$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft File: YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft (raw, json) Hash identifier: sypG/DEkpR5D3jVyUDO+2SUGpal5aMzJCtVMRmI0zvM= Subject key identifier: 3C:14:84:3B:E5:0E:5D:5B:3C:3A:BB:44:CB:F0:16:2F:46:B3:AE:A3 Authority key identifier: 61:7F:05:4E:3C:E4:51:E0:C3:E7:F4:46:DD:09:F7:86:46:52:B6:56 Certificate issuer: /CN=A91A1CAA/serialNumber=617F054E3CE451E0C3E7F446DD09F7864652B656 Certificate serial: FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YX8FTjzkUeDD5_RG3Qn3hkZStlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft Manifest number: F9 Signing time: Sun 15 Jun 2025 04:21:50 +0000 Manifest this update: Sun 15 Jun 2025 04:21:49 +0000 Manifest next update: Sun 22 Jun 2025 04:21:49 +0000 Files and hashes: 1: YX8FTjzkUeDD5_RG3Qn3hkZStlY.crl (hash: Eh56Vqr+HOT8pSvT1DVsTuL7xfN+D6tleqdV1pMt1v4=) 2: E75FB4F0CE4A11EE95C15E20C4F9AE02.roa (hash: utq11zi2cO+ldR8mXOv++lb25ZgD5tUSUW03iRiwBL0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.crl rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YX8FTjzkUeDD5_RG3Qn3hkZStlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 04:21:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 252 (0xfc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1CAA, serialNumber=617F054E3CE451E0C3E7F446DD09F7864652B656 Validity Not Before: Jun 15 04:21:49 2025 GMT Not After : Jun 22 04:21:49 2025 GMT Subject: CN=684e4a5d-9ae3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:4d:b2:22:50:3f:c9:f3:52:9b:14:44:ed:7d: ad:83:87:bc:23:4c:e2:fd:f6:c1:d3:3f:2a:74:89: 7e:dc:55:34:c2:9b:67:82:90:6f:c1:ff:79:ff:dc: f5:40:20:1c:5d:bd:4f:06:cd:28:20:32:ca:8c:e8: 34:4e:2a:1c:06:0e:15:3c:90:d8:53:8a:11:eb:16: 15:e0:64:2c:57:27:0d:99:b7:27:6f:7a:ff:67:ae: 87:8d:24:9c:bd:50:8f:6d:f6:70:d0:7d:52:df:9b: 42:8f:be:72:6f:43:a5:a8:96:3c:f3:0c:3b:de:aa: d2:09:50:5f:a8:c5:3e:3f:44:ea:d3:89:d0:28:81: 6c:9b:7d:f9:aa:70:43:21:17:95:ab:ae:6c:79:79: 3f:b4:1d:21:bf:d2:a6:88:e8:67:b8:5c:54:c6:9e: 9b:1b:17:66:91:61:9f:9d:bc:65:82:34:3f:3a:dc: 17:04:6c:4c:d3:9c:8d:77:4e:c8:70:72:cf:b7:5c: 15:7a:b1:fe:2c:7a:b7:2b:0f:03:6e:e4:f8:f6:4b: ad:54:a1:8d:c3:de:c9:fe:f2:43:aa:a6:12:32:d5: 9c:bf:3a:63:b7:05:80:e0:18:60:19:d7:c0:57:65: ef:79:d0:07:15:6c:27:d0:c3:60:71:3a:a7:3c:47: d7:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:14:84:3B:E5:0E:5D:5B:3C:3A:BB:44:CB:F0:16:2F:46:B3:AE:A3 X509v3 Authority Key Identifier: keyid:61:7F:05:4E:3C:E4:51:E0:C3:E7:F4:46:DD:09:F7:86:46:52:B6:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YX8FTjzkUeDD5_RG3Qn3hkZStlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:6b:5e:00:b2:e0:0b:67:46:6b:82:cd:25:3a:b2:6c:be:d8: 4b:5c:12:9b:ac:9d:8b:10:69:d5:79:46:53:e7:d9:15:15:c3: d9:b9:f5:0e:a2:76:1e:89:8a:0e:f3:2e:6b:3e:ff:2f:20:16: b4:65:a2:15:55:22:52:1e:d0:33:1a:db:b0:75:f5:7c:6c:53: 9b:be:a2:fb:7e:4c:16:25:41:e8:6e:4f:4e:2c:36:c1:60:ac: d1:5c:4f:61:42:ad:5e:1f:af:da:1b:b8:0d:18:7e:68:79:50: 1e:99:d3:43:f5:2b:4c:aa:dc:31:a3:5b:58:d5:68:a5:65:da: 65:87:9d:de:1b:e1:b2:07:82:15:5c:13:f0:ab:8f:f1:39:bd: 2a:44:6d:ff:c2:ce:4c:83:0c:cd:06:e8:ca:2f:42:1f:b6:d9: dc:eb:21:a2:e4:21:59:43:a2:84:bd:2a:5c:43:7c:f9:1b:da: 47:32:eb:84:52:5b:97:18:58:5e:15:4a:f9:71:14:7c:f2:32: b4:64:ad:d2:06:41:45:98:d5:02:23:a5:f3:2d:cd:c6:32:8a: e9:aa:1e:b8:00:c6:c3:a8:7a:68:9a:04:8a:a4:7e:7f:2a:d7: 00:85:db:fd:14:0f:2f:ad:13:04:19:94:30:22:ff:7e:f9:2b: ce:6c:35:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFDQUExMTAvBgNVBAUTKDYxN0YwNTRFM0NFNDUxRTBDM0U3RjQ0NkREMDlGNzg2 NDY1MkI2NTYwHhcNMjUwNjE1MDQyMTQ5WhcNMjUwNjIyMDQyMTQ5WjAYMRYwFAYD VQQDEw02ODRlNGE1ZC05YWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr02yIlA/yfNSmxRE7X2tg4e8I0zi/fbB0z8qdIl+3FU0wptngpBvwf95/9z1 QCAcXb1PBs0oIDLKjOg0TiocBg4VPJDYU4oR6xYV4GQsVycNmbcnb3r/Z66HjSSc vVCPbfZw0H1S35tCj75yb0OlqJY88ww73qrSCVBfqMU+P0Tq04nQKIFsm335qnBD IReVq65seXk/tB0hv9KmiOhnuFxUxp6bGxdmkWGfnbxlgjQ/OtwXBGxM05yNd07I cHLPt1wVerH+LHq3Kw8DbuT49kutVKGNw97J/vJDqqYSMtWcvzpjtwWA4BhgGdfA V2XvedAHFWwn0MNgcTqnPEfX9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDwUhDvl Dl1bPDq7RMvwFi9Gs66jMB8GA1UdIwQYMBaAFGF/BU485FHgw+f0Rt0J94ZGUrZW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUNBQS84RTI3NUExRUNF NEExMUVFOERFOUU1MUZDNEY5QUUwMi9ZWDhGVGp6a1VlREQ1X1JHM1FuM2hrWlN0 bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lYOEZUanprVWVERDVfUkczUW4zaGtaU3RsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUNBQS84RTI3NUExRUNFNEExMUVFOERFOUU1MUZDNEY5QUUwMi9ZWDhGVGp6a1Vl REQ1X1JHM1FuM2hrWlN0bFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHa14AsuALZ0Zrgs0lOrJsvthLXBKbrJ2LEGnVeUZT59kVFcPZufUO onYeiYoO8y5rPv8vIBa0ZaIVVSJSHtAzGtuwdfV8bFObvqL7fkwWJUHobk9OLDbB YKzRXE9hQq1eH6/aG7gNGH5oeVAemdND9StMqtwxo1tY1WilZdplh53eG+GyB4IV XBPwq4/xOb0qRG3/ws5MgwzNBujKL0Ifttnc6yGi5CFZQ6KEvSpcQ3z5G9pHMuuE UluXGFheFUr5cRR88jK0ZK3SBkFFmNUCI6XzLc3GMorpqh64AMbDqHpomgSKpH5/ KtcAhdv9FA8vrRMEGZQwIv9++SvObDXn -----END CERTIFICATE-----Generated at Tue Jun 17 01:25:32 2025 by rpki-client