$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft File: yCFQSaXsETZftnQLghcGdiaArRc.mft (raw, json) Hash identifier: /L5paKXT4Lja2oHNwnJMuDTpEXYOTuTi6CM7jkT0cnI= Subject key identifier: 22:3E:2F:70:B6:67:D6:43:91:55:57:52:FC:BE:6E:0F:4C:08:78:F2 Authority key identifier: C8:21:50:49:A5:EC:11:36:5F:B6:74:0B:82:17:06:76:26:80:AD:17 Certificate issuer: /CN=A91DC459/serialNumber=C8215049A5EC11365FB6740B821706762680AD17 Certificate serial: DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft Manifest number: DC Signing time: Fri 13 Jun 2025 04:29:53 +0000 Manifest this update: Fri 13 Jun 2025 04:29:52 +0000 Manifest next update: Fri 20 Jun 2025 04:29:52 +0000 Files and hashes: 1: yCFQSaXsETZftnQLghcGdiaArRc.crl (hash: 9Ow7jiL8xmcbjqj9RGycdSWtgm9lSvfd0npNL8SBWpw=) 2: 264C45FAFA3F11EE8A884F09C4F9AE02.roa (hash: 5Qk7wqUj4bSez6DKvrGbvLq6LTkbYNIBEPZBlcBLEEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.crl rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 04:29:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 222 (0xde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC459, serialNumber=C8215049A5EC11365FB6740B821706762680AD17 Validity Not Before: Jun 13 04:29:52 2025 GMT Not After : Jun 20 04:29:52 2025 GMT Subject: CN=684ba941-e41d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ae:ca:bb:45:20:40:a8:78:b7:d0:35:b4:9b: d1:83:02:94:ee:e9:73:3c:e8:19:28:75:17:77:66: 10:b1:31:87:3a:d8:73:c1:5f:ed:32:0c:d9:a6:3b: f7:d1:56:e1:8a:61:1e:7b:ef:1b:e4:09:aa:45:f4: b8:6f:13:da:e4:e0:fa:54:18:11:2a:58:93:45:fd: 65:db:05:6f:f3:b1:c6:d7:b8:77:c8:99:e8:23:97: d9:92:a2:f0:fb:34:9d:4c:fb:29:ab:dc:51:c2:9f: e0:b7:b5:76:bd:b3:71:25:85:b9:46:4b:cb:c4:2e: 92:fd:e6:f5:fd:01:35:7d:bf:87:ff:35:c1:3d:6d: 07:28:bd:0a:13:53:b2:ac:2e:6e:6a:0a:24:15:a0: ec:d7:0a:43:13:09:37:64:d0:00:b3:32:ec:79:4e: 65:d1:bb:37:f2:06:95:99:b9:ae:9f:3f:70:6b:02: e0:34:43:0d:f3:6c:38:72:be:25:27:d7:84:18:d3: c7:8d:ed:65:24:77:50:1d:16:2b:02:1d:e5:e1:b0: 4d:38:63:14:ee:47:4b:36:e9:93:17:c7:ac:36:92: b6:9c:8c:40:c2:23:37:d4:7a:48:a0:d4:a2:d5:71: b7:29:b4:f1:ab:8d:04:41:8f:51:a4:e3:6e:46:c9: 26:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:3E:2F:70:B6:67:D6:43:91:55:57:52:FC:BE:6E:0F:4C:08:78:F2 X509v3 Authority Key Identifier: keyid:C8:21:50:49:A5:EC:11:36:5F:B6:74:0B:82:17:06:76:26:80:AD:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:4d:46:e2:09:6e:85:42:c6:60:21:74:5c:37:9b:b5:74:71: 