$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft File: 0ypa3AVCwugXwgK-a3KB6GnReJc.mft (raw, json) Hash identifier: rsHg/T4ikAetZdPs+rDo0587ibHb2OoeCj5k4GAsz4s= Subject key identifier: AF:C0:CF:71:26:C6:C7:5A:98:E6:D0:A1:93:9C:55:04:DA:82:7D:D5 Authority key identifier: D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97 Certificate issuer: /CN=A91E0855/serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897 Certificate serial: B0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft Manifest number: AE Signing time: Thu 19 Jun 2025 05:24:23 +0000 Manifest this update: Thu 19 Jun 2025 05:24:23 +0000 Manifest next update: Thu 26 Jun 2025 05:24:23 +0000 Files and hashes: 1: 0ypa3AVCwugXwgK-a3KB6GnReJc.crl (hash: 7QTEf4Pk9M2fhd9K68zIsdJb4Jszq+3KdnPPBK7UZ9Q=) 2: 1818952C8D5811EFAD3A5D3BC4F9AE02.roa (hash: tKSHJqdsSmpGgJzA0ThHFbJCNwhgg/q9aM0ZWxNfpP8=) 3: 30C3ECA444B811EF8C81962AC4F9AE02.roa (hash: YRkHlOrrGzxXTEGbxmwj8yAFxeMrCPHch9CuERcM2OI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.crl rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 05:24:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 176 (0xb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0855, serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897 Validity Not Before: Jun 19 05:24:23 2025 GMT Not After : Jun 26 05:24:23 2025 GMT Subject: CN=68539f07-fe3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:3b:6b:a5:11:f1:53:bf:b0:aa:e8:24:85:d6: 92:2f:2c:2b:4a:75:31:e7:3b:78:60:87:6d:bb:5d: aa:eb:70:4a:f9:4d:50:7a:fe:c9:10:35:9a:33:46: 61:fd:99:ce:42:ec:9e:5d:f7:87:59:b7:59:3e:0a: 51:5a:df:28:3d:30:d0:2c:21:22:07:ff:3d:30:05: 38:0d:9b:8c:f8:5d:47:90:e8:a9:ab:14:87:30:ad: f7:3a:30:60:a0:df:7f:f4:73:68:18:58:1b:28:3c: c7:8d:28:08:0b:63:43:b2:b9:28:95:f8:7a:99:02: c8:83:11:42:37:5e:b3:ab:26:20:30:a5:c5:dc:03: 9a:2f:bd:44:28:2c:4d:07:6d:c3:77:91:fb:cb:cb: 4c:34:b9:14:61:2d:16:2a:0c:6d:4a:2e:db:90:04: be:c5:a5:24:3d:e0:39:03:56:70:db:da:63:b9:23: 21:33:f0:b9:72:d6:23:41:04:8d:c6:93:c2:9b:45: 6e:c5:93:dd:3d:8b:f2:62:49:b2:2e:23:8e:19:2a: d5:5c:6d:4e:5c:7c:8e:dd:94:47:2e:86:65:98:bb: 8e:7b:90:04:53:c1:b7:48:9f:57:cd:ad:0b:89:1a: 8f:58:30:27:07:19:37:92:70:01:ee:1d:bb:81:fa: 7e:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:C0:CF:71:26:C6:C7:5A:98:E6:D0:A1:93:9C:55:04:DA:82:7D:D5 X509v3 Authority Key Identifier: