$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft File: YcuQhfAv-PpF5zL1gDQPQkngDKI.mft (raw, json) Hash identifier: G3/2OpmSPw6dpPJChHk+QJ6NC3U73wB101FwoSyJSS8= Subject key identifier: 56:24:C1:FE:92:BA:9D:4A:00:F4:7E:15:5A:01:BC:0A:17:92:B3:73 Authority key identifier: 61:CB:90:85:F0:2F:F8:FA:45:E7:32:F5:80:34:0F:42:49:E0:0C:A2 Certificate issuer: /CN=A91DCB25/serialNumber=61CB9085F02FF8FA45E732F580340F4249E00CA2 Certificate serial: 11A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YcuQhfAv-PpF5zL1gDQPQkngDKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft Manifest number: 119E Signing time: Mon 04 Aug 2025 17:23:38 +0000 Manifest this update: Mon 04 Aug 2025 17:23:37 +0000 Manifest next update: Mon 11 Aug 2025 17:23:37 +0000 Files and hashes: 1: YcuQhfAv-PpF5zL1gDQPQkngDKI.crl (hash: 64VbtL8Yd0yYF2/Lptez57VrhehsfLL9bw/0vyaZ60k=) 2: BDC1AB0AFDA611E88FA5E26DC4F9AE02.roa (hash: SB9Ipu4AFekvf7xWy+dJxrZfjpqZ4b1Xx/G1XVRpODY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.crl rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YcuQhfAv-PpF5zL1gDQPQkngDKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 17:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4519 (0x11a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCB25, serialNumber=61CB9085F02FF8FA45E732F580340F4249E00CA2 Validity Not Before: Aug 4 17:23:37 2025 GMT Not After : Aug 11 17:23:37 2025 GMT Subject: CN=6890ec99-9f49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b4:cc:26:2e:c5:d6:4e:e5:59:23:ff:ab:df: b0:1e:be:d6:a8:15:20:88:68:ec:90:16:53:8f:8f: d9:d5:67:94:15:31:5d:4d:48:91:4b:2b:a2:ee:34: a0:70:bd:01:33:c6:b1:3e:52:26:52:73:55:04:9a: 52:93:01:56:47:d9:04:6e:b6:8d:fe:e7:8e:b7:8c: e6:70:15:19:d4:17:03:31:c1:0b:26:d3:cc:00:a4: d3:6e:aa:f5:76:3f:11:0f:8b:0b:ef:98:82:88:1d: 24:9b:96:d1:f0:84:1d:37:95:63:55:6e:9b:c7:14: c6:83:0a:b8:4e:f8:45:8e:dc:84:44:3a:cc:6f:01: 52:fb:0a:a9:5c:22:51:5b:08:dc:02:e3:c0:8d:fa: ca:29:c8:81:30:6d:bf:9d:6a:0c:00:a1:ac:21:ae: b9:e1:81:8c:bf:68:3b:60:c1:3d:5c:e1:cf:d7:1a: d4:43:f7:75:b0:44:ee:4c:20:e0:9a:59:0b:6e:0c: 4e:97:f9:21:82:4c:28:79:61:62:73:c5:a9:02:7e: d2:48:f1:36:3e:78:20:09:ad:65:4d:3e:3e:36:6c: 68:bf:6b:2c:8e:2b:91:7c:ae:23:37:bb:51:e8:cf: bd:1d:f9:7a:1c:c3:51:0e:f6:62:ca:b6:19:50:00: e5:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:24:C1:FE:92:BA:9D:4A:00:F4:7E:15:5A:01:BC:0A:17:92:B3:73 X509v3 Authority Key Identifier: keyid:61:CB:90:85:F0:2F:F8:FA:45:E7:32:F5:80:34:0F:42:49:E0:0C:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YcuQhfAv-PpF5zL1gDQPQkngDKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:9e:0e:fd:93:3a:a8:86:27:0f:d9:70:73:1e:20:ab:15:8c: cd:f2:8a:3d:36:b6:ed:89:c1:ff:cb:86:a2:83:7a:cd:6b:91: b4:f2:fb:d8:4d:08:b7:93:20:f8:e6:8e:3a:25:9b:b7:a2:d7: 71:d0:14:ac:c1:26:8c:4a:1e:50:96:00:6d:60:49:04:0f:31: 99:5e:7d:e3:32:d5:fc:ab:e5:46:f3:5b:b1:6a:8e:b7:c5:b8: 12:27:1e:81:84:6d:12:44:71:dc:01:54:0e:80:56:33:6d:9b: d5:88:6c:d2:13:4f:b7:bb:76:85:f3:2d:b7:12:66:e3:bb:7c: ae:4c:0f:71:1e:f0:2f:6d:f1:5f:32:70:3f:50:e5:d3:c7:e1: 4e:49:4d:03:a6:d2:6a:57:7d:0a:cf:3b:55:fb:2a:ec:7b:49: 62:26:9e:62:d2:d0:28:32:7c:c4:a5:b4:ab:56:f4:b6:39:eb: 11:ec:6a:95:4a:24:a8:c5:81:b5:af:fe:5d:94:61:8c:ad:11: 98:8c:f4:10:19:7e:e7:77:b6:db:47:68:de:d4:0a:2e:26:9c: 00:6e:a0:0d:28:c0:a8:c5:31:31:b5:20:84:e8:e5:b1:81:3c: 08:11:4b:f5:45:de:c9:b6:b0:0d:80:00:15:cf:1a:44:21:a0: c6:cd:a9:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEacwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENCMjUxMTAvBgNVBAUTKDYxQ0I5MDg1RjAyRkY4RkE0NUU3MzJGNTgwMzQwRjQy NDlFMDBDQTIwHhcNMjUwODA0MTcyMzM3WhcNMjUwODExMTcyMzM3WjAYMRYwFAYD VQQDEw02ODkwZWM5OS05ZjQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAurTMJi7F1k7lWSP/q9+wHr7WqBUgiGjskBZTj4/Z1WeUFTFdTUiRSyui7jSg cL0BM8axPlImUnNVBJpSkwFWR9kEbraN/ueOt4zmcBUZ1BcDMcELJtPMAKTTbqr1 dj8RD4sL75iCiB0km5bR8IQdN5VjVW6bxxTGgwq4TvhFjtyERDrMbwFS+wqpXCJR WwjcAuPAjfrKKciBMG2/nWoMAKGsIa654YGMv2g7YME9XOHP1xrUQ/d1sETuTCDg mlkLbgxOl/khgkwoeWFic8WpAn7SSPE2PnggCa1lTT4+Nmxov2ssjiuRfK4jN7tR 6M+9Hfl6HMNRDvZiyrYZUADlSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFYkwf6S up1KAPR+FVoBvAoXkrNzMB8GA1UdIwQYMBaAFGHLkIXwL/j6Recy9YA0D0JJ4Ayi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0IyNS8yQzYwREZEOEZE QTUxMUU4ODg1OUMwNkJDNEY5QUUwMi9ZY3VRaGZBdi1QcEY1ekwxZ0RRUFFrbmdE S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ljdVFoZkF2LVBwRjV6TDFnRFFQUWtuZ0RLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Q0IyNS8yQzYwREZEOEZEQTUxMUU4ODg1OUMwNkJDNEY5QUUwMi9ZY3VRaGZBdi1Q cEY1ekwxZ0RRUFFrbmdES0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYng79kzqohicP2XBzHiCrFYzN8oo9NrbticH/y4aig3rNa5G08vvY TQi3kyD45o46JZu3otdx0BSswSaMSh5QlgBtYEkEDzGZXn3jMtX8q+VG81uxao63 xbgSJx6BhG0SRHHcAVQOgFYzbZvViGzSE0+3u3aF8y23Embju3yuTA9xHvAvbfFf MnA/UOXTx+FOSU0DptJqV30KzztV+yrse0liJp5i0tAoMnzEpbSrVvS2OesR7GqV SiSoxYG1r/5dlGGMrRGYjPQQGX7nd7bbR2je1AouJpwAbqANKMCoxTExtSCE6OWx gTwIEUv1Rd7JtrANgAAVzxpEIaDGzamB -----END CERTIFICATE-----Generated at Wed Aug 6 05:25:15 2025 by rpki-client