0e:e1:e0:90:18:bb:06:7c:f6:a2:c2:45:af:d0:9e:b9:c1:52: f5:4d:31:ff:4e:0c:d3:e1:cc:06:c8:6b:c4:31:60:69:a5:a6: 41:27:93:aa:49:7b:9c:25:ba:53:ef:b7:db:4f:04:ed:a8:25: b1:1a:7d:49:00:bf:74:eb:19:11:62:24:2f:08:16:36:5b:7f: 11:97:9b:50:9d:5f:8a:26:dd:41:10:0b:7b:c1:8b:80:f7:06: 67:80:e0:f5:6a:3a:07:6d:85:40:5f:49:41:7d:c8:58:5f:37: 21:a1:9d:1a:a2:92:0b:f8:4c:4e:14:2d:fc:27:79:78:64:fa: c6:89:c8:54:eb:1d:25:01:d9:4c:92:88:db:b5:c8:76:1d:19: 9b:49:72:2d:e7:ac:0a:f6:51:25:95:d1:a7:56:3e:77:25:12: 16:95:76:68:3e:84:1f:49:f0:ce:2e:41:ed:52:2d:25:21:47: d1:be:a0:a2:30:6e:e8:af:30:4f:76:aa:20:c6:e4:bc:9c:cd: 9e:ec:df:4f:a4:15:c4:48:98:f1:aa:dc:a7:6b:d9:4d:d8:b7: c3:24:80:de:de:e4:e6:7e:d1:5a:dc:89:a7:dd:bd:e6:b4:40: de:f2:e8:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0NTkxMTAvBgNVBAUTKEM4MjE1MDQ5QTVFQzExMzY1RkI2NzQwQjgyMTcwNjc2 MjY4MEFEMTcwHhcNMjUwNjEzMDQyOTUyWhcNMjUwNjIwMDQyOTUyWjAYMRYwFAYD VQQDEw02ODRiYTk0MS1lNDFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0K7Ku0UgQKh4t9A1tJvRgwKU7ulzPOgZKHUXd2YQsTGHOthzwV/tMgzZpjv3 0VbhimEee+8b5AmqRfS4bxPa5OD6VBgRKliTRf1l2wVv87HG17h3yJnoI5fZkqLw +zSdTPspq9xRwp/gt7V2vbNxJYW5RkvLxC6S/eb1/QE1fb+H/zXBPW0HKL0KE1Oy rC5uagokFaDs1wpDEwk3ZNAAszLseU5l0bs38gaVmbmunz9wawLgNEMN82w4cr4l J9eEGNPHje1lJHdQHRYrAh3l4bBNOGMU7kdLNumTF8esNpK2nIxAwiM31HpIoNSi 1XG3KbTxq40EQY9RpONuRskmCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCI+L3C2 Z9ZDkVVXUvy+bg9MCHjyMB8GA1UdIwQYMBaAFMghUEml7BE2X7Z0C4IXBnYmgK0X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzQ1OS9BOTM1MDdCQ0Y2 RDUxMUVFQjg3ODNDMUVDNEY5QUUwMi95Q0ZRU2FYc0VUWmZ0blFMZ2hjR2RpYUFy UmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lDRlFTYVhzRVRaZnRuUUxnaGNHZGlhQXJSYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzQ1OS9BOTM1MDdCQ0Y2RDUxMUVFQjg3ODNDMUVDNEY5QUUwMi95Q0ZRU2FYc0VU WmZ0blFMZ2hjR2RpYUFyUmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpTUbiCW6FQsZgIXRcN5u1dHEO4eCQGLsGfPaiwkWv0J65wVL1TTH/ TgzT4cwGyGvEMWBppaZBJ5OqSXucJbpT77fbTwTtqCWxGn1JAL906xkRYiQvCBY2 W38Rl5tQnV+KJt1BEAt7wYuA9wZngOD1ajoHbYVAX0lBfchYXzchoZ0aopIL+ExO FC38J3l4ZPrGichU6x0lAdlMkojbtch2HRmbSXIt56wK9lElldGnVj53JRIWlXZo PoQfSfDOLkHtUi0lIUfRvqCiMG7orzBPdqogxuS8nM2e7N9PpBXESJjxqtyna9lN 2LfDJIDe3uTmftFa3Imn3b3mtEDe8ui1 -----END CERTIFICATE-----Generated at Sat Jun 14 19:08:21 2025 by rpki-client