$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft File: 4Y-ehXQ6vsrARiuP30On20pij_k.mft (raw, json) Hash identifier: spDAjCuVfJxXG5gQLAgAq8tZgxUEIpHQreOeeXpuxVY= Subject key identifier: F2:7A:8B:3B:87:6F:77:3E:0B:3F:A1:A6:78:F9:6C:7F:19:E1:DE:ED Authority key identifier: E1:8F:9E:85:74:3A:BE:CA:C0:46:2B:8F:DF:43:A7:DB:4A:62:8F:F9 Certificate issuer: /CN=A91C9A8D/serialNumber=E18F9E85743ABECAC0462B8FDF43A7DB4A628FF9 Certificate serial: 03EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft Manifest number: 042D Signing time: Sun 15 Jun 2025 00:16:33 +0000 Manifest this update: Sun 15 Jun 2025 00:16:32 +0000 Manifest next update: Sun 22 Jun 2025 00:16:32 +0000 Files and hashes: 1: 4Y-ehXQ6vsrARiuP30On20pij_k.crl (hash: yjxz5gOEL0hGm9j1BS9k8vtoiMxxOASn+IsUz4ZZkS8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.crl rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 00:16:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1006 (0x3ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9A8D, serialNumber=E18F9E85743ABECAC0462B8FDF43A7DB4A628FF9 Validity Not Before: Jun 15 00:16:32 2025 GMT Not After : Jun 22 00:16:32 2025 GMT Subject: CN=684e10e1-b722 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:9b:23:b6:cc:39:53:71:17:a8:02:47:40:5b: e1:33:e6:52:9c:2d:18:ae:af:a8:9a:76:e5:a1:31: cb:e7:7d:0e:9c:87:3e:86:21:4b:b0:d5:5f:32:09: 97:58:49:50:ea:f3:2a:ba:cf:82:2a:39:51:dd:8d: 49:e7:4e:94:e4:3a:c6:98:42:6a:a4:91:cf:44:81: cf:23:0e:d3:74:03:00:b1:76:63:fa:a5:e5:4a:cd: 8c:d7:af:28:28:11:15:9c:1a:13:3e:de:2f:0b:74: e7:e0:72:57:4e:8b:d2:2b:e6:e2:8a:d4:17:4e:50: c8:cc:39:77:21:f7:d6:86:be:c2:83:76:fa:8c:2f: 40:0d:42:c2:f3:be:d3:55:78:d2:0b:48:9b:dd:fe: 87:ea:25:e9:74:6f:fb:67:6e:b1:71:8e:61:85:35: 65:3a:41:8d:e6:d7:ea:84:4d:00:6a:b4:81:46:67: d8:24:14:81:89:76:f5:c4:d7:21:69:05:ba:03:f3: 26:e9:bb:cf:8e:50:b1:35:2d:e6:c2:d1:d5:96:de: 93:e7:4c:1b:0f:fd:02:43:18:46:8a:03:ae:4b:cc: 1f:a2:f6:08:d1:17:64:4b:40:c0:f6:b2:1c:1d:6d: 06:d3:13:db:ee:d8:da:7b:ad:ae:6a:0f:57:df:0c: 93:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:7A:8B:3B:87:6F:77:3E:0B:3F:A1:A6:78:F9:6C:7F:19:E1:DE:ED X509v3 Authority Key Identifier: keyid:E1:8F:9E:85:74:3A:BE:CA:C0:46:2B:8F:DF:43:A7:DB:4A:62:8F:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:da:b9:7f:6d:77:93:d6:cd:20:e5:38:69:05:84:72:1e:eb: 