$ rpki-client -vvf rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.mft File: RYBbVYDVFRl9GmFa1myLnUhU9eo.mft (raw, json) Hash identifier: UgoCGuxYL4ObCZgKbT00c+OMojiqENeok/VuWyUJ9Vo= Subject key identifier: 9E:25:DD:70:3B:7C:A6:20:B9:A0:A0:15:76:C8:29:AE:B1:DD:EE:EA Authority key identifier: 45:80:5B:55:80:D5:15:19:7D:1A:61:5A:D6:6C:8B:9D:48:54:F5:EA Certificate issuer: /CN=A91589E7/serialNumber=45805B5580D515197D1A615AD66C8B9D4854F5EA Certificate serial: 17F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYBbVYDVFRl9GmFa1myLnUhU9eo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.mft Manifest number: 17E6 Signing time: Sat 14 Jun 2025 17:07:01 +0000 Manifest this update: Sat 14 Jun 2025 17:07:00 +0000 Manifest next update: Sat 21 Jun 2025 17:07:00 +0000 Files and hashes: 1: RYBbVYDVFRl9GmFa1myLnUhU9eo.crl (hash: kzUJqiALM9qpvxQF+kz0uQHCdEMku1laqMxXwavT8AI=) 2: 94A1F97A369711EA866E381CC4F9AE02.roa (hash: FXxg8JbRyxhX/govLjKDj9hLX7J7czh75q9/plpdJE0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.crl rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYBbVYDVFRl9GmFa1myLnUhU9eo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:07:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6128 (0x17f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91589E7, serialNumber=45805B5580D515197D1A615AD66C8B9D4854F5EA Validity Not Before: Jun 14 17:07:00 2025 GMT Not After : Jun 21 17:07:00 2025 GMT Subject: CN=684dac35-a452 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:b2:cf:e1:39:cf:b5:f2:97:6d:46:49:47:84: b9:3f:94:43:22:2e:e4:4d:3e:06:41:df:53:3e:20: 78:31:a7:45:ad:42:d2:6a:9d:4f:1a:b8:07:87:0d: da:ad:dc:ec:11:3d:88:ee:25:33:1d:26:52:c0:4f: e6:0c:26:ec:4c:7f:9e:07:11:c2:20:bb:15:61:45: bb:84:75:52:7d:ce:9a:70:43:65:8d:03:e3:60:3e: 20:6a:65:d5:f0:12:38:6b:09:62:eb:56:7c:76:da: b9:ae:02:e1:b7:1c:7f:71:df:20:e4:72:08:7d:19: b0:1c:0b:e2:c1:ab:a6:97:cc:5a:cd:18:a5:ab:ab: b3:a3:dc:4f:b5:8c:cf:fe:cb:22:84:f6:75:9c:07: d0:9a:08:8e:d8:b2:93:ae:0f:50:28:ca:e9:8b:fd: ab:ad:c9:81:b1:08:a3:b0:28:b1:50:01:38:56:b2: 45:a9:97:c7:58:49:e6:55:f8:ae:e8:2d:22:f8:f9: 29:8a:cb:26:1a:05:f7:14:1c:73:13:6e:eb:39:32: 10:e7:a6:90:ea:ca:06:20:dd:45:c3:62:a0:10:a5: 7b:0f:c1:2c:ab:11:42:c9:17:fe:b9:89:b2:fc:57: b8:f3:07:75:ec:b8:04:af:a0:80:fc:2c:5a:c5:a9: 65:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:25:DD:70:3B:7C:A6:20:B9:A0:A0:15:76:C8:29:AE:B1:DD:EE:EA X509v3 Authority Key Identifier: keyid:45:80:5B:55:80:D5:15:19:7D:1A:61:5A:D6:6C:8B:9D:48:54:F5:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYBbVYDVFRl9GmFa1myLnUhU9eo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:db:4a:cf:1f:c5:08:f4:da:00:b9:e3:bd:f9:8d:10:64:1b: 46:2b:10:06:44:e4:14:ab:8d:eb:65:26:3e:9b:89:0f:8e:a1: 77:f5:d1:92:58:31:f1:75:04:e2:40:c8:6b:21:c8:44:74:a1: 0b:51:12:1a:0d:ae:6b:f1:7e:82:9a:7f:36:fa:4c:3d:e3:10: 41:48:4b:95:2a:88:c1:e4:99:88:a9:13:b5:59:14:66:fc:6e: 73:b9:3a:15:a5:c3:4f:e6:f5:c4:43:90:c8:88:85:66:45:ff: ae:51:4e:e3:55:89:61:f6:25:4d:d1:ac:46:cf:dc:35:1f:22: 04:35:80:21:50:ec:fd:d0:ad:83:f1:4d:0f:bc:5b:ed:5b:da: 3b:3b:91:ae:a9:58:58:5f:84:6b:10:85:cf:7a:bf:4a:71:7c: f8:80:9a:63:d2:23:48:6b:a9:49:77:32:f1:b2:b1:73:d0:7d: c1:6c:62:44:fc:ab:f9:90:39:fe:64:70:44:de:14:4f:df:a9: 93:1e:5b:12:b8:47:ad:51:e2:0f:ca:eb:0f:ed:60:87:8b:8d: a0:85:d2:b2:ee:c2:70:13:5d:52:43:3d:b2:13:64:9f:a3:9a: 76:a9:9c:31:2e:38:34:fd:c7:0e:31:a1:e1:bc:dc:4c:c8:39: e0:b2:5c:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF/AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg5RTcxMTAvBgNVBAUTKDQ1ODA1QjU1ODBENTE1MTk3RDFBNjE1QUQ2NkM4QjlE NDg1NEY1RUEwHhcNMjUwNjE0MTcwNzAwWhcNMjUwNjIxMTcwNzAwWjAYMRYwFAYD VQQDEw02ODRkYWMzNS1hNDUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3LLP4TnPtfKXbUZJR4S5P5RDIi7kTT4GQd9TPiB4MadFrULSap1PGrgHhw3a rdzsET2I7iUzHSZSwE/mDCbsTH+eBxHCILsVYUW7hHVSfc6acENljQPjYD4gamXV 8BI4awli61Z8dtq5rgLhtxx/cd8g5HIIfRmwHAviwauml8xazRilq6uzo9xPtYzP /ssihPZ1nAfQmgiO2LKTrg9QKMrpi/2rrcmBsQijsCixUAE4VrJFqZfHWEnmVfiu 6C0i+PkpissmGgX3FBxzE27rOTIQ56aQ6soGIN1Fw2KgEKV7D8EsqxFCyRf+uYmy /Fe48wd17LgEr6CA/CxaxalleQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ4l3XA7 fKYguaCgFXbIKa6x3e7qMB8GA1UdIwQYMBaAFEWAW1WA1RUZfRphWtZsi51IVPXq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODlFNy9GOEZGMTUyMkJE RkIxMUU3Qjg3M0ZFMjdDNEY5QUUwMi9SWUJiVllEVkZSbDlHbUZhMW15TG5VaFU5 ZW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JZQmJWWURWRlJsOUdtRmExbXlMblVoVTllby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODlFNy9GOEZGMTUyMkJERkIxMUU3Qjg3M0ZFMjdDNEY5QUUwMi9SWUJiVllEVkZS bDlHbUZhMW15TG5VaFU5ZW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAp20rPH8UI9NoAueO9+Y0QZBtGKxAGROQUq43rZSY+m4kPjqF39dGS WDHxdQTiQMhrIchEdKELURIaDa5r8X6Cmn82+kw94xBBSEuVKojB5JmIqRO1WRRm /G5zuToVpcNP5vXEQ5DIiIVmRf+uUU7jVYlh9iVN0axGz9w1HyIENYAhUOz90K2D 8U0PvFvtW9o7O5GuqVhYX4RrEIXPer9KcXz4gJpj0iNIa6lJdzLxsrFz0H3BbGJE /Kv5kDn+ZHBE3hRP36mTHlsSuEetUeIPyusP7WCHi42ghdKy7sJwE11SQz2yE2Sf o5p2qZwxLjg0/ccOMaHhvNxMyDngslx7 -----END CERTIFICATE-----Generated at Sun Jun 15 08:44:24 2025 by rpki-client