$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4294/0CB5EAFAAEBE11E980FB4E63C4F9AE02/Y19XnOBVlw4BocO3dQIcjj4ieIc.mft File: Y19XnOBVlw4BocO3dQIcjj4ieIc.mft (raw, json) Hash identifier: uopEd5u4LXBFKCfeSnMNRNUO6YU0FwWCfegida52yLs= Subject key identifier: 9A:0E:70:14:5D:EE:5F:9C:8D:43:B7:6B:3A:11:57:26:B8:F0:F8:F6 Authority key identifier: 63:5F:57:9C:E0:55:97:0E:01:A1:C3:B7:75:02:1C:8E:3E:22:78:87 Certificate issuer: /CN=A91F4294/serialNumber=635F579CE055970E01A1C3B775021C8E3E227887 Certificate serial: 0E05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y19XnOBVlw4BocO3dQIcjj4ieIc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4294/0CB5EAFAAEBE11E980FB4E63C4F9AE02/Y19XnOBVlw4BocO3dQIcjj4ieIc.mft Manifest number: 0DFD Signing time: Thu 12 Jun 2025 17:43:47 +0000 Manifest this update: Thu 12 Jun 2025 17:43:46 +0000 Manifest next update: Thu 19 Jun 2025 17:43:46 +0000 Files and hashes: 1: Y19XnOBVlw4BocO3dQIcjj4ieIc.crl (hash: V9bykv7bV4e969XBVIh6q9+YVHV+8CMPH25bua8htZ0=) 2: 1E018994AEBF11E993F33C65C4F9AE02.roa (hash: VAz7Q8OmwNVtqjw21t41eYyn3+glN8lqbyiXL2P+yek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4294/0CB5EAFAAEBE11E980FB4E63C4F9AE02/Y19XnOBVlw4BocO3dQIcjj4ieIc.crl rsync://rpki.apnic.net/member_repository/A91F4294/0CB5EAFAAEBE11E980FB4E63C4F9AE02/Y19XnOBVlw4BocO3dQIcjj4ieIc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y19XnOBVlw4BocO3dQIcjj4ieIc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 17:43:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3589 (0xe05) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4294, serialNumber=635F579CE055970E01A1C3B775021C8E3E227887 Validity Not Before: Jun 12 17:43:46 2025 GMT Not After : Jun 19 17:43:46 2025 GMT Subject: CN=684b11d2-2e5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:8a:8a:4b:e0:e0:26:f9:7b:4d:60:34:f5:3a: 9e:19:91:ef:90:f4:de:90:d0:f9:45:10:4a:ab:06: 95:d7:55:08:ba:c3:8d:58:d5:c2:23:f4:96:26:5a: 9e:d3:ce:87:6c:e0:53:32:e2:c4:47:64:ad:f0:08: ce:d9:9e:93:8b:d1:fe:58:6e:7f:8c:71:b7:57:9b: 3c:e2:1a:17:0f:96:cd:22:67:8c:a8:ca:7e:65:13: 4f:e6:a9:d3:e0:8b:bd:bf:43:63:fb:b9:14:a1:cc: 12:96:38:78:4b:bf:4b:13:0d:a8:d4:2f:24:86:33: 66:52:74:24:ec:09:86:7e:34:7e:e7:cd:05:6a:2a: ca:fd:a1:cc:4f:90:2a:f7:6e:17:dd:8a:e1:96:81: a3:17:a4:dc:93:64:80:4e:da:49:b8:7f:88:37:f4: 9a:95:cc:0c:93:71:53:d9:e7:86:c9:71:85:91:62: e7:e7:52:30:2a:00:1d:64:d1:83:cc:a0:e4:66:b5: a6:67:e9:5a:d5:7d:5d:c9:8b:fc:3c:16:70:2b:e6: 47:02:1a:05:1c:fb:98:94:38:05:2c:71:7c:87:20: 99:c8:40:21:dd:48:73:4b:f5:34:8f:1f:3c:58:66: 68:08:a5:cf:91:45:d6:c7:58:3e:40:c1:d4:38:a1: fd:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:0E:70:14:5D:EE:5F:9C:8D:43:B7:6B:3A:11:57:26:B8:F0:F8:F6 X509v3 Authority Key Identifier: keyid:63:5F:57:9C:E0:55:97:0E:01:A1:C3:B7:75:02:1C:8E:3E:22:78:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4294/0CB5EAFAAEBE11E980FB4E63C4F9AE02/Y19XnOBVlw4BocO3dQIcjj4ieIc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y19XnOBVlw4BocO3dQIcjj4ieIc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4294/0CB5EAFAAEBE11E980FB4E63C4F9AE02/Y19XnOBVlw4BocO3dQIcjj4ieIc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:6d:5a:60:63:e6:b6:23:dd:9a:0d:e5:c6:93:89:ba:a4:43: bd:ef:11:20:77:3a:bc:52:19:84:e3:14:ef:7c:88:1e:0b:8b: a2:d7:21:af:f3:23:ff:9e:1c:d4:c7:e8:ae:c4:7f:84:46:eb: 04:20:f3:32:3e:40:2d:61:00:b4:94:64:47:f0:7e:cb:30:a7: 5f:ab:e5:a2:4d:39:4e:78:e2:07:86:6e:09:b6:c8:32:5e:c2: 58:f5:51:91:0b:87:59:72:55:86:0f:b6:9c:df:53:42:4d:0f: 50:bb:f1:9c:13:87:01:c8:f3:c2:a1:ee:4f:cc:69:8a:69:69: 24:36:fe:99:56:58:f4:64:80:80:0b:dc:c4:70:a3:a3:7a:6a: e7:a2:41:da:7a:de:26:2f:5c:0d:67:8e:52:58:db:81:7c:72: e1:1a:25:1b:20:c7:1d:34:8c:55:9d:5a:52:4d:36:fb:0b:24: 36:81:67:8e:e0:c2:2b:ac:50:93:68:87:a0:7c:ca:7c:f1:c1: 5a:ec:3e:6a:15:a5:4a:83:43:48:c6:6b:09:0d:ad:54:ac:cd: ed:d9:83:d4:ea:d7:22:9e:8d:b5:73:1f:bb:56:09:9d:39:c0: 6e:54:f3:1b:d4:b8:26:10:3b:40:1c:e3:67:94:1f:c3:05:b7: 03:82:af:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDgUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQyOTQxMTAvBgNVBAUTKDYzNUY1NzlDRTA1NTk3MEUwMUExQzNCNzc1MDIxQzhF M0UyMjc4ODcwHhcNMjUwNjEyMTc0MzQ2WhcNMjUwNjE5MTc0MzQ2WjAYMRYwFAYD VQQDEw02ODRiMTFkMi0yZTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA04qKS+DgJvl7TWA09TqeGZHvkPTekND5RRBKqwaV11UIusONWNXCI/SWJlqe 086HbOBTMuLER2St8AjO2Z6Ti9H+WG5/jHG3V5s84hoXD5bNImeMqMp+ZRNP5qnT 4Iu9v0Nj+7kUocwSljh4S79LEw2o1C8khjNmUnQk7AmGfjR+580FairK/aHMT5Aq 924X3YrhloGjF6Tck2SATtpJuH+IN/SalcwMk3FT2eeGyXGFkWLn51IwKgAdZNGD zKDkZrWmZ+la1X1dyYv8PBZwK+ZHAhoFHPuYlDgFLHF8hyCZyEAh3UhzS/U0jx88 WGZoCKXPkUXWx1g+QMHUOKH9+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJoOcBRd 7l+cjUO3azoRVya48Pj2MB8GA1UdIwQYMBaAFGNfV5zgVZcOAaHDt3UCHI4+IniH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDI5NC8wQ0I1RUFGQUFF QkUxMUU5ODBGQjRFNjNDNEY5QUUwMi9ZMTlYbk9CVmx3NEJvY08zZFFJY2pqNGll SWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kxOVhuT0JWbHc0Qm9jTzNkUUljamo0aWVJYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDI5NC8wQ0I1RUFGQUFFQkUxMUU5ODBGQjRFNjNDNEY5QUUwMi9ZMTlYbk9CVmx3 NEJvY08zZFFJY2pqNGllSWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0bVpgY+a2I92aDeXGk4m6pEO97xEgdzq8UhmE4xTvfIgeC4ui1yGv 8yP/nhzUx+iuxH+ERusEIPMyPkAtYQC0lGRH8H7LMKdfq+WiTTlOeOIHhm4Jtsgy XsJY9VGRC4dZclWGD7ac31NCTQ9Qu/GcE4cByPPCoe5PzGmKaWkkNv6ZVlj0ZICA C9zEcKOjemrnokHaet4mL1wNZ45SWNuBfHLhGiUbIMcdNIxVnVpSTTb7CyQ2gWeO 4MIrrFCTaIegfMp88cFa7D5qFaVKg0NIxmsJDa1UrM3t2YPU6tcino21cx+7Vgmd OcBuVPMb1LgmEDtAHONnlB/DBbcDgq+U -----END CERTIFICATE-----Generated at Sat Jun 14 18:54:01 2025 by rpki-client