$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft File: YcuQhfAv-PpF5zL1gDQPQkngDKI.mft (raw, json) Hash identifier: Mo0lxL1H80eZQrom8dA4OrEo2wCdsHmUsyiN7u3ds5Q= Subject key identifier: 5E:C1:10:30:C6:C1:16:D9:A4:0C:B3:A3:68:45:48:64:1B:21:D0:8C Authority key identifier: 61:CB:90:85:F0:2F:F8:FA:45:E7:32:F5:80:34:0F:42:49:E0:0C:A2 Certificate issuer: /CN=A91DCB25/serialNumber=61CB9085F02FF8FA45E732F580340F4249E00CA2 Certificate serial: 118D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YcuQhfAv-PpF5zL1gDQPQkngDKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft Manifest number: 1184 Signing time: Sat 14 Jun 2025 17:09:37 +0000 Manifest this update: Sat 14 Jun 2025 17:09:36 +0000 Manifest next update: Sat 21 Jun 2025 17:09:36 +0000 Files and hashes: 1: YcuQhfAv-PpF5zL1gDQPQkngDKI.crl (hash: gIuuTwNrF7lxDV4Ey7TdVQSHtgJTmVU8zJeCflQ1xt0=) 2: BDC1AB0AFDA611E88FA5E26DC4F9AE02.roa (hash: SB9Ipu4AFekvf7xWy+dJxrZfjpqZ4b1Xx/G1XVRpODY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.crl rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YcuQhfAv-PpF5zL1gDQPQkngDKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:09:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4493 (0x118d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCB25, serialNumber=61CB9085F02FF8FA45E732F580340F4249E00CA2 Validity Not Before: Jun 14 17:09:36 2025 GMT Not After : Jun 21 17:09:36 2025 GMT Subject: CN=684dacd1-8e47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:46:6f:93:53:2b:e7:14:9c:da:6c:bf:32:26: 55:ae:08:74:a4:8e:63:fa:01:67:a5:ff:60:f9:93: 3f:90:fd:7d:91:fe:c8:ff:cc:a5:57:ec:b0:af:98: 7f:37:eb:fc:8f:2e:ce:c6:57:82:56:48:f5:f9:27: cd:1c:67:87:31:82:3f:61:bd:23:89:44:15:53:ed: 0e:ce:df:94:12:b1:fa:53:5f:92:14:58:b9:95:db: 0f:7e:2d:ca:27:71:31:66:3c:19:6a:e6:8c:79:c2: ed:7c:63:95:74:90:ca:8d:fe:02:a5:74:15:e1:4e: 32:8e:dd:b5:dc:39:0e:97:88:eb:ea:7b:49:c2:bd: f4:bd:8c:e2:e4:a7:1e:0a:7d:cb:72:97:60:54:9a: 2c:29:b9:8b:d9:a3:23:ba:8b:60:bf:fd:78:bd:82: 03:96:b7:71:53:66:b7:bf:6b:21:95:38:60:8d:d8: d1:9e:b5:01:1f:28:1d:db:20:de:ec:36:0c:a5:ba: 65:0e:83:10:34:3c:a9:b9:37:be:ee:5e:a2:88:9d: 3d:f8:39:cb:f6:e4:c3:db:8f:80:18:98:a2:e1:80: a1:2e:57:df:5a:27:47:ca:e9:e4:e1:cf:d7:bd:4f: 59:99:d5:de:48:82:53:25:15:25:a9:27:41:1f:d8: d5:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:C1:10:30:C6:C1:16:D9:A4:0C:B3:A3:68:45:48:64:1B:21:D0:8C X509v3 Authority Key Identifier: keyid:61:CB:90:85:F0:2F:F8:FA:45:E7:32:F5:80:34:0F:42:49:E0:0C:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YcuQhfAv-PpF5zL1gDQPQkngDKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:5b:7d:66:ee:10:af:29:3a:17:ea:2c:e8:73:31:a5:b5:8b: 61:20:cd:1a:71:97:c7:11:3e:03:5c:ce:f3:32:80:79:39:67: 9d:08:e4:95:4a:ed:db:c8:6f:86:8b:6c:f8:59:9c:4f:45:9c: c8:57:ba:1c:f5:1d:20:e2:2b:59:7e:c9:39:3e:4b:88:e1:34: 84:47:db:e4:95:4f:dc:46:0e:46:6b:36:fc:cd:19:99:31:c7: 3f:7f:8e:31:88:a7:57:87:41:45:8e:36:c0:e4:74:64:ad:fe: ff:0d:f8:8e:ba:19:96:2a:62:6c:b6:39:17:85:dc:0d:80:aa: dd:a1:45:9e:f5:e3:88:ad:45:ce:2b:ea:80:f0:d3:f9:ec:f2: ad:b8:9c:92:31:69:fc:1c:ce:5f:3a:af:ca:2c:73:4f:8d:5d: 7f:31:03:81:68:1f:51:d2:54:42:2b:99:b7:82:44:f4:3f:9d: 93:38:04:37:70:4f:4b:86:04:d6:6a:06:9a:a2:fa:e1:97:9e: ef:36:5d:39:d6:8d:2e:35:b7:97:bf:33:47:41:59:0d:16:20: 87:b6:19:58:d5:3d:54:80:ca:77:53:6b:55:a9:53:64:e0:f7: 3c:d6:23:4c:b2:1c:11:f6:6c:46:07:6c:c9:70:f8:65:28:50: 0c:46:7f:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENCMjUxMTAvBgNVBAUTKDYxQ0I5MDg1RjAyRkY4RkE0NUU3MzJGNTgwMzQwRjQy NDlFMDBDQTIwHhcNMjUwNjE0MTcwOTM2WhcNMjUwNjIxMTcwOTM2WjAYMRYwFAYD VQQDEw02ODRkYWNkMS04ZTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuEZvk1Mr5xSc2my/MiZVrgh0pI5j+gFnpf9g+ZM/kP19kf7I/8ylV+ywr5h/ N+v8jy7OxleCVkj1+SfNHGeHMYI/Yb0jiUQVU+0Ozt+UErH6U1+SFFi5ldsPfi3K J3ExZjwZauaMecLtfGOVdJDKjf4CpXQV4U4yjt213DkOl4jr6ntJwr30vYzi5Kce Cn3LcpdgVJosKbmL2aMjuotgv/14vYIDlrdxU2a3v2shlThgjdjRnrUBHygd2yDe 7DYMpbplDoMQNDypuTe+7l6iiJ09+DnL9uTD24+AGJii4YChLlffWidHyunk4c/X vU9ZmdXeSIJTJRUlqSdBH9jVXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF7BEDDG wRbZpAyzo2hFSGQbIdCMMB8GA1UdIwQYMBaAFGHLkIXwL/j6Recy9YA0D0JJ4Ayi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0IyNS8yQzYwREZEOEZE QTUxMUU4ODg1OUMwNkJDNEY5QUUwMi9ZY3VRaGZBdi1QcEY1ekwxZ0RRUFFrbmdE S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ljdVFoZkF2LVBwRjV6TDFnRFFQUWtuZ0RLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Q0IyNS8yQzYwREZEOEZEQTUxMUU4ODg1OUMwNkJDNEY5QUUwMi9ZY3VRaGZBdi1Q cEY1ekwxZ0RRUFFrbmdES0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfW31m7hCvKToX6izoczGltYthIM0acZfHET4DXM7zMoB5OWedCOSV Su3byG+Gi2z4WZxPRZzIV7oc9R0g4itZfsk5PkuI4TSER9vklU/cRg5Gazb8zRmZ Mcc/f44xiKdXh0FFjjbA5HRkrf7/DfiOuhmWKmJstjkXhdwNgKrdoUWe9eOIrUXO K+qA8NP57PKtuJySMWn8HM5fOq/KLHNPjV1/MQOBaB9R0lRCK5m3gkT0P52TOAQ3 cE9LhgTWagaaovrhl57vNl051o0uNbeXvzNHQVkNFiCHthlY1T1UgMp3U2tVqVNk 4Pc81iNMshwR9mxGB2zJcPhlKFAMRn8Y -----END CERTIFICATE-----Generated at Mon Jun 16 05:37:25 2025 by rpki-client