$ rpki-client -vvf rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.mft File: 0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.mft (raw, json) Hash identifier: SI8Iv1g2wybwgxZkNUmn+WTK/k2MDwVwZstkMaTKFjo= Subject key identifier: E0:81:19:64:C0:4B:D2:C3:94:70:14:6D:B7:98:89:54:C3:25:EE:BE Authority key identifier: D1:8F:98:A4:1C:0A:DC:8C:81:84:B8:26:A7:1F:3E:F2:7F:19:53:23 Certificate issuer: /CN=A91F1B39/serialNumber=D18F98A41C0ADC8C8184B826A71F3EF27F195323 Certificate serial: 01FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.mft Manifest number: 01F9 Signing time: Thu 19 Jun 2025 01:52:20 +0000 Manifest this update: Thu 19 Jun 2025 01:52:19 +0000 Manifest next update: Thu 26 Jun 2025 01:52:19 +0000 Files and hashes: 1: 0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.crl (hash: hEzAn9yiOb47S33vjZLhiURnrkylPp5awxlpj0hryM8=) 2: C18E7856446C11EDA55DB951C4F9AE02.roa (hash: AKVXd/DH9YanLRhXJZMqC5LiMXYq5bZo14nqm8XdwR0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.crl rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 01:52:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 508 (0x1fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F1B39, serialNumber=D18F98A41C0ADC8C8184B826A71F3EF27F195323 Validity Not Before: Jun 19 01:52:19 2025 GMT Not After : Jun 26 01:52:19 2025 GMT Subject: CN=68536d53-8b83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:bd:97:b2:0c:24:99:89:f1:e3:60:e4:a3:71: 85:ee:63:b5:13:b2:ab:de:88:50:eb:68:b9:0e:6a: b1:35:09:7c:66:42:c9:33:27:83:26:50:cb:3e:a2: d3:89:70:90:f4:bc:3a:ad:0f:3e:1c:54:e5:d7:d4: 36:a7:0d:bb:18:11:83:f9:23:c3:cb:c1:80:c8:fe: 22:1e:b4:04:9a:6a:7e:c3:71:65:7f:53:e1:6f:66: f8:93:b2:f4:0c:26:90:b4:12:bf:b3:46:75:0f:49: c9:0c:09:ab:b0:f8:48:94:f1:f3:85:0c:da:db:1e: 94:0e:ac:0e:39:ef:7e:5b:ff:bf:11:32:e1:89:db: e7:eb:40:6c:40:60:26:c1:4c:5a:3e:e6:90:e6:79: bf:92:e5:c3:4a:6b:7c:d0:ba:26:bc:2f:d1:06:d9: a5:fc:73:2b:26:c2:38:db:a2:43:72:42:14:64:39: 20:50:e5:ae:14:4d:91:5e:42:26:78:1b:3b:0f:89: 45:ca:64:91:25:c7:00:8b:aa:77:03:04:78:7b:af: d7:ab:a4:aa:8c:99:73:0f:5d:16:14:ac:10:34:19: 8e:fc:4d:e0:8b:ac:7d:ef:be:d2:c2:d5:be:3c:73: 3a:35:92:15:b4:f9:f9:d5:6c:f1:57:e7:c6:05:91: 34:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:81:19:64:C0:4B:D2:C3:94:70:14:6D:B7:98:89:54:C3:25:EE:BE X509v3 Authority Key Identifier: keyid:D1:8F:98:A4:1C:0A:DC:8C:81:84:B8:26:A7:1F:3E:F2:7F:19:53:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:93:3b:e1:ee:b3:3a:cd:11:3f:cb:99:3f:22:c5:1c:60:84: 5c:dd:d4:42:7b:35:b5:0e:2a:26:66:26:63:fa:9c:23:7a:c1: 3c:2b:9c:3e:99:d3:22:9a:87:8a:d1:a9:67:9e:a1:2e:fa:35: 53:a9:d8:f9:40:c6:de:05:bd:b2:e7:ec:f7:88:73:39:7f:01: b9:fb:4c:64:b6:44:dc:ea:b0:72:23:e6:2d:e2:49:37:34:cc: 17:d2:f1:ad:db:f4:8c:88:62:93:13:35:12:6a:78:5a:0b:2d: e6:0f:7c:08:14:18:ba:96:41:43:fb:07:1f:12:d7:ac:a4:84: 9d:f6:39:32:4a:63:d1:b8:69:89:8d:95:c6:5d:e5:7a:7c:fa: d9:c8:b8:c0:ee:33:bc:d0:99:0e:5b:aa:bb:9c:8a:34:39:b5: 1d:02:24:b1:41:0c:2e:5b:ad:d2:b1:13:b2:3b:ec:bd:dc:d8: 76:61:0f:39:83:97:e5:d4:14:a0:2b:1d:6a:48:40:e7:3b:6e: e5:3d:41:6b:dd:a8:9f:6f:b7:21:cc:bf:1e:91:ae:2d:e3:bd: 7a:f9:3c:1c:7d:17:0f:5f:34:b8:65:3f:30:6a:88:b3:8e:7e: 60:e5:91:4a:d2:a2:0a:19:2c:62:00:8a:6f:1c:fd:96:25:38: 13:a3:d5:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjFCMzkxMTAvBgNVBAUTKEQxOEY5OEE0MUMwQURDOEM4MTg0QjgyNkE3MUYzRUYy N0YxOTUzMjMwHhcNMjUwNjE5MDE1MjE5WhcNMjUwNjI2MDE1MjE5WjAYMRYwFAYD VQQDEw02ODUzNmQ1My04YjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv72XsgwkmYnx42Dko3GF7mO1E7Kr3ohQ62i5DmqxNQl8ZkLJMyeDJlDLPqLT iXCQ9Lw6rQ8+HFTl19Q2pw27GBGD+SPDy8GAyP4iHrQEmmp+w3Flf1Phb2b4k7L0 DCaQtBK/s0Z1D0nJDAmrsPhIlPHzhQza2x6UDqwOOe9+W/+/ETLhidvn60BsQGAm wUxaPuaQ5nm/kuXDSmt80LomvC/RBtml/HMrJsI426JDckIUZDkgUOWuFE2RXkIm eBs7D4lFymSRJccAi6p3AwR4e6/Xq6SqjJlzD10WFKwQNBmO/E3gi6x9777SwtW+ PHM6NZIVtPn51WzxV+fGBZE0/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOCBGWTA S9LDlHAUbbeYiVTDJe6+MB8GA1UdIwQYMBaAFNGPmKQcCtyMgYS4JqcfPvJ/GVMj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMUIzOS9CNzY5OUQyQzQ0 NjkxMUVEQkU0RTc5NENDNEY5QUUwMi8wWS1ZcEJ3SzNJeUJoTGdtcHg4LThuOFpV eU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBZLVlwQndLM0l5QmhMZ21weDgtOG44WlV5TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MUIzOS9CNzY5OUQyQzQ0NjkxMUVEQkU0RTc5NENDNEY5QUUwMi8wWS1ZcEJ3SzNJ eUJoTGdtcHg4LThuOFpVeU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPkzvh7rM6zRE/y5k/IsUcYIRc3dRCezW1DiomZiZj+pwjesE8K5w+ mdMimoeK0alnnqEu+jVTqdj5QMbeBb2y5+z3iHM5fwG5+0xktkTc6rByI+Yt4kk3 NMwX0vGt2/SMiGKTEzUSanhaCy3mD3wIFBi6lkFD+wcfEtespISd9jkySmPRuGmJ jZXGXeV6fPrZyLjA7jO80JkOW6q7nIo0ObUdAiSxQQwuW63SsROyO+y93Nh2YQ85 g5fl1BSgKx1qSEDnO27lPUFr3aifb7chzL8eka4t4716+TwcfRcPXzS4ZT8waoiz jn5g5ZFK0qIKGSxiAIpvHP2WJTgTo9VB -----END CERTIFICATE-----Generated at Fri Jun 20 23:48:54 2025 by rpki-client