$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft File: yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft (raw, json) Hash identifier: AYHSwi3hw05aAzs8XOOHz6gh5eKNVb3BxKV/XKbO2Mw= Subject key identifier: 0B:01:00:97:1C:E7:4D:23:F6:19:2C:6D:2E:EF:85:0A:5F:6F:2A:C9 Authority key identifier: C8:07:0F:D0:61:A8:51:FF:8A:ED:E0:DE:0C:36:07:EE:B9:8F:F7:01 Certificate issuer: /CN=A91E4D3D/serialNumber=C8070FD061A851FF8AEDE0DE0C3607EEB98FF701 Certificate serial: 05CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft Manifest number: 05B4 Signing time: Mon 16 Jun 2025 22:52:17 +0000 Manifest this update: Mon 16 Jun 2025 22:52:16 +0000 Manifest next update: Mon 23 Jun 2025 22:52:16 +0000 Files and hashes: 1: yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl (hash: 3a9FHohW5A90+KU5Xvr/O/Co8vnnvCuZvY9k+414y+Y=) 2: 5FA1BF8802DD11EE86865A23C4F9AE02.roa (hash: ui8GmB9i/5pnYfd6MeCxTJj3Yjz4hQKs4XNWYMcqflM=) 3: 3003C4BA7C7711EEB9E0BE15C4F9AE02.roa (hash: FX6/INAAxmVV6MV0dP0BtJ9vR4DsIyY73KLXsHsumSU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 22:52:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1486 (0x5ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D3D, serialNumber=C8070FD061A851FF8AEDE0DE0C3607EEB98FF701 Validity Not Before: Jun 16 22:52:16 2025 GMT Not After : Jun 23 22:52:16 2025 GMT Subject: CN=6850a021-a324 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:9c:24:9e:0a:a0:8d:40:26:fd:54:40:14:ba: 3b:5f:15:00:6a:9f:03:89:79:0f:6a:dd:84:8c:fb: 05:d0:ff:0c:0c:51:94:8f:1c:d3:00:9e:58:ce:d2: 98:0a:10:82:46:5a:34:09:b8:05:54:b5:24:67:7d: 0b:af:1d:fc:38:d5:24:b1:bb:ce:fb:44:cd:d1:89: 90:68:66:d3:ae:92:f3:bd:82:0e:e2:af:92:86:2e: c1:94:52:03:ba:0b:e2:c0:fa:7c:d6:97:82:e5:3f: 99:ac:8d:b2:b1:cc:f9:4f:e3:d8:69:5b:82:be:69: 83:ed:44:a5:0a:bf:88:5f:c6:16:b3:b9:f8:d0:ea: 6e:b0:ab:3e:30:91:f3:31:1c:d8:11:56:80:0b:8e: ed:d2:39:d4:7c:6f:6e:35:a2:82:21:96:33:9f:dc: d3:95:04:7e:1e:e1:9c:3f:fc:4d:5d:1e:fa:10:2e: 58:2d:fd:13:31:97:fb:c7:92:e8:fd:a3:4f:2d:c3: 71:55:1f:de:bb:89:9f:e5:10:64:7b:4d:e6:3a:da: 3e:3e:a1:ab:a3:e5:a6:92:c2:09:71:15:f9:1c:0b: 77:17:c9:43:e4:26:47:e0:29:d6:fa:4e:d4:8a:73: f9:ed:64:b5:8e:f3:8e:c0:0c:39:d4:94:1a:2c:16: 38:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:01:00:97:1C:E7:4D:23:F6:19:2C:6D:2E:EF:85:0A:5F:6F:2A:C9 X509v3 Authority Key Identifier: keyid:C8:07:0F:D0:61:A8:51:FF:8A:ED:E0:DE:0C:36:07:EE:B9:8F:F7:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:e3:c3:0c:33:86:cf:d2:a0:21:fa:99:7e:20:ca:b3:7a:e5: