0zOl5FoNEIQ 73bzmOtQ4ZH6v4ILvDrivcTQOUlyGCEb -----END CERTIFICATE-----Generated at Sun Jun 15 07:11:44 2025 by rpki-client