$ rpki-client -vvf rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/YHYovkVe83m-Zq-dbKm6js3tPwQ.mft File: YHYovkVe83m-Zq-dbKm6js3tPwQ.mft (raw, json) Hash identifier: SqYNpI0lRU6fbINKG8C+1fSZj+Xa6lefhHjCEsZrfoc= Subject key identifier: 52:F1:36:FC:36:C5:0C:70:93:9C:1A:02:BA:D6:E8:75:07:F3:FB:A9 Authority key identifier: 60:76:28:BE:45:5E:F3:79:BE:66:AF:9D:6C:A9:BA:8E:CD:ED:3F:04 Certificate issuer: /CN=A91817E6/serialNumber=607628BE455EF379BE66AF9D6CA9BA8ECDED3F04 Certificate serial: 0123 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YHYovkVe83m-Zq-dbKm6js3tPwQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/YHYovkVe83m-Zq-dbKm6js3tPwQ.mft Manifest number: 0A57 Signing time: Sat 14 Jun 2025 20:16:14 +0000 Manifest this update: Sat 14 Jun 2025 20:16:13 +0000 Manifest next update: Sat 21 Jun 2025 20:16:13 +0000 Files and hashes: 1: YHYovkVe83m-Zq-dbKm6js3tPwQ.crl (hash: nVRA0Q6aW5NBzJPMcki0ypABWzoNKweI6nC4cFj/9zU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/YHYovkVe83m-Zq-dbKm6js3tPwQ.crl rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/YHYovkVe83m-Zq-dbKm6js3tPwQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YHYovkVe83m-Zq-dbKm6js3tPwQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 20:16:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 291 (0x123) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91817E6, serialNumber=607628BE455EF379BE66AF9D6CA9BA8ECDED3F04 Validity Not Before: Jun 14 20:16:13 2025 GMT Not After : Jun 21 20:16:13 2025 GMT Subject: CN=684dd88d-ace7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:aa:da:83:40:77:0d:82:9c:bd:a5:ac:59:9d: c7:b6:40:bc:91:44:b6:fe:57:b7:b6:3d:fe:5c:41: 5c:2b:f1:87:33:63:1b:79:1c:1a:6d:14:6f:85:83: 9d:b7:d3:39:85:a0:2b:a5:19:f9:92:6e:ea:3c:57: 12:ce:ea:75:88:02:7c:5a:03:6e:c4:2e:65:4e:7b: 34:57:f7:77:8e:95:92:34:5c:da:70:f4:2d:fd:38: ec:98:78:6c:96:e9:43:f8:a1:ea:f7:df:43:62:94: cd:54:4d:13:11:76:60:d1:8e:79:43:97:7d:09:5d: d5:ca:a7:20:69:d2:a6:70:c4:c0:2b:f2:8d:10:2d: 95:0e:f6:6d:25:c0:e6:e0:ef:a0:b4:f3:d2:e6:b3: 1b:fc:6d:c3:2d:0d:99:ff:a4:1b:96:81:83:54:2a: e0:63:23:b9:98:11:17:63:db:77:37:49:78:a3:ba: 88:3c:e1:6e:c9:f1:7b:0a:24:00:47:9f:54:01:9b: a5:e7:2f:72:d6:62:7c:41:2b:2c:76:74:cc:3b:aa: d1:8c:c3:48:3a:e4:66:3b:3c:c4:62:16:8c:34:bf: ca:9b:15:5f:e1:e3:a0:cf:8f:d8:35:9e:98:3c:af: 76:d8:ac:5b:c6:e7:39:d8:66:4b:3f:5a:b6:06:df: 8a:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:F1:36:FC:36:C5:0C:70:93:9C:1A:02:BA:D6:E8:75:07:F3:FB:A9 X509v3 Authority Key Identifier: