$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft File: yoXhM8HiOWFMnFd4ARi9swlSjnY.mft (raw, json) Hash identifier: Gy/AbNeFYP+kygKneO6RUUcC0teZ9LtLW0qMhNfblxA= Subject key identifier: 8A:72:8A:C5:3C:70:29:12:FD:9F:94:3F:91:06:18:A0:2F:F1:85:EC Authority key identifier: CA:85:E1:33:C1:E2:39:61:4C:9C:57:78:01:18:BD:B3:09:52:8E:76 Certificate issuer: /CN=A91DC42E/serialNumber=CA85E133C1E239614C9C57780118BDB309528E76 Certificate serial: 079A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft Manifest number: 0794 Signing time: Sat 14 Jun 2025 21:06:49 +0000 Manifest this update: Sat 14 Jun 2025 21:06:49 +0000 Manifest next update: Sat 21 Jun 2025 21:06:49 +0000 Files and hashes: 1: yoXhM8HiOWFMnFd4ARi9swlSjnY.crl (hash: gf2RHa0Woyv9iXAIO/yOY6CeQr7f9xz+NsmwQq+t3lQ=) 2: 4AAD8CFE0D1E11EB83C9B637C4F9AE02.roa (hash: SKKgbqIxO8h2gMjhNkPa/ZI17L9sik+EpFHik6yG+pU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.crl rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 21:06:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1946 (0x79a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC42E, serialNumber=CA85E133C1E239614C9C57780118BDB309528E76 Validity Not Before: Jun 14 21:06:49 2025 GMT Not After : Jun 21 21:06:49 2025 GMT Subject: CN=684de469-c979 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:c6:09:23:2d:87:16:06:75:4d:37:5c:a6:b1: d9:fd:b6:75:6f:69:6e:3c:53:1a:b0:bf:e3:27:ee: 8c:9c:bc:ba:4f:fd:92:26:e6:58:a9:46:e0:7a:86: f5:6d:ed:e1:dd:bb:ff:0f:ca:ea:67:74:55:36:0b: 70:16:94:7f:ab:28:25:ee:16:01:98:64:a2:01:2b: 5b:e9:46:f1:1a:d6:ab:9d:12:3b:f9:53:fb:f9:f5: 84:78:9e:7d:2e:b6:75:f2:b3:d4:48:4b:8e:e3:ed: 42:de:0a:f2:27:df:24:9c:78:f3:2a:b9:b4:bb:a4: 91:a3:27:b1:58:7a:39:34:93:a4:be:f3:94:8a:32: 4d:d2:6e:b1:c2:dd:97:6f:88:2a:61:8c:89:ef:11: b8:09:9b:11:da:3b:5b:17:82:de:33:7b:8e:97:ec: e2:c6:ec:92:90:1c:a6:bc:0d:8d:53:5d:27:e1:4a: 60:c6:ef:83:79:3a:d5:ba:5e:72:86:f6:27:8f:bf: 15:c1:fa:cb:47:d7:83:de:09:3a:22:9f:ba:cf:3d: 65:87:c0:d1:eb:27:bb:d3:38:af:e0:75:14:cd:f9: 52:42:12:09:43:87:0b:0d:bd:e6:36:70:69:36:12: 94:79:36:60:e1:c3:ba:77:2d:58:0a:aa:cd:6d:f2: 6e:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:72:8A:C5:3C:70:29:12:FD:9F:94:3F:91:06:18:A0:2F:F1:85:EC X509v3 Authority Key Identifier: keyid:CA:85:E1:33:C1:E2:39:61:4C:9C:57:78:01:18:BD:B3:09:52:8E:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:36:a9:80:a7:7f:d9:fc:99:a6:89:79:59:9d:2c:64:39:d3: 