$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft File: y_Kp2oisCPjVEG3svXLW-gnIGOk.mft (raw, json) Hash identifier: /J3mQx237jXTGWW2ZtpdACr5cq+kqCG66lhz6rVvD4U= Subject key identifier: 87:A8:50:3A:1C:A8:4A:08:DE:09:DB:40:3D:B5:84:50:74:9E:4E:A6 Authority key identifier: CB:F2:A9:DA:88:AC:08:F8:D5:10:6D:EC:BD:72:D6:FA:09:C8:18:E9 Certificate issuer: /CN=A91D5C25/serialNumber=CBF2A9DA88AC08F8D5106DECBD72D6FA09C818E9 Certificate serial: 0F2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft Manifest number: 0F21 Signing time: Sat 14 Jun 2025 17:32:51 +0000 Manifest this update: Sat 14 Jun 2025 17:32:50 +0000 Manifest next update: Sat 21 Jun 2025 17:32:50 +0000 Files and hashes: 1: y_Kp2oisCPjVEG3svXLW-gnIGOk.crl (hash: ZDTBZU/7fYKayViQif7MoLx2fLzr6znDkla6Ccd5wYM=) 2: 4ECF0A4C765C11E9A01A6E34C4F9AE02.roa (hash: pLwEgd+VwWLgIg3V6a+yYMrZGmHsHcB345LFbQql9+8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.crl rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:13:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3882 (0xf2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5C25, serialNumber=CBF2A9DA88AC08F8D5106DECBD72D6FA09C818E9 Validity Not Before: Jun 14 17:32:50 2025 GMT Not After : Jun 21 17:32:50 2025 GMT Subject: CN=684db243-6e1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:56:2c:fb:a8:6b:67:21:2f:65:41:a8:a9:41: e0:4b:b7:c2:4b:44:0f:63:62:de:ce:63:34:64:87: b9:87:c3:c6:78:3c:86:bb:5c:bf:08:e6:c8:cd:89: f8:25:13:b5:76:f5:b8:f1:52:a5:ff:68:48:0b:fc: 0d:58:ba:09:a2:51:f0:eb:31:2b:8d:73:04:d5:0b: e2:89:b6:38:12:a6:66:73:ff:31:d2:a8:cf:eb:aa: e1:0d:cf:fd:51:ff:5d:b9:27:47:91:8b:9e:28:0b: 2f:8c:99:13:d6:86:52:23:ab:05:7a:b3:d1:a0:a6: 11:9e:95:20:0b:d4:17:72:05:06:f3:1e:16:8c:1b: 73:09:1d:22:06:be:46:4c:59:44:44:81:1e:80:97: 08:5a:01:eb:1e:ac:67:20:97:2d:5c:40:aa:de:91: f1:0e:55:57:de:a2:eb:1f:85:14:12:9d:d2:7a:1f: b8:4d:74:0d:51:92:7e:2b:62:9c:3e:f6:dc:81:e3: 39:85:6e:11:c3:26:a7:43:85:ac:11:4e:93:24:b4: 26:ea:49:ee:dd:cd:c7:58:4c:a9:e2:fb:70:aa:c7: e7:fb:18:98:39:f3:05:25:5d:55:f4:9f:c8:e6:4c: d1:34:0c:36:6a:db:d1:2f:b8:82:7d:ea:2d:1b:e7: d7:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:A8:50:3A:1C:A8:4A:08:DE:09:DB:40:3D:B5:84:50:74:9E:4E:A6 X509v3 Authority Key Identifier: keyid:CB:F2:A9:DA:88:AC:08:F8:D5:10:6D:EC:BD:72:D6:FA:09:C8:18:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:86:a3:9a:5d:a0:f5:80:43:6a:8e:81:fe:8f:24:76:20:56: