$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft File: YN1l7H9y62x9qLk3BuLTug8GW_w.mft (raw, json) Hash identifier: 9r15hQIeNBAZzSrmp8KqjPB/HQsJW9ZHIIGeGcsHG10= Subject key identifier: 30:7C:26:76:76:7F:C2:D1:CC:6B:77:F0:4F:2F:73:5B:E6:2C:61:55 Authority key identifier: 60:DD:65:EC:7F:72:EB:6C:7D:A8:B9:37:06:E2:D3:BA:0F:06:5B:FC Certificate issuer: /CN=A91A4264/serialNumber=60DD65EC7F72EB6C7DA8B93706E2D3BA0F065BFC Certificate serial: 1A6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YN1l7H9y62x9qLk3BuLTug8GW_w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft Manifest number: 1A60 Signing time: Sat 14 Jun 2025 16:18:23 +0000 Manifest this update: Sat 14 Jun 2025 16:18:23 +0000 Manifest next update: Sat 21 Jun 2025 16:18:23 +0000 Files and hashes: 1: YN1l7H9y62x9qLk3BuLTug8GW_w.crl (hash: dRzHNK8HswmL07QxVTEYGu0/l6Te59ORpl/Fx4ApljY=) 2: D75BE71A410511E7970A2A5FC4F9AE02.roa (hash: rSf0co4QElknqmx/HUwcUze0T308M2kPbS2aUDzOJyo=) 3: 91CB97905BD211EBA9178181C4F9AE02.roa (hash: Wesd0InqJ/VHy6+SYHu7ABNFnSg/btyWb+0cbj+CPEk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.crl rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YN1l7H9y62x9qLk3BuLTug8GW_w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 16:18:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6767 (0x1a6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4264, serialNumber=60DD65EC7F72EB6C7DA8B93706E2D3BA0F065BFC Validity Not Before: Jun 14 16:18:23 2025 GMT Not After : Jun 21 16:18:23 2025 GMT Subject: CN=684da0cf-96dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:7d:45:86:5f:22:c4:8d:6f:03:46:f7:dd:f6: 6d:6b:44:94:8c:40:91:8b:47:ee:ba:cd:f4:be:69: fa:f2:45:bc:9b:0a:d3:0a:61:88:1f:e0:63:20:33: 8e:6c:e7:fa:d5:01:41:75:83:9b:a8:ad:7f:27:38: 0b:42:26:24:96:df:76:9f:ca:25:d8:d8:8f:b6:3b: 05:f2:9e:eb:78:d4:20:53:2a:6d:fc:c7:36:e7:17: 05:79:e7:7f:c9:2a:a8:f1:d4:6c:4c:d6:df:a5:04: 03:da:07:b8:9b:ed:97:77:ee:7b:6b:1b:6b:d2:e2: 04:50:e4:a4:54:79:41:44:41:46:10:cb:c9:1c:0c: 52:09:f2:9e:36:f6:7f:7e:82:6b:40:07:38:9a:e6: 71:60:04:81:86:da:df:35:b0:fc:24:a9:52:44:f8: 32:8e:cc:7c:d3:66:a4:f9:84:fc:29:6e:d7:24:fb: 0c:53:d1:b5:ad:5f:fc:df:e7:1b:e4:40:8f:bb:1a: 85:08:34:03:ed:cf:d5:07:65:0e:32:b5:c1:49:4f: b2:c4:bb:7f:80:cd:b3:e7:35:05:97:ea:2d:df:e3: 08:73:e6:fc:6d:2f:9f:35:93:b1:cc:24:81:8b:86: 86:9d:b9:7e:2d:9f:4c:bf:16:c6:61:d6:0e:32:41: 60:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:7C:26:76:76:7F:C2:D1:CC:6B:77:F0:4F:2F:73:5B:E6:2C:61:55 X509v3 Authority Key Identifier: