$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.mft File: ysNNxbjd0zsX7HVcldRdD3YlD6g.mft (raw, json) Hash identifier: UOEY/j2OJWEV9tm7Ii1ihEGewibp1trBL5NtA4EkuX0= Subject key identifier: 0F:62:12:3D:44:83:41:F7:21:C0:58:EF:07:B2:F8:8B:9A:F6:CD:CC Authority key identifier: CA:C3:4D:C5:B8:DD:D3:3B:17:EC:75:5C:95:D4:5D:0F:76:25:0F:A8 Certificate issuer: /CN=A91C9B39/serialNumber=CAC34DC5B8DDD33B17EC755C95D45D0F76250FA8 Certificate serial: 01D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysNNxbjd0zsX7HVcldRdD3YlD6g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.mft Manifest number: 01D4 Signing time: Sun 15 Jun 2025 02:05:18 +0000 Manifest this update: Sun 15 Jun 2025 02:05:17 +0000 Manifest next update: Sun 22 Jun 2025 02:05:17 +0000 Files and hashes: 1: ysNNxbjd0zsX7HVcldRdD3YlD6g.crl (hash: T4dca20M/gnG9vL5yaDGrqpUAcR0+VHAC+zXCqe8/Pk=) 2: E21DEF607B5E11ED98247D60C4F9AE02.roa (hash: ADnEMa2Brj1gfAu5du2mdudMmrXS7wa9cPzXrkNiEN4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.crl rsync://rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysNNxbjd0zsX7HVcldRdD3YlD6g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:05:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 471 (0x1d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9B39, serialNumber=CAC34DC5B8DDD33B17EC755C95D45D0F76250FA8 Validity Not Before: Jun 15 02:05:17 2025 GMT Not After : Jun 22 02:05:17 2025 GMT Subject: CN=684e2a5e-928e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:b3:61:26:7b:74:82:a0:4f:b6:eb:c5:20:60: a3:dc:f8:67:48:68:8e:9c:e2:e7:7c:79:64:06:09: 52:dd:b0:35:a4:fb:da:81:c5:96:07:64:8e:22:74: 7b:ad:8d:34:91:b6:eb:02:cd:da:fe:13:7f:ac:6d: 51:20:7b:a0:92:bf:5b:3e:8b:6f:ba:6c:58:fc:e8: ea:44:8c:5f:a1:a1:83:66:0b:06:8f:26:d5:2e:ea: 5a:6c:6b:54:58:78:4c:fd:c5:17:4d:b3:4e:a5:96: dc:c2:88:e2:2d:4e:44:61:77:3b:8a:9a:7a:84:03: 9c:1d:3e:2c:74:33:4d:dd:df:83:10:cc:27:73:96: 33:f6:87:e5:23:f8:99:5c:47:3c:79:3f:80:13:a7: 81:e0:33:bf:5b:ab:07:ee:ff:a5:9b:11:bf:83:d1: ef:c8:5d:39:6c:85:06:34:f3:33:7e:a7:1f:d9:30: 86:27:c7:a6:9f:25:ea:42:90:00:c6:90:12:d1:8c: 4e:ec:8c:3a:73:ac:35:0d:e8:e2:3a:6b:cc:c2:21: da:30:b0:3a:a9:d7:b0:99:18:ca:3f:96:69:22:fb: 19:65:a7:ae:6c:2f:bb:10:56:44:ce:f3:e4:79:b1: 75:7e:0d:6a:93:31:78:26:03:99:f3:c2:c1:7a:9b: 77:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:62:12:3D:44:83:41:F7:21:C0:58:EF:07:B2:F8:8B:9A:F6:CD:CC X509v3 Authority Key Identifier: keyid:CA:C3:4D:C5:B8:DD:D3:3B:17:EC:75:5C:95:D4:5D:0F:76:25:0F:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysNNxbjd0zsX7HVcldRdD3YlD6g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:09:d7:09:01:5c:0a:6d:92:d9:f6:64:15:4b:0b:72:3d:91: 0b:eb:f7:d6:e8:ec:c3:0b:56:2e:e2:d8:25:b9:b4:a0:c5:d2: c0:8d:0e:bf:ce:6f:53:e5:84:f9:4e:b0:03:6d:36:c5:59:d9: 44:63:a9:35:69:68:b1:2f:14:aa:88:2f:a7:4b:49:fe:df:ca: 15:ed:d1:60:1b:38:b6:34:e7:11:ef:c0:28:30:02:99:36:8e: 76:cf:cd:8e:b0:9f:79:b8:13:22:fa:b6:fc:8e:ea:fb:4f:cb: 9b:e8:55:ac:97:2f:1e:4b:5b:be:4c:f6:99:f3:cd:57:29:96: 2d:0a:5c:16:d7:84:3c:24:e4:b3:1c:3c:cf:ac:ae:24:62:ad: 46:e0:53:ab:57:51:8e:c0:d7:14:e9:da:60:15:43:f2:4b:07: 15:3f:f0:ea:8d:dc:12:b6:cc:9a:77:1b:38:1f:c6:1b:3b:48: 89:75:56:bf:29:c4:e6:70:d2:29:61:d5:00:90:c1:3e:4b:9d: aa:e0:76:07:07:74:fe:a5:cc:93:e6:d0:88:5f:59:30:56:37: b3:06:71:7f:ab:ec:c8:cf:01:c2:e1:5e:c7:5d:4e:0b:3d:6c: 90:89:4b:15:03:0e:7e:b6:3d:0a:cf:4b:f0:d8:4d:d7:9a:ea: 61:1f:4c:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlCMzkxMTAvBgNVBAUTKENBQzM0REM1QjhEREQzM0IxN0VDNzU1Qzk1RDQ1RDBG NzYyNTBGQTgwHhcNMjUwNjE1MDIwNTE3WhcNMjUwNjIyMDIwNTE3WjAYMRYwFAYD VQQDEw02ODRlMmE1ZS05MjhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA47NhJnt0gqBPtuvFIGCj3PhnSGiOnOLnfHlkBglS3bA1pPvagcWWB2SOInR7 rY00kbbrAs3a/hN/rG1RIHugkr9bPotvumxY/OjqRIxfoaGDZgsGjybVLupabGtU WHhM/cUXTbNOpZbcwojiLU5EYXc7ipp6hAOcHT4sdDNN3d+DEMwnc5Yz9oflI/iZ XEc8eT+AE6eB4DO/W6sH7v+lmxG/g9HvyF05bIUGNPMzfqcf2TCGJ8emnyXqQpAA xpAS0YxO7Iw6c6w1DejiOmvMwiHaMLA6qdewmRjKP5ZpIvsZZaeubC+7EFZEzvPk ebF1fg1qkzF4JgOZ88LBept3RQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA9iEj1E g0H3IcBY7wey+Iua9s3MMB8GA1UdIwQYMBaAFMrDTcW43dM7F+x1XJXUXQ92JQ+o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUIzOS9CNjE1RDBCQzdC NUExMUVEQTVFM0NBNjZDNEY5QUUwMi95c05OeGJqZDB6c1g3SFZjbGRSZEQzWWxE NmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lzTk54YmpkMHpzWDdIVmNsZFJkRDNZbEQ2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUIzOS9CNjE1RDBCQzdCNUExMUVEQTVFM0NBNjZDNEY5QUUwMi95c05OeGJqZDB6 c1g3SFZjbGRSZEQzWWxENmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApCdcJAVwKbZLZ9mQVSwtyPZEL6/fW6OzDC1Yu4tglubSgxdLAjQ6/ zm9T5YT5TrADbTbFWdlEY6k1aWixLxSqiC+nS0n+38oV7dFgGzi2NOcR78AoMAKZ No52z82OsJ95uBMi+rb8jur7T8ub6FWsly8eS1u+TPaZ881XKZYtClwW14Q8JOSz HDzPrK4kYq1G4FOrV1GOwNcU6dpgFUPySwcVP/DqjdwStsyadxs4H8YbO0iJdVa/ KcTmcNIpYdUAkME+S52q4HYHB3T+pcyT5tCIX1kwVjezBnF/q+zIzwHC4V7HXU4L PWyQiUsVAw5+tj0Kz0vw2E3XmuphH0yc -----END CERTIFICATE-----Generated at Sun Jun 15 08:39:40 2025 by rpki-client