$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7B61/BE68D302CAAA11EBB8C02B5CC4F9AE02/cYQNfZjFz5vWvrRIatRnQGXxR0E.mft File: cYQNfZjFz5vWvrRIatRnQGXxR0E.mft (raw, json) Hash identifier: crFNX7BMKemWdKlYaeX4STd35mcqfyNG45xZsRchtlI= Subject key identifier: 4B:89:AD:2D:21:81:02:2C:5A:60:CD:64:23:2C:FE:76:19:FF:B8:AC Authority key identifier: 71:84:0D:7D:98:C5:CF:9B:D6:BE:B4:48:6A:D4:67:40:65:F1:47:41 Certificate issuer: /CN=A91B7B61/serialNumber=71840D7D98C5CF9BD6BEB4486AD4674065F14741 Certificate serial: 05B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cYQNfZjFz5vWvrRIatRnQGXxR0E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7B61/BE68D302CAAA11EBB8C02B5CC4F9AE02/cYQNfZjFz5vWvrRIatRnQGXxR0E.mft Manifest number: 05B1 Signing time: Sat 14 Jun 2025 22:52:51 +0000 Manifest this update: Sat 14 Jun 2025 22:52:51 +0000 Manifest next update: Sat 21 Jun 2025 22:52:51 +0000 Files and hashes: 1: cYQNfZjFz5vWvrRIatRnQGXxR0E.crl (hash: duZbwm0T4UtZyzqQpEwRo9owm2nH0ebxwQXcCNo8i/Q=) 2: C2EFC706CAAE11EBA95C5E64C4F9AE02.roa (hash: CjCSmslBUSukL+VQeriKJzpmD5FpwHuT7xL5fJExCAg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7B61/BE68D302CAAA11EBB8C02B5CC4F9AE02/cYQNfZjFz5vWvrRIatRnQGXxR0E.crl rsync://rpki.apnic.net/member_repository/A91B7B61/BE68D302CAAA11EBB8C02B5CC4F9AE02/cYQNfZjFz5vWvrRIatRnQGXxR0E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cYQNfZjFz5vWvrRIatRnQGXxR0E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 22:52:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1461 (0x5b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7B61, serialNumber=71840D7D98C5CF9BD6BEB4486AD4674065F14741 Validity Not Before: Jun 14 22:52:51 2025 GMT Not After : Jun 21 22:52:51 2025 GMT Subject: CN=684dfd43-ab61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:2b:12:50:7e:53:b8:4d:f4:89:63:99:ee:2e: 63:bd:4c:2f:60:6f:53:05:35:82:1c:bc:0b:c0:93: ad:0c:1b:4c:96:42:9f:d8:60:eb:ee:44:e4:db:8a: bc:89:c9:49:70:d3:8c:96:5b:2b:ce:c7:57:f9:2a: 70:e1:39:0d:1b:7a:b4:dd:13:b2:c0:c8:62:6c:1a: fb:77:4e:f9:f5:da:f6:c6:61:4d:c8:2f:05:d5:9e: ab:fd:32:be:68:64:42:d4:db:63:c6:3e:1e:b4:54: b4:ba:43:d5:b9:6a:c7:be:f5:39:d3:fb:88:b2:d3: df:84:f7:ea:02:1d:eb:bf:4f:87:2d:bd:87:37:c2: a3:39:53:cd:49:a7:9e:c5:b8:b6:69:65:cb:8c:a5: f8:d1:7a:26:37:c3:bf:0c:83:e8:77:a2:cf:6c:26: 3e:13:96:59:3b:b7:cf:26:57:ba:87:35:55:ac:21: 62:4c:3c:30:e1:c3:c4:7e:18:ab:f8:a9:a0:85:80: 4c:9b:08:31:68:5b:31:89:40:a1:53:a5:cb:45:8b: b5:ea:5d:33:cd:6a:36:87:52:88:8e:69:65:22:a5: 6c:2b:09:ad:84:5a:09:aa:83:02:42:02:ad:24:9c: ad:5c:39:d8:57:aa:36:1d:c1:b5:72:e2:b9:5a:cc: 45:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:89:AD:2D:21:81:02:2C:5A:60:CD:64:23:2C:FE:76:19:FF:B8:AC X509v3 Authority Key Identifier: