$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2F8C/5E072AFE86E011EF9B6B177EC4F9AE02/YR4cFJUo8XoOx5nDnVYmGcmhUQA.mft File: YR4cFJUo8XoOx5nDnVYmGcmhUQA.mft (raw, json) Hash identifier: oGmOukz+ReMhaeuFKofplIFcpgVSRs/dnRJChGXoZrA= Subject key identifier: 82:CF:D2:2C:43:37:45:AA:3A:7A:61:32:2E:39:99:2E:D1:21:19:CD Authority key identifier: 61:1E:1C:14:95:28:F1:7A:0E:C7:99:C3:9D:56:26:19:C9:A1:51:00 Certificate issuer: /CN=A91C2F8C/serialNumber=611E1C149528F17A0EC799C39D562619C9A15100 Certificate serial: 7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YR4cFJUo8XoOx5nDnVYmGcmhUQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2F8C/5E072AFE86E011EF9B6B177EC4F9AE02/YR4cFJUo8XoOx5nDnVYmGcmhUQA.mft Manifest number: 7F Signing time: Fri 13 Jun 2025 05:35:00 +0000 Manifest this update: Fri 13 Jun 2025 05:34:59 +0000 Manifest next update: Fri 20 Jun 2025 05:34:59 +0000 Files and hashes: 1: YR4cFJUo8XoOx5nDnVYmGcmhUQA.crl (hash: HLMUxgfvSa98pf/YDhmCpThmhgRbET43f0JF9q9rJBc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2F8C/5E072AFE86E011EF9B6B177EC4F9AE02/YR4cFJUo8XoOx5nDnVYmGcmhUQA.crl rsync://rpki.apnic.net/member_repository/A91C2F8C/5E072AFE86E011EF9B6B177EC4F9AE02/YR4cFJUo8XoOx5nDnVYmGcmhUQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YR4cFJUo8XoOx5nDnVYmGcmhUQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 05:34:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 127 (0x7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2F8C, serialNumber=611E1C149528F17A0EC799C39D562619C9A15100 Validity Not Before: Jun 13 05:34:59 2025 GMT Not After : Jun 20 05:34:59 2025 GMT Subject: CN=684bb884-6d6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:73:d7:15:71:20:48:aa:8c:ce:77:62:b6:1e: 2b:c0:05:56:32:e7:f6:15:05:fa:c1:6b:14:60:ef: c9:5e:d5:78:43:74:66:fa:05:67:a7:54:e1:e5:01: 80:a4:b3:ac:98:3e:4e:04:c9:a6:c1:fc:af:11:87: 12:77:84:fc:cb:78:6f:de:fe:6d:ce:78:9a:19:e5: db:e8:41:08:85:d7:af:d3:80:dd:ab:3e:ce:17:ed: 2d:74:89:a5:89:5d:1a:a1:fd:26:c2:1c:d4:02:a9: 01:ae:2d:ab:51:ba:a5:a2:e1:c7:a1:d1:72:5a:bf: 0f:77:60:a9:98:de:35:93:2e:26:58:a9:53:92:6a: d0:00:95:a2:b4:4b:6e:54:9c:eb:de:75:16:3e:5e: c1:c2:7f:4b:d2:09:ec:cb:4b:04:e6:30:5b:95:62: d7:2d:7a:7b:02:0d:d9:98:1a:49:47:c8:ab:6a:e4: e7:95:24:64:3d:d7:89:49:b4:4a:91:ad:af:d1:0a: 53:3a:98:4c:d6:5f:88:f1:cc:53:c3:5e:a9:cb:0c: e0:e7:73:d2:5f:36:c7:5b:86:86:a5:8a:83:52:02: 94:fa:86:ab:ea:f5:2c:bb:51:40:ae:8f:d7:a7:c9: 27:8c:5c:8e:16:85:35:f3:a7:b9:ff:06:a7:1a:a0: 9b:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:CF:D2:2C:43:37:45:AA:3A:7A:61:32:2E:39:99:2E:D1:21:19:CD X509v3 Authority Key Identifier: