$ rpki-client -vvf rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.mft File: YZBA6DW609z1wgE5bYVxmVp6zFA.mft (raw, json) Hash identifier: DfsrUmzhWSzmeHRAeKBztjmj3RUAH2kBXY4QRsmiX/U= Subject key identifier: DD:3D:66:93:96:9C:41:E4:F0:29:F8:2A:6B:C3:F3:34:B8:09:11:B6 Authority key identifier: 61:90:40:E8:35:BA:D3:DC:F5:C2:01:39:6D:85:71:99:5A:7A:CC:50 Certificate issuer: /CN=A91FABEF/serialNumber=619040E835BAD3DCF5C201396D8571995A7ACC50 Certificate serial: 0103 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YZBA6DW609z1wgE5bYVxmVp6zFA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.mft Manifest number: FF Signing time: Thu 19 Jun 2025 04:33:09 +0000 Manifest this update: Thu 19 Jun 2025 04:33:09 +0000 Manifest next update: Thu 26 Jun 2025 04:33:09 +0000 Files and hashes: 1: YZBA6DW609z1wgE5bYVxmVp6zFA.crl (hash: hDoCJBS7cguI0ERXWsK1b+IB43tQwvMiw9Ync+qrBfY=) 2: 8045E9A4CEEC11EEAFFC5E36C4F9AE02.roa (hash: QQ0CP8HHmI7PCShWjhNg26xSyERliRPL6u4e6U+9a/k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.crl rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YZBA6DW609z1wgE5bYVxmVp6zFA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 259 (0x103) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FABEF, serialNumber=619040E835BAD3DCF5C201396D8571995A7ACC50 Validity Not Before: Jun 19 04:33:09 2025 GMT Not After : Jun 26 04:33:09 2025 GMT Subject: CN=68539305-da64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:71:96:b8:e3:47:a0:1c:74:ad:f0:99:1b:be: f5:77:e4:4d:d9:da:97:85:ef:52:ca:6f:d2:88:f7: 84:0c:5a:cf:c2:63:dc:9d:36:46:50:c4:48:ac:bd: ec:01:18:a2:ff:fb:b2:41:f9:0b:b1:02:39:e3:6d: d2:4c:b6:ae:d9:aa:f8:18:eb:2a:0f:b4:4d:61:5d: 62:3e:68:7c:65:ef:1a:d5:30:ff:b9:7c:19:a7:d1: 53:a8:9b:20:fb:e2:83:e8:4a:ef:1d:03:3c:72:b5: af:06:56:50:b7:ba:e3:18:57:95:6c:72:a8:12:6d: 69:ac:30:20:8d:63:ac:98:8e:46:c4:5d:c5:31:d6: f0:70:a9:7b:be:1d:9c:de:93:d2:05:14:32:35:0e: f9:eb:8f:31:0b:29:0a:72:11:d4:44:af:04:12:00: a1:6f:9c:a0:90:72:67:b5:b1:8f:af:46:05:66:81: e2:c8:93:f1:48:84:09:81:94:11:16:d5:fa:99:09: 27:b6:48:eb:13:66:a5:6c:72:b1:ac:fc:9e:4b:52: 57:37:a3:64:12:b1:a7:7c:7d:a5:0d:63:eb:77:c7: 05:fd:12:f8:0c:77:78:bf:44:e6:0e:1a:23:35:7f: 01:ce:a4:40:18:86:80:c5:2a:fd:27:c6:9c:d7:55: 20:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:3D:66:93:96:9C:41:E4:F0:29:F8:2A:6B:C3:F3:34:B8:09:11:B6 X509v3 Authority Key Identifier: keyid:61:90:40:E8:35:BA:D3:DC:F5:C2:01:39:6D:85:71:99:5A:7A:CC:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YZBA6DW609z1wgE5bYVxmVp6zFA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:93:d0:fe:cf:5f:b5:38:a6:98:87:4a:8f:87:13:10:dc:53: 6b:14:9c:11:4c:5a:08:ec:e5:bf:83:40:af:7d:40:df:dc:f5: 08:56:7b:7d:3d:50:20:79:8d:04:3e:4f:1a:18:68:36:f4:dc: a1:6f:3a:4d:43:4d:df:13:fe:36:71:21:bc:ed:60:e7:5a:da: 5a:f7:07:48:a2:24:21:3b:3d:43:bf:88:cb:d8:71:22:c2:aa: fd:24:20:39:57:0e:7e:7c:82:39:ef:cb:c0:df:58:fb:80:f1: 0e:2a:09:64:b3:1f:5e:a3:f5:9c:b8:e5:cf:7c:f3:47:a2:c7: 25:43:ea:d1:8b:f7:3d:60:17:54:34:ff:a0:28:1d:c5:0c:b0: e8:95:b2:85:dd:5e:cb:0a:84:04:f5:5f:0a:a4:bd:9c:63:47: b2:94:05:fb:5e:6c:9f:a7:8d:cb:f9:5b:89:33:d9:ef:09:2d: 8c:6d:76:35:62:af:41:21:e1:9f:0a:98:15:fb:d3:5c:f2:e1: 0e:7a:46:c8:3c:37:9c:4f:91:23:3a:08:97:d6:b5:1a:67:aa: 42:b5:a3:95:79:b5:30:9c:21:05:30:fd:fd:3d:ae:9c:d1:49: 9f:e1:53:fd:0f:9e:3d:8f:ee:f5:39:c2:a5:91:99:a4:50:2d: fc:ba:4a:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFCRUYxMTAvBgNVBAUTKDYxOTA0MEU4MzVCQUQzRENGNUMyMDEzOTZEODU3MTk5 NUE3QUNDNTAwHhcNMjUwNjE5MDQzMzA5WhcNMjUwNjI2MDQzMzA5WjAYMRYwFAYD VQQDEw02ODUzOTMwNS1kYTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA43GWuONHoBx0rfCZG771d+RN2dqXhe9Sym/SiPeEDFrPwmPcnTZGUMRIrL3s ARii//uyQfkLsQI5423STLau2ar4GOsqD7RNYV1iPmh8Ze8a1TD/uXwZp9FTqJsg ++KD6ErvHQM8crWvBlZQt7rjGFeVbHKoEm1prDAgjWOsmI5GxF3FMdbwcKl7vh2c 3pPSBRQyNQ75648xCykKchHURK8EEgChb5ygkHJntbGPr0YFZoHiyJPxSIQJgZQR FtX6mQkntkjrE2albHKxrPyeS1JXN6NkErGnfH2lDWPrd8cF/RL4DHd4v0TmDhoj NX8BzqRAGIaAxSr9J8ac11UglQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN09ZpOW nEHk8Cn4KmvD8zS4CRG2MB8GA1UdIwQYMBaAFGGQQOg1utPc9cIBOW2FcZlaesxQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUJFRi9DMDc2NDU3MkNC MTkxMUVFODE1RkFCNjhDNEY5QUUwMi9ZWkJBNkRXNjA5ejF3Z0U1YllWeG1WcDZ6 RkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1laQkE2RFc2MDl6MXdnRTViWVZ4bVZwNnpGQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUJFRi9DMDc2NDU3MkNCMTkxMUVFODE1RkFCNjhDNEY5QUUwMi9ZWkJBNkRXNjA5 ejF3Z0U1YllWeG1WcDZ6RkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9k9D+z1+1OKaYh0qPhxMQ3FNrFJwRTFoI7OW/g0CvfUDf3PUIVnt9 PVAgeY0EPk8aGGg29NyhbzpNQ03fE/42cSG87WDnWtpa9wdIoiQhOz1Dv4jL2HEi wqr9JCA5Vw5+fII578vA31j7gPEOKglksx9eo/WcuOXPfPNHosclQ+rRi/c9YBdU NP+gKB3FDLDolbKF3V7LCoQE9V8KpL2cY0eylAX7Xmyfp43L+VuJM9nvCS2MbXY1 Yq9BIeGfCpgV+9Nc8uEOekbIPDecT5EjOgiX1rUaZ6pCtaOVebUwnCEFMP39Pa6c 0Umf4VP9D549j+71OcKlkZmkUC38ukqP -----END CERTIFICATE-----Generated at Thu Jun 19 08:46:27 2025 by rpki-client