$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.mft File: y8FNQFd4Ri-cXZFYOlxxg28jwZ0.mft (raw, json) Hash identifier: Y3xPi9ZZM9GTReMtcpYYjXjTh3gdvKgrbmo12ZoiHnw= Subject key identifier: 84:9B:DC:6E:A8:F5:2F:D8:AC:77:2E:7B:9F:F7:66:5E:6C:8A:2B:52 Authority key identifier: CB:C1:4D:40:57:78:46:2F:9C:5D:91:58:3A:5C:71:83:6F:23:C1:9D Certificate issuer: /CN=A91B9C52/serialNumber=CBC14D405778462F9C5D91583A5C71836F23C19D Certificate serial: 33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.mft Manifest number: 054A Signing time: Sat 14 Jun 2025 23:22:42 +0000 Manifest this update: Sat 14 Jun 2025 23:22:42 +0000 Manifest next update: Sat 21 Jun 2025 23:22:42 +0000 Files and hashes: 1: y8FNQFd4Ri-cXZFYOlxxg28jwZ0.crl (hash: H6ifcv3GbJNLK+O/1wiDuPMH25Qz/7zgqBlPJldQPtk=) 2: B0245792094611F089247D2CC4F9AE02.roa (hash: WzcjSkbp1L3UZdNgdiavQerl/BKgE6QHhDZV6MZpLAY=) 3: DB78EC4202C411F0A370F12EC4F9AE02.roa (hash: cYCE21n+c8J3/ZWE+DpkusC3dL/h3MNQr/C6R6q0LQY=) 4: DBEA4AA402C411F0A370F12EC4F9AE02.roa (hash: LglT88AP992wwS6++8oX+hvPgvXH2IXg5x9/81P07t8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.crl rsync://rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 23:22:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51 (0x33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9C52, serialNumber=CBC14D405778462F9C5D91583A5C71836F23C19D Validity Not Before: Jun 14 23:22:42 2025 GMT Not After : Jun 21 23:22:42 2025 GMT Subject: CN=684e0442-09d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:41:35:0f:a5:a5:21:fc:8c:fe:b5:be:23:02: 8e:3a:05:b3:92:e8:5e:0a:49:9d:14:b5:91:3b:70: 3b:47:f6:99:3b:a1:ae:ab:0b:f5:da:f1:63:37:dd: 92:b2:00:21:73:fd:8f:fc:18:b8:c7:68:98:b2:76: 67:1c:01:a6:15:79:6e:ff:a8:6c:3c:07:5a:fe:23: 10:96:50:08:8c:aa:27:4e:6b:93:ad:ee:4a:df:77: 15:67:1b:21:1d:48:16:7a:80:73:4c:f4:1a:1c:8d: a8:81:b2:37:b5:73:6c:dd:13:37:2c:bc:66:dc:9f: c4:f6:51:c0:54:eb:71:0d:ff:c7:aa:c8:12:8c:c9: cc:36:b4:bf:c4:5c:a2:ec:c2:74:a5:be:ea:e1:18: 68:41:cc:2c:54:cd:2f:a8:2d:59:60:1a:ad:52:c2: 6c:39:60:68:70:d7:38:d0:e9:38:13:ff:fc:8e:0f: ac:f0:d2:97:16:b7:3c:b5:23:0f:7f:df:10:d9:9d: 88:fc:73:7a:20:62:18:ea:f9:00:9b:5b:5a:a0:19: 1b:53:3c:cd:87:4a:23:6d:3d:3d:55:03:55:8a:0b: 46:92:d0:53:7f:c8:de:a9:f2:ea:e6:cb:af:d7:03: 0b:88:8e:6a:5d:78:ae:b6:ec:4e:bc:13:54:52:55: 5a:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:9B:DC:6E:A8:F5:2F:D8:AC:77:2E:7B:9F:F7:66:5E:6C:8A:2B:52 X509v3 Authority Key Identifier: