$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft File: y2yF51LVad_PHekEycvnHkg-9fI.mft (raw, json) Hash identifier: rmS46Tug65voHAYXHKgT3LJxFcsHUTHVjQxOiy8l6Z8= Subject key identifier: E5:61:05:54:E0:5C:88:F3:E3:95:5B:C4:76:1E:7C:13:79:EF:73:07 Authority key identifier: CB:6C:85:E7:52:D5:69:DF:CF:1D:E9:04:C9:CB:E7:1E:48:3E:F5:F2 Certificate issuer: /CN=A91BC039/serialNumber=CB6C85E752D569DFCF1DE904C9CBE71E483EF5F2 Certificate serial: 04DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2yF51LVad_PHekEycvnHkg-9fI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft Manifest number: 04D5 Signing time: Sat 14 Jun 2025 23:31:27 +0000 Manifest this update: Sat 14 Jun 2025 23:31:26 +0000 Manifest next update: Sat 21 Jun 2025 23:31:26 +0000 Files and hashes: 1: y2yF51LVad_PHekEycvnHkg-9fI.crl (hash: 1GQ6Q9yWi0TzuoSjOYLqRsvOIZtKZtzIcGoTdW5X5DI=) 2: B0A2E01225C411EC88466E59C4F9AE02.roa (hash: 8z4FQ3P4ffexi4IqxjF16x9Xr0QlwFMb8TffrA8dnxw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.crl rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2yF51LVad_PHekEycvnHkg-9fI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 23:31:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1243 (0x4db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC039, serialNumber=CB6C85E752D569DFCF1DE904C9CBE71E483EF5F2 Validity Not Before: Jun 14 23:31:26 2025 GMT Not After : Jun 21 23:31:26 2025 GMT Subject: CN=684e064e-596e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:eb:5c:ff:ef:5c:27:41:bc:fa:f3:f0:33:eb: 8b:31:36:4e:27:c0:0e:5a:72:fc:2f:48:78:b2:4f: e8:0d:a8:90:e9:63:81:cb:da:81:60:04:14:9a:e5: 34:8d:10:42:78:d7:ad:8e:a5:4b:02:22:1a:6f:ce: fa:dc:3d:60:a4:f9:19:0c:34:d3:72:8b:7e:5e:fa: 47:47:ed:da:eb:7c:ed:3c:99:57:97:19:51:a2:15: 1c:66:b6:69:a0:38:68:05:52:4a:93:61:51:8e:a3: 9d:5f:3d:33:6b:a7:03:f6:a1:67:c5:c2:ad:0d:fb: ac:fc:09:8a:0b:85:34:2b:2b:bf:5c:12:3b:03:5e: 15:20:13:02:e2:d2:45:79:fa:c8:7e:db:32:0a:76: 55:d5:d1:f2:92:ec:89:96:63:5d:54:cf:a4:ce:81: e9:5f:8b:c6:83:fc:f2:51:b9:24:95:e3:bd:6c:17: c5:9d:9c:45:c9:8c:cd:3f:4c:a3:e0:7b:c5:c9:a4: b4:58:17:f1:0e:74:89:21:32:8a:9c:af:6d:ae:33: dd:6a:8d:a2:2b:72:2d:d8:72:ea:f1:67:bf:ee:dc: 65:1c:00:76:1c:4f:03:5c:41:99:6a:ac:3b:59:51: 32:05:08:b9:5a:67:af:14:3d:be:c2:01:70:d2:52: 57:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:61:05:54:E0:5C:88:F3:E3:95:5B:C4:76:1E:7C:13:79:EF:73:07 X509v3 Authority Key Identifier: