$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBD7B/A74F5EDCD87211EFA31F8419C4F9AE02/YU0eyLaT57tfMs-lJ7UCgyad_is.mft File: YU0eyLaT57tfMs-lJ7UCgyad_is.mft (raw, json) Hash identifier: cT6os16VW7zU8wBe2eh8lAuX9mByxKjkdaoOiU0Iwk8= Subject key identifier: 67:EB:ED:06:38:EE:6B:E4:E2:9C:9E:C5:6F:E1:5C:CB:8C:B3:D7:13 Authority key identifier: 61:4D:1E:C8:B6:93:E7:BB:5F:32:CF:A5:27:B5:02:83:26:9D:FE:2B Certificate issuer: /CN=A91FBD7B/serialNumber=614D1EC8B693E7BB5F32CFA527B50283269DFE2B Certificate serial: 4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YU0eyLaT57tfMs-lJ7UCgyad_is.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBD7B/A74F5EDCD87211EFA31F8419C4F9AE02/YU0eyLaT57tfMs-lJ7UCgyad_is.mft Manifest number: 4C Signing time: Fri 13 Jun 2025 06:15:29 +0000 Manifest this update: Fri 13 Jun 2025 06:15:28 +0000 Manifest next update: Fri 20 Jun 2025 06:15:28 +0000 Files and hashes: 1: YU0eyLaT57tfMs-lJ7UCgyad_is.crl (hash: Q+OergIFKdS6di6MnMJPTn65Vj8TZYq/tMVkSZiKqhQ=) 2: EE380826D87211EFBAE0FC19C4F9AE02.roa (hash: Z/MKQEZHBao6uUjy3KntQF19ACE4AX6KONtzOcMde7c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBD7B/A74F5EDCD87211EFA31F8419C4F9AE02/YU0eyLaT57tfMs-lJ7UCgyad_is.crl rsync://rpki.apnic.net/member_repository/A91FBD7B/A74F5EDCD87211EFA31F8419C4F9AE02/YU0eyLaT57tfMs-lJ7UCgyad_is.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YU0eyLaT57tfMs-lJ7UCgyad_is.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 06:15:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78 (0x4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBD7B, serialNumber=614D1EC8B693E7BB5F32CFA527B50283269DFE2B Validity Not Before: Jun 13 06:15:28 2025 GMT Not After : Jun 20 06:15:28 2025 GMT Subject: CN=684bc201-6a4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:51:43:e6:ec:c9:b6:92:90:26:59:b3:cf:25: bb:ed:33:dd:33:aa:72:7e:39:66:87:a1:cd:60:ba: 38:2f:91:d8:f9:41:ad:e7:55:71:c9:64:a3:e4:f5: 66:d4:0d:32:d1:8f:33:86:a8:a9:d3:a7:4b:8d:58: c0:47:b2:0c:ff:ff:6f:c5:a5:7d:66:9e:6a:e8:23: 47:23:7b:29:38:10:92:d4:fa:90:f1:17:43:e5:b4: a9:9e:0f:4c:d9:d8:9a:c5:df:94:11:bd:58:f6:9e: be:e2:e2:81:0c:3a:ef:81:ab:1b:41:b9:69:07:37: 1d:9b:e4:ce:eb:b6:80:d7:63:6b:39:64:15:db:f4: 4b:f4:58:04:ed:2f:81:f5:df:98:12:b8:d2:2b:00: a0:50:1e:e4:ba:21:43:0e:f5:81:a1:e7:5c:9a:18: 11:db:3e:b8:4f:ec:9b:4f:61:c0:4d:a0:f3:8e:b9: 9c:54:a7:9b:40:03:37:be:77:77:63:9f:67:17:91: f0:f8:f1:ee:a5:5a:b8:40:2a:d9:e1:b1:6e:c7:e4: 4b:26:08:39:4b:da:98:af:55:13:7a:1a:7c:d4:73: 3e:5d:c6:26:d3:ff:c3:4b:7b:6f:52:b9:ff:55:f7: c9:e0:85:e6:06:3a:27:14:de:60:27:08:22:b5:a5: f0:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:EB:ED:06:38:EE:6B:E4:E2:9C:9E:C5:6F:E1:5C:CB:8C:B3:D7:13 X509v3 Authority Key Identifier: keyid:61:4D:1E:C8:B6:93:E7:BB:5F:32:CF:A5:27:B5:02:83:26:9D:FE:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBD7B/A74F5EDCD87211EFA31F8419C4F9AE02/YU0eyLaT57tfMs-lJ7UCgyad_is.