$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0C5F/8B547A72666411E982D05974C4F9AE02/yZBd5SSGuexO-HmgJkRccLD9lQU.mft File: yZBd5SSGuexO-HmgJkRccLD9lQU.mft (raw, json) Hash identifier: PUMNoiTY/7G1rZEfcgVzRDjXMiN/aDHu/PlEGbGQAA8= Subject key identifier: FA:F4:22:F9:6B:50:1D:26:BA:5A:5A:83:B9:14:E8:79:23:55:EA:9D Authority key identifier: C9:90:5D:E5:24:86:B9:EC:4E:F8:79:A0:26:44:5C:70:B0:FD:95:05 Certificate issuer: /CN=A91E0C5F/serialNumber=C9905DE52486B9EC4EF879A026445C70B0FD9505 Certificate serial: 06C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZBd5SSGuexO-HmgJkRccLD9lQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0C5F/8B547A72666411E982D05974C4F9AE02/yZBd5SSGuexO-HmgJkRccLD9lQU.mft Manifest number: 162F Signing time: Sat 14 Jun 2025 17:29:19 +0000 Manifest this update: Sat 14 Jun 2025 17:29:18 +0000 Manifest next update: Sat 21 Jun 2025 17:29:18 +0000 Files and hashes: 1: yZBd5SSGuexO-HmgJkRccLD9lQU.crl (hash: gmmh53iyXEI47YX3Bhmsj2PcDn+e787KyGE9SC21PfU=) 2: 039F32B465C411EBA408403CC4F9AE02.roa (hash: xyf+NgV/qzZzzx4oyqEQT3Z/16fLP6Y40HqsQl4nZiw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0C5F/8B547A72666411E982D05974C4F9AE02/yZBd5SSGuexO-HmgJkRccLD9lQU.crl rsync://rpki.apnic.net/member_repository/A91E0C5F/8B547A72666411E982D05974C4F9AE02/yZBd5SSGuexO-HmgJkRccLD9lQU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZBd5SSGuexO-HmgJkRccLD9lQU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:13:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1737 (0x6c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0C5F, serialNumber=C9905DE52486B9EC4EF879A026445C70B0FD9505 Validity Not Before: Jun 14 17:29:18 2025 GMT Not After : Jun 21 17:29:18 2025 GMT Subject: CN=684db16e-5b84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:84:3a:9b:52:e6:bd:b0:3f:32:54:0d:b3:53: 11:68:bb:8b:97:bc:fb:3b:64:53:e9:82:26:88:ac: 4a:b2:7d:db:c7:c3:3a:d0:d8:66:c8:b3:79:a7:81: 38:fd:18:28:c4:26:8b:b7:dc:9a:56:31:ac:ec:a9: c7:28:ee:7d:38:93:f6:6b:3e:18:74:b3:c6:99:8c: dc:01:27:3c:82:71:b2:5e:a0:55:b2:53:09:82:1a: 3a:f9:8d:db:47:a4:72:d6:e1:1d:9a:07:29:72:1e: 59:e9:80:95:df:9b:30:09:d9:a8:bf:70:d5:85:0a: 67:c9:22:8a:24:f0:d6:21:3f:64:08:9d:a5:1a:92: 0e:0a:f8:b4:24:e5:0e:19:42:86:ca:98:60:52:98: 06:88:18:57:1b:85:a4:b7:81:8a:9c:3c:26:f9:d1: c8:c2:e8:04:ab:b9:07:fb:73:48:29:77:1d:f7:05: 37:d7:0b:c6:3e:95:b9:09:fb:28:df:fd:d6:7b:23: d4:ff:5d:c5:08:8d:94:e4:e3:53:6c:41:a6:20:56: 2f:f9:0a:4f:14:f8:f3:61:95:43:39:50:df:8c:94: 6a:dd:2d:21:fd:07:5b:11:bf:22:2b:42:e2:aa:48: f5:6d:3d:88:c8:ec:97:14:54:98:9c:62:36:d4:d0: 4d:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:F4:22:F9:6B:50:1D:26:BA:5A:5A:83:B9:14:E8:79:23:55:EA:9D X509v3 Authority Key Identifier: