$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4502/40E2DFCCB50211EAA29F277AC4F9AE02/y0yV-DniHR3g9FhVPZpM4o5BTYg.mft File: y0yV-DniHR3g9FhVPZpM4o5BTYg.mft (raw, json) Hash identifier: skHYhyRqyU8Bztmfar+oAq8X3arBvnmhcEN6LBd4P8E= Subject key identifier: 5B:03:03:FD:1B:B7:18:C5:62:24:DA:1B:8E:C9:89:29:87:26:05:06 Authority key identifier: CB:4C:95:F8:39:E2:1D:1D:E0:F4:58:55:3D:9A:4C:E2:8E:41:4D:88 Certificate issuer: /CN=A91C4502/serialNumber=CB4C95F839E21D1DE0F458553D9A4CE28E414D88 Certificate serial: 0902 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y0yV-DniHR3g9FhVPZpM4o5BTYg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4502/40E2DFCCB50211EAA29F277AC4F9AE02/y0yV-DniHR3g9FhVPZpM4o5BTYg.mft Manifest number: 08DB Signing time: Mon 16 Jun 2025 20:16:55 +0000 Manifest this update: Mon 16 Jun 2025 20:16:54 +0000 Manifest next update: Mon 23 Jun 2025 20:16:54 +0000 Files and hashes: 1: y0yV-DniHR3g9FhVPZpM4o5BTYg.crl (hash: GVokhc0p2/2gJQXVf/bPv5heGnjIqyHcC6/jsJ9i5vo=) 2: 2BC34BC6404A11F0B481CC7CC4F9AE02.roa (hash: 5kE1p13DLUf3CMV1uPaDHHW1FGlxES6xsk7p+yKiahI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4502/40E2DFCCB50211EAA29F277AC4F9AE02/y0yV-DniHR3g9FhVPZpM4o5BTYg.crl rsync://rpki.apnic.net/member_repository/A91C4502/40E2DFCCB50211EAA29F277AC4F9AE02/y0yV-DniHR3g9FhVPZpM4o5BTYg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y0yV-DniHR3g9FhVPZpM4o5BTYg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 20:16:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2306 (0x902) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4502, serialNumber=CB4C95F839E21D1DE0F458553D9A4CE28E414D88 Validity Not Before: Jun 16 20:16:54 2025 GMT Not After : Jun 23 20:16:54 2025 GMT Subject: CN=68507bb6-3e5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:41:30:4d:94:da:d1:c1:6b:77:ed:98:10:13: 29:68:f6:00:d3:38:26:7b:cf:db:88:09:32:15:32: b3:46:20:8f:fd:8e:bc:5f:28:0c:65:8c:47:f6:6c: 7f:27:30:58:44:26:fd:66:99:51:95:f9:d8:68:c7: 0b:0c:21:29:5d:66:53:b0:ff:cc:96:29:9b:ca:8a: aa:e2:3d:91:cd:22:17:cf:48:62:fe:37:78:b8:e5: cd:cb:58:84:e8:ce:ba:e4:90:05:68:b0:f5:8a:83: fe:37:3b:31:d4:a3:09:5a:e3:03:5a:a3:28:85:93: 9a:0f:0f:25:a3:1b:f1:f4:32:bc:0b:39:40:b4:17: 81:25:44:0c:e3:a9:54:69:f5:85:d3:55:09:57:d9: 2c:e1:2d:45:59:56:3c:ca:c8:27:79:42:e8:f6:28: d4:15:a5:48:5b:cd:df:9c:16:46:15:38:50:a0:1d: d4:bc:a7:ce:7c:6c:aa:68:0c:f2:fb:3b:dc:34:8f: b0:ff:46:66:d4:10:62:ec:c2:e4:89:72:94:6d:13: f3:ad:4a:25:5b:aa:91:07:c2:d5:13:53:92:89:59: cf:f5:57:40:69:9f:16:d3:89:75:4d:9e:6e:26:15: 45:03:ba:d4:e7:eb:eb:fd:1b:bd:4b:13:20:94:7d: ea:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:03:03:FD:1B:B7:18:C5:62:24:DA:1B:8E:C9:89:29:87:26:05:06 X509v3 Authority Key Identifier: keyid:CB:4C:95:F8:39:E2:1D:1D:E0:F4:58:55:3D:9A:4C:E2:8E:41:4D:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4502/40E2DFCCB50211EAA29F277AC4F9AE02/y0yV-DniHR3g9FhVPZpM4o5BTYg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y0yV-DniHR3g9FhVPZpM4o5BTYg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4502/40E2DFCCB50211EAA29F277AC4F9AE02/y0yV-DniHR3g9FhVPZpM4o5BTYg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:0d:fa:82:b4:33:27:28:d1:b9:3f:4f:5d:58:cc:37:e3:71: 66:76:1c:45:56:bd:eb:e7:1c:c7:68:17:c4:f8:3b:14:b6:1f: 36:6b:00:fa:94:ea:f6:20:5b:a4:d4:5d:4d:35:23:7f:57:17: 16:d6:b5:86:00:57:38:21:8e:65:25:f8:03:ad:21:79:41:9b: 88:91:d4:81:4b:f7:ad:b0:f2:72:8a:35:ac:bc:76:89:f1:3d: ef:30:2a:87:f2:ce:3d:d3:5a:0b:90:85:ec:9d:00:62:98:dc: f0:80:6e:79:18:d5:9d:ba:58:ab:18:96:f8:1d:71:19:14:92: 78:21:7f:50:ff:33:f5:3e:61:80:ca:da:9a:73:a0:f9:fe:d1: 9a:c4:98:36:7a:b8:f4:c4:8d:ec:b4:19:05:34:43:99:aa:40: 26:53:bf:4e:57:18:67:bd:87:cf:0f:3a:7a:db:79:e2:f8:62: de:2f:68:54:c6:37:ff:2c:36:e3:e5:6e:f7:b8:35:09:df:b1: 48:54:95:36:38:4d:81:23:63:9d:f2:97:7e:8c:3a:2c:6b:31: 98:93:b3:04:5a:85:d4:5c:66:06:a8:df:31:c6:26:84:de:de: ea:ca:de:1f:e6:8c:6e:b9:33:e6:41:f6:20:8a:39:9a:24:8d: 13:ec:2f:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCQIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQ1MDIxMTAvBgNVBAUTKENCNEM5NUY4MzlFMjFEMURFMEY0NTg1NTNEOUE0Q0Uy OEU0MTREODgwHhcNMjUwNjE2MjAxNjU0WhcNMjUwNjIzMjAxNjU0WjAYMRYwFAYD VQQDEw02ODUwN2JiNi0zZTVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAykEwTZTa0cFrd+2YEBMpaPYA0zgme8/biAkyFTKzRiCP/Y68XygMZYxH9mx/ JzBYRCb9ZplRlfnYaMcLDCEpXWZTsP/Mlimbyoqq4j2RzSIXz0hi/jd4uOXNy1iE 6M665JAFaLD1ioP+Nzsx1KMJWuMDWqMohZOaDw8loxvx9DK8CzlAtBeBJUQM46lU afWF01UJV9ks4S1FWVY8ysgneULo9ijUFaVIW83fnBZGFThQoB3UvKfOfGyqaAzy +zvcNI+w/0Zm1BBi7MLkiXKUbRPzrUolW6qRB8LVE1OSiVnP9VdAaZ8W04l1TZ5u JhVFA7rU5+vr/Ru9SxMglH3qZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFsDA/0b txjFYiTaG47JiSmHJgUGMB8GA1UdIwQYMBaAFMtMlfg54h0d4PRYVT2aTOKOQU2I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDUwMi80MEUyREZDQ0I1 MDIxMUVBQTI5RjI3N0FDNEY5QUUwMi95MHlWLURuaUhSM2c5RmhWUFpwTTRvNUJU WWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kweVYtRG5pSFIzZzlGaFZQWnBNNG81QlRZZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDUwMi80MEUyREZDQ0I1MDIxMUVBQTI5RjI3N0FDNEY5QUUwMi95MHlWLURuaUhS M2c5RmhWUFpwTTRvNUJUWWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzDfqCtDMnKNG5P09dWMw343FmdhxFVr3r5xzHaBfE+DsUth82awD6 lOr2IFuk1F1NNSN/VxcW1rWGAFc4IY5lJfgDrSF5QZuIkdSBS/etsPJyijWsvHaJ 8T3vMCqH8s4901oLkIXsnQBimNzwgG55GNWdulirGJb4HXEZFJJ4IX9Q/zP1PmGA ytqac6D5/tGaxJg2erj0xI3stBkFNEOZqkAmU79OVxhnvYfPDzp623ni+GLeL2hU xjf/LDbj5W73uDUJ37FIVJU2OE2BI2Od8pd+jDosazGYk7MEWoXUXGYGqN8xxiaE 3t7qyt4f5oxuuTPmQfYgijmaJI0T7C/N -----END CERTIFICATE-----Generated at Wed Jun 18 06:36:55 2025 by rpki-client