$ rpki-client -vvf rpki.apnic.net/member_repository/A91580D2/EBC1AC2C184F11EDADBC3C65C4F9AE02/ypDU0hJfAza1OY7gmXcpby5AkrQ.mft File: ypDU0hJfAza1OY7gmXcpby5AkrQ.mft (raw, json) Hash identifier: ueSU8k6a7tzTEMhVdh4fc+hHhGsY+sQERCJW/E812tk= Subject key identifier: 57:E8:54:64:06:25:BD:D6:56:C9:10:E9:17:97:D3:A9:6A:DC:F1:3E Authority key identifier: CA:90:D4:D2:12:5F:03:36:B5:39:8E:E0:99:77:29:6F:2E:40:92:B4 Certificate issuer: /CN=A91580D2/serialNumber=CA90D4D2125F0336B5398EE09977296F2E4092B4 Certificate serial: 029C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypDU0hJfAza1OY7gmXcpby5AkrQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91580D2/EBC1AC2C184F11EDADBC3C65C4F9AE02/ypDU0hJfAza1OY7gmXcpby5AkrQ.mft Manifest number: 0280 Signing time: Fri 13 Jun 2025 01:17:21 +0000 Manifest this update: Fri 13 Jun 2025 01:17:20 +0000 Manifest next update: Fri 20 Jun 2025 01:17:20 +0000 Files and hashes: 1: ypDU0hJfAza1OY7gmXcpby5AkrQ.crl (hash: U9j+nH+d49w+kip9pL8a9HW42XMPtO1uWWwDRu4hEMk=) 2: 69F7328030A611F0BBA4642EC4F9AE02.roa (hash: LeMbdehFC4fTf/TGuaoRSnOw0VY+BgZy7lQOEpG5vyc=) 3: 39FCB4EC4F4E11EDB169BF33C4F9AE02.roa (hash: 0dIG8fQMRzlILpkTDJVo/XSoC64SAKbRto45S4Eicvs=) 4: 4D608CC0800211EF81167A23C4F9AE02.roa (hash: ZQQKFp5iiDEIGLxVFz3G6lECRRriefFnadRp8yKcQoY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91580D2/EBC1AC2C184F11EDADBC3C65C4F9AE02/ypDU0hJfAza1OY7gmXcpby5AkrQ.crl rsync://rpki.apnic.net/member_repository/A91580D2/EBC1AC2C184F11EDADBC3C65C4F9AE02/ypDU0hJfAza1OY7gmXcpby5AkrQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypDU0hJfAza1OY7gmXcpby5AkrQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 01:17:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 668 (0x29c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91580D2, serialNumber=CA90D4D2125F0336B5398EE09977296F2E4092B4 Validity Not Before: Jun 13 01:17:20 2025 GMT Not After : Jun 20 01:17:20 2025 GMT Subject: CN=684b7c20-8bfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:16:51:4c:aa:ea:fc:b5:40:01:7b:75:9a:57: 4a:ac:16:ba:e0:16:8e:3e:f4:5c:8e:1c:53:c3:44: 8b:89:2d:be:61:19:82:9a:83:b8:d5:c0:60:1a:fb: 49:c1:ab:1f:2f:67:86:a5:3c:08:66:b7:c4:ae:62: 8a:68:2f:d7:cc:a4:a5:fd:0b:4b:90:e3:69:4f:88: c3:b2:2e:76:f6:5e:58:8e:ba:8b:fb:92:90:cc:78: ff:89:a8:02:d1:de:b4:8e:dc:87:e0:75:d1:61:4c: e5:41:de:3c:a2:76:9b:c3:f6:b5:8e:25:b0:5e:34: f2:f0:b9:02:68:aa:4a:ed:51:30:a2:e8:ef:86:17: 16:67:41:47:0a:29:36:24:d0:00:b8:b1:6b:21:bc: b0:83:eb:2b:d7:36:d2:88:7c:b2:ff:1f:aa:0c:48: 01:a3:aa:a7:85:54:ed:63:a8:7f:64:8e:69:51:5a: ad:40:b9:38:0b:7f:eb:7b:34:4e:bf:01:c2:1c:ba: 1a:fd:f1:a4:be:49:75:84:8c:ab:ba:f6:9c:27:1e: ac:2f:0f:ca:7f:89:75:8d:6d:04:c2:11:51:00:78: 00:36:f9:67:75:62:08:8c:6d:53:82:40:52:68:e3: 00:e3:5b:69:9c:f5:84:3a:8e:1a:9a:f8:33:0e:77: d7:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:E8:54:64:06:25:BD:D6:56:C9:10:E9:17:97:D3:A9:6A:DC:F1:3E