c1:ca:e0:ae:fe:14:ab:c6:9e:72:b5:0e:d3:b7:55:83:18:0c: 33:6f:23:bf:8c:5b:47:5d:7b:55:df:f1:d2:79:a3:b8:b0:b5: c3:ac:5e:26:2b:11:58:83:f5:f5:51:93:c6:ca:b9:a8:41:c8: 45:e0:1a:11:b5:d2:30:88:fa:91:98:91:a1:f0:3b:3f:0f:52: 1a:3f:dd:c8:c8:df:44:2d:db:97:a4:f0:dd:86:ca:a4:33:dc: 39:59:59:dc:30:79:5a:ba:ed:42:90:63:21:2a:39:ec:c0:cf: 49:3e:ba:f3:57:43:48:78:8e:a0:ee:e7:fe:b7:cc:67:d0:25: f4:fe:88:39:fd:7f:8f:07:d8:3e:34:89:49:b1:10:1a:9a:15: f9:f7:70:a4:95:f8:ef:f9:b5:4e:a2:06:5b:30:63:a0:98:29: 6c:3b:4c:75:ab:6c:51:ee:b1:ad:16:99:c9:2a:e7:b1:5b:bf: e2:50:21:d5:f6:f7:59:03:bd:af:0b:6b:dd:73:3c:63:e7:01: cb:b5:65:8f:54:df:23:69:54:02:08:bf:d4:f6:88:21:e9:90: 5a:e0:97:22:56:74:8b:80:91:eb:a4:22:5f:cf:cb:bb:08:39: 71:ad:27:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBc4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREM0QxMTAvBgNVBAUTKEM4MDcwRkQwNjFBODUxRkY4QUVERTBERTBDMzYwN0VF Qjk4RkY3MDEwHhcNMjUwNjE2MjI1MjE2WhcNMjUwNjIzMjI1MjE2WjAYMRYwFAYD VQQDEw02ODUwYTAyMS1hMzI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ZwkngqgjUAm/VRAFLo7XxUAap8DiXkPat2EjPsF0P8MDFGUjxzTAJ5YztKY ChCCRlo0CbgFVLUkZ30Lrx38ONUksbvO+0TN0YmQaGbTrpLzvYIO4q+Shi7BlFID ugviwPp81peC5T+ZrI2yscz5T+PYaVuCvmmD7USlCr+IX8YWs7n40OpusKs+MJHz MRzYEVaAC47t0jnUfG9uNaKCIZYzn9zTlQR+HuGcP/xNXR76EC5YLf0TMZf7x5Lo /aNPLcNxVR/eu4mf5RBke03mOto+PqGro+WmksIJcRX5HAt3F8lD5CZH4CnW+k7U inP57WS1jvOOwAw51JQaLBY4uQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAsBAJcc 500j9hksbS7vhQpfbyrJMB8GA1UdIwQYMBaAFMgHD9BhqFH/iu3g3gw2B+65j/cB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQzRC9CMDIwMkQzMkQ4 QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi95QWNQMEdHb1VmLUs3ZURlRERZSDdybVA5 d0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lBY1AwR0dvVWYtSzdlRGVERFlIN3JtUDl3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEQzRC9CMDIwMkQzMkQ4QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi95QWNQMEdHb1Vm LUs3ZURlRERZSDdybVA5d0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAR48MMM4bP0qAh+pl+IMqzeuXByuCu/hSrxp5ytQ7Tt1WDGAwzbyO/ jFtHXXtV3/HSeaO4sLXDrF4mKxFYg/X1UZPGyrmoQchF4BoRtdIwiPqRmJGh8Ds/ D1IaP93IyN9ELduXpPDdhsqkM9w5WVncMHlauu1CkGMhKjnswM9JPrrzV0NIeI6g 7uf+t8xn0CX0/og5/X+PB9g+NIlJsRAamhX593Cklfjv+bVOogZbMGOgmClsO0x1 q2xR7rGtFpnJKuexW7/iUCHV9vdZA72vC2vdczxj5wHLtWWPVN8jaVQCCL/U9ogh 6ZBa4JciVnSLgJHrpCJfz8u7CDlxrSc9 -----END CERTIFICATE-----Generated at Wed Jun 18 08:18:24 2025 by rpki-client