$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.mft File: y1IFTj13aOoWtrColMdzon3qkho.mft (raw, json) Hash identifier: aAGfS4oGF2Sfh5un3iyy9d96V2JobP3UeY7oxe9/bMU= Subject key identifier: 5F:79:78:B3:A3:73:56:AD:A7:AB:E8:EF:FD:4A:09:50:EA:D6:16:E5 Authority key identifier: CB:52:05:4E:3D:77:68:EA:16:B6:B0:A8:94:C7:73:A2:7D:EA:92:1A Certificate issuer: /CN=A91EB6AC/serialNumber=CB52054E3D7768EA16B6B0A894C773A27DEA921A Certificate serial: 0C0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1IFTj13aOoWtrColMdzon3qkho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.mft Manifest number: 0C06 Signing time: Fri 18 Jul 2025 18:54:57 +0000 Manifest this update: Fri 18 Jul 2025 18:54:57 +0000 Manifest next update: Fri 25 Jul 2025 18:54:57 +0000 Files and hashes: 1: y1IFTj13aOoWtrColMdzon3qkho.crl (hash: 8uy63Pe86ROGxjTy+UoswTwGT81QTwhb/59lFhQRfR0=) 2: 65866C4815D111EABE986319C4F9AE02.roa (hash: ky275MRbaVtyIuJOfhdH9mQsA448nNjhkiKWj0SgjYE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.crl rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1IFTj13aOoWtrColMdzon3qkho.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 18:54:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3086 (0xc0e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB6AC, serialNumber=CB52054E3D7768EA16B6B0A894C773A27DEA921A Validity Not Before: Jul 18 18:54:57 2025 GMT Not After : Jul 25 18:54:57 2025 GMT Subject: CN=687a9881-3dd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:29:68:58:7c:14:06:fb:b6:6d:df:5c:88:b4: 4e:19:27:62:5b:c0:f3:ac:25:9e:eb:d2:cd:26:38: 66:eb:5f:cf:8a:52:7c:51:01:5c:c5:a7:7e:e0:5e: fe:43:28:58:81:6b:3c:36:a3:60:5a:56:80:ae:d2: 34:19:44:8b:ba:ac:af:0e:22:3f:b0:f6:b8:db:00: 06:78:8c:ec:bb:bb:5f:4c:b6:36:e5:52:fa:26:f2: a0:c4:cb:a3:8b:77:61:b2:94:2c:c2:41:8c:d7:56: 3a:73:f2:20:ed:de:e4:fe:4a:f5:55:c1:d3:20:32: e3:01:8f:f7:cf:dd:5a:15:96:d2:ad:13:17:f2:40: d3:36:c3:b7:de:a1:9e:f2:d2:59:88:6f:4c:f8:a0: 28:cb:0d:17:d6:96:6b:1d:bd:1f:cc:85:fd:1f:66: d0:77:38:25:a8:6b:fd:00:e9:bf:b6:91:32:95:17: bc:6d:25:4f:12:ab:2e:b5:31:ba:a2:ec:4c:ca:8f: 9e:fe:d8:7e:57:8a:4d:51:63:9f:78:d1:9b:be:ba: 1e:c3:57:91:9b:24:e2:f5:5e:c2:75:ee:1a:c0:9f: 43:79:e8:e5:78:de:83:04:a0:5b:94:52:cf:77:24: d1:e5:63:df:65:d8:45:62:56:81:37:84:6f:9f:0d: db:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:79:78:B3:A3:73:56:AD:A7:AB:E8:EF:FD:4A:09:50:EA:D6:16:E5 X509v3 Authority Key Identifier: keyid:CB:52:05:4E:3D:77:68:EA:16:B6:B0:A8:94:C7:73:A2:7D:EA:92:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1IFTj13aOoWtrColMdzon3qkho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:1a:06:7f:e2:35:ba:f3:90:29:7d:8e:3e:89:b3:78:26:28: 6b:ef:99:b6:af:29:74:9e:43:b4:d2:2e:bf:78:87:3b:2f:13: 0b:ff:24:11:dc:c6:b5:a1:6f:ff:f1:aa:60:eb:5c:c4:75:88: c2:7b:1b:ba:7f:b2:80:8d:15:03:df:37:e3:9c:e6:31:8f:8d: 3b:b3:78:88:02:d0:91:fa:86:11:6d:84:52:e6:aa:7d:10:cd: 62:14:f2:de:f4:2b:ed:52:14:5e:2a:8f:3e:c4:a7:b6:b0:6a: e0:7b:6b:53:78:21:d8:72:c1:35:35:b2:d2:d7:b4:65:f5:c5: 09:86:e1:87:15:6d:62:79:cf:d9:2f:2c:70:8e:eb:7d:5d:0f: c2:c8:9e:bc:64:98:a2:83:8d:d4:3d:68:bf:02:81:30:3f:45: a3:14:0d:55:65:10:45:f9:c9:e4:a1:79:43:51:e8:18:df:a4: a3:b2:22:ac:06:96:6c:63:46:93:00:ab:f3:e4:f3:56:b6:31: 56:e8:6c:eb:fc:f6:0f:14:5d:6e:61:49:3b:55:cb:aa:68:5d: a1:b4:b6:e3:48:82:c8:fc:a3:b0:1f:06:52:21:45:08:f3:ba: 68:d8:38:dd:cc:48:83:b2:91:4b:06:04:27:9f:ad:35:c6:28: bc:8e:25:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDA4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI2QUMxMTAvBgNVBAUTKENCNTIwNTRFM0Q3NzY4RUExNkI2QjBBODk0Qzc3M0Ey N0RFQTkyMUEwHhcNMjUwNzE4MTg1NDU3WhcNMjUwNzI1MTg1NDU3WjAYMRYwFAYD VQQDEw02ODdhOTg4MS0zZGQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwiloWHwUBvu2bd9ciLROGSdiW8DzrCWe69LNJjhm61/PilJ8UQFcxad+4F7+ QyhYgWs8NqNgWlaArtI0GUSLuqyvDiI/sPa42wAGeIzsu7tfTLY25VL6JvKgxMuj i3dhspQswkGM11Y6c/Ig7d7k/kr1VcHTIDLjAY/3z91aFZbSrRMX8kDTNsO33qGe 8tJZiG9M+KAoyw0X1pZrHb0fzIX9H2bQdzglqGv9AOm/tpEylRe8bSVPEqsutTG6 ouxMyo+e/th+V4pNUWOfeNGbvroew1eRmyTi9V7Cde4awJ9DeejleN6DBKBblFLP dyTR5WPfZdhFYlaBN4Rvnw3b8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF95eLOj c1atp6vo7/1KCVDq1hblMB8GA1UdIwQYMBaAFMtSBU49d2jqFrawqJTHc6J96pIa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjZBQy9EN0U5OEE2RTE1 RDAxMUVBOTNDQTBFMTlDNEY5QUUwMi95MUlGVGoxM2FPb1d0ckNvbE1kem9uM3Fr aG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kxSUZUajEzYU9vV3RyQ29sTWR6b24zcWtoby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjZBQy9EN0U5OEE2RTE1RDAxMUVBOTNDQTBFMTlDNEY5QUUwMi95MUlGVGoxM2FP b1d0ckNvbE1kem9uM3FraG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqGgZ/4jW685ApfY4+ibN4Jihr75m2ryl0nkO00i6/eIc7LxML/yQR 3Ma1oW//8apg61zEdYjCexu6f7KAjRUD3zfjnOYxj407s3iIAtCR+oYRbYRS5qp9 EM1iFPLe9CvtUhReKo8+xKe2sGrge2tTeCHYcsE1NbLS17Rl9cUJhuGHFW1iec/Z Lyxwjut9XQ/CyJ68ZJiig43UPWi/AoEwP0WjFA1VZRBF+cnkoXlDUegY36SjsiKs BpZsY0aTAKvz5PNWtjFW6Gzr/PYPFF1uYUk7VcuqaF2htLbjSILI/KOwHwZSIUUI 87po2DjdzEiDspFLBgQnn601xii8jiVy -----END CERTIFICATE-----Generated at Sun Jul 20 02:37:30 2025 by rpki-client