$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft File: yozvXh2MPaWsm67lsZbvBmCaOVk.mft (raw, json) Hash identifier: fY7pXVQ3Zs70TN0hzBRmGF7wow5sx7DTakac9G7MphI= Subject key identifier: C1:BF:92:D3:9A:9B:B5:15:BB:26:E9:EA:7B:63:35:B2:02:61:30:CD Authority key identifier: CA:8C:EF:5E:1D:8C:3D:A5:AC:9B:AE:E5:B1:96:EF:06:60:9A:39:59 Certificate issuer: /CN=A911B5BA/serialNumber=CA8CEF5E1D8C3DA5AC9BAEE5B196EF06609A3959 Certificate serial: 0B24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yozvXh2MPaWsm67lsZbvBmCaOVk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft Manifest number: 0B22 Signing time: Sun 08 Jun 2025 18:58:40 +0000 Manifest this update: Sun 08 Jun 2025 18:58:40 +0000 Manifest next update: Sun 15 Jun 2025 18:58:40 +0000 Files and hashes: 1: yozvXh2MPaWsm67lsZbvBmCaOVk.crl (hash: 9A9yjZHTRC28zMr9vvPkBTjuUGi3ZU6GSqdOOqF6woE=) 2: 410BAD2095F011EFA9137C67C4F9AE02.roa (hash: SNO/bBZDGGjsIOKkc1Q9a6n7NxtIrWP6e7L/IhWULh8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.crl rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yozvXh2MPaWsm67lsZbvBmCaOVk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Jun 2025 18:36:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2852 (0xb24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5BA, serialNumber=CA8CEF5E1D8C3DA5AC9BAEE5B196EF06609A3959 Validity Not Before: Jun 8 18:58:40 2025 GMT Not After : Jun 15 18:58:40 2025 GMT Subject: CN=6845dd60-4ab0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:05:4e:15:da:50:2f:4f:7b:ec:56:49:06:bb: 5c:11:78:29:3b:8e:f7:34:af:cb:a4:87:11:ab:fa: f9:06:37:60:58:2c:b9:fb:36:9f:11:eb:89:f7:d3: 76:20:cd:0a:97:d9:73:18:5a:1a:5b:96:ea:6c:fc: 92:31:ab:da:b4:0f:bb:33:db:ec:23:c1:8a:a6:de: cf:8a:34:ce:ce:7c:a2:27:80:45:6b:11:99:26:12: 0b:b4:8e:02:1a:5b:5b:98:21:b6:53:93:93:3d:64: f1:00:26:79:c6:1c:f7:bc:75:09:9a:5c:dd:12:41: 1f:7d:3e:a8:66:88:ad:24:61:09:d4:bb:6d:ec:09: aa:fd:d6:87:54:e0:51:4b:a7:09:41:79:9f:a9:f5: 5e:8b:61:bd:e0:0c:a9:3a:74:ec:13:e5:0c:e9:7b: 57:93:b9:4c:c5:d1:b7:c7:91:21:31:ec:b6:5d:66: 1c:18:f3:9d:e4:6e:90:38:63:ff:8c:5a:51:ad:1a: d9:90:e9:cd:60:51:7e:ce:fa:da:6e:21:b7:ba:c3: a1:7c:e8:9e:96:e9:f7:d3:dd:c4:ca:1e:59:d0:c8: a1:f1:4a:d6:2e:0d:76:a6:34:63:2f:04:62:82:8c: b2:9d:9f:5d:e5:2b:10:fe:8f:8d:ab:af:c6:1e:af: 6f:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:BF:92:D3:9A:9B:B5:15:BB:26:E9:EA:7B:63:35:B2:02:61:30:CD X509v3 Authority Key Identifier: