$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3A74/7CB4A056FD3A11E486F8675FC4F9AE02/y3uNtCSCTHGocDu_uUKjFSkVQ2M.mft File: y3uNtCSCTHGocDu_uUKjFSkVQ2M.mft (raw, json) Hash identifier: vPGyLKNzPCeS0WTZ1UEhxRgmSEMiOQAfoVCfq+00zQs= Subject key identifier: 4F:D2:E5:F9:61:77:85:01:23:4F:65:EF:60:23:B2:E8:CC:B3:29:6C Authority key identifier: CB:7B:8D:B4:24:82:4C:71:A8:70:3B:BF:B9:42:A3:15:29:15:43:63 Certificate issuer: /CN=A91C3A74/serialNumber=CB7B8DB424824C71A8703BBFB942A31529154363 Certificate serial: 2629 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y3uNtCSCTHGocDu_uUKjFSkVQ2M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3A74/7CB4A056FD3A11E486F8675FC4F9AE02/y3uNtCSCTHGocDu_uUKjFSkVQ2M.mft Manifest number: 2612 Signing time: Fri 18 Jul 2025 15:48:37 +0000 Manifest this update: Fri 18 Jul 2025 15:48:37 +0000 Manifest next update: Fri 25 Jul 2025 15:48:37 +0000 Files and hashes: 1: y3uNtCSCTHGocDu_uUKjFSkVQ2M.crl (hash: FX3DJ9/ouc+svmfaBdM5FAImhi0MxENfzLKIz6+Bhdc=) 2: 767655BE561A11E79F98831DC4F9AE02.roa (hash: bf73yAvc50YmZ9DwhowT9EQ5/Cgl8VLGPJbD30MABw0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3A74/7CB4A056FD3A11E486F8675FC4F9AE02/y3uNtCSCTHGocDu_uUKjFSkVQ2M.crl rsync://rpki.apnic.net/member_repository/A91C3A74/7CB4A056FD3A11E486F8675FC4F9AE02/y3uNtCSCTHGocDu_uUKjFSkVQ2M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y3uNtCSCTHGocDu_uUKjFSkVQ2M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 15:48:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9769 (0x2629) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3A74, serialNumber=CB7B8DB424824C71A8703BBFB942A31529154363 Validity Not Before: Jul 18 15:48:37 2025 GMT Not After : Jul 25 15:48:37 2025 GMT Subject: CN=687a6cd5-9794 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:87:a6:e4:2d:79:a7:59:23:7c:75:26:44:da: ac:d1:fd:f2:e6:7e:e8:39:19:3e:c6:55:1c:9b:01: 46:56:b5:2a:a9:8a:b8:55:3a:a0:5e:57:7d:5f:a2: f8:23:3e:bf:d2:b6:f1:8b:a0:24:2a:69:32:a3:2b: 1b:24:7e:7d:3c:b0:e0:f3:3c:19:61:ab:8c:96:d0: b4:ec:6c:d6:8c:ed:0b:ac:9a:05:79:e7:1d:40:b5: 16:69:a7:43:12:84:16:94:e4:ca:be:eb:de:5f:1a: 14:ae:af:ba:bf:bb:f4:f5:e2:9b:6d:8f:da:e3:7e: 86:b4:51:96:a5:f9:19:39:ac:67:9c:07:97:f4:8a: a2:48:c4:ba:5a:cd:64:d4:c4:f5:6e:4a:9e:5e:00: 8b:6a:23:4a:51:f8:6d:df:7c:92:51:6d:05:35:44: fe:92:ed:dc:f5:93:50:7d:40:ac:e3:46:e5:6f:9a: f8:d0:c5:7c:fc:ae:8c:f8:cb:6b:64:6c:e0:a1:ce: a1:b5:b8:83:56:56:3f:c2:a1:0d:26:8b:30:43:66: ff:f3:44:c2:d4:35:da:b8:7e:99:ff:98:9f:3d:cf: 08:c5:ee:08:20:a5:13:6b:73:c1:30:84:b6:70:24: 68:9c:ad:0f:ea:73:b0:35:a3:c6:9e:78:23:10:23: 3c:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:D2:E5:F9:61:77:85:01:23:4F:65:EF:60:23:B2:E8:CC:B3:29:6C X509v3 Authority Key Identifier: keyid:CB:7B:8D:B4:24:82:4C:71:A8:70:3B:BF:B9:42:A3:15:29:15:43:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3A74/7CB4A056FD3A11E486F8675FC4F9AE02/y3uNtCSCTHGocDu_uUKjFSkVQ2M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y3uNtCSCTHGocDu_uUKjFSkVQ2M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3A74/7CB4A056FD3A11E486F8675FC4F9AE02/y3uNtCSCTHGocDu_uUKjFSkVQ2M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:36:c7:fe:ff:ab:e3:33:a4:a8:3c:47:41:72:a9:2d:49:4f: 78:28:0c:51:87:62:e3:9a:cb:a7:42:aa:27:9d:89:4d:1d:13: 67:e3:11:d4:ba:22:4a:8a:35:fd:54:e4:14:15:ca:fd:2f:65: a6:4e:ec:b4:34:93:b5:32:27:8f:76:0f:0d:f0:b4:6b:38:1c: 82:98:19:51:b5:c5:7d:bf:e9:d4:3c:da:cc:80:c2:c9:1b:26: 06:2b:5f:d3:72:dc:a6:9a:2f:11:20:55:cd:9c:3c:f0:e9:b2: e9:82:20:64:d1:63:7e:de:25:40:85:31:ef:e6:42:f2:96:4c: 80:a5:f8:8a:ae:52:76:77:7d:ca:97:1b:16:37:f1:6e:5e:50: 90:3a:34:03:1a:d0:66:8c:54:41:96:85:f0:a3:f0:6a:0e:eb: aa:43:ec:be:5d:e3:e5:65:e4:24:fc:c0:6f:59:68:7f:e5:9e: 6c:89:5f:17:1d:71:44:1b:7b:cc:3e:b0:55:e3:6b:53:fd:8c: 99:80:7b:9e:7a:45:30:eb:f2:a6:3d:3a:a2:27:55:6a:ae:bc: 79:91:06:11:b7:ea:f6:e9:4f:c9:21:f0:25:ba:5d:6c:bc:cc: c9:77:25:8f:46:c6:b6:bd:d1:e5:a5:45:3a:1f:88:15:d6:3c: ed:39:11:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJikwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzNBNzQxMTAvBgNVBAUTKENCN0I4REI0MjQ4MjRDNzFBODcwM0JCRkI5NDJBMzE1 MjkxNTQzNjMwHhcNMjUwNzE4MTU0ODM3WhcNMjUwNzI1MTU0ODM3WjAYMRYwFAYD VQQDEw02ODdhNmNkNS05Nzk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsIem5C15p1kjfHUmRNqs0f3y5n7oORk+xlUcmwFGVrUqqYq4VTqgXld9X6L4 Iz6/0rbxi6AkKmkyoysbJH59PLDg8zwZYauMltC07GzWjO0LrJoFeecdQLUWaadD EoQWlOTKvuveXxoUrq+6v7v09eKbbY/a436GtFGWpfkZOaxnnAeX9IqiSMS6Ws1k 1MT1bkqeXgCLaiNKUfht33ySUW0FNUT+ku3c9ZNQfUCs40blb5r40MV8/K6M+Mtr ZGzgoc6htbiDVlY/wqENJoswQ2b/80TC1DXauH6Z/5ifPc8Ixe4IIKUTa3PBMIS2 cCRonK0P6nOwNaPGnngjECM8lwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE/S5flh d4UBI09l72AjsujMsylsMB8GA1UdIwQYMBaAFMt7jbQkgkxxqHA7v7lCoxUpFUNj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDM0E3NC83Q0I0QTA1NkZE M0ExMUU0ODZGODY3NUZDNEY5QUUwMi95M3VOdENTQ1RIR29jRHVfdVVLakZTa1ZR Mk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kzdU50Q1NDVEhHb2NEdV91VUtqRlNrVlEyTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD M0E3NC83Q0I0QTA1NkZEM0ExMUU0ODZGODY3NUZDNEY5QUUwMi95M3VOdENTQ1RI R29jRHVfdVVLakZTa1ZRMk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZNsf+/6vjM6SoPEdBcqktSU94KAxRh2LjmsunQqonnYlNHRNn4xHU uiJKijX9VOQUFcr9L2WmTuy0NJO1MiePdg8N8LRrOByCmBlRtcV9v+nUPNrMgMLJ GyYGK1/Tctymmi8RIFXNnDzw6bLpgiBk0WN+3iVAhTHv5kLylkyApfiKrlJ2d33K lxsWN/FuXlCQOjQDGtBmjFRBloXwo/BqDuuqQ+y+XePlZeQk/MBvWWh/5Z5siV8X HXFEG3vMPrBV42tT/YyZgHueekUw6/KmPTqiJ1Vqrrx5kQYRt+r26U/JIfAlul1s vMzJdyWPRsa2vdHlpUU6H4gV1jztORGB -----END CERTIFICATE-----Generated at Sun Jul 20 03:14:17 2025 by rpki-client