$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft File: Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft (raw, json) Hash identifier: HiRbVIj5juGMfJmkVSvusob4fJ+grvIMzZUPwwpMKkU= Subject key identifier: 0B:48:56:20:CA:87:59:0B:13:B2:EC:4E:C1:DA:2D:B3:9F:70:8A:93 Authority key identifier: 63:49:73:59:04:E1:BC:0D:65:BD:59:4A:07:76:2B:B5:29:9C:03:8A Certificate issuer: /CN=A91AFB4C/serialNumber=6349735904E1BC0D65BD594A07762BB5299C038A Certificate serial: 01BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft Manifest number: 01B6 Signing time: Fri 13 Jun 2025 02:11:56 +0000 Manifest this update: Fri 13 Jun 2025 02:11:56 +0000 Manifest next update: Fri 20 Jun 2025 02:11:56 +0000 Files and hashes: 1: Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl (hash: GIAbdjulaJYWusjHioMA8utpgt/bUBMsVfxj2aPg6ao=) 2: AD286018B29C11EDB216812EC4F9AE02.roa (hash: ck7frHwbdvA8vLLhGdgsJbIt8cpEwUyRbFKBDEFTB8E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 02:11:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 443 (0x1bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFB4C, serialNumber=6349735904E1BC0D65BD594A07762BB5299C038A Validity Not Before: Jun 13 02:11:56 2025 GMT Not After : Jun 20 02:11:56 2025 GMT Subject: CN=684b88ec-74e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d3:5f:91:d2:51:6d:d3:35:f6:4d:e1:0b:ed: 06:39:bc:09:58:f8:d2:62:fa:73:01:02:d7:be:13: dd:c5:73:db:eb:fe:49:22:8d:6a:a7:ff:77:90:4d: 1b:2f:a7:95:65:00:a5:78:4c:e6:a8:26:f5:90:e3: 36:2a:eb:8b:3c:19:21:c7:39:99:fe:28:46:9c:dd: a8:a6:4b:d0:af:fc:aa:99:85:ab:55:10:81:46:14: 8c:76:56:d8:e5:57:60:b0:29:5c:6c:ae:25:eb:78: ff:f5:e5:9e:82:b7:8b:76:b6:98:ee:d6:f5:c0:25: c0:2f:02:4e:77:96:a5:51:09:63:b8:f1:b3:46:24: b1:81:79:25:df:75:0b:7b:e0:ea:3a:64:92:0d:ef: 13:ab:cf:9b:e1:d8:3d:fa:79:12:12:fe:7f:52:61: 99:1b:fc:82:2f:0d:cc:2e:69:ea:24:c4:6f:f0:35: 3c:dc:17:46:29:e8:ad:79:5c:01:f0:07:b3:73:42: 64:3c:e6:a1:a0:80:e9:19:4e:69:cc:c8:5c:3a:e6: e9:7b:25:e3:a3:bf:da:96:ce:14:9f:9b:b7:a2:8c: 12:93:f8:20:0c:48:d2:29:f0:dc:ba:0b:65:bd:ef: 54:7b:4f:ad:ab:49:a4:d2:d4:da:e9:55:2d:30:5d: 8b:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:48:56:20:CA:87:59:0B:13:B2:EC:4E:C1:DA:2D:B3:9F:70:8A:93 X509v3 Authority Key Identifier: keyid:63:49:73:59:04:E1:BC:0D:65:BD:59:4A:07:76:2B:B5:29:9C:03:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:22:32:80:fe:dd:40:bb:1f:8e:92:e0:73:3d:ae:31:22:95: 