keyid:60:76:28:BE:45:5E:F3:79:BE:66:AF:9D:6C:A9:BA:8E:CD:ED:3F:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/YHYovkVe83m-Zq-dbKm6js3tPwQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YHYovkVe83m-Zq-dbKm6js3tPwQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/YHYovkVe83m-Zq-dbKm6js3tPwQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:d6:8c:a4:60:3b:f3:e9:b2:ef:39:64:d6:f1:7d:44:14:b0: bc:36:bb:13:bf:50:a0:45:c6:e4:47:96:0c:d6:6e:f8:75:08: 7f:5b:d9:48:b9:e4:33:79:3d:de:c1:26:7c:fe:ba:cb:47:24: ab:1b:f3:93:f0:de:73:a1:94:79:16:18:d0:9a:1a:e4:d0:07: ef:19:3e:12:b9:b7:f3:d2:de:8c:6b:40:5a:f2:d1:15:c4:79: 88:4a:13:8c:a3:8b:0d:a6:d4:2c:f1:89:48:98:dc:2c:b0:64: d6:4c:6a:8b:ce:41:27:fb:0a:2f:f9:0e:bf:1f:db:c5:fd:29: c5:6d:53:e2:86:3f:52:cf:e3:ae:e0:49:91:ed:1c:be:13:94: a2:14:fd:bd:2f:8d:32:59:73:7b:55:ba:6b:e9:f5:5c:2b:d4: 93:b2:0b:ad:35:0a:09:12:d4:86:ab:fd:a3:6a:55:c1:30:99: 9a:cb:04:5c:f0:c1:6c:f0:87:89:7c:37:5c:b7:a5:89:16:bf: bb:5f:25:5d:5f:dc:96:7e:02:e2:79:ee:00:bf:71:fe:6b:1f: 62:c8:0f:4d:1e:2a:ce:a3:ec:ec:9e:c9:41:02:18:53:45:99: 74:c5:5a:a1:68:c8:85:9b:2d:4e:b0:8b:49:7b:4c:7a:c4:f9: a7:dc:1c:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE3RTYxMTAvBgNVBAUTKDYwNzYyOEJFNDU1RUYzNzlCRTY2QUY5RDZDQTlCQThF Q0RFRDNGMDQwHhcNMjUwNjE0MjAxNjEzWhcNMjUwNjIxMjAxNjEzWjAYMRYwFAYD VQQDEw02ODRkZDg4ZC1hY2U3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo6rag0B3DYKcvaWsWZ3HtkC8kUS2/le3tj3+XEFcK/GHM2MbeRwabRRvhYOd t9M5haArpRn5km7qPFcSzup1iAJ8WgNuxC5lTns0V/d3jpWSNFzacPQt/TjsmHhs lulD+KHq999DYpTNVE0TEXZg0Y55Q5d9CV3VyqcgadKmcMTAK/KNEC2VDvZtJcDm 4O+gtPPS5rMb/G3DLQ2Z/6QbloGDVCrgYyO5mBEXY9t3N0l4o7qIPOFuyfF7CiQA R59UAZul5y9y1mJ8QSssdnTMO6rRjMNIOuRmOzzEYhaMNL/KmxVf4eOgz4/YNZ6Y PK922Kxbxuc52GZLP1q2Bt+KOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFLxNvw2 xQxwk5waArrW6HUH8/upMB8GA1UdIwQYMBaAFGB2KL5FXvN5vmavnWypuo7N7T8E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTdFNi81NTc0MEU3MEIz QjMxMUVBQjE5OENFMERDNEY5QUUwMi9ZSFlvdmtWZTgzbS1acS1kYkttNmpzM3RQ d1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lIWW92a1ZlODNtLVpxLWRiS202anMzdFB3US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MTdFNi81NTc0MEU3MEIzQjMxMUVBQjE5OENFMERDNEY5QUUwMi9ZSFlvdmtWZTgz bS1acS1kYkttNmpzM3RQd1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAw1oykYDvz6bLvOWTW8X1EFLC8NrsTv1CgRcbkR5YM1m74dQh/W9lI ueQzeT3ewSZ8/rrLRySrG/OT8N5zoZR5FhjQmhrk0AfvGT4Subfz0t6Ma0Ba8tEV xHmIShOMo4sNptQs8YlImNwssGTWTGqLzkEn+wov+Q6/H9vF/SnFbVPihj9Sz+Ou 4EmR7Ry+E5SiFP29L40yWXN7Vbpr6fVcK9STsgutNQoJEtSGq/2jalXBMJmaywRc 8MFs8IeJfDdct6WJFr+7XyVdX9yWfgLiee4Av3H+ax9iyA9NHirOo+zsnslBAhhT RZl0xVqhaMiFmy1OsItJe0x6xPmn3BzB -----END CERTIFICATE-----Generated at Sun Jun 15 09:43:45 2025 by rpki-client