keyid:CA:8C:EF:5E:1D:8C:3D:A5:AC:9B:AE:E5:B1:96:EF:06:60:9A:39:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yozvXh2MPaWsm67lsZbvBmCaOVk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:6b:93:38:bb:28:b8:d0:a4:71:80:76:06:95:ae:c0:ba:11: d6:8e:a4:00:e1:58:14:13:10:d4:a8:2e:ae:09:fc:9d:11:9b: c9:23:8b:3f:74:8e:90:e9:33:ab:0f:50:e9:3d:6a:b7:39:84: cb:80:2f:c9:65:ae:66:c8:24:49:3e:10:ff:ac:92:87:f9:2a: 43:5a:82:56:21:de:cd:a7:b0:fb:81:5f:e2:38:b3:07:10:cc: 0b:c2:b9:c8:f8:e9:73:1a:d4:bd:33:2f:81:46:0d:da:aa:9d: 94:a4:d8:94:72:ff:0e:9d:d1:59:df:46:2a:bb:6b:46:b4:c9: 9d:6a:ac:25:72:c5:91:2e:d1:33:56:b2:10:98:90:3c:dc:8c: 58:42:ba:50:67:08:32:3b:a8:d0:76:82:1d:e5:f7:93:42:7b: 7e:38:b4:e5:9e:f8:5d:72:9c:a1:eb:94:cf:34:ed:36:e6:ac: 06:6e:28:f3:44:63:64:cb:5d:b3:4e:a9:0e:bd:b3:32:66:b2: 80:4e:f4:c7:2e:cf:00:80:60:89:a9:2a:1e:8b:1f:89:48:93: a3:90:3a:03:0d:5f:cf:8c:fb:f8:0b:03:cc:a9:71:74:80:e2: d4:34:ea:27:e7:96:23:a0:4a:2c:f0:ff:d4:db:14:5e:16:d3: 23:9e:80:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCyQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1QkExMTAvBgNVBAUTKENBOENFRjVFMUQ4QzNEQTVBQzlCQUVFNUIxOTZFRjA2 NjA5QTM5NTkwHhcNMjUwNjA4MTg1ODQwWhcNMjUwNjE1MTg1ODQwWjAYMRYwFAYD VQQDEw02ODQ1ZGQ2MC00YWIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApwVOFdpQL0977FZJBrtcEXgpO473NK/LpIcRq/r5BjdgWCy5+zafEeuJ99N2 IM0Kl9lzGFoaW5bqbPySMavatA+7M9vsI8GKpt7PijTOznyiJ4BFaxGZJhILtI4C GltbmCG2U5OTPWTxACZ5xhz3vHUJmlzdEkEffT6oZoitJGEJ1Ltt7Amq/daHVOBR S6cJQXmfqfVei2G94AypOnTsE+UM6XtXk7lMxdG3x5EhMey2XWYcGPOd5G6QOGP/ jFpRrRrZkOnNYFF+zvrabiG3usOhfOielun3093Eyh5Z0Mih8UrWLg12pjRjLwRi goyynZ9d5SsQ/o+Nq6/GHq9v2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMG/ktOa m7UVuybp6ntjNbICYTDNMB8GA1UdIwQYMBaAFMqM714djD2lrJuu5bGW7wZgmjlZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVCQS85M0UyRkIwQzNE QTMxMUVBQTREQzNBNTlDNEY5QUUwMi95b3p2WGgyTVBhV3NtNjdsc1pidkJtQ2FP VmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lvenZYaDJNUGFXc202N2xzWmJ2Qm1DYU9Way5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjVCQS85M0UyRkIwQzNEQTMxMUVBQTREQzNBNTlDNEY5QUUwMi95b3p2WGgyTVBh V3NtNjdsc1pidkJtQ2FPVmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBra5M4uyi40KRxgHYGla7AuhHWjqQA4VgUExDUqC6uCfydEZvJI4s/ dI6Q6TOrD1DpPWq3OYTLgC/JZa5myCRJPhD/rJKH+SpDWoJWId7Np7D7gV/iOLMH EMwLwrnI+OlzGtS9My+BRg3aqp2UpNiUcv8OndFZ30Yqu2tGtMmdaqwlcsWRLtEz VrIQmJA83IxYQrpQZwgyO6jQdoId5feTQnt+OLTlnvhdcpyh65TPNO025qwGbijz RGNky12zTqkOvbMyZrKATvTHLs8AgGCJqSoeix+JSJOjkDoDDV/PjPv4CwPMqXF0 gOLUNOon55YjoEos8P/U2xReFtMjnoCv -----END CERTIFICATE-----Generated at Sun Jun 8 23:23:51 2025 by rpki-client