$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft File: y2yF51LVad_PHekEycvnHkg-9fI.mft (raw, json) Hash identifier: euJmvhKP8CnQ/UeI+StFBuZWOMlLQSN59XQI+av8eLQ= Subject key identifier: 9B:D2:CA:C4:35:75:CE:56:E9:28:E5:84:DD:74:26:70:8D:04:3C:81 Authority key identifier: CB:6C:85:E7:52:D5:69:DF:CF:1D:E9:04:C9:CB:E7:1E:48:3E:F5:F2 Certificate issuer: /CN=A91BC039/serialNumber=CB6C85E752D569DFCF1DE904C9CBE71E483EF5F2 Certificate serial: 04F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2yF51LVad_PHekEycvnHkg-9fI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft Manifest number: 04EA Signing time: Sun 27 Jul 2025 00:01:08 +0000 Manifest this update: Sun 27 Jul 2025 00:01:07 +0000 Manifest next update: Sun 03 Aug 2025 00:01:07 +0000 Files and hashes: 1: y2yF51LVad_PHekEycvnHkg-9fI.crl (hash: FlbpAN1VOZhIoVfLCqYiupWvbx4Xwwxs100rNU5UAh0=) 2: B0A2E01225C411EC88466E59C4F9AE02.roa (hash: 8z4FQ3P4ffexi4IqxjF16x9Xr0QlwFMb8TffrA8dnxw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.crl rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2yF51LVad_PHekEycvnHkg-9fI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 Aug 2025 00:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1264 (0x4f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC039, serialNumber=CB6C85E752D569DFCF1DE904C9CBE71E483EF5F2 Validity Not Before: Jul 27 00:01:07 2025 GMT Not After : Aug 3 00:01:07 2025 GMT Subject: CN=68856c44-94aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:83:fe:de:d1:63:72:8d:7c:13:ee:d3:d9:a7: 61:50:82:00:70:3a:1e:c6:d4:7d:86:ae:25:76:72: dc:b0:5a:c7:ad:df:8b:c5:1b:dc:1a:d2:06:23:b1: e4:d4:2c:a4:8d:dc:bd:9d:0d:27:7f:c6:6d:f6:b3: 10:b0:56:85:b5:df:f4:00:b3:f7:d6:63:99:ba:16: b2:e4:7c:c6:7c:b4:f3:4b:c3:e9:93:1d:6c:b4:2b: 1b:e9:ae:38:07:01:2b:82:40:d5:f6:e2:e4:0b:37: 3a:98:04:16:45:84:68:ee:0c:38:a0:82:0d:d6:e4: af:9e:8d:ab:17:53:01:14:e8:b7:2c:ce:d7:05:e4: f2:ea:4a:47:e0:e8:44:75:86:81:12:59:a8:bf:97: 7e:67:18:4b:f1:6f:e2:20:52:56:b1:8b:f5:30:52: 5a:86:d7:dd:12:a9:b2:5f:13:9f:b9:f4:aa:b2:de: 9e:f5:b1:4e:62:c8:f1:ee:53:80:a2:e4:b1:4a:3c: 08:ef:91:bc:31:55:a1:c5:ef:09:0a:2a:9e:77:14: 6d:0e:ef:27:c4:8b:7e:26:ab:32:9e:94:f6:5d:51: 87:74:a5:19:f5:7e:cf:15:a2:b9:8e:00:6d:9f:b6: 60:08:02:61:18:94:3a:96:a4:2e:52:3b:02:18:de: dd:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:D2:CA:C4:35:75:CE:56:E9:28:E5:84:DD:74:26:70:8D:04:3C:81 X509v3 Authority Key Identifier: keyid:CB:6C:85:E7:52:D5:69:DF:CF:1D:E9:04:C9:CB:E7:1E:48:3E:F5:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2yF51LVad_PHekEycvnHkg-9fI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:9e:47:c8:05:b7:bc:8f:df:77:33:04:a4:0f:71:27:72:07: 48:3b:9a:92:78:ff:19:a6:1e:84:2f:d9:28:8e:13:dd:04:98: 95:19:5d:9d:20:7e:49:72:1a:16:93:8a:03:37:b3:e0:7a:fb: e5:74:38:cd:e4:1a:fe:cd:38:a2:fc:bf:6d:60:23:a2:73:0d: a1:e8:22:dd:4f:c7:46:c2:95:7f:80:97:aa:8c:14:15:8f:61: 8a:d7:2e:0f:ab:a4:37:71:5a:a2:5f:77:8e:c1:51:e2:2f:c1: 34:b1:c4:8b:3f:51:c1:79:49:06:56:ae:8c:30:41:8a:a8:80: 42:d1:7f:de:b4:5c:03:c8:df:11:f7:76:1d:b8:5d:56:7f:5b: d0:e1:cd:37:39:ed:b1:36:3a:57:85:dd:e7:47:91:34:c4:96: e4:ed:a0:eb:f9:83:a2:76:61:0a:a7:c1:6d:d3:83:d4:db:b7: a1:13:5d:7c:66:b4:9d:70:f9:b3:f8:5c:25:33:84:1b:6c:24: 1e:b9:62:7c:c2:c8:e2:74:58:b7:3a:88:77:b8:30:7e:e6:6e: c7:7a:10:52:15:f7:67:6b:fc:60:1b:aa:0c:63:be:88:bd:22: 1c:5e:59:6a:7b:10:9e:8d:89:ba:fe:8f:d4:83:8f:bd:50:1f: 20:05:eb:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMwMzkxMTAvBgNVBAUTKENCNkM4NUU3NTJENTY5REZDRjFERTkwNEM5Q0JFNzFF NDgzRUY1RjIwHhcNMjUwNzI3MDAwMTA3WhcNMjUwODAzMDAwMTA3WjAYMRYwFAYD VQQDEw02ODg1NmM0NC05NGFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3IP+3tFjco18E+7T2adhUIIAcDoextR9hq4ldnLcsFrHrd+LxRvcGtIGI7Hk 1Cykjdy9nQ0nf8Zt9rMQsFaFtd/0ALP31mOZuhay5HzGfLTzS8Ppkx1stCsb6a44 BwErgkDV9uLkCzc6mAQWRYRo7gw4oIIN1uSvno2rF1MBFOi3LM7XBeTy6kpH4OhE dYaBElmov5d+ZxhL8W/iIFJWsYv1MFJahtfdEqmyXxOfufSqst6e9bFOYsjx7lOA ouSxSjwI75G8MVWhxe8JCiqedxRtDu8nxIt+JqsynpT2XVGHdKUZ9X7PFaK5jgBt n7ZgCAJhGJQ6lqQuUjsCGN7doQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJvSysQ1 dc5W6SjlhN10JnCNBDyBMB8GA1UdIwQYMBaAFMtshedS1Wnfzx3pBMnL5x5IPvXy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzAzOS9CQjUzMjNFODI1 QzIxMUVDQjQ5OUQxNThDNEY5QUUwMi95MnlGNTFMVmFkX1BIZWtFeWN2bkhrZy05 ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kyeUY1MUxWYWRfUEhla0V5Y3ZuSGtnLTlmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzAzOS9CQjUzMjNFODI1QzIxMUVDQjQ5OUQxNThDNEY5QUUwMi95MnlGNTFMVmFk X1BIZWtFeWN2bkhrZy05ZkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3nkfIBbe8j993MwSkD3EncgdIO5qSeP8Zph6EL9kojhPdBJiVGV2d IH5JchoWk4oDN7PgevvldDjN5Br+zTii/L9tYCOicw2h6CLdT8dGwpV/gJeqjBQV j2GK1y4Pq6Q3cVqiX3eOwVHiL8E0scSLP1HBeUkGVq6MMEGKqIBC0X/etFwDyN8R 93YduF1Wf1vQ4c03Oe2xNjpXhd3nR5E0xJbk7aDr+YOidmEKp8Ft04PU27ehE118 ZrSdcPmz+FwlM4QbbCQeuWJ8wsjidFi3Ooh3uDB+5m7HehBSFfdna/xgG6oMY76I vSIcXllqexCejYm6/o/Ug4+9UB8gBevQ -----END CERTIFICATE-----Generated at Sun Jul 27 06:08:31 2025 by rpki-client