$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft File: yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft (raw, json) Hash identifier: fHTChn37U8Rqq1ZeuykEWiq41Y+Ui0/b//MKwF1/l3E= Subject key identifier: 76:F3:53:B8:57:30:D4:52:B9:40:3C:F8:FD:62:40:48:65:86:AA:9B Authority key identifier: C8:E0:59:1E:7E:51:7D:41:9C:FC:86:17:1C:DC:A9:FD:E6:26:E8:F5 Certificate issuer: /CN=A91AB3E3/serialNumber=C8E0591E7E517D419CFC86171CDCA9FDE626E8F5 Certificate serial: 01C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft Manifest number: 01BE Signing time: Fri 13 Jun 2025 02:04:44 +0000 Manifest this update: Fri 13 Jun 2025 02:04:44 +0000 Manifest next update: Fri 20 Jun 2025 02:04:44 +0000 Files and hashes: 1: yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl (hash: XO5v0hQ9aXgoGmngYY2SRBZf1tdBwXp7E1CTAY/a5mY=) 2: 1E7B7BB4996C11EDA107E666C4F9AE02.roa (hash: /ERrUArKmo0KgEQ70S3Uf+U0E1QNCp3+3kkOG/O7FLo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 02:04:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 449 (0x1c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB3E3, serialNumber=C8E0591E7E517D419CFC86171CDCA9FDE626E8F5 Validity Not Before: Jun 13 02:04:44 2025 GMT Not After : Jun 20 02:04:44 2025 GMT Subject: CN=684b873c-068e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:dc:22:41:01:23:29:24:dd:bc:37:52:ab:28: cd:9d:11:d3:70:19:71:06:cc:c0:45:2b:db:b6:a3: 90:81:f3:c1:53:15:2d:e1:f0:1f:bd:07:44:29:7f: 1f:12:e6:f8:9d:4b:9d:30:6a:b1:88:73:3b:29:29: ed:5d:10:7d:1c:d6:3d:12:8a:e6:63:2a:7c:63:31: 00:ff:d5:39:84:83:f6:6a:75:3e:7a:1f:5b:51:f5: d6:dc:38:46:7e:aa:9a:e3:fe:94:ea:76:fe:48:92: 49:32:a3:58:48:7c:52:da:b6:07:c0:52:9e:11:bf: e4:07:52:3e:00:3a:8c:30:a6:62:c2:26:df:9b:f1: 4f:2b:37:2c:0d:d7:dc:6d:c4:ff:2d:2d:bb:02:09: 9d:65:b8:fe:70:78:d2:ba:bb:aa:f4:81:4b:7d:33: 03:0a:23:1b:55:a7:bb:51:e5:37:c7:31:48:67:bf: 9b:78:f1:bc:af:13:fa:88:6e:de:f6:3e:86:b6:6e: 78:aa:f4:22:d8:d4:1c:63:5f:30:8a:f2:84:08:ae: 35:97:78:bc:26:38:34:d5:bc:15:64:d8:78:2c:0d: 0a:0e:a5:de:71:79:93:25:9d:ef:8e:19:81:3c:1d: e3:f3:3a:55:e1:78:1a:98:03:c0:26:3b:0e:a3:2d: 4c:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:F3:53:B8:57:30:D4:52:B9:40:3C:F8:FD:62:40:48:65:86:AA:9B X509v3 Authority Key Identifier: keyid:C8:E0:59:1E:7E:51:7D:41:9C:FC:86:17:1C:DC:A9:FD:E6:26:E8:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:9c:0e:4e:a2:44:3c:a6:c4:d6:ba:54:e3:21:02:f1:75:60: 