$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.mft File: _RYHGGNz6B9E0TeyoOlpV-YquKE.mft (raw, json) Hash identifier: Y0k799ZoeEJXaC9IELguaul6gMPlZ0JdAfEt6eSHOw8= Subject key identifier: E9:5F:12:6F:1C:E4:F9:83:24:FA:01:B5:63:34:28:47:BA:75:A7:54 Authority key identifier: FD:16:07:18:63:73:E8:1F:44:D1:37:B2:A0:E9:69:57:E6:2A:B8:A1 Certificate issuer: /CN=A91EA958/serialNumber=FD1607186373E81F44D137B2A0E96957E62AB8A1 Certificate serial: 34CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_RYHGGNz6B9E0TeyoOlpV-YquKE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.mft Manifest number: 34B0 Signing time: Sat 14 Jun 2025 15:01:31 +0000 Manifest this update: Sat 14 Jun 2025 15:01:30 +0000 Manifest next update: Sat 21 Jun 2025 15:01:30 +0000 Files and hashes: 1: _RYHGGNz6B9E0TeyoOlpV-YquKE.crl (hash: G9YKwwCnkFV8PlbP08uWdkkNrbX8nV64eJ1TlYUOH6Y=) 2: 5A7BB752BD2F11EBB84EE532C4F9AE02.roa (hash: BdwgkrEVvS7EaJMjyx021N1wHkcgwHBJVY8E6E534xQ=) 3: D347187A7E9511ECA9132A0BC4F9AE02.roa (hash: 4i/7LdEU/T1ZHgOr95PKDKNxvTm/ZtFlmP55xUeSbB0=) 4: 59F4A758BD2F11EBB84EE532C4F9AE02.roa (hash: c0Nj/EakD9jZWUmq6GYt4WJPzbB76p849p8VWNsKos4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.crl rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_RYHGGNz6B9E0TeyoOlpV-YquKE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13517 (0x34cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA958, serialNumber=FD1607186373E81F44D137B2A0E96957E62AB8A1 Validity Not Before: Jun 14 15:01:30 2025 GMT Not After : Jun 21 15:01:30 2025 GMT Subject: CN=684d8eca-aca9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a2:7b:1c:5c:42:d2:74:c0:9d:b3:9c:08:70: d7:be:54:20:8d:bb:dc:a6:01:0a:c0:c2:8f:ee:5d: 18:81:8f:ab:0c:b6:c6:1a:21:c9:41:37:1d:05:5e: bb:3a:62:29:d5:20:90:cd:18:f6:70:99:cd:95:41: 7f:3c:95:6f:9d:51:3b:15:e0:4c:9b:47:0f:ec:78: c1:98:33:c5:b1:09:17:35:a1:c8:7f:68:93:5c:3e: 6c:d6:81:ce:62:d2:c3:79:4f:b1:13:80:f6:4f:75: b5:5e:69:84:60:8f:0f:b3:89:91:7e:9e:f0:24:ad: d3:b7:e3:42:70:fc:af:d3:b7:3f:b4:c8:ef:1b:a2: eb:ce:06:34:06:60:af:c4:4c:bf:6a:e6:6e:85:64: e1:dd:0f:c7:75:7d:33:f3:8b:4d:6c:22:9f:4f:0a: 44:fb:05:be:f1:c2:bf:5d:10:a7:d9:f1:21:30:cd: 4b:87:6d:96:c5:5e:1c:8e:16:32:e6:13:de:59:5e: 78:a0:ee:4a:10:8c:ff:f8:f7:8a:72:c7:e9:1d:e7: 56:8b:ba:7b:0b:e7:bb:da:28:80:c0:5c:d3:4e:c0: 4b:36:0e:7f:5d:c7:f2:45:ce:c7:2a:92:95:60:94: f3:77:ce:fc:42:ea:05:8c:23:f8:f5:a8:3a:97:5c: 2e:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:5F:12:6F:1C:E4:F9:83:24:FA:01:B5:63:34:28:47:BA:75:A7:54 X509v3 Authority Key Identifier: keyid:FD:16:07:18:63:73:E8:1F:44:D1:37:B2:A0:E9:69:57:E6:2A:B8:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_RYHGGNz6B9E0TeyoOlpV-YquKE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:77:f0:dd:60:21:44:2b:38:9e:da:d3:d7:f6:08:d4:50:49: 7c:77:da:66:0e:28:c7:7b:97:d8:b4:65:5d:c7:d6:e0:d5:1c: 9e:7b:47:1f:aa:d0:b9:b7:11:b2:64:de:eb:a7:3f:ff:7a:fe: 83:57:93:28:ee:fe:3a:25:53:ee:4e:ff:02:4a:73:d0:8c:04: 76:cb:e2:ed:78:83:e7:d3:88:b0:80:f4:5b:03:20:76:e2:22: b1:d3:3b:90:35:ac:f3:ca:a3:ad:ca:6f:01:6d:6d:30:4c:04: b5:d5:b9:e5:e9:7d:d8:6d:ea:82:bf:86:72:5f:56:ad:ff:47: 9d:5c:d0:c3:c5:46:f6:06:4c:91:f3:1b:d6:5b:85:c9:73:ef: 89:df:c5:21:45:8b:09:57:69:98:a7:8f:4b:df:91:55:c8:d3: 49:f0:15:5e:a4:7f:de:8d:4b:d0:92:65:2f:6d:7a:55:13:36: 70:60:9c:35:e3:48:6f:d0:6f:0b:6e:56:43:e6:da:25:02:a3: e2:5c:80:d5:ca:0c:45:34:66:6d:75:99:ae:0c:26:e0:88:70: 38:aa:b9:99:9d:ef:3b:c0:97:3a:46:72:55:d2:24:47:d6:f0: 6c:85:f4:d4:cb:cd:68:1b:f6:5d:86:d6:fc:17:88:e4:85:9b: 92:77:e9:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5NTgxMTAvBgNVBAUTKEZEMTYwNzE4NjM3M0U4MUY0NEQxMzdCMkEwRTk2OTU3 RTYyQUI4QTEwHhcNMjUwNjE0MTUwMTMwWhcNMjUwNjIxMTUwMTMwWjAYMRYwFAYD VQQDEw02ODRkOGVjYS1hY2E5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsqJ7HFxC0nTAnbOcCHDXvlQgjbvcpgEKwMKP7l0YgY+rDLbGGiHJQTcdBV67 OmIp1SCQzRj2cJnNlUF/PJVvnVE7FeBMm0cP7HjBmDPFsQkXNaHIf2iTXD5s1oHO YtLDeU+xE4D2T3W1XmmEYI8Ps4mRfp7wJK3Tt+NCcPyv07c/tMjvG6LrzgY0BmCv xEy/auZuhWTh3Q/HdX0z84tNbCKfTwpE+wW+8cK/XRCn2fEhMM1Lh22WxV4cjhYy 5hPeWV54oO5KEIz/+PeKcsfpHedWi7p7C+e72iiAwFzTTsBLNg5/XcfyRc7HKpKV YJTzd878QuoFjCP49ag6l1wukwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOlfEm8c 5PmDJPoBtWM0KEe6dadUMB8GA1UdIwQYMBaAFP0WBxhjc+gfRNE3sqDpaVfmKrih MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTk1OC81QUUxOTdGNDFE OUYxMUUyQkNCRkY3OEYwOEIwMkNEMi9fUllIR0dOejZCOUUwVGV5b09scFYtWXF1 S0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19SWUhHR056NkI5RTBUZXlvT2xwVi1ZcXVLRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTk1OC81QUUxOTdGNDFEOUYxMUUyQkNCRkY3OEYwOEIwMkNEMi9fUllIR0dOejZC OUUwVGV5b09scFYtWXF1S0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAid/DdYCFEKzie2tPX9gjUUEl8d9pmDijHe5fYtGVdx9bg1Ryee0cf qtC5txGyZN7rpz//ev6DV5Mo7v46JVPuTv8CSnPQjAR2y+LteIPn04iwgPRbAyB2 4iKx0zuQNazzyqOtym8BbW0wTAS11bnl6X3YbeqCv4ZyX1at/0edXNDDxUb2BkyR 8xvWW4XJc++J38UhRYsJV2mYp49L35FVyNNJ8BVepH/ejUvQkmUvbXpVEzZwYJw1 40hv0G8LblZD5tolAqPiXIDVygxFNGZtdZmuDCbgiHA4qrmZne87wJc6RnJV0iRH 1vBshfTUy81oG/Zdhtb8F4jkhZuSd+nu -----END CERTIFICATE-----Generated at Sat Jun 14 19:14:21 2025 by rpki-client