$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.mft File: Y3kC4bqWiB1HLuyt-kW1V348HDE.mft (raw, json) Hash identifier: 40OKfJyxCvXUiDe+v90nc/KZwOmCLveB9gTouW/TQNY= Subject key identifier: 5D:B3:6A:A2:0D:B3:CC:CC:86:30:6E:0F:6D:B8:88:4B:C0:5E:B8:B8 Authority key identifier: 63:79:02:E1:BA:96:88:1D:47:2E:EC:AD:FA:45:B5:57:7E:3C:1C:31 Certificate issuer: /CN=A91CE524/serialNumber=637902E1BA96881D472EECADFA45B5577E3C1C31 Certificate serial: 0126 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y3kC4bqWiB1HLuyt-kW1V348HDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.mft Manifest number: 0124 Signing time: Fri 13 Jun 2025 03:38:29 +0000 Manifest this update: Fri 13 Jun 2025 03:38:28 +0000 Manifest next update: Fri 20 Jun 2025 03:38:28 +0000 Files and hashes: 1: Y3kC4bqWiB1HLuyt-kW1V348HDE.crl (hash: a/j+ZBm8AqRzNgRLZVVgCHX18odzojX4ivtVrVAwpQ0=) 2: FF1FE402898011EEB3403779C4F9AE02.roa (hash: WhOLdJmONFcVyaVlMrHX886HXRKh0RLcsl55SUDqRa4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.crl rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y3kC4bqWiB1HLuyt-kW1V348HDE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 03:38:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 294 (0x126) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE524, serialNumber=637902E1BA96881D472EECADFA45B5577E3C1C31 Validity Not Before: Jun 13 03:38:28 2025 GMT Not After : Jun 20 03:38:28 2025 GMT Subject: CN=684b9d34-bcb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:1e:a8:25:1c:f5:24:b0:3b:c2:c5:2a:84:04: 22:e1:8f:06:6a:c6:48:b2:00:2e:6d:87:00:40:6e: c1:28:e7:03:88:5b:45:0e:df:96:76:bd:bb:40:f1: 07:cf:04:b2:eb:ec:21:ed:02:9e:dd:26:fc:5c:b4: d4:6f:f4:82:7e:b2:35:4c:9b:16:ef:23:1f:be:69: cb:01:7b:75:96:84:20:a1:43:e2:dd:3a:e9:ca:ef: 30:bb:56:3c:f6:49:5f:e3:73:6a:d8:d7:59:67:7e: 8b:77:ca:46:5d:df:07:88:f4:51:2d:47:db:66:c3: 9e:31:67:b2:b8:5e:c1:e4:36:5e:70:a5:fe:e2:e8: 20:e5:61:42:2b:1a:2d:8f:77:5d:b6:e8:d8:6b:07: b4:e6:f5:70:9b:6c:79:6f:92:98:59:b2:e0:6f:cf: ab:db:41:19:92:d8:34:f1:3f:5a:53:b6:c5:ef:05: 31:f8:c5:93:8d:73:4e:c3:d2:fc:34:b0:18:8d:6d: da:f9:91:d6:fb:46:7f:fe:d5:dd:fc:ab:05:c8:74: 0a:80:bf:c9:a6:76:f2:81:82:d6:96:d9:64:e3:b3: a1:3e:db:51:9a:d6:8d:b2:51:77:3a:53:39:c0:f1: 1a:e7:90:17:39:47:9b:df:a7:f3:70:5c:92:5c:ad: 62:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:B3:6A:A2:0D:B3:CC:CC:86:30:6E:0F:6D:B8:88:4B:C0:5E:B8:B8 X509v3 Authority Key Identifier: keyid:63:79:02:E1:BA:96:88:1D:47:2E:EC:AD:FA:45:B5:57:7E:3C:1C:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y3kC4bqWiB1HLuyt-kW1V348HDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:20:8c:47:9a:b1:c3:95:82:7e:6e:f7:c9:3a:b1:cb:49:2c: 49:ce:87:15:88:10:3c:62:55:44:2f:f4:4d:d3:d3:ea:76:7e: 27:cc:8c:0a:8a:67:5f:9e:91:60:81:60:3e:fd:f6:2d:c2:e8: 64:58:71:b7:d8:06:db:e8:58:20:56:a9:d6:74:a1:9c:1f:66: 4e:d5:ec:40:1e:5f:fa:47:b9:57:c0:e8:8a:db:c3:1f:ac:ac: 8d:14:3e:f0:33:1f:34:b1:dc:30:d2:53:28:47:4d:ec:47:cc: 6e:6c:ee:d7:32:c9:5a:54:d6:f7:c0:e4:42:60:ff:67:de:5a: cd:d4:bd:b3:25:37:01:39:24:95:84:fb:a1:d2:7e:a6:32:0d: 52:7e:53:b1:47:ef:57:7e:cb:51:4a:a4:d3:9a:3d:36:94:bb: 2e:83:33:7a:54:53:01:e0:11:f6:38:c1:dc:9e:22:0a:1a:ec: fc:98:3c:ef:af:1c:4c:ec:0d:1a:f1:ed:67:3e:52:3a:4f:dc: 61:ac:97:fe:b2:64:6d:78:b0:df:f6:9a:1c:ca:ea:04:c8:c9: bf:a7:ac:4d:00:96:f8:0b:91:8c:22:0b:9b:f0:53:85:43:55: 1b:34:22:cf:8d:08:23:91:5f:b0:78:fd:b1:7f:60:53:fc:0e: d7:26:0d:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1MjQxMTAvBgNVBAUTKDYzNzkwMkUxQkE5Njg4MUQ0NzJFRUNBREZBNDVCNTU3 N0UzQzFDMzEwHhcNMjUwNjEzMDMzODI4WhcNMjUwNjIwMDMzODI4WjAYMRYwFAYD VQQDEw02ODRiOWQzNC1iY2I4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxx6oJRz1JLA7wsUqhAQi4Y8GasZIsgAubYcAQG7BKOcDiFtFDt+Wdr27QPEH zwSy6+wh7QKe3Sb8XLTUb/SCfrI1TJsW7yMfvmnLAXt1loQgoUPi3Trpyu8wu1Y8 9klf43Nq2NdZZ36Ld8pGXd8HiPRRLUfbZsOeMWeyuF7B5DZecKX+4ugg5WFCKxot j3ddtujYawe05vVwm2x5b5KYWbLgb8+r20EZktg08T9aU7bF7wUx+MWTjXNOw9L8 NLAYjW3a+ZHW+0Z//tXd/KsFyHQKgL/JpnbygYLWltlk47OhPttRmtaNslF3OlM5 wPEa55AXOUeb36fzcFySXK1i4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF2zaqIN s8zMhjBuD224iEvAXri4MB8GA1UdIwQYMBaAFGN5AuG6logdRy7srfpFtVd+PBwx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTUyNC8wQzJDMkJENjg4 QzUxMUVFQTgzMTFDNzFDNEY5QUUwMi9ZM2tDNGJxV2lCMUhMdXl0LWtXMVYzNDhI REUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kza0M0YnFXaUIxSEx1eXQta1cxVjM0OEhERS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTUyNC8wQzJDMkJENjg4QzUxMUVFQTgzMTFDNzFDNEY5QUUwMi9ZM2tDNGJxV2lC MUhMdXl0LWtXMVYzNDhIREUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7IIxHmrHDlYJ+bvfJOrHLSSxJzocViBA8YlVEL/RN09Pqdn4nzIwK imdfnpFggWA+/fYtwuhkWHG32Abb6FggVqnWdKGcH2ZO1exAHl/6R7lXwOiK28Mf rKyNFD7wMx80sdww0lMoR03sR8xubO7XMslaVNb3wORCYP9n3lrN1L2zJTcBOSSV hPuh0n6mMg1SflOxR+9XfstRSqTTmj02lLsugzN6VFMB4BH2OMHcniIKGuz8mDzv rxxM7A0a8e1nPlI6T9xhrJf+smRteLDf9pocyuoEyMm/p6xNAJb4C5GMIgub8FOF Q1UbNCLPjQgjkV+weP2xf2BT/A7XJg2K -----END CERTIFICATE-----Generated at Sat Jun 14 19:37:17 2025 by rpki-client