$ rpki-client -vvf rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft File: ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft (raw, json) Hash identifier: vm5E5bUQpR7UbKLzR4HGOuNsMNkwmLl3QsNRp7vHtkc= Subject key identifier: 3C:85:5F:F4:51:DD:7A:A8:E2:F2:C5:2D:F9:16:13:7F:48:7E:91:0A Authority key identifier: C9:C2:8F:99:0B:62:74:12:C9:7C:2D:CE:C7:C9:06:E6:1A:D3:25:AC Certificate issuer: /CN=A91597E8/serialNumber=C9C28F990B627412C97C2DCEC7C906E61AD325AC Certificate serial: 3496 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft Manifest number: 3496 Signing time: Sat 14 Jun 2025 14:43:43 +0000 Manifest this update: Sat 14 Jun 2025 14:43:43 +0000 Manifest next update: Sat 21 Jun 2025 14:43:43 +0000 Files and hashes: 1: ycKPmQtidBLJfC3Ox8kG5hrTJaw.crl (hash: 5IxKjc+m0c42EgY2tDgvs/VspDuUyRtkE9XrnHD1PMo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.crl rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 14:43:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13462 (0x3496) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91597E8, serialNumber=C9C28F990B627412C97C2DCEC7C906E61AD325AC Validity Not Before: Jun 14 14:43:43 2025 GMT Not After : Jun 21 14:43:43 2025 GMT Subject: CN=684d8a9f-d37a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:0f:3a:7e:50:f3:25:01:7c:2c:42:94:3f:cd: 95:dc:bf:38:da:35:50:39:45:28:0c:3a:32:85:87: 7a:14:c9:12:6c:14:36:f3:07:64:7c:f8:ab:b6:5d: 90:fc:2c:8a:ba:d3:30:b5:48:e8:d6:a9:3b:31:ec: 49:ea:4f:9b:5e:76:f8:22:89:2c:7f:6a:c8:78:8a: c1:e7:ca:e0:1f:5c:99:44:ec:62:1b:fe:c0:59:0f: f0:58:82:59:fa:df:77:ca:4e:08:a0:a5:23:5c:1d: 79:c4:23:f2:b5:8d:99:33:c9:87:f6:30:93:be:eb: e8:a6:96:93:6f:04:ff:92:69:18:7d:c4:01:f3:47: 3a:f4:55:e9:8a:49:56:a4:5d:c7:c5:bc:89:e6:42: 35:7e:89:cc:94:a7:00:38:08:3d:c5:1a:7b:b0:f4: a1:9a:2c:09:c2:4f:76:82:bd:04:54:44:a6:a8:7a: 50:88:65:f8:36:7c:81:fc:ff:47:1e:c8:d5:ba:f7: ed:c0:8a:10:8c:a8:89:67:d6:69:1e:f1:44:dc:21: 28:01:a5:c5:a3:f1:55:f3:eb:4b:85:1b:14:4c:89: d4:15:98:d8:3a:b9:b9:06:54:ca:bc:43:33:c7:36: e5:b6:75:31:c5:c5:af:11:17:6a:e2:36:a7:69:3b: 82:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:85:5F:F4:51:DD:7A:A8:E2:F2:C5:2D:F9:16:13:7F:48:7E:91:0A X509v3 Authority Key Identifier: keyid:C9:C2:8F:99:0B:62:74:12:C9:7C:2D:CE:C7:C9:06:E6:1A:D3:25:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:6a:1c:18:b8:bb:45:fc:0a:1d:ac:a1:cd:01:86:13:14:42: