$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.mft File: y4244fF7x3I0bdn_uyByz6j9plI.mft (raw, json) Hash identifier: UNKU1cW8ioGVzCduqgFL+R0/Gxo8QAqUs83Ecez7ReE= Subject key identifier: 98:0F:B9:38:81:75:9F:07:94:5A:D0:B0:37:64:FB:23:5B:83:B8:8E Authority key identifier: CB:8D:B8:E1:F1:7B:C7:72:34:6D:D9:FF:BB:20:72:CF:A8:FD:A6:52 Certificate issuer: /CN=A91DB7E9/serialNumber=CB8DB8E1F17BC772346DD9FFBB2072CFA8FDA652 Certificate serial: 013C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y4244fF7x3I0bdn_uyByz6j9plI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.mft Manifest number: 013C Signing time: Thu 19 Jun 2025 03:50:58 +0000 Manifest this update: Thu 19 Jun 2025 03:50:58 +0000 Manifest next update: Thu 26 Jun 2025 03:50:58 +0000 Files and hashes: 1: y4244fF7x3I0bdn_uyByz6j9plI.crl (hash: JCYI3W6lxCSoMoZt8iBZQsyLGT0qu1pgbhbl+W7UleA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.crl rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y4244fF7x3I0bdn_uyByz6j9plI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 03:50:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 316 (0x13c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB7E9, serialNumber=CB8DB8E1F17BC772346DD9FFBB2072CFA8FDA652 Validity Not Before: Jun 19 03:50:58 2025 GMT Not After : Jun 26 03:50:58 2025 GMT Subject: CN=68538922-129b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:28:3f:50:38:67:74:9e:1f:93:05:28:7f:af: 5a:98:f5:06:ea:a3:c2:58:e1:81:43:7c:cf:1c:8b: 35:13:90:13:38:da:f6:31:57:c0:5c:c7:45:91:79: 2e:31:c3:0a:28:58:b7:4f:d1:1b:95:31:2b:d7:6e: 82:f8:53:7c:b3:e1:d3:bb:68:16:e5:84:58:9f:74: 3c:a1:cc:3a:d9:fe:b0:22:4c:6d:88:a1:bd:40:c1: 57:f8:9d:1d:89:53:23:39:44:a9:20:68:67:4e:f0: 77:ff:80:7e:7f:1b:f1:9f:c1:ef:08:80:7a:18:43: 1f:81:dc:1a:fe:72:94:a0:83:40:83:b2:8f:dd:81: 7a:51:ef:bc:56:04:61:dd:f8:9c:48:a4:95:4c:a3: 16:0a:58:c5:c6:9b:00:95:69:44:aa:f9:dc:d8:67: 07:51:15:48:4c:1c:84:42:96:2a:64:24:ab:48:a6: 21:ba:5e:29:56:9d:a7:3a:3f:9a:71:ef:aa:a3:c5: cc:c3:ca:a1:bb:8f:e4:62:7f:30:a7:31:01:73:fe: eb:d9:0a:95:8e:e9:3e:a8:97:97:fb:bf:89:c4:fe: 10:dc:66:d6:e7:92:1b:cc:48:e1:8a:b2:bc:8f:a1: e5:9c:89:c9:68:4e:50:bb:10:ec:46:26:36:40:a6: 41:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:0F:B9:38:81:75:9F:07:94:5A:D0:B0:37:64:FB:23:5B:83:B8:8E X509v3 Authority Key Identifier: keyid:CB:8D:B8:E1:F1:7B:C7:72:34:6D:D9:FF:BB:20:72:CF:A8:FD:A6:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y4244fF7x3I0bdn_uyByz6j9plI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:51:8d:dc:25:fc:91:d9:27:ce:89:2f:be:69:99:87:76:52: 42:93:6c:50:45:40:0a:64:f1:64:8d:81:eb:f5:be:ed:9b:7a: 86:39:0c:a5:1d:53:a6:9f:46:62:87:74:72:c2:38:bc:da:1c: 69:34:db:17:4d:ac:e4:bb:53:da:18:25:e4:4b:97:59:8a:83: 5e:5f:e2:ff:77:4c:9a:71:b8:37:7b:01:69:53:d4:55:bb:b4: a1:26:99:45:14:a1:78:5e:c3:c8:bb:fd:09:b4:22:b7:e3:94: 24:9b:ff:45:5a:1a:55:31:ca:ff:0a:40:17:2b:5d:f9:15:01: 2c:5b:5e:e0:89:e0:5f:01:24:c1:2a:bb:ff:35:5e:a1:dc:2d: 42:72:25:25:c4:4e:c1:29:57:9d:4c:35:77:15:e6:16:ba:2f: e7:b4:15:44:e5:87:d7:16:80:c6:ac:d1:31:53:93:dd:a4:10: d0:b0:b6:1f:03:21:7b:e9:35:18:45:65:04:25:e6:2a:59:66: 0e:ae:d9:c7:3c:ff:8a:f8:fb:54:be:83:78:d3:65:3b:56:1c: 1a:a1:5c:2c:35:22:b9:2b:15:8f:e0:93:c7:26:69:fd:0d:33: c7:8b:d8:57:7d:42:fc:8e:e2:71:08:d9:d5:c2:e7:05:a4:a8: 75:a4:54:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI3RTkxMTAvBgNVBAUTKENCOERCOEUxRjE3QkM3NzIzNDZERDlGRkJCMjA3MkNG QThGREE2NTIwHhcNMjUwNjE5MDM1MDU4WhcNMjUwNjI2MDM1MDU4WjAYMRYwFAYD VQQDEw02ODUzODkyMi0xMjliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ig/UDhndJ4fkwUof69amPUG6qPCWOGBQ3zPHIs1E5ATONr2MVfAXMdFkXku McMKKFi3T9EblTEr126C+FN8s+HTu2gW5YRYn3Q8ocw62f6wIkxtiKG9QMFX+J0d iVMjOUSpIGhnTvB3/4B+fxvxn8HvCIB6GEMfgdwa/nKUoINAg7KP3YF6Ue+8VgRh 3ficSKSVTKMWCljFxpsAlWlEqvnc2GcHURVITByEQpYqZCSrSKYhul4pVp2nOj+a ce+qo8XMw8qhu4/kYn8wpzEBc/7r2QqVjuk+qJeX+7+JxP4Q3GbW55IbzEjhirK8 j6HlnInJaE5QuxDsRiY2QKZBoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJgPuTiB dZ8HlFrQsDdk+yNbg7iOMB8GA1UdIwQYMBaAFMuNuOHxe8dyNG3Z/7sgcs+o/aZS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjdFOS9FMEM0NjEzMDZF MkUxMUVFODVEOTJEMzJDNEY5QUUwMi95NDI0NGZGN3gzSTBiZG5fdXlCeXo2ajlw bEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3k0MjQ0ZkY3eDNJMGJkbl91eUJ5ejZqOXBsSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjdFOS9FMEM0NjEzMDZFMkUxMUVFODVEOTJEMzJDNEY5QUUwMi95NDI0NGZGN3gz STBiZG5fdXlCeXo2ajlwbEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcUY3cJfyR2SfOiS++aZmHdlJCk2xQRUAKZPFkjYHr9b7tm3qGOQyl HVOmn0Zih3Rywji82hxpNNsXTazku1PaGCXkS5dZioNeX+L/d0yacbg3ewFpU9RV u7ShJplFFKF4XsPIu/0JtCK345Qkm/9FWhpVMcr/CkAXK135FQEsW17gieBfASTB Krv/NV6h3C1CciUlxE7BKVedTDV3FeYWui/ntBVE5YfXFoDGrNExU5PdpBDQsLYf AyF76TUYRWUEJeYqWWYOrtnHPP+K+PtUvoN402U7VhwaoVwsNSK5KxWP4JPHJmn9 DTPHi9hXfUL8juJxCNnVwucFpKh1pFSN -----END CERTIFICATE-----Generated at Sat Jun 21 04:38:32 2025 by rpki-client