71:7e:12:62:e5:be:3e:16:e6:d4:bd:ac:a0:de:a1:07:e7:7a: fb:a5:be:d7:bd:a2:9b:e4:1a:11:4f:a7:0a:6c:24:f2:3a:5b: 9a:78:cb:1b:70:c9:66:9d:21:2d:8b:1f:d3:53:f1:cc:90:88: 42:8d:bc:5a:22:9e:80:b8:59:f1:16:dc:d8:fb:78:29:db:47: 8b:74:24:88:b8:69:d3:66:6e:5b:cc:59:2c:e0:7f:51:c7:ec: 01:40:bb:b4:13:50:18:dd:54:a7:a0:76:ee:37:ec:2e:24:a0: 4d:4d:44:4d:90:13:72:36:2e:b8:fd:5e:9d:78:63:3a:4f:44: 08:75:cb:48:a6:2f:af:7b:bc:55:93:c5:83:1f:f3:7d:3e:7f: ca:a7:44:83:7a:85:a3:7c:86:f6:24:4a:2d:69:7f:3b:f8:ba: be:14:79:d1:07:81:7d:06:37:ce:b3:d4:0c:f4:f2:21:c4:f3: 29:02:ac:f1:71:f9:cc:ea:5e:ae:33:b1:8f:1c:f7:03:97:e0: 17:e2:bc:7c:c1:67:68:dc:4f:bf:37:0c:85:58:21:49:09:b8: 5c:04:f7:9e:1d:7a:28:b5:a2:e4:3a:1c:c5:57:9c:f8:99:21: b8:8d:c5:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlBOEQxMTAvBgNVBAUTKEUxOEY5RTg1NzQzQUJFQ0FDMDQ2MkI4RkRGNDNBN0RC NEE2MjhGRjkwHhcNMjUwNjE1MDAxNjMyWhcNMjUwNjIyMDAxNjMyWjAYMRYwFAYD VQQDEw02ODRlMTBlMS1iNzIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwJsjtsw5U3EXqAJHQFvhM+ZSnC0Yrq+omnbloTHL530OnIc+hiFLsNVfMgmX WElQ6vMqus+CKjlR3Y1J506U5DrGmEJqpJHPRIHPIw7TdAMAsXZj+qXlSs2M168o KBEVnBoTPt4vC3Tn4HJXTovSK+biitQXTlDIzDl3IffWhr7Cg3b6jC9ADULC877T VXjSC0ib3f6H6iXpdG/7Z26xcY5hhTVlOkGN5tfqhE0AarSBRmfYJBSBiXb1xNch aQW6A/Mm6bvPjlCxNS3mwtHVlt6T50wbD/0CQxhGigOuS8wfovYI0RdkS0DA9rIc HW0G0xPb7tjae62uag9X3wyTwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPJ6izuH b3c+Cz+hpnj5bH8Z4d7tMB8GA1UdIwQYMBaAFOGPnoV0Or7KwEYrj99Dp9tKYo/5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUE4RC8zMkYxRjRDMjgz RTkxMUVDQjg3M0M4NzFDNEY5QUUwMi80WS1laFhRNnZzckFSaXVQMzBPbjIwcGlq X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRZLWVoWFE2dnNyQVJpdVAzME9uMjBwaWpfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUE4RC8zMkYxRjRDMjgzRTkxMUVDQjg3M0M4NzFDNEY5QUUwMi80WS1laFhRNnZz ckFSaXVQMzBPbjIwcGlqX2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAq2rl/bXeT1s0g5ThpBYRyHutxfhJi5b4+FubUvayg3qEH53r7pb7X vaKb5BoRT6cKbCTyOluaeMsbcMlmnSEtix/TU/HMkIhCjbxaIp6AuFnxFtzY+3gp 20eLdCSIuGnTZm5bzFks4H9Rx+wBQLu0E1AY3VSnoHbuN+wuJKBNTURNkBNyNi64 /V6deGM6T0QIdctIpi+ve7xVk8WDH/N9Pn/Kp0SDeoWjfIb2JEotaX87+Lq+FHnR B4F9BjfOs9QM9PIhxPMpAqzxcfnM6l6uM7GPHPcDl+AX4rx8wWdo3E+/NwyFWCFJ CbhcBPeeHXootaLkOhzFV5z4mSG4jcUY -----END CERTIFICATE-----Generated at Sun Jun 15 05:27:15 2025 by rpki-client