$ rpki-client -vvf rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.mft File: yIwqqUquXvn01JfoOHo53RvOk50.mft (raw, json) Hash identifier: lJYNK0+Zz57BwVXUmfav6NaLwhow6VQxp4aruYv4mSY= Subject key identifier: E9:A0:31:FF:B4:9F:DD:A9:6B:BC:C5:B0:FD:BE:C8:2E:EC:64:F6:85 Authority key identifier: C8:8C:2A:A9:4A:AE:5E:F9:F4:D4:97:E8:38:7A:39:DD:1B:CE:93:9D Certificate issuer: /CN=A91228E2/serialNumber=C88C2AA94AAE5EF9F4D497E8387A39DD1BCE939D Certificate serial: 0139 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yIwqqUquXvn01JfoOHo53RvOk50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.mft Manifest number: 0136 Signing time: Thu 19 Jun 2025 03:53:29 +0000 Manifest this update: Thu 19 Jun 2025 03:53:29 +0000 Manifest next update: Thu 26 Jun 2025 03:53:29 +0000 Files and hashes: 1: yIwqqUquXvn01JfoOHo53RvOk50.crl (hash: ZQ54mqiIDJ00ucuxgWO24GK9M8AUuQ59/57feCSa064=) 2: EF98E11472E211EEB93A4F72C4F9AE02.roa (hash: zjnMnu7RY/dZWeqb3tnlHnJORJa1AYwPA3wCVz3+WfI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.crl rsync://rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yIwqqUquXvn01JfoOHo53RvOk50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 03:53:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 313 (0x139) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91228E2, serialNumber=C88C2AA94AAE5EF9F4D497E8387A39DD1BCE939D Validity Not Before: Jun 19 03:53:29 2025 GMT Not After : Jun 26 03:53:29 2025 GMT Subject: CN=685389b9-841c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:31:d4:78:9f:e6:58:39:9e:83:a3:03:89:aa: f4:e6:d7:f5:31:43:2b:10:02:e0:5d:23:37:b6:c1: a4:1a:10:ec:5a:98:e1:9b:ba:0d:9e:83:c4:54:c7: 69:64:b0:4b:29:cb:4a:07:de:db:96:6d:92:3e:ba: 2a:d8:d9:18:ef:32:2e:b3:da:3b:38:72:76:bc:03: 6d:b8:3a:df:86:8c:3d:78:f3:a6:0f:10:78:4f:e7: dc:5a:dc:3d:2a:57:a2:32:33:f6:19:59:d7:d3:83: 8c:c7:11:cc:2e:db:bc:b3:16:cd:f6:ff:b7:c1:9f: 72:ae:07:26:46:19:8a:dd:b9:12:dd:1e:f9:9b:52: a9:4d:c4:b3:f9:5d:97:42:9b:68:7f:46:80:1d:33: 72:23:ae:a0:4c:39:04:37:21:a0:41:3d:6c:c6:d0: ae:9f:0e:60:d3:cf:5b:31:65:d5:c9:6e:ea:ac:b2: c6:12:04:5f:c4:89:1d:b7:8b:5f:9b:98:85:e8:83: 5b:7f:b0:a2:1b:ce:f3:46:e4:d8:30:01:77:d8:93: 88:40:22:57:6c:82:8c:e5:1e:74:01:db:35:03:8b: b0:d7:1a:0e:aa:03:08:64:ac:be:ac:a3:b8:20:e1: 06:31:ce:a8:51:2e:37:63:ba:f6:3e:6c:7c:af:79: 93:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:A0:31:FF:B4:9F:DD:A9:6B:BC:C5:B0:FD:BE:C8:2E:EC:64:F6:85 X509v3 Authority Key Identifier: keyid:C8:8C:2A:A9:4A:AE:5E:F9:F4:D4:97:E8:38:7A:39:DD:1B:CE:93:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yIwqqUquXvn01JfoOHo53RvOk50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:49:98:2e:ba:12:b9:45:5a:34:5f:f6:dc:16:86:b4:79:91: 11:cb:dd:06:62:26:14:67:24:aa:a4:68:8f:ff:28:1d:43:1f: cb:d6:ae:9e:c6:14:68:da:f5:23:a6:a9:1f:bd:9d:45:4f:cc: 8a:ce:2b:cb:ee:3a:12:a5:dc:4b:55:e0:29:64:d5:eb:ab:37: 5d:f4:22:f0:72:44:f6:3f:39:74:9b:e4:24:d9:f1:1d:22:bc: 1b:21:e3:0b:94:b2:c1:ef:6d:41:76:55:81:03:61:b8:91:e0: 85:49:92:83:1a:5b:e8:f7:e8:6e:55:28:d4:d0:ee:9d:aa:a7: 51:50:23:77:32:31:42:3f:32:f5:5a:3e:74:23:c7:d9:f0:04: 08:95:18:0b:b6:58:98:ce:0b:51:eb:4f:29:f8:38:65:f8:18: 54:bc:28:af:be:3c:5c:c9:d6:40:60:55:b5:79:ff:a3:f9:d1: 00:64:b7:b6:53:32:9b:2d:d9:d0:2b:f3:93:d8:8e:87:36:01: ae:79:cb:ee:1f:54:77:c6:06:75:c5:ab:bb:9b:31:1b:ef:3e: 2e:61:b1:db:99:e9:74:b1:ca:9f:e8:39:b3:d4:f5:01:3a:50: 5b:8d:4c:b2:70:41:1e:d9:c9:f7:75:5e:9c:bd:95:1c:39:cd: e7:54:97:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjI4RTIxMTAvBgNVBAUTKEM4OEMyQUE5NEFBRTVFRjlGNEQ0OTdFODM4N0EzOURE MUJDRTkzOUQwHhcNMjUwNjE5MDM1MzI5WhcNMjUwNjI2MDM1MzI5WjAYMRYwFAYD VQQDEw02ODUzODliOS04NDFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoTHUeJ/mWDmeg6MDiar05tf1MUMrEALgXSM3tsGkGhDsWpjhm7oNnoPEVMdp ZLBLKctKB97blm2SProq2NkY7zIus9o7OHJ2vANtuDrfhow9ePOmDxB4T+fcWtw9 KleiMjP2GVnX04OMxxHMLtu8sxbN9v+3wZ9yrgcmRhmK3bkS3R75m1KpTcSz+V2X Qptof0aAHTNyI66gTDkENyGgQT1sxtCunw5g089bMWXVyW7qrLLGEgRfxIkdt4tf m5iF6INbf7CiG87zRuTYMAF32JOIQCJXbIKM5R50Ads1A4uw1xoOqgMIZKy+rKO4 IOEGMc6oUS43Y7r2Pmx8r3mTQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOmgMf+0 n92pa7zFsP2+yC7sZPaFMB8GA1UdIwQYMBaAFMiMKqlKrl759NSX6Dh6Od0bzpOd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjhFMi9DRTU0MDZGNjcy RTExMUVFQjA3ODE2MTlDNEY5QUUwMi95SXdxcVVxdVh2bjAxSmZvT0hvNTNSdk9r NTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lJd3FxVXF1WHZuMDFKZm9PSG81M1J2T2s1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjhFMi9DRTU0MDZGNjcyRTExMUVFQjA3ODE2MTlDNEY5QUUwMi95SXdxcVVxdVh2 bjAxSmZvT0hvNTNSdk9rNTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQSZguuhK5RVo0X/bcFoa0eZERy90GYiYUZySqpGiP/ygdQx/L1q6e xhRo2vUjpqkfvZ1FT8yKzivL7joSpdxLVeApZNXrqzdd9CLwckT2Pzl0m+Qk2fEd IrwbIeMLlLLB721BdlWBA2G4keCFSZKDGlvo9+huVSjU0O6dqqdRUCN3MjFCPzL1 Wj50I8fZ8AQIlRgLtliYzgtR608p+Dhl+BhUvCivvjxcydZAYFW1ef+j+dEAZLe2 UzKbLdnQK/OT2I6HNgGuecvuH1R3xgZ1xau7mzEb7z4uYbHbmel0scqf6Dmz1PUB OlBbjUyycEEe2cn3dV6cvZUcOc3nVJeo -----END CERTIFICATE-----Generated at Fri Jun 20 11:18:09 2025 by rpki-client