$ rpki-client -vvf rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft File: YDUU_FCDUUDwM--oQ87pOWOWol0.mft (raw, json) Hash identifier: bgeNTGJAzdCBaep3fAq2t+8XyAGlfRSRc70r0xOnCE0= Subject key identifier: 9F:96:6E:7B:08:86:66:1A:A6:05:3F:1D:58:15:15:EB:FC:1E:02:39 Authority key identifier: 60:35:14:FC:50:83:51:40:F0:33:EF:A8:43:CE:E9:39:63:96:A2:5D Certificate issuer: /CN=A91118FA/serialNumber=603514FC50835140F033EFA843CEE9396396A25D Certificate serial: 0B2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDUU_FCDUUDwM--oQ87pOWOWol0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft Manifest number: 0B27 Signing time: Sun 20 Jul 2025 19:17:57 +0000 Manifest this update: Sun 20 Jul 2025 19:17:57 +0000 Manifest next update: Sun 27 Jul 2025 19:17:56 +0000 Files and hashes: 1: YDUU_FCDUUDwM--oQ87pOWOWol0.crl (hash: IAKWBODIf9JCGKrPoJfX1iMkMcGvvdqmCZfbf5K71eE=) 2: 42EE36A240EC11EA875BC545C4F9AE02.roa (hash: YIrw4KxM8ISIt1Ah1KvT99pW3vrO49ALdJTT54SyTO8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.crl rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDUU_FCDUUDwM--oQ87pOWOWol0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 19:17:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2861 (0xb2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91118FA, serialNumber=603514FC50835140F033EFA843CEE9396396A25D Validity Not Before: Jul 20 19:17:57 2025 GMT Not After : Jul 27 19:17:56 2025 GMT Subject: CN=687d40e5-f305 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:7a:10:f7:3c:20:eb:de:b6:0b:92:e5:02:5f: 38:3b:e7:f9:98:ad:03:af:d6:83:c0:8c:2e:91:0c: 10:83:65:a7:34:44:f1:63:78:3d:35:71:27:86:78: 30:da:b2:a5:98:9e:0c:64:43:db:b5:e9:54:8f:1b: dc:72:6a:7b:7c:43:05:f1:93:0b:4d:6b:c6:76:b3: 61:29:59:2f:27:3b:61:50:a6:a5:3d:5b:1d:b0:b6: c7:5f:c8:2e:af:91:01:91:e2:ed:4d:03:ee:13:8c: 7c:4e:75:7e:05:f9:22:aa:90:ce:cd:ca:17:16:d6: 38:1a:c0:0b:ba:3c:f3:1c:94:b7:a3:39:f7:58:b4: a6:4c:b4:69:8a:04:48:d8:3c:47:2d:4c:8f:91:be: fe:46:08:d1:15:c4:81:b7:bd:5b:44:02:61:d6:75: 75:a8:18:0b:4b:f5:25:93:c8:67:0a:28:ee:67:96: 66:9f:39:19:37:f0:9a:28:05:c7:52:69:ad:46:95: 47:f0:0f:d3:1c:87:27:f4:66:92:53:e8:ec:07:5b: c1:a4:bf:65:a4:29:11:ac:db:49:87:c4:f0:cd:40: 00:aa:19:26:16:4d:5e:90:ab:39:7e:79:9d:a5:bd: d2:f5:93:45:31:4b:51:8a:b5:bc:a4:34:c2:d2:af: 8d:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:96:6E:7B:08:86:66:1A:A6:05:3F:1D:58:15:15:EB:FC:1E:02:39 X509v3 Authority Key Identifier: keyid:60:35:14:FC:50:83:51:40:F0:33:EF:A8:43:CE:E9:39:63:96:A2:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDUU_FCDUUDwM--oQ87pOWOWol0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:b4:1c:e7:39:88:48:a3:dd:78:da:96:e7:3a:b8:9f:60:df: c3:e6:ac:41:d3:5e:45:e2:df:96:1a:4e:c9:6c:c8:02:85:4e: 98:50:04:44:d6:6c:b8:64:a0:12:6a:27:f5:0a:05:9b:8e:c5: 23:82:96:0c:81:61:77:57:46:34:c6:bc:95:f3:7d:85:c8:f5: 44:d9:fc:2c:56:19:45:47:f8:af:0c:3d:db:b6:ae:d2:34:64: 54:4e:bd:7a:f4:70:f2:ee:04:5b:08:9c:0a:3a:9b:87:2e:84: 67:b3:02:9b:c4:66:78:b8:67:c8:a1:df:62:94:8d:6c:f7:5b: 24:33:d6:fa:5c:d9:b4:6a:78:87:c4:05:95:17:3b:1b:66:06: 61:ae:b1:94:ce:5e:d0:1f:1e:b8:2d:88:93:a9:68:cb:e6:cd: 63:e1:96:90:7a:d4:5b:2e:e1:52:f3:e8:f5:e0:2d:9c:34:7f: 20:20:6a:83:8e:27:a8:a3:ee:c6:26:db:32:b7:32:77:f1:ac: 7b:64:70:1c:5d:a6:1f:8a:92:69:f8:2e:15:78:6d:81:48:d0: 6d:bc:a7:e8:f2:8b:64:de:27:30:b2:ff:cf:17:20:45:ca:7e: 08:04:4c:b6:93:fb:69:1c:13:44:75:9b:07:c9:7f:b5:1c:69: 46:1e:e2:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCy0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTE4RkExMTAvBgNVBAUTKDYwMzUxNEZDNTA4MzUxNDBGMDMzRUZBODQzQ0VFOTM5 NjM5NkEyNUQwHhcNMjUwNzIwMTkxNzU3WhcNMjUwNzI3MTkxNzU2WjAYMRYwFAYD VQQDEw02ODdkNDBlNS1mMzA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo3oQ9zwg6962C5LlAl84O+f5mK0Dr9aDwIwukQwQg2WnNETxY3g9NXEnhngw 2rKlmJ4MZEPbtelUjxvccmp7fEMF8ZMLTWvGdrNhKVkvJzthUKalPVsdsLbHX8gu r5EBkeLtTQPuE4x8TnV+BfkiqpDOzcoXFtY4GsALujzzHJS3ozn3WLSmTLRpigRI 2DxHLUyPkb7+RgjRFcSBt71bRAJh1nV1qBgLS/Ulk8hnCijuZ5ZmnzkZN/CaKAXH UmmtRpVH8A/THIcn9GaSU+jsB1vBpL9lpCkRrNtJh8TwzUAAqhkmFk1ekKs5fnmd pb3S9ZNFMUtRirW8pDTC0q+NiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ+WbnsI hmYapgU/HVgVFev8HgI5MB8GA1UdIwQYMBaAFGA1FPxQg1FA8DPvqEPO6TljlqJd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMThGQS85ODQyNDQ5QzQw RUExMUVBQkIwMUJENDJDNEY5QUUwMi9ZRFVVX0ZDRFVVRHdNLS1vUTg3cE9XT1dv bDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lEVVVfRkNEVVVEd00tLW9RODdwT1dPV29sMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MThGQS85ODQyNDQ5QzQwRUExMUVBQkIwMUJENDJDNEY5QUUwMi9ZRFVVX0ZDRFVV RHdNLS1vUTg3cE9XT1dvbDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXtBznOYhIo9142pbnOrifYN/D5qxB015F4t+WGk7JbMgChU6YUARE 1my4ZKASaif1CgWbjsUjgpYMgWF3V0Y0xryV832FyPVE2fwsVhlFR/ivDD3btq7S NGRUTr169HDy7gRbCJwKOpuHLoRnswKbxGZ4uGfIod9ilI1s91skM9b6XNm0aniH xAWVFzsbZgZhrrGUzl7QHx64LYiTqWjL5s1j4ZaQetRbLuFS8+j14C2cNH8gIGqD jieoo+7GJtsytzJ38ax7ZHAcXaYfipJp+C4VeG2BSNBtvKfo8otk3icwsv/PFyBF yn4IBEy2k/tpHBNEdZsHyX+1HGlGHuK7 -----END CERTIFICATE-----Generated at Tue Jul 22 00:20:31 2025 by rpki-client