keyid:71:84:0D:7D:98:C5:CF:9B:D6:BE:B4:48:6A:D4:67:40:65:F1:47:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7B61/BE68D302CAAA11EBB8C02B5CC4F9AE02/cYQNfZjFz5vWvrRIatRnQGXxR0E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cYQNfZjFz5vWvrRIatRnQGXxR0E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7B61/BE68D302CAAA11EBB8C02B5CC4F9AE02/cYQNfZjFz5vWvrRIatRnQGXxR0E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:cf:f3:34:3b:5e:52:52:b9:f0:99:e2:8c:17:cd:0b:55:4a: fd:28:0c:d4:36:70:85:ea:4e:b0:85:24:a3:5d:9e:cf:67:0b: b4:c4:30:57:45:23:18:e7:6d:af:32:e0:48:3f:66:f9:54:9d: c5:a1:72:49:f1:b6:7a:78:92:1a:7e:b0:6a:ad:da:fa:96:e2: 61:91:1e:33:ae:8d:4e:2e:6e:6a:d8:82:39:3e:ce:c6:91:21: b9:e3:20:8a:b2:21:4b:65:cc:4c:7b:da:b7:38:72:9d:2e:18: 83:2c:48:0b:c8:26:e8:04:2d:21:fa:cb:0f:59:19:e6:6e:fc: 94:f0:5f:ad:92:54:e6:b7:7b:19:d5:ec:4f:47:62:09:99:c3: 06:75:4c:a9:b5:97:34:22:5f:17:f8:d9:7c:eb:c3:68:0c:f8: ab:44:f0:dd:6a:e9:37:96:3a:1f:f3:a8:8e:6d:98:25:4c:f0: e8:dc:98:a1:fe:84:b8:d5:d0:1d:5c:26:06:ec:93:54:d9:5a: 80:89:84:aa:1a:1a:61:50:0f:04:a0:b8:68:1f:79:f6:b8:4f: 01:36:8a:ad:28:4d:3a:24:27:af:aa:8e:88:5a:7c:d4:7f:3a: bb:08:89:7a:57:2c:32:37:a2:51:06:cc:b9:e4:4f:49:fe:7c: 30:a0:2a:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdCNjExMTAvBgNVBAUTKDcxODQwRDdEOThDNUNGOUJENkJFQjQ0ODZBRDQ2NzQw NjVGMTQ3NDEwHhcNMjUwNjE0MjI1MjUxWhcNMjUwNjIxMjI1MjUxWjAYMRYwFAYD VQQDEw02ODRkZmQ0My1hYjYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqisSUH5TuE30iWOZ7i5jvUwvYG9TBTWCHLwLwJOtDBtMlkKf2GDr7kTk24q8 iclJcNOMllsrzsdX+Spw4TkNG3q03ROywMhibBr7d0759dr2xmFNyC8F1Z6r/TK+ aGRC1Ntjxj4etFS0ukPVuWrHvvU50/uIstPfhPfqAh3rv0+HLb2HN8KjOVPNSaee xbi2aWXLjKX40XomN8O/DIPod6LPbCY+E5ZZO7fPJle6hzVVrCFiTDww4cPEfhir +KmghYBMmwgxaFsxiUChU6XLRYu16l0zzWo2h1KIjmllIqVsKwmthFoJqoMCQgKt JJytXDnYV6o2HcG1cuK5WsxF7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEuJrS0h gQIsWmDNZCMs/nYZ/7isMB8GA1UdIwQYMBaAFHGEDX2Yxc+b1r60SGrUZ0Bl8UdB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0I2MS9CRTY4RDMwMkNB QUExMUVCQjhDMDJCNUNDNEY5QUUwMi9jWVFOZlpqRno1dld2clJJYXRSblFHWHhS MEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NZUU5mWmpGejV2V3ZyUklhdFJuUUdYeFIwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0I2MS9CRTY4RDMwMkNBQUExMUVCQjhDMDJCNUNDNEY5QUUwMi9jWVFOZlpqRno1 dld2clJJYXRSblFHWHhSMEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOz/M0O15SUrnwmeKMF80LVUr9KAzUNnCF6k6whSSjXZ7PZwu0xDBX RSMY522vMuBIP2b5VJ3FoXJJ8bZ6eJIafrBqrdr6luJhkR4zro1OLm5q2II5Ps7G kSG54yCKsiFLZcxMe9q3OHKdLhiDLEgLyCboBC0h+ssPWRnmbvyU8F+tklTmt3sZ 1exPR2IJmcMGdUyptZc0Il8X+Nl868NoDPirRPDdauk3ljof86iObZglTPDo3Jih /oS41dAdXCYG7JNU2VqAiYSqGhphUA8EoLhoH3n2uE8BNoqtKE06JCevqo6IWnzU fzq7CIl6VywyN6JRBsy55E9J/nwwoCo+ -----END CERTIFICATE-----Generated at Sun Jun 15 08:33:11 2025 by rpki-client