keyid:CB:C1:4D:40:57:78:46:2F:9C:5D:91:58:3A:5C:71:83:6F:23:C1:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:66:bd:ec:1a:3f:c2:bf:34:31:2b:8a:74:d3:de:29:d4:1f: 5d:a3:46:d7:58:d5:48:53:f8:9d:0a:ee:58:13:50:d5:4a:15: 12:d0:09:4f:15:f8:57:5a:89:d1:2b:52:08:82:c0:de:92:e1: df:15:9a:a4:3f:fa:86:da:7b:85:ba:ff:1e:c5:f3:6c:f2:6b: 41:18:65:4b:e3:56:a3:62:eb:c0:ad:23:45:71:5e:26:55:ab: 46:e5:82:fd:b8:5e:a4:f5:16:8c:c8:78:93:7f:29:7e:0b:b4: 56:b0:65:75:29:96:96:0b:ed:86:dc:d8:7b:80:65:24:b0:33: 4d:50:8f:ee:2b:ac:ce:b7:0d:a5:a3:7e:a8:3a:34:24:02:65: eb:1e:ef:77:43:65:1f:f4:99:96:39:da:7f:3a:9a:82:14:91: 51:d0:16:60:76:48:12:ab:34:53:92:89:30:41:0d:50:58:80: 49:13:fc:44:57:5e:77:2a:5f:fe:04:e6:e9:f4:f3:01:40:38: b9:20:ca:4f:13:9a:d0:72:f3:96:fa:5d:c6:3b:ae:87:44:27: de:f3:b4:47:f6:19:96:53:83:83:73:e2:6f:ea:77:a7:b5:dc: 18:c4:1c:b1:ef:6b:57:99:30:7b:19:34:45:ef:bf:58:d1:2e: b1:21:3e:04 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC OUM1MjExMC8GA1UEBRMoQ0JDMTRENDA1Nzc4NDYyRjlDNUQ5MTU4M0E1QzcxODM2 RjIzQzE5RDAeFw0yNTA2MTQyMzIyNDJaFw0yNTA2MjEyMzIyNDJaMBgxFjAUBgNV BAMTDTY4NGUwNDQyLTA5ZDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYQTUPpaUh/Iz+tb4jAo46BbOS6F4KSZ0UtZE7cDtH9pk7oa6rC/Xa8WM33ZKy ACFz/Y/8GLjHaJiydmccAaYVeW7/qGw8B1r+IxCWUAiMqidOa5Ot7krfdxVnGyEd SBZ6gHNM9BocjaiBsje1c2zdEzcsvGbcn8T2UcBU63EN/8eqyBKMycw2tL/EXKLs wnSlvurhGGhBzCxUzS+oLVlgGq1Swmw5YGhw1zjQ6TgT//yOD6zw0pcWtzy1Iw9/ 3xDZnYj8c3ogYhjq+QCbW1qgGRtTPM2HSiNtPT1VA1WKC0aS0FN/yN6p8urmy6/X AwuIjmpdeK627E68E1RSVVphAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUhJvcbqj1 L9isdy57n/dmXmyKK1IwHwYDVR0jBBgwFoAUy8FNQFd4Ri+cXZFYOlxxg28jwZ0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI5QzUyLzZCNzE1MTYyMEQ3 RTExRUM5QzBCNUY3NUM0RjlBRTAyL3k4Rk5RRmQ0UmktY1haRllPbHh4ZzI4anda MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveThGTlFGZDRSaS1jWFpGWU9seHhnMjhqd1owLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI5 QzUyLzZCNzE1MTYyMEQ3RTExRUM5QzBCNUY3NUM0RjlBRTAyL3k4Rk5RRmQ0Umkt Y1haRllPbHh4ZzI4andaMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFFmvewaP8K/NDErinTT3inUH12jRtdY1UhT+J0K7lgTUNVKFRLQCU8V +FdaidErUgiCwN6S4d8VmqQ/+obae4W6/x7F82zya0EYZUvjVqNi68CtI0VxXiZV q0blgv24XqT1FozIeJN/KX4LtFawZXUplpYL7Ybc2HuAZSSwM01Qj+4rrM63DaWj fqg6NCQCZese73dDZR/0mZY52n86moIUkVHQFmB2SBKrNFOSiTBBDVBYgEkT/ERX XncqX/4E5un08wFAOLkgyk8TmtBy85b6XcY7rodEJ97ztEf2GZZTg4Nz4m/qd6e1 3BjEHLHva1eZMHsZNEXvv1jRLrEhPgQ= -----END CERTIFICATE-----Generated at Sun Jun 15 08:02:26 2025 by rpki-client