b8:18:3b:4d:2c:c1:e5:a3:a9:8e:05:10:2c:20:73:c2:a7:89: d2:fa:75:8e:82:d5:d2:4e:3c:d6:24:89:40:6f:a3:dd:4e:63: 90:7d:6a:ab:75:f6:b2:b6:ca:e3:25:38:b1:5b:20:bb:82:43: 75:ea:c7:98:4d:a8:66:a2:4d:30:bc:2e:84:30:7c:18:08:fd: 97:03:01:b3:db:8e:36:4b:fc:29:aa:11:3d:1e:a9:19:ab:d5: 8f:bc:77:b9:d7:23:61:d1:4a:33:2b:78:27:ce:19:6b:7f:da: 4a:e2:eb:54:a2:02:a0:a6:26:36:35:ee:28:dc:0d:e3:02:60: ed:38:53:ef:17:d8:c6:61:a2:00:62:d0:51:a5:22:57:31:43: 15:e5:d8:b8:5b:e3:62:e8:0b:e8:47:8d:5c:34:69:22:a9:1d: 57:fa:e4:8d:9d:c0:f5:fd:33:3b:0b:00:cf:1e:e1:5c:60:27: 01:24:d5:45:00:f1:4f:80:d2:40:2b:ac:36:c4:36:ae:fc:8e: fd:3d:32:aa:05:5e:e9:71:b6:0c:71:07:4a:84:79:9d:0c:f9: 14:3e:7d:9a:37:96:f0:56:98:0c:e7:21:0f:00:80:d3:84:22: 81:87:19:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDyowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVDMjUxMTAvBgNVBAUTKENCRjJBOURBODhBQzA4RjhENTEwNkRFQ0JENzJENkZB MDlDODE4RTkwHhcNMjUwNjE0MTczMjUwWhcNMjUwNjIxMTczMjUwWjAYMRYwFAYD VQQDEw02ODRkYjI0My02ZTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz1Ys+6hrZyEvZUGoqUHgS7fCS0QPY2LezmM0ZIe5h8PGeDyGu1y/CObIzYn4 JRO1dvW48VKl/2hIC/wNWLoJolHw6zErjXME1QviibY4EqZmc/8x0qjP66rhDc/9 Uf9duSdHkYueKAsvjJkT1oZSI6sFerPRoKYRnpUgC9QXcgUG8x4WjBtzCR0iBr5G TFlERIEegJcIWgHrHqxnIJctXECq3pHxDlVX3qLrH4UUEp3Seh+4TXQNUZJ+K2Kc PvbcgeM5hW4RwyanQ4WsEU6TJLQm6knu3c3HWEyp4vtwqsfn+xiYOfMFJV1V9J/I 5kzRNAw2atvRL7iCfeotG+fX2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIeoUDoc qEoI3gnbQD21hFB0nk6mMB8GA1UdIwQYMBaAFMvyqdqIrAj41RBt7L1y1voJyBjp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUMyNS82ODdBMTBBNjc2 NUExMUU5OUQwMUU0MkVDNEY5QUUwMi95X0twMm9pc0NQalZFRzNzdlhMVy1nbklH T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lfS3Ayb2lzQ1BqVkVHM3N2WExXLWduSUdPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUMyNS82ODdBMTBBNjc2NUExMUU5OUQwMUU0MkVDNEY5QUUwMi95X0twMm9pc0NQ alZFRzNzdlhMVy1nbklHT2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLhqOaXaD1gENqjoH+jyR2IFa4GDtNLMHlo6mOBRAsIHPCp4nS+nWO gtXSTjzWJIlAb6PdTmOQfWqrdfaytsrjJTixWyC7gkN16seYTahmok0wvC6EMHwY CP2XAwGz2442S/wpqhE9HqkZq9WPvHe51yNh0UozK3gnzhlrf9pK4utUogKgpiY2 Ne4o3A3jAmDtOFPvF9jGYaIAYtBRpSJXMUMV5di4W+Ni6AvoR41cNGkiqR1X+uSN ncD1/TM7CwDPHuFcYCcBJNVFAPFPgNJAK6w2xDau/I79PTKqBV7pcbYMcQdKhHmd DPkUPn2aN5bwVpgM5yEPAIDThCKBhxnV -----END CERTIFICATE-----Generated at Sat Jun 14 19:38:04 2025 by rpki-client