keyid:61:1E:1C:14:95:28:F1:7A:0E:C7:99:C3:9D:56:26:19:C9:A1:51:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2F8C/5E072AFE86E011EF9B6B177EC4F9AE02/YR4cFJUo8XoOx5nDnVYmGcmhUQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YR4cFJUo8XoOx5nDnVYmGcmhUQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2F8C/5E072AFE86E011EF9B6B177EC4F9AE02/YR4cFJUo8XoOx5nDnVYmGcmhUQA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:8d:3d:48:50:b2:e5:d6:58:27:cc:8f:38:74:79:e9:5c:84: 9b:75:27:21:ae:77:7e:a3:cc:ec:b5:ce:be:c3:77:ae:a4:f4: 5a:91:b4:21:a1:57:dc:9c:e0:46:34:f2:cc:e7:a1:d0:14:ba: 1e:e3:72:d8:b0:36:fc:31:1b:db:b6:23:e9:df:d0:d8:11:ce: a0:2c:bf:94:e0:59:a3:49:5e:3c:b2:79:1e:34:f4:ba:93:86: 82:88:56:2c:5f:d9:a2:94:3a:88:52:ee:50:00:3e:ed:f1:9a: 47:a0:96:e4:6f:31:c2:8c:ae:e8:21:42:58:c5:19:1e:0b:8f: 24:ed:b0:9f:f6:c4:c0:67:0a:f8:ae:5b:5e:b4:78:a8:41:e9: 2a:72:2a:61:ec:8d:91:91:2b:b7:a7:05:82:3f:ea:89:62:d1: d3:42:55:c3:c3:a4:53:83:d2:33:81:5a:74:5b:74:1e:3d:18: 46:b3:0d:5a:c9:24:72:1f:82:b9:7f:c6:47:89:9b:ca:8b:61: 0d:fb:87:3c:07:b2:77:eb:67:30:8f:60:1e:3c:4b:6e:2c:6e: 75:21:6e:58:d1:05:64:35:9b:fd:d4:69:e9:b0:15:00:4f:dc: c6:34:19:a6:68:4f:3a:82:05:1b:21:8e:17:31:72:e6:cb:37: df:8f:ba:64 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MkY4QzExMC8GA1UEBRMoNjExRTFDMTQ5NTI4RjE3QTBFQzc5OUMzOUQ1NjI2MTlD OUExNTEwMDAeFw0yNTA2MTMwNTM0NTlaFw0yNTA2MjAwNTM0NTlaMBgxFjAUBgNV BAMTDTY4NGJiODg0LTZkNmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2c9cVcSBIqozOd2K2HivABVYy5/YVBfrBaxRg78le1XhDdGb6BWenVOHlAYCk s6yYPk4EyabB/K8RhxJ3hPzLeG/e/m3OeJoZ5dvoQQiF16/TgN2rPs4X7S10iaWJ XRqh/SbCHNQCqQGuLatRuqWi4ceh0XJavw93YKmY3jWTLiZYqVOSatAAlaK0S25U nOvedRY+XsHCf0vSCezLSwTmMFuVYtctensCDdmYGklHyKtq5OeVJGQ914lJtEqR ra/RClM6mEzWX4jxzFPDXqnLDODnc9JfNsdbhoalioNSApT6hqvq9Sy7UUCuj9en ySeMXI4WhTXzp7n/BqcaoJv9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUgs/SLEM3 Rao6emEyLjmZLtEhGc0wHwYDVR0jBBgwFoAUYR4cFJUo8XoOx5nDnVYmGcmhUQAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMyRjhDLzVFMDcyQUZFODZF MDExRUY5QjZCMTc3RUM0RjlBRTAyL1lSNGNGSlVvOFhvT3g1bkRuVlltR2NtaFVR QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWVI0Y0ZKVW84WG9PeDVuRG5WWW1HY21oVVFBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMy RjhDLzVFMDcyQUZFODZFMDExRUY5QjZCMTc3RUM0RjlBRTAyL1lSNGNGSlVvOFhv T3g1bkRuVlltR2NtaFVRQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE6NPUhQsuXWWCfMjzh0eelchJt1JyGud36jzOy1zr7Dd66k9FqRtCGh V9yc4EY08sznodAUuh7jctiwNvwxG9u2I+nf0NgRzqAsv5TgWaNJXjyyeR409LqT hoKIVixf2aKUOohS7lAAPu3xmkegluRvMcKMrughQljFGR4LjyTtsJ/2xMBnCviu W160eKhB6SpyKmHsjZGRK7enBYI/6oli0dNCVcPDpFOD0jOBWnRbdB49GEazDVrJ JHIfgrl/xkeJm8qLYQ37hzwHsnfrZzCPYB48S24sbnUhbljRBWQ1m/3UaemwFQBP 3MY0GaZoTzqCBRshjhcxcubLN9+PumQ= -----END CERTIFICATE-----Generated at Sun Jun 15 05:17:43 2025 by rpki-client