37:bb:96:2d:6a:39:57:49:31:56:21:cd:52:28:3c:af:80:f8: 61:fe:15:02:bd:08:94:fe:d5:ff:f4:6c:38:b4:28:64:73:90: ef:a6:9f:14:b3:a7:3f:d1:37:83:8b:94:16:df:76:08:d6:60: ce:54:a6:c0:4e:d1:02:b7:2c:7f:8c:e1:ea:ab:dd:a6:e0:a2: 8f:46:a1:3c:a3:84:8b:2d:06:1e:85:af:ad:69:10:13:04:23: 0b:72:dc:cc:c5:59:77:5f:74:ea:ae:d4:8f:bc:33:ad:2a:8f: c0:25:d7:da:2a:67:a5:e6:21:8a:82:31:f0:71:a9:d2:05:12: 74:ba:c8:5d:8b:e5:bc:15:3e:f1:28:2a:dd:54:b5:d7:67:d3: 19:cb:95:24:12:4e:12:87:9c:f5:03:6e:21:ec:16:b4:8b:15: 71:a8:3d:fb:e5:a8:20:3d:6a:7a:9a:f7:02:1c:b8:13:0e:e8: 83:3c:60:82:aa:67:80:d3:43:ae:88:3c:4e:7c:2c:df:f5:22: a8:7a:f1:d4:28:c7:7e:45:2a:86:fe:78:5a:9a:fc:18:36:2f: 76:01:e5:7f:de:07:40:09:6d:c4:0a:37:f8:79:34:b1:3d:18: c6:3b:e7:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB5owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0MkUxMTAvBgNVBAUTKENBODVFMTMzQzFFMjM5NjE0QzlDNTc3ODAxMThCREIz MDk1MjhFNzYwHhcNMjUwNjE0MjEwNjQ5WhcNMjUwNjIxMjEwNjQ5WjAYMRYwFAYD VQQDEw02ODRkZTQ2OS1jOTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAusYJIy2HFgZ1TTdcprHZ/bZ1b2luPFMasL/jJ+6MnLy6T/2SJuZYqUbgeob1 be3h3bv/D8rqZ3RVNgtwFpR/qygl7hYBmGSiAStb6UbxGtarnRI7+VP7+fWEeJ59 LrZ18rPUSEuO4+1C3gryJ98knHjzKrm0u6SRoyexWHo5NJOkvvOUijJN0m6xwt2X b4gqYYyJ7xG4CZsR2jtbF4LeM3uOl+zixuySkBymvA2NU10n4Upgxu+DeTrVul5y hvYnj78VwfrLR9eD3gk6Ip+6zz1lh8DR6ye70ziv4HUUzflSQhIJQ4cLDb3mNnBp NhKUeTZg4cO6dy1YCqrNbfJu8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIpyisU8 cCkS/Z+UP5EGGKAv8YXsMB8GA1UdIwQYMBaAFMqF4TPB4jlhTJxXeAEYvbMJUo52 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzQyRS9ENkE3RkY0ODBE MTcxMUVCQTc0MUE1MEFDNEY5QUUwMi95b1hoTThIaU9XRk1uRmQ0QVJpOXN3bFNq blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lvWGhNOEhpT1dGTW5GZDRBUmk5c3dsU2puWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzQyRS9ENkE3RkY0ODBEMTcxMUVCQTc0MUE1MEFDNEY5QUUwMi95b1hoTThIaU9X Rk1uRmQ0QVJpOXN3bFNqblkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeNqmAp3/Z/JmmiXlZnSxkOdM3u5YtajlXSTFWIc1SKDyvgPhh/hUC vQiU/tX/9Gw4tChkc5Dvpp8Us6c/0TeDi5QW33YI1mDOVKbATtECtyx/jOHqq92m 4KKPRqE8o4SLLQYeha+taRATBCMLctzMxVl3X3TqrtSPvDOtKo/AJdfaKmel5iGK gjHwcanSBRJ0ushdi+W8FT7xKCrdVLXXZ9MZy5UkEk4Sh5z1A24h7Ba0ixVxqD37 5aggPWp6mvcCHLgTDuiDPGCCqmeA00OuiDxOfCzf9SKoevHUKMd+RSqG/nhamvwY Ni92AeV/3gdACW3ECjf4eTSxPRjGO+eL -----END CERTIFICATE-----Generated at Sun Jun 15 09:53:29 2025 by rpki-client