fd:ee:04:8f:90:c0:91:f1:16:5d:2f:21:f9:9a:99:fc:aa:ea: f8:53:fb:ef:4a:07:8d:de:79:45:bc:d5:ad:7d:5e:e1:a3:8e: ec:4d:97:d4:10:9e:57:f0:7f:16:fc:c5:84:97:69:ed:9e:b5: a4:e6:6e:d8:d6:41:2d:26:c7:0c:a3:60:58:5b:df:75:da:0a: a1:ce:3b:d3:a1:43:a2:76:83:fa:ad:06:56:2f:af:b5:1a:b8: 6a:97:7d:41:6a:f8:f0:e4:d9:78:46:c9:a5:c9:46:4f:ca:e1: 61:1b:4b:89:28:8c:da:2e:5e:36:a1:20:8f:72:ee:3c:57:75: 18:e5:9e:4b:4c:90:8b:59:03:3d:35:77:ac:c3:76:54:70:02: 7e:0e:a5:a8:72:c1:ed:0c:f9:ad:63:ae:a9:68:00:fc:24:01: 0c:04:4b:33:40:88:bc:22:f9:18:26:87:90:8b:77:64:b9:6e: 01:78:66:40:9f:05:17:4a:2c:35:65:4f:0d:66:ea:21:f0:07: 8e:91:e6:c3:c5:1d:0b:83:3b:57:cb:f3:df:66:43:cc:72:a5: 60:f3:f6:9d:bd:2f:e3:a2:6b:39:73:0e:44:9b:15:e7:f9:89: 55:3a:62:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTk3RTgxMTAvBgNVBAUTKEM5QzI4Rjk5MEI2Mjc0MTJDOTdDMkRDRUM3QzkwNkU2 MUFEMzI1QUMwHhcNMjUwNjE0MTQ0MzQzWhcNMjUwNjIxMTQ0MzQzWjAYMRYwFAYD VQQDEw02ODRkOGE5Zi1kMzdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0g86flDzJQF8LEKUP82V3L842jVQOUUoDDoyhYd6FMkSbBQ28wdkfPirtl2Q /CyKutMwtUjo1qk7MexJ6k+bXnb4Ioksf2rIeIrB58rgH1yZROxiG/7AWQ/wWIJZ +t93yk4IoKUjXB15xCPytY2ZM8mH9jCTvuvoppaTbwT/kmkYfcQB80c69FXpiklW pF3HxbyJ5kI1fonMlKcAOAg9xRp7sPShmiwJwk92gr0EVESmqHpQiGX4NnyB/P9H HsjVuvftwIoQjKiJZ9ZpHvFE3CEoAaXFo/FV8+tLhRsUTInUFZjYOrm5BlTKvEMz xzbltnUxxcWvERdq4janaTuCfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDyFX/RR 3Xqo4vLFLfkWE39IfpEKMB8GA1UdIwQYMBaAFMnCj5kLYnQSyXwtzsfJBuYa0yWs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTdFOC83QTBGRTdGQTFE OTIxMUUyQjVCQzc0RjUwOEIwMkNEMi95Y0tQbVF0aWRCTEpmQzNPeDhrRzVoclRK YXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ljS1BtUXRpZEJMSmZDM094OGtHNWhyVEphdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTdFOC83QTBGRTdGQTFEOTIxMUUyQjVCQzc0RjUwOEIwMkNEMi95Y0tQbVF0aWRC TEpmQzNPeDhrRzVoclRKYXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArahwYuLtF/AodrKHNAYYTFEL97gSPkMCR8RZdLyH5mpn8qur4U/vv SgeN3nlFvNWtfV7ho47sTZfUEJ5X8H8W/MWEl2ntnrWk5m7Y1kEtJscMo2BYW991 2gqhzjvToUOidoP6rQZWL6+1Grhql31Bavjw5Nl4RsmlyUZPyuFhG0uJKIzaLl42 oSCPcu48V3UY5Z5LTJCLWQM9NXesw3ZUcAJ+DqWocsHtDPmtY66paAD8JAEMBEsz QIi8IvkYJoeQi3dkuW4BeGZAnwUXSiw1ZU8NZuoh8AeOkebDxR0LgztXy/PfZkPM cqVg8/advS/joms5cw5EmxXn+YlVOmJW -----END CERTIFICATE-----Generated at Mon Jun 16 15:17:35 2025 by rpki-client