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YU0eyLaT57tfMs-lJ7UCgyad_is.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBD7B/A74F5EDCD87211EFA31F8419C4F9AE02/YU0eyLaT57tfMs-lJ7UCgyad_is.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:16:02:46:8a:cd:87:96:92:34:99:59:06:a7:d0:19:76:10: 81:b7:c0:d6:77:55:ff:ab:b3:78:57:6c:49:e3:c9:2b:aa:b6: f7:9d:ab:59:8f:0b:31:c7:43:78:f2:63:6c:6f:2f:2b:3d:e2: 67:34:26:a6:65:d4:8f:08:6f:18:0b:24:22:2a:65:9c:30:81: fa:8a:2e:ad:cc:a8:af:e4:8e:2c:d9:b6:2a:ff:ac:3e:20:c8: 3e:f7:8c:4b:73:26:85:84:00:48:1c:bc:96:be:5e:dc:d5:c7: 8a:92:03:47:c8:b5:e8:e5:26:ce:8c:e5:9c:c2:0f:01:f5:cf: a6:00:e5:71:8b:3b:1e:95:32:c9:18:5a:27:1e:b5:4e:e6:ad: cf:0f:96:c6:e6:a5:b2:92:93:34:29:0c:b5:a8:0a:d3:da:55: 9f:98:60:51:24:fc:1d:0f:2e:d3:7b:a6:82:f3:50:aa:b9:75: ee:fd:2a:76:ab:87:37:4b:2f:b9:85:d5:e1:90:b5:6d:fb:e8: dc:a5:ae:e8:dd:77:01:cf:09:23:6b:01:55:1c:0c:d5:7b:47: 2b:c7:65:87:10:11:98:94:f9:b8:47:37:8d:bc:29:0c:2b:ff: be:34:29:8b:1a:d2:86:cb:ee:ac:22:20:30:9c:d5:66:c9:f6: 16:41:6d:7a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QkQ3QjExMC8GA1UEBRMoNjE0RDFFQzhCNjkzRTdCQjVGMzJDRkE1MjdCNTAyODMy NjlERkUyQjAeFw0yNTA2MTMwNjE1MjhaFw0yNTA2MjAwNjE1MjhaMBgxFjAUBgNV BAMTDTY4NGJjMjAxLTZhNGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtUUPm7Mm2kpAmWbPPJbvtM90zqnJ+OWaHoc1gujgvkdj5Qa3nVXHJZKPk9WbU DTLRjzOGqKnTp0uNWMBHsgz//2/FpX1mnmroI0cjeyk4EJLU+pDxF0PltKmeD0zZ 2JrF35QRvVj2nr7i4oEMOu+BqxtBuWkHNx2b5M7rtoDXY2s5ZBXb9Ev0WATtL4H1 35gSuNIrAKBQHuS6IUMO9YGh51yaGBHbPrhP7JtPYcBNoPOOuZxUp5tAAze+d3dj n2cXkfD48e6lWrhAKtnhsW7H5EsmCDlL2pivVRN6GnzUcz5dxibT/8NLe29Suf9V 98ngheYGOicU3mAnCCK1pfDfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZ+vtBjju a+TinJ7Fb+Fcy4yz1xMwHwYDVR0jBBgwFoAUYU0eyLaT57tfMs+lJ7UCgyad/isw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZCRDdCL0E3NEY1RURDRDg3 MjExRUZBMzFGODQxOUM0RjlBRTAyL1lVMGV5TGFUNTd0Zk1zLWxKN1VDZ3lhZF9p cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWVUwZXlMYVQ1N3RmTXMtbEo3VUNneWFkX2lzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZC RDdCL0E3NEY1RURDRDg3MjExRUZBMzFGODQxOUM0RjlBRTAyL1lVMGV5TGFUNTd0 Zk1zLWxKN1VDZ3lhZF9pcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJMWAkaKzYeWkjSZWQan0Bl2EIG3wNZ3Vf+rs3hXbEnjySuqtvedq1mP CzHHQ3jyY2xvLys94mc0JqZl1I8IbxgLJCIqZZwwgfqKLq3MqK/kjizZtir/rD4g yD73jEtzJoWEAEgcvJa+XtzVx4qSA0fItejlJs6M5ZzCDwH1z6YA5XGLOx6VMskY WicetU7mrc8PlsbmpbKSkzQpDLWoCtPaVZ+YYFEk/B0PLtN7poLzUKq5de79Knar hzdLL7mF1eGQtW376NylrujddwHPCSNrAVUcDNV7RyvHZYcQEZiU+bhHN428KQwr /740KYsa0obL7qwiIDCc1WbJ9hZBbXo= -----END CERTIFICATE-----Generated at Sat Jun 14 19:10:41 2025 by rpki-client