$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3078/66C8302C13BC11E9987C4646C4F9AE02/iyYWhr2S4s9r9UjNNVlt6pX_WDM.mft File: iyYWhr2S4s9r9UjNNVlt6pX_WDM.mft (raw, json) Hash identifier: kuWhLRrnPzgtYxmF+JDXaNn/1GFLXLhTBNfeHG4z5p0= Subject key identifier: 36:62:82:06:BC:C1:45:E0:CC:95:D4:E0:87:A5:57:93:D1:CA:78:C1 Authority key identifier: 8B:26:16:86:BD:92:E2:CF:6B:F5:48:CD:35:59:6D:EA:95:FF:58:33 Certificate issuer: /CN=A91D3078/serialNumber=8B261686BD92E2CF6BF548CD35596DEA95FF5833 Certificate serial: 1124 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyYWhr2S4s9r9UjNNVlt6pX_WDM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3078/66C8302C13BC11E9987C4646C4F9AE02/iyYWhr2S4s9r9UjNNVlt6pX_WDM.mft Manifest number: 111A Signing time: Sat 14 Jun 2025 17:13:13 +0000 Manifest this update: Sat 14 Jun 2025 17:13:13 +0000 Manifest next update: Sat 21 Jun 2025 17:13:13 +0000 Files and hashes: 1: iyYWhr2S4s9r9UjNNVlt6pX_WDM.crl (hash: LIs7n6dfC+W0oQXyDbFmEsYwYLwhk17caLy4mOi65N8=) 2: 6127B9001FE711ECB8454E83C4F9AE02.roa (hash: +yvtNS8LKQHKe3DTi4wIovOu3eQ4uVvjs9/gUB2eHD0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3078/66C8302C13BC11E9987C4646C4F9AE02/iyYWhr2S4s9r9UjNNVlt6pX_WDM.crl rsync://rpki.apnic.net/member_repository/A91D3078/66C8302C13BC11E9987C4646C4F9AE02/iyYWhr2S4s9r9UjNNVlt6pX_WDM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyYWhr2S4s9r9UjNNVlt6pX_WDM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:13:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4388 (0x1124) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3078, serialNumber=8B261686BD92E2CF6BF548CD35596DEA95FF5833 Validity Not Before: Jun 14 17:13:13 2025 GMT Not After : Jun 21 17:13:13 2025 GMT Subject: CN=684dada9-a65c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:9b:f5:08:4b:5e:95:9e:40:38:a1:c3:0e:89: d6:c6:8d:7f:2b:b4:d5:e6:4a:5d:14:c1:2f:1d:9a: d1:eb:e0:f1:87:d8:6f:b1:f2:ba:01:74:a9:f3:de: 43:2e:60:d1:3e:db:4e:02:8d:81:7a:16:f1:f0:2b: c6:38:83:e9:13:34:c0:24:77:56:5f:9c:02:a6:b8: 03:55:44:4f:71:d1:bb:6b:d0:cc:f4:90:00:ff:dd: 66:ba:91:02:62:1d:e6:63:24:76:6a:66:f4:e8:d5: 4c:58:29:1e:03:5f:c7:f7:f4:72:3e:ec:a7:cf:1f: d2:25:18:73:7d:4d:38:b0:67:0d:26:82:68:0c:76: f5:85:4d:89:c9:dd:2d:51:eb:e1:c6:2f:46:39:7a: 08:1c:85:3e:88:6b:ea:12:32:78:1f:97:5c:87:16: a7:60:03:f1:58:5f:3a:a1:bf:db:e3:dc:02:bf:8c: 73:41:c3:f9:34:a5:bb:57:82:5b:64:be:27:2e:4e: 6a:84:ff:0d:d1:3b:cb:f6:18:5a:da:d6:e9:3b:a0: 6c:2c:cf:17:92:73:55:2c:63:05:a8:d1:19:36:ef: 87:61:e0:f1:56:4d:d7:ba:a7:02:a8:b0:15:67:d5: 5e:d1:15:4d:df:a5:82:ef:91:23:2f:e4:4d:74:11: 3e:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:62:82:06:BC:C1:45:E0:CC:95:D4:E0:87:A5:57:93:D1:CA:78:C1 X509v3 Authority Key Identifier: keyid:8B:26:16:86:BD:92:E2:CF:6B:F5:48:CD:35:59:6D:EA:95:FF:58:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3078/66C8302C13BC11E9987C4646C4F9AE02/iyYWhr2S4s9r9UjNNVlt6pX_WDM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyYWhr2S4s9r9UjNNVlt6pX_WDM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3078/66C8302C13BC11E9987C4646C4F9AE02/iyYWhr2S4s9r9UjNNVlt6pX_WDM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:39:af:1f:cd:25:ad:7f:10:b4:b1:e8:ca:99:ee:9f:8a:a0: 6e:98:ed:15:6b:0c:be:f5:c1:35:ca:f1:4d:75:15:a0:4a:fc: 33:6c:10:39:26:b1:5c:6a:28:74:e1:18:49:68:20:e9:dc:2a: 78:57:e7:2b:12:56:ad:7d:e7:5e:8e:67:57:9b:6e:2c:2f:33: 03:b8:5f:6b:ce:cb:56:46:91:1e:19:19:55:90:e8:f4:aa:d2: c9:7a:a3:35:d6:4e:c3:2d:72:bc:fc:97:02:d9:6f:0b:44:9b: b5:29:c8:4d:8c:d5:5b:93:2f:2b:d2:b9:6a:6e:12:8c:87:a3: 7b:70:1f:e9:ed:b8:05:64:51:e1:cb:83:13:97:1e:fd:9f:b3: 12:03:e9:a8:f6:72:1d:a7:93:f3:2c:d7:b3:61:52:59:22:aa: f4:10:ee:93:e9:cc:41:c3:3c:ae:60:13:d4:ab:bb:88:58:0e: 26:7d:64:e4:c2:a7:ee:29:df:0a:9e:bb:d7:f4:a8:0e:ab:8b: 36:4e:e2:4e:a4:a9:9d:f6:74:e4:08:cc:df:83:59:39:1b:81: 77:8f:2b:5d:68:5e:c5:bc:64:32:5f:8d:c6:e1:b4:ca:7b:e2: 10:c9:d6:17:4d:df:85:8d:27:95:a6:82:a5:9a:8f:ee:1a:da: 09:3c:af:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICESQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMwNzgxMTAvBgNVBAUTKDhCMjYxNjg2QkQ5MkUyQ0Y2QkY1NDhDRDM1NTk2REVB OTVGRjU4MzMwHhcNMjUwNjE0MTcxMzEzWhcNMjUwNjIxMTcxMzEzWjAYMRYwFAYD VQQDEw02ODRkYWRhOS1hNjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtJv1CEtelZ5AOKHDDonWxo1/K7TV5kpdFMEvHZrR6+Dxh9hvsfK6AXSp895D LmDRPttOAo2Behbx8CvGOIPpEzTAJHdWX5wCprgDVURPcdG7a9DM9JAA/91mupEC Yh3mYyR2amb06NVMWCkeA1/H9/RyPuynzx/SJRhzfU04sGcNJoJoDHb1hU2Jyd0t Uevhxi9GOXoIHIU+iGvqEjJ4H5dchxanYAPxWF86ob/b49wCv4xzQcP5NKW7V4Jb ZL4nLk5qhP8N0TvL9hha2tbpO6BsLM8XknNVLGMFqNEZNu+HYeDxVk3XuqcCqLAV Z9Ve0RVN36WC75EjL+RNdBE+8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDZigga8 wUXgzJXU4IelV5PRynjBMB8GA1UdIwQYMBaAFIsmFoa9kuLPa/VIzTVZbeqV/1gz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzA3OC82NkM4MzAyQzEz QkMxMUU5OTg3QzQ2NDZDNEY5QUUwMi9peVlXaHIyUzRzOXI5VWpOTlZsdDZwWF9X RE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2l5WVdocjJTNHM5cjlVak5OVmx0NnBYX1dETS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzA3OC82NkM4MzAyQzEzQkMxMUU5OTg3QzQ2NDZDNEY5QUUwMi9peVlXaHIyUzRz OXI5VWpOTlZsdDZwWF9XRE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmOa8fzSWtfxC0sejKme6fiqBumO0Vawy+9cE1yvFNdRWgSvwzbBA5 JrFcaih04RhJaCDp3Cp4V+crElatfedejmdXm24sLzMDuF9rzstWRpEeGRlVkOj0 qtLJeqM11k7DLXK8/JcC2W8LRJu1KchNjNVbky8r0rlqbhKMh6N7cB/p7bgFZFHh y4MTlx79n7MSA+mo9nIdp5PzLNezYVJZIqr0EO6T6cxBwzyuYBPUq7uIWA4mfWTk wqfuKd8KnrvX9KgOq4s2TuJOpKmd9nTkCMzfg1k5G4F3jytdaF7FvGQyX43G4bTK e+IQydYXTd+FjSeVpoKlmo/uGtoJPK/P -----END CERTIFICATE-----Generated at Sat Jun 14 19:38:03 2025 by rpki-client