$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft File: YB71rSfD3A1NmC22u0dsBsvHAKA.mft (raw, json) Hash identifier: +Q+AXmH8J0BW2UrI1Z+bHrFKyurYBGrAmo+TTVD8j+k= Subject key identifier: 82:93:0E:7E:07:CD:31:8F:12:B5:EE:4E:D1:50:63:29:2C:23:3C:18 Authority key identifier: 60:1E:F5:AD:27:C3:DC:0D:4D:98:2D:B6:BB:47:6C:06:CB:C7:00:A0 Certificate issuer: /CN=A91BFE4E/serialNumber=601EF5AD27C3DC0D4D982DB6BB476C06CBC700A0 Certificate serial: 88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB71rSfD3A1NmC22u0dsBsvHAKA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft Manifest number: 88 Signing time: Tue 17 Jun 2025 05:27:31 +0000 Manifest this update: Tue 17 Jun 2025 05:27:31 +0000 Manifest next update: Tue 24 Jun 2025 05:27:31 +0000 Files and hashes: 1: YB71rSfD3A1NmC22u0dsBsvHAKA.crl (hash: IgGMlO8WnXBlX8YR00l8jqEFaqSPJYzvaW9T7WSigD8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.crl rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB71rSfD3A1NmC22u0dsBsvHAKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 05:27:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 136 (0x88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFE4E, serialNumber=601EF5AD27C3DC0D4D982DB6BB476C06CBC700A0 Validity Not Before: Jun 17 05:27:31 2025 GMT Not After : Jun 24 05:27:31 2025 GMT Subject: CN=6850fcc3-293c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:53:7c:5d:46:81:16:59:57:ce:62:f4:74:95: 96:a9:fd:3d:43:89:68:91:c4:fc:7f:8b:07:f2:c0: 76:66:29:bb:be:31:b3:14:07:fb:dd:d1:1d:3f:b0: db:a0:a8:f5:22:ab:f9:c5:76:84:66:80:12:72:77: fb:00:05:a7:f5:f3:d1:79:a7:09:3c:bf:c6:8d:f6: ce:42:72:50:f6:1d:55:a0:1f:31:40:91:fb:1d:1f: d2:34:82:c0:bd:80:02:07:7d:b4:ec:d6:b2:50:4c: 1f:c1:c5:78:51:8b:a8:42:71:1f:7e:f0:29:f0:97: b4:16:ef:bc:f3:4b:76:3c:59:13:b3:d1:5a:51:2f: a4:c6:1f:7c:ee:16:71:e1:f2:0c:8b:0e:f0:4c:ab: 9a:f4:be:f7:a9:ae:cc:5c:9a:20:68:3f:68:b1:f4: b6:c3:53:6f:7e:53:4e:4b:a4:e1:cb:e1:c7:fb:26: 4d:b1:ef:e9:cd:44:7a:55:84:bc:35:1c:27:71:11: 5c:df:93:6d:30:67:f5:82:c4:b3:78:62:36:f7:a4: 7c:8f:e7:fc:85:01:28:26:0e:3b:2f:bf:49:79:21: 96:75:ca:5f:f3:3e:a6:d6:e5:86:19:e7:54:ee:56: 02:77:16:72:c5:83:c6:f6:57:ee:bf:bb:03:2b:36: 3a:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:93:0E:7E:07:CD:31:8F:12:B5:EE:4E:D1:50:63:29:2C:23:3C:18 X509v3 Authority Key Identifier: