$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft File: YbAiM19NheFtR3oAatyOPy_alGA.mft (raw, json) Hash identifier: bLnQeQ2tOqSwQHK3RVumeXjPiCREbFCyG1LAIE4GpJo= Subject key identifier: 77:E7:E3:D8:FC:C9:14:24:A9:1D:EB:D2:BF:53:6A:8B:11:1F:05:D6 Authority key identifier: 61:B0:22:33:5F:4D:85:E1:6D:47:7A:00:6A:DC:8E:3F:2F:DA:94:60 Certificate issuer: /CN=A91A7C77/serialNumber=61B022335F4D85E16D477A006ADC8E3F2FDA9460 Certificate serial: 0499 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft Manifest number: 0497 Signing time: Thu 12 Jun 2025 23:33:40 +0000 Manifest this update: Thu 12 Jun 2025 23:33:39 +0000 Manifest next update: Thu 19 Jun 2025 23:33:39 +0000 Files and hashes: 1: YbAiM19NheFtR3oAatyOPy_alGA.crl (hash: 11Mv+vnQz4sS0lO1MMbjGSzQjoMTDrzIWGsKu77uGpQ=) 2: FF4EB6B2395811ECA422C462C4F9AE02.roa (hash: kkkJWZ9fDn1htzEtE1zpX7lAAG0cOZUfH1foPNvS114=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.crl rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 23:33:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1177 (0x499) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7C77, serialNumber=61B022335F4D85E16D477A006ADC8E3F2FDA9460 Validity Not Before: Jun 12 23:33:39 2025 GMT Not After : Jun 19 23:33:39 2025 GMT Subject: CN=684b63d4-5f92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:15:ba:b0:94:6a:c9:3d:50:49:61:6a:ed:71: 2d:25:06:1f:77:8d:a4:b0:09:82:7c:1d:14:7a:fb: e3:9e:3a:b0:d1:b3:a4:2f:9e:ca:23:2c:7e:a0:94: df:f5:2a:fd:4c:0a:5d:f7:b6:cf:b6:6d:db:b2:2b: 8e:46:32:8a:3c:bc:26:b9:8e:6b:6f:e7:83:84:d5: f8:0c:48:72:36:03:ed:c2:5a:0a:7e:c8:d9:c8:9d: 90:59:13:91:92:f9:a7:77:70:0c:d8:8e:6b:74:81: a1:d5:ee:40:98:77:4c:fe:65:9d:ef:5d:14:2c:05: 34:f0:49:b6:44:60:cb:84:d9:95:b4:98:bf:c7:b1: 59:2d:55:de:38:b9:d0:db:ea:be:bb:57:ff:67:93: f0:9a:56:89:6d:15:f9:f0:f4:a0:b2:12:b4:12:ec: 5c:d4:c5:ec:5a:42:cd:05:33:57:5d:aa:dc:5d:6e: 61:6d:5f:56:1c:a9:02:dc:20:9b:fe:30:1c:aa:63: 5b:32:0c:66:72:23:cc:a0:64:51:b1:63:7b:07:d1: 1a:cc:11:b5:89:6c:e8:07:82:35:2e:7b:49:ef:c9: f8:8e:15:a0:d2:26:15:ca:5a:58:99:59:db:d0:14: ad:ce:3d:15:85:94:fe:29:04:a3:03:eb:66:ed:bb: db:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:E7:E3:D8:FC:C9:14:24:A9:1D:EB:D2:BF:53:6A:8B:11:1F:05:D6 X509v3 Authority Key Identifier: keyid:61:B0:22:33:5F:4D:85:E1:6D:47:7A:00:6A:DC:8E:3F:2F:DA:94:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:30:30:41:9e:63:56:34:86:d5:ad:af:14:d8:a0:ba:12:d4: 