$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft File: yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft (raw, json) Hash identifier: AojPDWjEYTW2CGYGc1GKZpe+Z/jeXm/P3FRlQgpl9uE= Subject key identifier: 71:8F:BE:9D:B1:00:64:11:9C:AB:C6:22:B6:F6:75:14:B0:53:B5:2F Authority key identifier: CA:A6:EB:99:B3:FE:0E:FB:65:D3:8F:15:B2:AA:E4:DC:39:DA:B3:1D Certificate issuer: /CN=A91DE352/serialNumber=CAA6EB99B3FE0EFB65D38F15B2AAE4DC39DAB31D Certificate serial: 052E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqbrmbP-Dvtl048Vsqrk3Dnasx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft Manifest number: 0529 Signing time: Fri 20 Jun 2025 23:17:55 +0000 Manifest this update: Fri 20 Jun 2025 23:17:55 +0000 Manifest next update: Fri 27 Jun 2025 23:17:55 +0000 Files and hashes: 1: yqbrmbP-Dvtl048Vsqrk3Dnasx0.crl (hash: Du/+HI3UB/CnRmCOxw8amf9jDIJtEFXh3WX58agSH30=) 2: F1C77A3C73E711ECA415F87FC4F9AE02.roa (hash: 2CyIyNp44NxNr2SQi/2YfeBSUBR+fj5EogTGvnYWavo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.crl rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqbrmbP-Dvtl048Vsqrk3Dnasx0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 23:17:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1326 (0x52e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE352, serialNumber=CAA6EB99B3FE0EFB65D38F15B2AAE4DC39DAB31D Validity Not Before: Jun 20 23:17:55 2025 GMT Not After : Jun 27 23:17:55 2025 GMT Subject: CN=6855ec23-fa90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:d8:de:7d:88:05:1f:3e:98:08:83:03:8f:1d: 6e:2e:1e:61:74:5d:ba:46:23:2f:79:6f:a7:8d:0d: 44:39:65:ec:47:c6:86:0b:a9:c7:26:a5:10:d2:c4: 54:4b:74:3e:66:4c:34:03:75:c7:56:42:12:ff:73: f4:d3:37:dc:9a:a2:e1:74:cf:9e:24:60:44:9e:d8: 16:2b:e4:a8:ef:cc:16:88:f7:de:bb:f1:6f:03:f2: 2f:99:c0:72:a9:93:a6:0f:28:d2:1c:bd:2c:23:f0: df:94:d9:fd:93:b4:36:71:1d:92:05:43:90:73:85: ff:ec:76:df:cf:e4:a6:c8:0f:06:dc:6f:a6:03:48: 0e:fc:fb:c1:ba:f1:d3:76:6e:12:80:8f:62:58:01: ae:a8:46:3a:53:af:d0:f7:d5:5b:f9:32:67:10:fd: 17:37:14:ef:14:ef:ef:79:f4:86:45:7d:f7:82:28: 2c:1f:24:98:11:b0:fd:7d:62:d2:76:ad:7b:86:75: 87:db:95:18:08:57:ac:e1:a1:e4:8c:31:27:83:b5: b1:9f:4c:3c:35:b7:28:a4:e3:2b:42:4b:84:3a:5b: 94:26:5e:f2:93:76:e1:83:96:2e:b6:06:f4:fa:5b: 8c:25:bc:98:01:6e:b3:af:c6:1d:cc:7e:5a:12:e8: 5f:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:8F:BE:9D:B1:00:64:11:9C:AB:C6:22:B6:F6:75:14:B0:53:B5:2F X509v3 Authority Key Identifier: keyid:CA:A6:EB:99:B3:FE:0E:FB:65:D3:8F:15:B2:AA:E4:DC:39:DA:B3:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqbrmbP-Dvtl048Vsqrk3Dnasx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:8c:8e:d9:c8:fd:54:da:ca:8a:b5:df:3b:2a:7e:26:2a:b3: a2:58:60:41:19:22:ff:04:5e:65:42:33:5d:d1:0b:0d:f8:28: 76:89:08:4b:28:97:9b:3e:e5:88:ee:ef:87:98:60:91:ba:01: 6a:f5:27:b0:1e:c0:98:ca:69:1b:a9:be:06:e0:89:bd:5a:70: 9b:d7:20:10:52:b7:07:cc:7b:94:23:71:73:ba:9a:57:ad:25: de:50:51:15:37:17:3b:9d:07:87:60:03:66:60:d2:c4:4e:28: 55:9c:db:f2:0f:a0:1f:45:6a:d1:b6:bb:e2:d0:39:a3:ee:b1: b3:88:85:45:9e:e7:44:e2:03:79:2c:da:20:eb:a7:b3:c4:c9: c1:e5:04:ba:b8:e2:cd:b9:62:eb:a9:ed:76:1f:88:6e:4c:65: 24:fc:28:d9:ab:9b:dc:81:b2:ae:e5:48:ac:31:fc:66:bc:d6: c8:58:34:c0:cd:6e:11:3d:a3:8f:37:83:3b:ee:1f:38:b4:0f: 87:f1:14:5f:9d:25:b4:ef:86:bc:ee:04:41:6d:5e:58:de:dd: 93:24:5b:ee:e6:ae:fd:36:f0:a6:1d:07:6f:4b:a3:4a:fd:6a: c0:9c:2a:ad:11:00:19:c2:e3:9d:b6:21:be:90:e9:ee:c1:59: 1b:d9:f4:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBS4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REUzNTIxMTAvBgNVBAUTKENBQTZFQjk5QjNGRTBFRkI2NUQzOEYxNUIyQUFFNERD MzlEQUIzMUQwHhcNMjUwNjIwMjMxNzU1WhcNMjUwNjI3MjMxNzU1WjAYMRYwFAYD VQQDEw02ODU1ZWMyMy1mYTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAydjefYgFHz6YCIMDjx1uLh5hdF26RiMveW+njQ1EOWXsR8aGC6nHJqUQ0sRU S3Q+Zkw0A3XHVkIS/3P00zfcmqLhdM+eJGBEntgWK+So78wWiPfeu/FvA/IvmcBy qZOmDyjSHL0sI/DflNn9k7Q2cR2SBUOQc4X/7Hbfz+SmyA8G3G+mA0gO/PvBuvHT dm4SgI9iWAGuqEY6U6/Q99Vb+TJnEP0XNxTvFO/vefSGRX33gigsHySYEbD9fWLS dq17hnWH25UYCFes4aHkjDEng7Wxn0w8NbcopOMrQkuEOluUJl7yk3bhg5Yutgb0 +luMJbyYAW6zr8YdzH5aEuhfmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHGPvp2x AGQRnKvGIrb2dRSwU7UvMB8GA1UdIwQYMBaAFMqm65mz/g77ZdOPFbKq5Nw52rMd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTM1Mi9DOEUyMkU4QTAx MTYxMUVDOUNDREU3MjJDNEY5QUUwMi95cWJybWJQLUR2dGwwNDhWc3FyazNEbmFz eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lxYnJtYlAtRHZ0bDA0OFZzcXJrM0RuYXN4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTM1Mi9DOEUyMkU4QTAxMTYxMUVDOUNDREU3MjJDNEY5QUUwMi95cWJybWJQLUR2 dGwwNDhWc3FyazNEbmFzeDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxjI7ZyP1U2sqKtd87Kn4mKrOiWGBBGSL/BF5lQjNd0QsN+Ch2iQhL KJebPuWI7u+HmGCRugFq9SewHsCYymkbqb4G4Im9WnCb1yAQUrcHzHuUI3FzuppX rSXeUFEVNxc7nQeHYANmYNLETihVnNvyD6AfRWrRtrvi0Dmj7rGziIVFnudE4gN5 LNog66ezxMnB5QS6uOLNuWLrqe12H4huTGUk/CjZq5vcgbKu5UisMfxmvNbIWDTA zW4RPaOPN4M77h84tA+H8RRfnSW074a87gRBbV5Y3t2TJFvu5q79NvCmHQdvS6NK /WrAnCqtEQAZwuOdtiG+kOnuwVkb2fQ7 -----END CERTIFICATE-----Generated at Sat Jun 21 08:01:15 2025 by rpki-client