4f:b8:d7:dd:83:ff:cb:52:49:9a:03:9d:90:d4:43:81:bd:e6: 05:b7:f7:de:13:33:e9:41:d1:85:03:ca:7c:53:b9:1c:86:0f: a4:f8:f6:d7:af:24:ff:dd:ff:fb:fe:60:39:60:cc:09:aa:93: 35:24:19:97:80:05:a2:1f:72:61:d6:af:fc:9c:28:08:0a:58: fe:14:6f:7f:ab:90:b6:67:39:2c:dc:90:6d:08:f7:ba:da:1d: 37:b4:c9:f6:63:0b:79:9a:c8:f9:99:f4:6b:4e:20:3e:71:85: c9:b1:2c:4b:3c:f9:29:33:bf:5c:e1:f7:7e:73:8b:5d:54:92: 99:4d:f9:85:3d:32:4a:bb:8f:74:88:f9:4a:8b:8a:d9:99:b1: a9:43:5e:9e:76:23:20:5b:d7:de:17:2c:13:5b:d8:e2:d5:6b: b4:2b:35:1b:64:5c:17:60:55:71:18:73:3b:b6:38:78:b9:50: 96:11:7f:fc:c1:44:30:fb:1a:41:9f:b2:89:67:84:92:e4:0f: 8d:ea:ed:52:df:ce:5f:89:66:b4:1b:39:8c:b5:eb:94:2f:23: b4:02:a5:ca:db:05:80:84:07:b0:98:44:05:d6:79:d2:97:a5: a9:fe:82:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIzRTMxMTAvBgNVBAUTKEM4RTA1OTFFN0U1MTdENDE5Q0ZDODYxNzFDRENBOUZE RTYyNkU4RjUwHhcNMjUwNjEzMDIwNDQ0WhcNMjUwNjIwMDIwNDQ0WjAYMRYwFAYD VQQDEw02ODRiODczYy0wNjhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuNwiQQEjKSTdvDdSqyjNnRHTcBlxBszARSvbtqOQgfPBUxUt4fAfvQdEKX8f Eub4nUudMGqxiHM7KSntXRB9HNY9EormYyp8YzEA/9U5hIP2anU+eh9bUfXW3DhG fqqa4/6U6nb+SJJJMqNYSHxS2rYHwFKeEb/kB1I+ADqMMKZiwibfm/FPKzcsDdfc bcT/LS27AgmdZbj+cHjSuruq9IFLfTMDCiMbVae7UeU3xzFIZ7+bePG8rxP6iG7e 9j6Gtm54qvQi2NQcY18wivKECK41l3i8Jjg01bwVZNh4LA0KDqXecXmTJZ3vjhmB PB3j8zpV4XgamAPAJjsOoy1MEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHbzU7hX MNRSuUA8+P1iQEhlhqqbMB8GA1UdIwQYMBaAFMjgWR5+UX1BnPyGFxzcqf3mJuj1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjNFMy9BOTQ2MjRCNDk5 NjgxMUVEQjE2MkY4NjFDNEY5QUUwMi95T0JaSG41UmZVR2NfSVlYSE55cF9lWW02 UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lPQlpIbjVSZlVHY19JWVhITnlwX2VZbTZQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjNFMy9BOTQ2MjRCNDk5NjgxMUVEQjE2MkY4NjFDNEY5QUUwMi95T0JaSG41UmZV R2NfSVlYSE55cF9lWW02UFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1nA5OokQ8psTWulTjIQLxdWBPuNfdg//LUkmaA52Q1EOBveYFt/fe EzPpQdGFA8p8U7kchg+k+PbXryT/3f/7/mA5YMwJqpM1JBmXgAWiH3Jh1q/8nCgI Clj+FG9/q5C2Zzks3JBtCPe62h03tMn2Ywt5msj5mfRrTiA+cYXJsSxLPPkpM79c 4fd+c4tdVJKZTfmFPTJKu490iPlKi4rZmbGpQ16ediMgW9feFywTW9ji1Wu0KzUb ZFwXYFVxGHM7tjh4uVCWEX/8wUQw+xpBn7KJZ4SS5A+N6u1S385fiWa0GzmMteuU LyO0AqXK2wWAhAewmEQF1nnSl6Wp/oIM -----END CERTIFICATE-----Generated at Sat Jun 14 17:28:29 2025 by rpki-client