$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.mft File: yDkkRRVKIRRXRo3JJnXGsrycRIs.mft (raw, json) Hash identifier: 1fi6k41b73m0A2qCLJBQan6sJhOkwiUC2ayAq8FZthY= Subject key identifier: 11:59:D4:95:6E:74:43:41:C6:52:59:F6:7D:0B:59:65:AB:00:93:F0 Authority key identifier: C8:39:24:45:15:4A:21:14:57:46:8D:C9:26:75:C6:B2:BC:9C:44:8B Certificate issuer: /CN=A91A7890/serialNumber=C8392445154A211457468DC92675C6B2BC9C448B Certificate serial: 01B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yDkkRRVKIRRXRo3JJnXGsrycRIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.mft Manifest number: 01AD Signing time: Fri 25 Jul 2025 03:23:36 +0000 Manifest this update: Fri 25 Jul 2025 03:23:35 +0000 Manifest next update: Fri 01 Aug 2025 03:23:35 +0000 Files and hashes: 1: yDkkRRVKIRRXRo3JJnXGsrycRIs.crl (hash: TdsVIkMVr4ONos2rWSemTZtpFbUwwevBQHeSYZz2sYI=) 2: EC8CA72CDAE311EDA0A6B03DC4F9AE02.roa (hash: F7qGiUSXmfTHkG4rLsiz9f3fhRuXMOAIShVR1Seg7DE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.crl rsync://rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yDkkRRVKIRRXRo3JJnXGsrycRIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 01 Aug 2025 03:23:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 434 (0x1b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7890, serialNumber=C8392445154A211457468DC92675C6B2BC9C448B Validity Not Before: Jul 25 03:23:35 2025 GMT Not After : Aug 1 03:23:35 2025 GMT Subject: CN=6882f8b8-9c95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:db:21:98:88:21:6b:c7:b1:bb:10:be:03:a9: be:fb:04:41:f9:7b:44:94:be:2b:4e:34:0f:aa:ec: 2e:47:5a:c5:a0:21:8b:d5:94:5c:79:20:43:f9:1d: 30:54:4d:af:3c:f5:dc:71:18:f5:5a:27:aa:0c:13: 35:1a:36:aa:ea:f3:0f:e8:71:78:cb:67:1d:c7:bf: f2:27:8a:94:55:cc:00:6b:46:ee:87:26:0e:98:c3: 10:58:1b:28:4d:01:f3:dd:1b:7c:0d:1c:2f:c0:72: a4:7c:8e:ae:7e:9a:cb:e5:4a:06:30:0c:db:12:13: 85:48:4c:9e:d2:2f:6c:56:cc:5f:42:90:da:9d:30: a9:4f:af:fe:a4:53:c0:ef:45:ce:f9:5a:f6:c7:51: 0c:f6:ee:e7:e8:01:c8:00:26:af:fa:4b:f2:5c:86: ee:5c:4b:a9:a0:e1:0b:82:ae:ff:b7:a2:e2:a3:5b: 42:8f:f0:27:75:36:47:88:98:79:c3:07:cc:26:24: e3:a1:70:6c:11:63:ff:17:fd:6d:4f:2b:2b:f1:e8: 94:7b:a6:08:8d:05:bd:91:37:02:b1:09:09:f1:24: d5:4d:14:91:59:0b:a9:cc:6f:1b:85:5e:d1:5e:1f: 4e:64:30:49:7b:fa:19:7d:8e:92:2a:0b:65:76:49: bd:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:59:D4:95:6E:74:43:41:C6:52:59:F6:7D:0B:59:65:AB:00:93:F0 X509v3 Authority Key Identifier: keyid:C8:39:24:45:15:4A:21:14:57:46:8D:C9:26:75:C6:B2:BC:9C:44:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yDkkRRVKIRRXRo3JJnXGsrycRIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:71:16:c8:0c:ca:ab:37:0e:e1:f8:0a:1a:6d:b0:14:4f:bb: 53:2c:d8:0b:14:39:09:84:87:9a:bd:b4:47:66:8d:35:02:6b: bb:b8:d1:37:1c:35:59:94:74:be:55:a5:39:dd:26:cf:b8:69: 1c:90:2b:a1:02:ca:e0:91:d2:53:3d:7e:9d:40:ab:5a:bf:7b: c6:70:8e:05:c2:88:1a:ba:41:7b:a0:75:4e:e6:4f:4a:97:9e: ff:23:92:15:fe:53:5f:03:fc:11:0a:b5:f0:25:dd:1f:1f:a9: f2:33:71:bf:67:9a:be:97:cf:35:ab:25:84:64:40:7a:91:ef: 66:4e:1b:8a:fa:a5:bf:b4:12:05:34:48:e6:e1:c6:f7:b2:f0: d7:91:3e:57:72:40:69:e3:56:ca:4a:69:96:38:64:e1:d5:cc: 6b:cf:85:1c:47:b9:72:8a:e3:45:02:0a:8e:04:cc:5e:af:e2: d4:6c:b6:22:b6:8d:2d:23:38:28:88:d8:2c:3c:68:ed:0e:b0: ea:f8:f4:c9:23:3c:6a:60:4b:c7:7c:eb:85:e0:ac:18:1f:8e: 33:74:b8:8e:2b:41:ca:89:c3:1e:63:1e:cd:a6:43:b4:55:72: 71:77:a8:42:89:78:2c:81:fd:eb:e1:5b:f5:d9:c2:67:22:dd: 3b:d4:29:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc4OTAxMTAvBgNVBAUTKEM4MzkyNDQ1MTU0QTIxMTQ1NzQ2OERDOTI2NzVDNkIy QkM5QzQ0OEIwHhcNMjUwNzI1MDMyMzM1WhcNMjUwODAxMDMyMzM1WjAYMRYwFAYD VQQDEw02ODgyZjhiOC05Yzk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA49shmIgha8exuxC+A6m++wRB+XtElL4rTjQPquwuR1rFoCGL1ZRceSBD+R0w VE2vPPXccRj1WieqDBM1Gjaq6vMP6HF4y2cdx7/yJ4qUVcwAa0buhyYOmMMQWBso TQHz3Rt8DRwvwHKkfI6ufprL5UoGMAzbEhOFSEye0i9sVsxfQpDanTCpT6/+pFPA 70XO+Vr2x1EM9u7n6AHIACav+kvyXIbuXEupoOELgq7/t6Lio1tCj/AndTZHiJh5 wwfMJiTjoXBsEWP/F/1tTysr8eiUe6YIjQW9kTcCsQkJ8STVTRSRWQupzG8bhV7R Xh9OZDBJe/oZfY6SKgtldkm9uwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBFZ1JVu dENBxlJZ9n0LWWWrAJPwMB8GA1UdIwQYMBaAFMg5JEUVSiEUV0aNySZ1xrK8nESL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzg5MC9BREUxMzE4NkRB REYxMUVEQjFGOUQ3MTlDNEY5QUUwMi95RGtrUlJWS0lSUlhSbzNKSm5YR3NyeWNS SXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lEa2tSUlZLSVJSWFJvM0pKblhHc3J5Y1JJcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Nzg5MC9BREUxMzE4NkRBREYxMUVEQjFGOUQ3MTlDNEY5QUUwMi95RGtrUlJWS0lS UlhSbzNKSm5YR3NyeWNSSXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAucRbIDMqrNw7h+AoabbAUT7tTLNgLFDkJhIeavbRHZo01Amu7uNE3 HDVZlHS+VaU53SbPuGkckCuhAsrgkdJTPX6dQKtav3vGcI4FwogaukF7oHVO5k9K l57/I5IV/lNfA/wRCrXwJd0fH6nyM3G/Z5q+l881qyWEZEB6ke9mThuK+qW/tBIF NEjm4cb3svDXkT5XckBp41bKSmmWOGTh1cxrz4UcR7lyiuNFAgqOBMxer+LUbLYi to0tIzgoiNgsPGjtDrDq+PTJIzxqYEvHfOuF4KwYH44zdLiOK0HKicMeYx7NpkO0 VXJxd6hCiXgsgf3r4Vv12cJnIt071Cls -----END CERTIFICATE-----Generated at Fri Jul 25 05:14:25 2025 by rpki-client