keyid:CB:6C:85:E7:52:D5:69:DF:CF:1D:E9:04:C9:CB:E7:1E:48:3E:F5:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2yF51LVad_PHekEycvnHkg-9fI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:b5:36:c9:a6:97:20:5d:8e:0f:5e:a3:71:64:70:23:27:24: 17:b1:9a:df:93:1f:91:9d:0c:88:4a:ae:df:c2:11:06:af:67: 61:37:b3:91:33:5f:be:7f:d9:4d:34:26:75:d5:e9:5d:95:40: 0a:3b:e3:32:97:be:6d:52:57:25:f7:12:86:82:9c:da:81:17: 7f:df:1a:03:a3:ac:11:72:84:65:3b:4a:e2:cb:fd:ce:e7:71: eb:29:5f:fd:08:c6:63:e4:fc:a6:e1:5f:05:0c:15:3d:96:fa: b0:9f:d4:76:48:3f:74:18:bb:24:43:55:22:52:a0:2c:80:a9: 35:7f:03:10:d8:ed:7d:25:f7:f8:58:0d:10:d5:93:03:98:45: 20:f4:c7:49:15:d8:4a:e2:c6:e7:2d:af:c3:f4:72:c0:1b:39: 59:7b:aa:28:f1:73:4b:86:63:57:bd:b0:5f:1f:fd:33:09:31: 03:59:4a:1c:66:50:a0:29:19:bb:47:7c:4f:5d:46:d9:e8:0b: a2:3a:82:30:fe:26:8f:9e:61:f4:98:fe:b8:1b:37:85:42:5a: 78:fd:2f:95:e4:4f:c6:5a:7d:38:a9:33:b1:73:92:16:bb:60: c6:3b:82:90:ea:a8:c6:81:5a:44:f2:8b:31:4d:a6:a3:bf:dd: 99:05:e8:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMwMzkxMTAvBgNVBAUTKENCNkM4NUU3NTJENTY5REZDRjFERTkwNEM5Q0JFNzFF NDgzRUY1RjIwHhcNMjUwNjE0MjMzMTI2WhcNMjUwNjIxMjMzMTI2WjAYMRYwFAYD VQQDEw02ODRlMDY0ZS01OTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx+tc/+9cJ0G8+vPwM+uLMTZOJ8AOWnL8L0h4sk/oDaiQ6WOBy9qBYAQUmuU0 jRBCeNetjqVLAiIab8763D1gpPkZDDTTcot+XvpHR+3a63ztPJlXlxlRohUcZrZp oDhoBVJKk2FRjqOdXz0za6cD9qFnxcKtDfus/AmKC4U0Kyu/XBI7A14VIBMC4tJF efrIftsyCnZV1dHykuyJlmNdVM+kzoHpX4vGg/zyUbkkleO9bBfFnZxFyYzNP0yj 4HvFyaS0WBfxDnSJITKKnK9trjPdao2iK3It2HLq8We/7txlHAB2HE8DXEGZaqw7 WVEyBQi5WmevFD2+wgFw0lJXmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOVhBVTg XIjz45VbxHYefBN573MHMB8GA1UdIwQYMBaAFMtshedS1Wnfzx3pBMnL5x5IPvXy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzAzOS9CQjUzMjNFODI1 QzIxMUVDQjQ5OUQxNThDNEY5QUUwMi95MnlGNTFMVmFkX1BIZWtFeWN2bkhrZy05 ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kyeUY1MUxWYWRfUEhla0V5Y3ZuSGtnLTlmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzAzOS9CQjUzMjNFODI1QzIxMUVDQjQ5OUQxNThDNEY5QUUwMi95MnlGNTFMVmFk X1BIZWtFeWN2bkhrZy05ZkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANtTbJppcgXY4PXqNxZHAjJyQXsZrfkx+RnQyISq7fwhEGr2dhN7OR M1++f9lNNCZ11eldlUAKO+Myl75tUlcl9xKGgpzagRd/3xoDo6wRcoRlO0riy/3O 53HrKV/9CMZj5Pym4V8FDBU9lvqwn9R2SD90GLskQ1UiUqAsgKk1fwMQ2O19Jff4 WA0Q1ZMDmEUg9MdJFdhK4sbnLa/D9HLAGzlZe6oo8XNLhmNXvbBfH/0zCTEDWUoc ZlCgKRm7R3xPXUbZ6AuiOoIw/iaPnmH0mP64GzeFQlp4/S+V5E/GWn04qTOxc5IW u2DGO4KQ6qjGgVpE8osxTaajv92ZBeij -----END CERTIFICATE-----Generated at Sun Jun 15 10:11:49 2025 by rpki-client