keyid:60:DD:65:EC:7F:72:EB:6C:7D:A8:B9:37:06:E2:D3:BA:0F:06:5B:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YN1l7H9y62x9qLk3BuLTug8GW_w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:89:a1:d0:a2:e2:00:ab:5d:a3:a4:c5:bd:6d:0e:79:a5:ed: ee:26:7e:50:f8:08:a7:35:c1:6d:e9:e2:09:70:7a:9b:9d:f8: 2a:78:0c:5a:8f:1a:a0:a9:34:ac:9a:7e:83:76:39:3d:d7:a6: f3:a4:11:1d:98:ef:1e:e6:89:e2:04:c0:06:35:41:70:1f:d5: b9:2a:ba:99:a8:9b:90:7e:b8:ad:40:2b:af:d2:0d:8f:78:33: e5:d3:6f:e7:70:53:dc:fd:41:2f:ee:be:f7:a2:b5:6b:93:99: 4b:db:db:e3:13:e1:53:14:d7:dc:d9:2c:83:f3:4a:fe:3f:1e: fa:15:9d:4e:9e:22:d7:1f:37:48:0b:50:65:f5:9d:4c:42:99: cc:46:a0:9b:e3:da:5d:72:92:24:90:17:19:6f:f9:53:c2:05: 46:1f:97:09:a5:4b:85:3f:89:8b:9c:c6:d9:e7:d7:82:46:8b: f8:d7:04:27:3e:f3:57:a4:40:8d:63:66:4e:61:46:c4:19:08: 95:ce:b3:94:f9:50:a8:8a:e8:a6:f7:13:b5:ae:8f:5e:d2:72: cb:d0:07:e2:13:d6:df:e4:b2:99:81:ca:5a:75:07:2c:11:cd: 73:a6:e3:b0:af:47:ad:2c:ec:50:4d:25:12:69:91:59:36:74: 6f:3d:95:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQyNjQxMTAvBgNVBAUTKDYwREQ2NUVDN0Y3MkVCNkM3REE4QjkzNzA2RTJEM0JB MEYwNjVCRkMwHhcNMjUwNjE0MTYxODIzWhcNMjUwNjIxMTYxODIzWjAYMRYwFAYD VQQDEw02ODRkYTBjZi05NmRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx31Fhl8ixI1vA0b33fZta0SUjECRi0fuus30vmn68kW8mwrTCmGIH+BjIDOO bOf61QFBdYObqK1/JzgLQiYklt92n8ol2NiPtjsF8p7reNQgUypt/Mc25xcFeed/ ySqo8dRsTNbfpQQD2ge4m+2Xd+57axtr0uIEUOSkVHlBREFGEMvJHAxSCfKeNvZ/ foJrQAc4muZxYASBhtrfNbD8JKlSRPgyjsx802ak+YT8KW7XJPsMU9G1rV/83+cb 5ECPuxqFCDQD7c/VB2UOMrXBSU+yxLt/gM2z5zUFl+ot3+MIc+b8bS+fNZOxzCSB i4aGnbl+LZ9MvxbGYdYOMkFghwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDB8JnZ2 f8LRzGt38E8vc1vmLGFVMB8GA1UdIwQYMBaAFGDdZex/cutsfai5Nwbi07oPBlv8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDI2NC9DNThENkZGQTQx MDQxMUU3OUVDMDM4NURDNEY5QUUwMi9ZTjFsN0g5eTYyeDlxTGszQnVMVHVnOEdX X3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lOMWw3SDl5NjJ4OXFMazNCdUxUdWc4R1dfdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDI2NC9DNThENkZGQTQxMDQxMUU3OUVDMDM4NURDNEY5QUUwMi9ZTjFsN0g5eTYy eDlxTGszQnVMVHVnOEdXX3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANiaHQouIAq12jpMW9bQ55pe3uJn5Q+AinNcFt6eIJcHqbnfgqeAxa jxqgqTSsmn6Ddjk916bzpBEdmO8e5oniBMAGNUFwH9W5KrqZqJuQfritQCuv0g2P eDPl02/ncFPc/UEv7r73orVrk5lL29vjE+FTFNfc2SyD80r+Px76FZ1OniLXHzdI C1Bl9Z1MQpnMRqCb49pdcpIkkBcZb/lTwgVGH5cJpUuFP4mLnMbZ59eCRov41wQn PvNXpECNY2ZOYUbEGQiVzrOU+VCoiuim9xO1ro9e0nLL0AfiE9bf5LKZgcpadQcs Ec1zpuOwr0etLOxQTSUSaZFZNnRvPZVw -----END CERTIFICATE-----Generated at Sun Jun 15 09:35:59 2025 by rpki-client