keyid:C9:90:5D:E5:24:86:B9:EC:4E:F8:79:A0:26:44:5C:70:B0:FD:95:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0C5F/8B547A72666411E982D05974C4F9AE02/yZBd5SSGuexO-HmgJkRccLD9lQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZBd5SSGuexO-HmgJkRccLD9lQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0C5F/8B547A72666411E982D05974C4F9AE02/yZBd5SSGuexO-HmgJkRccLD9lQU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:5d:40:fd:f9:52:27:e0:73:ab:c9:aa:aa:ac:a2:e3:91:c3: 23:7e:1e:db:70:f0:31:09:eb:6c:05:ba:3e:62:c6:ae:95:92: a9:dd:59:e2:c3:2b:da:4e:8c:35:85:2c:d1:7c:51:ac:91:a0: 52:93:8d:4a:1d:ba:e2:db:f2:ad:1b:c5:01:4a:da:b3:21:14: b5:8b:a5:3a:fa:55:d0:6b:be:20:98:f4:6d:4c:18:63:eb:80: 29:d8:ff:b4:bc:ac:a9:f9:55:8b:aa:2e:51:28:10:23:13:d3: 0d:5d:6f:eb:0f:88:2d:03:b0:a9:ae:5d:7e:1c:6e:9e:b7:7a: 47:f3:8b:24:65:06:b8:04:df:63:91:40:93:9a:5c:55:ce:c0: 3d:1c:b9:65:14:2b:85:49:b1:00:c7:7b:30:b2:93:32:5d:d2: 15:8a:cd:6a:74:90:7d:d5:25:e0:41:59:ff:a9:36:cf:2f:dd: a3:e0:9a:92:a3:ca:c8:62:a4:ec:ff:bc:31:e3:8f:51:8c:4f: 3a:64:8b:56:6b:ad:a8:65:94:6c:41:66:c3:e6:9a:97:b3:c4: 5e:63:47:36:ef:ec:84:bd:97:e0:f0:b8:f1:99:6f:a9:9a:9b: 50:70:d5:eb:62:e2:25:48:35:ae:e1:64:58:a0:a0:2d:93:ea: ae:34:e8:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBskwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBDNUYxMTAvBgNVBAUTKEM5OTA1REU1MjQ4NkI5RUM0RUY4NzlBMDI2NDQ1Qzcw QjBGRDk1MDUwHhcNMjUwNjE0MTcyOTE4WhcNMjUwNjIxMTcyOTE4WjAYMRYwFAYD VQQDEw02ODRkYjE2ZS01Yjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuIQ6m1LmvbA/MlQNs1MRaLuLl7z7O2RT6YImiKxKsn3bx8M60NhmyLN5p4E4 /RgoxCaLt9yaVjGs7KnHKO59OJP2az4YdLPGmYzcASc8gnGyXqBVslMJgho6+Y3b R6Ry1uEdmgcpch5Z6YCV35swCdmov3DVhQpnySKKJPDWIT9kCJ2lGpIOCvi0JOUO GUKGyphgUpgGiBhXG4Wkt4GKnDwm+dHIwugEq7kH+3NIKXcd9wU31wvGPpW5Cfso 3/3WeyPU/13FCI2U5ONTbEGmIFYv+QpPFPjzYZVDOVDfjJRq3S0h/QdbEb8iK0Li qkj1bT2IyOyXFFSYnGI21NBNCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPr0Ivlr UB0mulpag7kU6HkjVeqdMB8GA1UdIwQYMBaAFMmQXeUkhrnsTvh5oCZEXHCw/ZUF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEM1Ri84QjU0N0E3MjY2 NjQxMUU5ODJEMDU5NzRDNEY5QUUwMi95WkJkNVNTR3VleE8tSG1nSmtSY2NMRDls UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3laQmQ1U1NHdWV4Ty1IbWdKa1JjY0xEOWxRVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEM1Ri84QjU0N0E3MjY2NjQxMUU5ODJEMDU5NzRDNEY5QUUwMi95WkJkNVNTR3Vl eE8tSG1nSmtSY2NMRDlsUVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqXUD9+VIn4HOryaqqrKLjkcMjfh7bcPAxCetsBbo+YsaulZKp3Vni wyvaTow1hSzRfFGskaBSk41KHbri2/KtG8UBStqzIRS1i6U6+lXQa74gmPRtTBhj 64Ap2P+0vKyp+VWLqi5RKBAjE9MNXW/rD4gtA7Cprl1+HG6et3pH84skZQa4BN9j kUCTmlxVzsA9HLllFCuFSbEAx3swspMyXdIVis1qdJB91SXgQVn/qTbPL92j4JqS o8rIYqTs/7wx449RjE86ZItWa62oZZRsQWbD5pqXs8ReY0c27+yEvZfg8LjxmW+p mptQcNXrYuIlSDWu4WRYoKAtk+quNOhs -----END CERTIFICATE-----Generated at Sat Jun 14 19:33:12 2025 by rpki-client