keyid:D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:19:74:ae:4d:e6:93:ca:44:a3:f2:e1:d4:64:dc:99:fc:19: 4b:7b:24:37:bd:22:34:c6:38:c1:8f:7b:dd:d0:9d:b1:5f:5b: 1f:bd:65:d7:a2:dc:44:53:3b:39:6e:9c:ea:3d:7a:e9:c7:58: 0e:60:bf:ee:d2:bb:67:a5:89:04:09:66:ad:50:9b:cd:2c:f4: b0:83:1d:05:7f:32:56:3f:64:1f:8e:89:04:d8:3a:e4:91:eb: 49:d1:a7:fd:47:6b:51:f5:d2:3f:f0:66:65:50:97:93:de:ce: 6c:6a:6d:0e:74:47:b1:8d:01:6a:19:6a:dd:b7:46:75:da:83: 34:b2:f4:a1:5d:7e:33:7e:ac:99:a7:87:d7:5e:b4:c0:c3:b5: f7:dd:10:18:f1:6a:b2:40:b9:b3:65:86:d7:e6:07:30:1a:fc: d6:8a:60:fe:86:8c:2b:85:d3:41:76:96:e8:34:d2:3b:ce:97: 34:a1:d0:a9:5f:2e:02:ab:d3:d1:f3:03:95:35:d4:4e:08:44: 8a:5c:70:d8:01:91:22:6f:b0:b2:ba:50:36:b2:03:7c:c8:05: 62:bb:d7:3a:0e:18:00:d3:c4:71:fb:7e:e9:1f:84:f9:22:70: 75:87:f5:43:6b:35:40:68:92:96:8e:e9:11:f8:b3:77:b8:aa: cb:a3:af:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTA4NTUxMTAvBgNVBAUTKEQzMkE1QURDMDU0MkMyRTgxN0MyMDJCRTZCNzI4MUU4 NjlEMTc4OTcwHhcNMjUwNjE5MDUyNDIzWhcNMjUwNjI2MDUyNDIzWjAYMRYwFAYD VQQDEw02ODUzOWYwNy1mZTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApztrpRHxU7+wqugkhdaSLywrSnUx5zt4YIdtu12q63BK+U1Qev7JEDWaM0Zh /ZnOQuyeXfeHWbdZPgpRWt8oPTDQLCEiB/89MAU4DZuM+F1HkOipqxSHMK33OjBg oN9/9HNoGFgbKDzHjSgIC2NDsrkolfh6mQLIgxFCN16zqyYgMKXF3AOaL71EKCxN B23Dd5H7y8tMNLkUYS0WKgxtSi7bkAS+xaUkPeA5A1Zw29pjuSMhM/C5ctYjQQSN xpPCm0VuxZPdPYvyYkmyLiOOGSrVXG1OXHyO3ZRHLoZlmLuOe5AEU8G3SJ9Xza0L iRqPWDAnBxk3knAB7h27gfp+nQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK/Az3Em xsdamObQoZOcVQTagn3VMB8GA1UdIwQYMBaAFNMqWtwFQsLoF8ICvmtygehp0XiX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDg1NS81MDRDRkZFMjQ0 OTYxMUVGOEU4NEU2M0RDNEY5QUUwMi8weXBhM0FWQ3d1Z1h3Z0stYTNLQjZHblJl SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzB5cGEzQVZDd3VnWHdnSy1hM0tCNkduUmVKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDg1NS81MDRDRkZFMjQ0OTYxMUVGOEU4NEU2M0RDNEY5QUUwMi8weXBhM0FWQ3d1 Z1h3Z0stYTNLQjZHblJlSmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfGXSuTeaTykSj8uHUZNyZ/BlLeyQ3vSI0xjjBj3vd0J2xX1sfvWXX otxEUzs5bpzqPXrpx1gOYL/u0rtnpYkECWatUJvNLPSwgx0FfzJWP2QfjokE2Drk ketJ0af9R2tR9dI/8GZlUJeT3s5sam0OdEexjQFqGWrdt0Z12oM0svShXX4zfqyZ p4fXXrTAw7X33RAY8WqyQLmzZYbX5gcwGvzWimD+howrhdNBdpboNNI7zpc0odCp Xy4Cq9PR8wOVNdROCESKXHDYAZEib7CyulA2sgN8yAViu9c6DhgA08Rx+37pH4T5 InB1h/VDazVAaJKWjukR+LN3uKrLo68L -----END CERTIFICATE-----Generated at Thu Jun 19 17:46:58 2025 by rpki-client