$ rpki-client -vvf rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.mft File: ry1FO-u_318ptjrBZ1THjRsPy4g.mft (raw, json) Hash identifier: Yq6tpYyqf7ByWpwngzKC3zUvHiX8YJffjAS2EzZ5fiI= Subject key identifier: 17:93:6A:2C:AA:2E:CD:6A:6E:0D:4B:B1:DE:FC:5E:18:42:D5:4F:40 Authority key identifier: AF:2D:45:3B:EB:BF:DF:5F:29:B6:3A:C1:67:54:C7:8D:1B:0F:CB:88 Certificate issuer: /CN=A91557BA/serialNumber=AF2D453BEBBFDF5F29B63AC16754C78D1B0FCB88 Certificate serial: 0C59 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ry1FO-u_318ptjrBZ1THjRsPy4g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.mft Manifest number: 0C50 Signing time: Wed 18 Jun 2025 18:18:07 +0000 Manifest this update: Wed 18 Jun 2025 18:18:06 +0000 Manifest next update: Wed 25 Jun 2025 18:18:06 +0000 Files and hashes: 1: ry1FO-u_318ptjrBZ1THjRsPy4g.crl (hash: QfTvoZgSlI8JnFvCRu7b2uM/91O07OiCRgUAxDDIYOk=) 2: 157A1BFC59EE11EBA398AA0AC4F9AE02.roa (hash: JpCVaZ9JZD1Afq3DjPUJqYLTP1v40h6qnEBodBPkfj4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.crl rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ry1FO-u_318ptjrBZ1THjRsPy4g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 18:18:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3161 (0xc59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91557BA, serialNumber=AF2D453BEBBFDF5F29B63AC16754C78D1B0FCB88 Validity Not Before: Jun 18 18:18:06 2025 GMT Not After : Jun 25 18:18:06 2025 GMT Subject: CN=685302df-d2dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:be:50:eb:ce:8f:db:4a:6e:1a:db:97:0c:ea: eb:88:90:fe:bc:5c:68:e5:8f:ae:00:4f:b0:c6:6e: 40:f3:87:e0:7a:1c:14:06:b4:52:d7:8a:8a:5c:b4: 96:8a:49:5e:a1:e2:82:9f:b6:78:05:6e:04:1f:a3: 83:24:df:25:ff:e3:8b:3e:61:17:8a:23:7a:6c:04: 58:04:c5:0e:39:a8:a2:56:b8:1a:9f:3f:02:08:36: 5a:4c:52:40:77:ee:b7:86:8a:c8:d5:b9:49:40:6d: 6d:7b:35:48:4a:1f:97:65:be:99:8a:67:c7:70:72: d8:83:de:5e:f4:25:e4:e0:c8:87:83:a9:d0:b8:1b: c1:37:9d:c9:5f:c1:35:34:5b:91:72:fa:fc:26:fb: e8:ce:67:59:e2:f8:c6:de:ab:90:6e:74:6d:6c:4e: 56:f0:1e:66:76:e3:20:2a:13:01:70:53:c0:a0:54: 89:86:f7:bc:5d:f0:fc:87:be:cc:93:3d:4d:22:b8: c0:2b:3f:f0:83:53:e3:35:f8:f7:85:8b:c8:d6:de: 58:99:db:f3:0b:7c:46:78:cf:d6:90:86:22:a3:67: cb:17:29:49:46:d2:82:f7:fa:3f:d2:ce:87:7b:20: de:0b:e5:6f:74:57:2c:19:9c:71:43:d3:e0:89:38: f9:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:93:6A:2C:AA:2E:CD:6A:6E:0D:4B:B1:DE:FC:5E:18:42:D5:4F:40 X509v3 Authority Key Identifier: keyid:AF:2D:45:3B:EB:BF:DF:5F:29:B6:3A:C1:67:54:C7:8D:1B:0F:CB:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ry1FO-u_318ptjrBZ1THjRsPy4g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:d0:3f:4f:1e:9d:af:e0:fc:73:0d:21:0e:31:68:38:7b:56: 4b:20:26:ec:9b:f7:1a:bd:10:64:98:24:83:f6:e3:5c:a0:04: a2:99:b6:9d:9b:05:0c:af:88:eb:ca:18:f5:c4:b0:fb:28:e4: 51:58:e8:68:b0:e4:18:38:e3:e4:51:56:85:ac:1f:05:6f:4a: 62:8a:dd:3b:c1:31:6e:a5:f0:9a:fa:68:7e:05:fe:0d:31:d1: 1b:d2:e9:ee:5f:a3:f7:25:db:9a:b9:26:78:64:4e:ca:a5:fb: e2:2f:87:e5:2e:db:b8:6b:db:d3:f2:30:08:2a:b9:00:b6:df: 63:b2:ec:86:23:fc:4c:40:ff:d8:c0:94:55:ce:3f:b5:1b:ca: ab:fb:e0:6e:ae:38:fa:c7:d4:92:84:0f:21:15:3c:81:77:79: 7c:ba:45:29:9e:2c:b1:17:29:f8:94:86:dd:04:83:fd:fd:e8: a3:f4:74:4f:0d:e1:8d:89:ff:b4:31:c2:8e:e9:ee:91:14:e8: a3:62:32:c9:01:96:a2:90:e8:81:bb:82:6c:f7:3c:2b:d9:4d: ad:9d:ff:b0:51:26:84:58:d1:07:22:08:14:18:70:de:72:36: e4:14:83:98:6d:7f:3b:b4:6d:9b:55:71:30:56:e1:c6:60:3d: b1:66:ea:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU3QkExMTAvBgNVBAUTKEFGMkQ0NTNCRUJCRkRGNUYyOUI2M0FDMTY3NTRDNzhE MUIwRkNCODgwHhcNMjUwNjE4MTgxODA2WhcNMjUwNjI1MTgxODA2WjAYMRYwFAYD VQQDEw02ODUzMDJkZi1kMmRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyb5Q686P20puGtuXDOrriJD+vFxo5Y+uAE+wxm5A84fgehwUBrRS14qKXLSW ikleoeKCn7Z4BW4EH6ODJN8l/+OLPmEXiiN6bARYBMUOOaiiVrganz8CCDZaTFJA d+63horI1blJQG1tezVISh+XZb6ZimfHcHLYg95e9CXk4MiHg6nQuBvBN53JX8E1 NFuRcvr8JvvozmdZ4vjG3quQbnRtbE5W8B5mduMgKhMBcFPAoFSJhve8XfD8h77M kz1NIrjAKz/wg1PjNfj3hYvI1t5YmdvzC3xGeM/WkIYio2fLFylJRtKC9/o/0s6H eyDeC+VvdFcsGZxxQ9PgiTj5TwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBeTaiyq Ls1qbg1Lsd78XhhC1U9AMB8GA1UdIwQYMBaAFK8tRTvrv99fKbY6wWdUx40bD8uI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTdCQS82ODEyREY5MjA0 RUIxMUVBQTcyRkEzNjNDNEY5QUUwMi9yeTFGTy11XzMxOHB0anJCWjFUSGpSc1B5 NGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3J5MUZPLXVfMzE4cHRqckJaMVRIalJzUHk0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTdCQS82ODEyREY5MjA0RUIxMUVBQTcyRkEzNjNDNEY5QUUwMi9yeTFGTy11XzMx OHB0anJCWjFUSGpSc1B5NGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA20D9PHp2v4PxzDSEOMWg4e1ZLICbsm/cavRBkmCSD9uNcoASimbad mwUMr4jryhj1xLD7KORRWOhosOQYOOPkUVaFrB8Fb0piit07wTFupfCa+mh+Bf4N MdEb0unuX6P3JduauSZ4ZE7KpfviL4flLtu4a9vT8jAIKrkAtt9jsuyGI/xMQP/Y wJRVzj+1G8qr++Burjj6x9SShA8hFTyBd3l8ukUpniyxFyn4lIbdBIP9/eij9HRP DeGNif+0McKO6e6RFOijYjLJAZaikOiBu4Js9zwr2U2tnf+wUSaEWNEHIggUGHDe cjbkFIOYbX87tG2bVXEwVuHGYD2xZupr -----END CERTIFICATE-----Generated at Thu Jun 19 18:48:58 2025 by rpki-client