$ rpki-client -vvf rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.mft File: yil3R0MKG-s0C8o51iIv0mQZt9s.mft (raw, json) Hash identifier: nEXpnQFMmi+E/gHQhbKkG/USRDsE92EEug60MghNg4s= Subject key identifier: 34:AB:CF:88:1B:64:BE:60:86:A2:FA:30:D4:FB:31:67:75:30:DB:E4 Authority key identifier: CA:29:77:47:43:0A:1B:EB:34:0B:CA:39:D6:22:2F:D2:64:19:B7:DB Certificate issuer: /CN=A91417B0/serialNumber=CA297747430A1BEB340BCA39D6222FD26419B7DB Certificate serial: 53 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yil3R0MKG-s0C8o51iIv0mQZt9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.mft Manifest number: 51 Signing time: Sat 21 Jun 2025 06:20:19 +0000 Manifest this update: Sat 21 Jun 2025 06:20:18 +0000 Manifest next update: Sat 28 Jun 2025 06:20:18 +0000 Files and hashes: 1: yil3R0MKG-s0C8o51iIv0mQZt9s.crl (hash: rIVn8xs9CYIO50A5auY5EdKQhjrQNnBH2z46rAsa18s=) 2: 5909D86203DB11F0B7D5DD29C4F9AE02.roa (hash: vXg2V9oSq+UecV6UR/hi4Z0CckYReJT3wpjl4H/MqsM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.crl rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yil3R0MKG-s0C8o51iIv0mQZt9s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 06:20:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91417B0, serialNumber=CA297747430A1BEB340BCA39D6222FD26419B7DB Validity Not Before: Jun 21 06:20:18 2025 GMT Not After : Jun 28 06:20:18 2025 GMT Subject: CN=68564f23-dad1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:d3:a7:a8:b9:ee:43:44:f8:92:d7:9a:4a:1e: 19:d8:d6:38:a4:88:81:1d:1d:55:9a:07:0d:b1:18: b7:9c:d4:36:b1:38:0d:f0:de:5e:de:d7:92:66:12: 0b:84:f0:18:62:57:93:09:45:f8:13:d5:b3:d3:1c: a3:1e:f4:e2:cb:aa:93:42:71:e8:96:7e:22:1f:96: 9f:03:b6:db:c5:1d:cb:ee:ca:eb:1a:67:2c:6c:20: 42:c7:fc:b8:a3:c9:f4:63:db:b8:04:41:1f:48:b9: a1:57:97:79:86:eb:52:36:95:c6:8d:5e:e1:22:c4: 28:bb:fa:fb:97:bc:a3:8a:02:ca:ad:27:ba:7e:0c: 92:d9:6e:73:38:5e:fe:c8:f8:01:66:4e:2a:a7:35: 51:44:05:7a:57:a1:97:22:7c:07:fd:11:32:65:a4: 56:98:f5:c8:c9:0c:51:38:ef:3a:c3:12:4e:7a:34: f7:6c:97:c9:42:7b:d4:6b:cb:2d:4a:1f:47:31:b4: c9:99:f2:ce:09:39:9a:a3:55:fe:44:54:b5:f1:b1: ad:e5:26:2f:52:83:98:b1:8c:e0:a4:24:57:29:03: f2:6f:80:05:5e:e1:8d:3c:0e:8b:4d:4b:41:00:31: df:6d:22:e4:78:f7:32:dd:b5:45:5c:34:2b:51:f7: 76:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:AB:CF:88:1B:64:BE:60:86:A2:FA:30:D4:FB:31:67:75:30:DB:E4 X509v3 Authority Key Identifier: keyid:CA:29:77:47:43:0A:1B:EB:34:0B:CA:39:D6:22:2F:D2:64:19:B7:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yil3R0MKG-s0C8o51iIv0mQZt9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:c7:5f:ff:47:60:b2:0d:5f:b2:ac:c6:a1:e4:74:8f:4b:31: a4:f1:64:04:46:d4:e4:54:80:32:d7:1d:a6:05:35:a8:8b:00: f6:dc:b1:2a:2f:f8:82:3e:da:2b:be:97:8e:fe:df:db:b1:81: 0f:8f:73:f4:47:aa:36:39:ac:d7:30:8f:47:11:d0:a3:57:1e: 6d:5e:f7:b5:20:42:b9:a7:38:f6:7f:a0:dc:cb:a0:8b:d2:f1: c5:d9:ca:43:e7:9a:95:bc:78:43:86:71:a8:46:7e:55:e1:d1: 2f:a6:9b:56:5c:7e:37:a4:f8:44:94:ce:aa:18:62:25:35:78: 09:de:d2:77:ff:0a:8d:19:eb:5c:9a:fa:53:4c:64:95:31:0b: c9:2c:9f:7b:8d:32:fd:a2:d1:0d:49:c0:03:78:87:b9:0b:de: 93:19:60:71:58:5b:77:da:ed:ac:55:9f:f2:27:1a:80:32:06: 85:fa:9b:2e:77:60:ba:7a:e2:00:67:cb:58:60:49:7d:9b:d6: 72:b7:77:d9:0e:f8:58:aa:b7:84:28:94:83:e8:8b:40:72:bd: 67:5f:1c:3a:1c:eb:bb:b1:9a:f3:a0:d8:08:35:36:f2:26:b3: 3b:69:4c:cb:76:86:aa:4b:4c:de:5c:23:36:27:61:7a:52:b6: 75:0b:bd:ee -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MTdCMDExMC8GA1UEBRMoQ0EyOTc3NDc0MzBBMUJFQjM0MEJDQTM5RDYyMjJGRDI2 NDE5QjdEQjAeFw0yNTA2MjEwNjIwMThaFw0yNTA2MjgwNjIwMThaMBgxFjAUBgNV BAMTDTY4NTY0ZjIzLWRhZDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCQ06eoue5DRPiS15pKHhnY1jikiIEdHVWaBw2xGLec1DaxOA3w3l7e15JmEguE 8BhiV5MJRfgT1bPTHKMe9OLLqpNCceiWfiIflp8DttvFHcvuyusaZyxsIELH/Lij yfRj27gEQR9IuaFXl3mG61I2lcaNXuEixCi7+vuXvKOKAsqtJ7p+DJLZbnM4Xv7I +AFmTiqnNVFEBXpXoZcifAf9ETJlpFaY9cjJDFE47zrDEk56NPdsl8lCe9Rryy1K H0cxtMmZ8s4JOZqjVf5EVLXxsa3lJi9Sg5ixjOCkJFcpA/JvgAVe4Y08DotNS0EA Md9tIuR49zLdtUVcNCtR93ZpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUNKvPiBtk vmCGovow1PsxZ3Uw2+QwHwYDVR0jBBgwFoAUyil3R0MKG+s0C8o51iIv0mQZt9sw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQxN0IwL0UxQUM4MjEwRDg4 MzExRUY5NTRBM0Q3MEM0RjlBRTAyL3lpbDNSME1LRy1zMEM4bzUxaUl2MG1RWnQ5 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIveWlsM1IwTUtHLXMwQzhvNTFpSXYwbVFadDlzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQx N0IwL0UxQUM4MjEwRDg4MzExRUY5NTRBM0Q3MEM0RjlBRTAyL3lpbDNSME1LRy1z MEM4bzUxaUl2MG1RWnQ5cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJHHX/9HYLINX7KsxqHkdI9LMaTxZARG1ORUgDLXHaYFNaiLAPbcsSov +II+2iu+l47+39uxgQ+Pc/RHqjY5rNcwj0cR0KNXHm1e97UgQrmnOPZ/oNzLoIvS 8cXZykPnmpW8eEOGcahGflXh0S+mm1Zcfjek+ESUzqoYYiU1eAne0nf/Co0Z61ya +lNMZJUxC8ksn3uNMv2i0Q1JwAN4h7kL3pMZYHFYW3fa7axVn/InGoAyBoX6my53 YLp64gBny1hgSX2b1nK3d9kO+Fiqt4QolIPoi0ByvWdfHDoc67uxmvOg2Ag1NvIm sztpTMt2hqpLTN5cIzYnYXpStnULve4= -----END CERTIFICATE-----Generated at Sun Jun 22 05:02:48 2025 by rpki-client