3b:c9:5e:ec:e2:74:03:da:e7:9e:00:f8:8c:1e:29:a8:e3:08: ea:e6:30:35:f2:5a:47:4a:ee:51:06:2a:c2:e3:8d:4f:8f:cd: c6:8b:f7:ce:c4:5e:0c:4d:d3:93:57:e9:86:b0:fb:0e:1d:f2: f6:61:06:5b:c0:ce:7e:a8:e9:61:e7:31:78:7d:ff:b5:74:b4: 20:f6:fa:c6:b4:5a:3b:db:c8:d3:1e:9e:95:30:c5:7b:dc:ba: f5:9d:30:9f:1a:4e:ad:c3:a8:15:c6:7f:89:02:b1:87:95:66: 3f:3e:87:07:92:74:b2:63:f6:95:30:a9:4f:fe:80:1a:d1:40: 05:68:b8:6e:39:b4:94:d9:bf:57:d2:12:28:82:a1:74:6d:6e: f0:71:69:03:d7:1b:c5:82:0b:53:e2:60:5e:b6:fa:66:fa:85: 9f:c3:75:81:c6:cd:a4:6f:cc:0f:28:74:ab:34:fc:fa:1e:ff: b6:df:e5:7f:49:99:fc:9a:94:ce:59:0f:3d:93:cc:f7:70:dd: 87:6a:6e:2f:17:17:05:65:2a:55:3c:a7:9e:c1:8c:9a:66:9d: 20:b2:16:b3:83:88:5d:93:ef:e2:5a:ec:8d:25:da:cf:19:4b: 98:55:4e:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZCNEMxMTAvBgNVBAUTKDYzNDk3MzU5MDRFMUJDMEQ2NUJENTk0QTA3NzYyQkI1 Mjk5QzAzOEEwHhcNMjUwNjEzMDIxMTU2WhcNMjUwNjIwMDIxMTU2WjAYMRYwFAYD VQQDEw02ODRiODhlYy03NGU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsdNfkdJRbdM19k3hC+0GObwJWPjSYvpzAQLXvhPdxXPb6/5JIo1qp/93kE0b L6eVZQCleEzmqCb1kOM2KuuLPBkhxzmZ/ihGnN2opkvQr/yqmYWrVRCBRhSMdlbY 5VdgsClcbK4l63j/9eWegreLdraY7tb1wCXALwJOd5alUQljuPGzRiSxgXkl33UL e+DqOmSSDe8Tq8+b4dg9+nkSEv5/UmGZG/yCLw3MLmnqJMRv8DU83BdGKeiteVwB 8Aezc0JkPOahoIDpGU5pzMhcOubpeyXjo7/als4Un5u3oowSk/ggDEjSKfDcugtl ve9Ue0+tq0mk0tTa6VUtMF2LAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAtIViDK h1kLE7LsTsHaLbOfcIqTMB8GA1UdIwQYMBaAFGNJc1kE4bwNZb1ZSgd2K7UpnAOK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkI0Qy9DNDcwQjIyQUIy OTcxMUVEOTRFRjA5MjZDNEY5QUUwMi9ZMGx6V1FUaHZBMWx2VmxLQjNZcnRTbWNB NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kwbHpXUVRodkExbHZWbEtCM1lydFNtY0E0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RkI0Qy9DNDcwQjIyQUIyOTcxMUVEOTRFRjA5MjZDNEY5QUUwMi9ZMGx6V1FUaHZB MWx2VmxLQjNZcnRTbWNBNG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzIjKA/t1Aux+OkuBzPa4xIpU7yV7s4nQD2ueeAPiMHimo4wjq5jA1 8lpHSu5RBirC441Pj83Gi/fOxF4MTdOTV+mGsPsOHfL2YQZbwM5+qOlh5zF4ff+1 dLQg9vrGtFo728jTHp6VMMV73Lr1nTCfGk6tw6gVxn+JArGHlWY/PocHknSyY/aV MKlP/oAa0UAFaLhuObSU2b9X0hIogqF0bW7wcWkD1xvFggtT4mBetvpm+oWfw3WB xs2kb8wPKHSrNPz6Hv+23+V/SZn8mpTOWQ89k8z3cN2Ham4vFxcFZSpVPKeewYya Zp0gshazg4hdk+/iWuyNJdrPGUuYVU5v -----END CERTIFICATE-----Generated at Sat Jun 14 19:03:05 2025 by rpki-client