keyid:60:1E:F5:AD:27:C3:DC:0D:4D:98:2D:B6:BB:47:6C:06:CB:C7:00:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB71rSfD3A1NmC22u0dsBsvHAKA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:27:ec:17:d8:f7:36:ad:b2:a5:6d:34:54:26:a7:a3:5c:43: 5f:8a:a7:90:a7:4a:49:6f:89:cc:0f:85:5d:84:e4:11:f6:d5: 9c:ed:e0:0e:dc:4b:f0:0d:2e:52:fc:2e:17:e6:d9:83:02:f7: 6c:51:ef:b5:e3:8e:b7:13:19:93:b9:6c:88:1d:a5:86:25:87: e2:b3:f7:ca:7a:37:0f:d8:e6:05:2c:35:04:66:bc:5a:85:cf: 15:bd:c9:eb:a1:63:f1:47:2a:ea:09:a5:d6:6a:71:47:3b:62: f1:18:94:f8:a1:16:ec:10:4d:9a:22:3e:b5:94:a6:f0:bb:49: 5a:cd:8e:9f:31:c1:8f:a7:f5:f9:29:4e:72:9b:ff:6a:d7:47: e6:1a:78:cc:56:ed:34:c5:62:5c:d5:df:79:3f:46:e8:af:16: 4b:f8:59:7f:2a:36:e0:db:89:1b:85:36:27:b0:9a:05:e8:34: bf:f8:b9:13:57:07:34:5c:3b:03:28:4b:34:a9:ee:61:73:29: 29:b7:66:9f:cf:c3:e8:10:62:d2:31:98:9e:6d:3a:09:5f:e8: a0:53:35:02:b1:5b:e9:96:18:f8:e2:24:2f:f1:ed:f2:12:28: 13:47:62:6b:d9:08:db:be:da:36:1f:e3:91:4d:fb:a3:a5:c1: 6e:91:43:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkZFNEUxMTAvBgNVBAUTKDYwMUVGNUFEMjdDM0RDMEQ0RDk4MkRCNkJCNDc2QzA2 Q0JDNzAwQTAwHhcNMjUwNjE3MDUyNzMxWhcNMjUwNjI0MDUyNzMxWjAYMRYwFAYD VQQDEw02ODUwZmNjMy0yOTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyVN8XUaBFllXzmL0dJWWqf09Q4lokcT8f4sH8sB2Zim7vjGzFAf73dEdP7Db oKj1Iqv5xXaEZoAScnf7AAWn9fPReacJPL/GjfbOQnJQ9h1VoB8xQJH7HR/SNILA vYACB3207NayUEwfwcV4UYuoQnEffvAp8Je0Fu+880t2PFkTs9FaUS+kxh987hZx 4fIMiw7wTKua9L73qa7MXJogaD9osfS2w1NvflNOS6Thy+HH+yZNse/pzUR6VYS8 NRwncRFc35NtMGf1gsSzeGI296R8j+f8hQEoJg47L79JeSGWdcpf8z6m1uWGGedU 7lYCdxZyxYPG9lfuv7sDKzY6AwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIKTDn4H zTGPErXuTtFQYyksIzwYMB8GA1UdIwQYMBaAFGAe9a0nw9wNTZgttrtHbAbLxwCg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRkU0RS9EQTNENzFBODdC RTMxMUVGODhEOUM3NTNDNEY5QUUwMi9ZQjcxclNmRDNBMU5tQzIydTBkc0JzdkhB S0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lCNzFyU2ZEM0ExTm1DMjJ1MGRzQnN2SEFLQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RkU0RS9EQTNENzFBODdCRTMxMUVGODhEOUM3NTNDNEY5QUUwMi9ZQjcxclNmRDNB MU5tQzIydTBkc0JzdkhBS0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXJ+wX2Pc2rbKlbTRUJqejXENfiqeQp0pJb4nMD4VdhOQR9tWc7eAO 3EvwDS5S/C4X5tmDAvdsUe+14463ExmTuWyIHaWGJYfis/fKejcP2OYFLDUEZrxa hc8VvcnroWPxRyrqCaXWanFHO2LxGJT4oRbsEE2aIj61lKbwu0lazY6fMcGPp/X5 KU5ym/9q10fmGnjMVu00xWJc1d95P0borxZL+Fl/Kjbg24kbhTYnsJoF6DS/+LkT Vwc0XDsDKEs0qe5hcykpt2afz8PoEGLSMZiebToJX+igUzUCsVvplhj44iQv8e3y EigTR2Jr2Qjbvto2H+ORTfujpcFukUMq -----END CERTIFICATE-----Generated at Tue Jun 17 16:54:17 2025 by rpki-client