07:35:63:6d:5a:91:06:23:3e:2e:21:42:95:f0:04:17:e2:a2: 87:de:78:3c:eb:36:6a:26:73:36:95:ea:e5:d8:58:de:95:a3: 48:68:2b:62:92:2e:73:12:04:68:ef:91:f9:da:94:be:91:03: 1b:e0:a2:ad:68:c1:75:26:db:79:2b:84:fa:03:6a:19:bc:c5: 38:bc:83:2c:18:71:e8:60:a4:06:ce:83:86:71:b8:8a:1a:8a: 4f:28:70:a2:55:85:2b:0a:b6:8a:e8:cc:5f:82:8e:33:fd:06: 69:b1:1e:85:5d:4a:fb:a7:1f:d6:28:8e:56:e5:52:36:c3:21: f3:14:43:4b:7c:3f:6e:0e:97:a4:3f:d3:cf:de:2f:4a:16:a9: c9:8a:bf:df:8c:45:ee:bb:9b:f0:d8:7c:40:b5:4a:1a:14:d4: c8:c9:6b:db:97:67:0b:b7:33:30:ef:31:1e:db:ce:48:c0:a6: fa:eb:ce:83:85:0b:8e:20:a5:ff:bd:99:4d:1a:8b:b4:bc:8d: 2a:1a:da:11:70:31:23:9a:54:0e:3d:b7:41:c7:8b:10:c7:32: a7:63:e5:9d:0c:7a:07:72:62:26:72:20:e1:fd:bb:3d:1b:cf: 25:20:a3:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDNzcxMTAvBgNVBAUTKDYxQjAyMjMzNUY0RDg1RTE2RDQ3N0EwMDZBREM4RTNG MkZEQTk0NjAwHhcNMjUwNjEyMjMzMzM5WhcNMjUwNjE5MjMzMzM5WjAYMRYwFAYD VQQDEw02ODRiNjNkNC01ZjkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9BW6sJRqyT1QSWFq7XEtJQYfd42ksAmCfB0Uevvjnjqw0bOkL57KIyx+oJTf 9Sr9TApd97bPtm3bsiuORjKKPLwmuY5rb+eDhNX4DEhyNgPtwloKfsjZyJ2QWROR kvmnd3AM2I5rdIGh1e5AmHdM/mWd710ULAU08Em2RGDLhNmVtJi/x7FZLVXeOLnQ 2+q+u1f/Z5PwmlaJbRX58PSgshK0Euxc1MXsWkLNBTNXXarcXW5hbV9WHKkC3CCb /jAcqmNbMgxmciPMoGRRsWN7B9EazBG1iWzoB4I1LntJ78n4jhWg0iYVylpYmVnb 0BStzj0VhZT+KQSjA+tm7bvbGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHfn49j8 yRQkqR3r0r9TaosRHwXWMB8GA1UdIwQYMBaAFGGwIjNfTYXhbUd6AGrcjj8v2pRg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0M3Ny9EQzIwMUFGRTM5 NTQxMUVDODBEOUQzNTlDNEY5QUUwMi9ZYkFpTTE5TmhlRnRSM29BYXR5T1B5X2Fs R0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liQWlNMTlOaGVGdFIzb0FhdHlPUHlfYWxHQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0M3Ny9EQzIwMUFGRTM5NTQxMUVDODBEOUQzNTlDNEY5QUUwMi9ZYkFpTTE5Tmhl RnRSM29BYXR5T1B5X2FsR0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDMMDBBnmNWNIbVra8U2KC6EtQHNWNtWpEGIz4uIUKV8AQX4qKH3ng8 6zZqJnM2lerl2FjelaNIaCtiki5zEgRo75H52pS+kQMb4KKtaMF1Jtt5K4T6A2oZ vMU4vIMsGHHoYKQGzoOGcbiKGopPKHCiVYUrCraK6Mxfgo4z/QZpsR6FXUr7px/W KI5W5VI2wyHzFENLfD9uDpekP9PP3i9KFqnJir/fjEXuu5vw2HxAtUoaFNTIyWvb l2cLtzMw7zEe285IwKb6686DhQuOIKX/vZlNGou0vI0qGtoRcDEjmlQOPbdBx4sQ xzKnY+WdDHoHcmImciDh/bs9G88lIKP+ -----END CERTIFICATE-----Generated at Sat Jun 14 18:48:45 2025 by rpki-client