X509v3 Authority Key Identifier: keyid:CA:90:D4:D2:12:5F:03:36:B5:39:8E:E0:99:77:29:6F:2E:40:92:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91580D2/EBC1AC2C184F11EDADBC3C65C4F9AE02/ypDU0hJfAza1OY7gmXcpby5AkrQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypDU0hJfAza1OY7gmXcpby5AkrQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91580D2/EBC1AC2C184F11EDADBC3C65C4F9AE02/ypDU0hJfAza1OY7gmXcpby5AkrQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:ed:c6:f9:12:57:6a:66:35:5a:48:73:2a:82:44:23:3b:cd: 70:5f:ae:9d:3a:e2:1c:4a:05:93:03:2f:68:68:78:66:44:f1: c3:80:3e:cf:fd:1a:a4:b0:fb:57:0b:cb:c8:ae:a5:70:61:e7: 2f:df:70:a8:28:3b:5b:b6:74:5c:4a:fd:f8:15:c1:4e:6b:37: 0b:6e:ab:15:f8:06:d1:d5:f3:2c:29:8a:57:1d:a9:fd:0e:3c: 94:0d:fa:f2:e0:fb:ca:71:73:c9:56:20:f5:c8:d7:c1:cb:f5: e8:ce:ed:5f:7c:43:7b:9d:44:0c:94:04:db:e7:98:0a:d9:85: 76:ed:67:97:92:fd:9e:58:15:03:b6:38:f0:a3:6a:db:ae:42: 67:9a:0d:06:4e:1b:b1:98:1a:f5:30:79:87:35:f3:5c:d8:95: f1:dd:d4:6e:38:48:d8:d5:92:77:2f:86:6f:59:40:a0:94:9d: 6b:4b:4b:06:1d:43:0d:85:9b:0f:ed:aa:af:fd:b1:38:cc:af: 40:c5:c7:8c:a9:e6:24:f6:ea:ee:87:56:0b:c1:39:9d:3f:63: e7:3f:10:e7:81:9a:9d:75:f0:37:33:61:4a:00:b7:ea:89:7e: b5:6d:9a:10:5f:72:ad:df:6e:90:9d:4d:ad:ce:99:62:4e:c8: 17:25:c7:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwRDIxMTAvBgNVBAUTKENBOTBENEQyMTI1RjAzMzZCNTM5OEVFMDk5NzcyOTZG MkU0MDkyQjQwHhcNMjUwNjEzMDExNzIwWhcNMjUwNjIwMDExNzIwWjAYMRYwFAYD VQQDEw02ODRiN2MyMC04YmZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0BZRTKrq/LVAAXt1mldKrBa64BaOPvRcjhxTw0SLiS2+YRmCmoO41cBgGvtJ wasfL2eGpTwIZrfErmKKaC/XzKSl/QtLkONpT4jDsi529l5YjrqL+5KQzHj/iagC 0d60jtyH4HXRYUzlQd48onabw/a1jiWwXjTy8LkCaKpK7VEwoujvhhcWZ0FHCik2 JNAAuLFrIbywg+sr1zbSiHyy/x+qDEgBo6qnhVTtY6h/ZI5pUVqtQLk4C3/rezRO vwHCHLoa/fGkvkl1hIyruvacJx6sLw/Kf4l1jW0EwhFRAHgANvlndWIIjG1TgkBS aOMA41tpnPWEOo4amvgzDnfXDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFfoVGQG Jb3WVskQ6ReX06lq3PE+MB8GA1UdIwQYMBaAFMqQ1NISXwM2tTmO4Jl3KW8uQJK0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODBEMi9FQkMxQUMyQzE4 NEYxMUVEQURCQzNDNjVDNEY5QUUwMi95cERVMGhKZkF6YTFPWTdnbVhjcGJ5NUFr clEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lwRFUwaEpmQXphMU9ZN2dtWGNwYnk1QWtyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODBEMi9FQkMxQUMyQzE4NEYxMUVEQURCQzNDNjVDNEY5QUUwMi95cERVMGhKZkF6 YTFPWTdnbVhjcGJ5NUFrclEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCx7cb5EldqZjVaSHMqgkQjO81wX66dOuIcSgWTAy9oaHhmRPHDgD7P /RqksPtXC8vIrqVwYecv33CoKDtbtnRcSv34FcFOazcLbqsV+AbR1fMsKYpXHan9 DjyUDfry4PvKcXPJViD1yNfBy/Xozu1ffEN7nUQMlATb55gK2YV27WeXkv2eWBUD tjjwo2rbrkJnmg0GThuxmBr1MHmHNfNc2JXx3dRuOEjY1ZJ3L4ZvWUCglJ1rS0sG HUMNhZsP7aqv/bE4zK9AxceMqeYk9uruh1YLwTmdP2PnPxDngZqddfA3M2FKALfq iX61bZoQX3Kt326QnU2tzpliTsgXJccZ -----END CERTIFICATE-----Generated at Sat Jun 14 19:26:56 2025 by rpki-client