$ rpki-client -vvf rpki.apnic.net/member_repository/A91B49F2/82E4C2A0A6EE11E985F3B011C4F9AE02/yHO7YQuRPD7NxwiiZadLEUGnb1Q.mft File: yHO7YQuRPD7NxwiiZadLEUGnb1Q.mft (raw, json) Hash identifier: WX9ndJlp7Rbw49PPvRoPZSyLupPA5ZhrZDXLngCmjco= Subject key identifier: F9:01:F8:24:A6:62:85:64:4B:DB:90:7B:B1:76:26:90:22:BB:B3:60 Authority key identifier: C8:73:BB:61:0B:91:3C:3E:CD:C7:08:A2:65:A7:4B:11:41:A7:6F:54 Certificate issuer: /CN=A91B49F2/serialNumber=C873BB610B913C3ECDC708A265A74B1141A76F54 Certificate serial: 0E5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yHO7YQuRPD7NxwiiZadLEUGnb1Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B49F2/82E4C2A0A6EE11E985F3B011C4F9AE02/yHO7YQuRPD7NxwiiZadLEUGnb1Q.mft Manifest number: 0E47 Signing time: Mon 30 Jun 2025 18:00:36 +0000 Manifest this update: Mon 30 Jun 2025 18:00:35 +0000 Manifest next update: Mon 07 Jul 2025 18:00:35 +0000 Files and hashes: 1: yHO7YQuRPD7NxwiiZadLEUGnb1Q.crl (hash: u1Q+GmiUofvdpeo8B5GvLnzuqQam/gQklyjXQx7/AJ0=) 2: BB0AA59C0A3D11EB82ECEA4BC4F9AE02.roa (hash: ko6JuSH5KdHDRvbFAlQ/kuUaDfW5QK4Fi6pI4fCmc9Y=) 3: 79395BE68EB311EF9A8DFC3CC4F9AE02.roa (hash: IVs/EZ3aUjzucqrKlhAwA1VLfGJK+bUizU/goA1sqEo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B49F2/82E4C2A0A6EE11E985F3B011C4F9AE02/yHO7YQuRPD7NxwiiZadLEUGnb1Q.crl rsync://rpki.apnic.net/member_repository/A91B49F2/82E4C2A0A6EE11E985F3B011C4F9AE02/yHO7YQuRPD7NxwiiZadLEUGnb1Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yHO7YQuRPD7NxwiiZadLEUGnb1Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 18:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3675 (0xe5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B49F2, serialNumber=C873BB610B913C3ECDC708A265A74B1141A76F54 Validity Not Before: Jun 30 18:00:35 2025 GMT Not After : Jul 7 18:00:35 2025 GMT Subject: CN=6862d0c3-da72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:2d:52:78:0e:0c:91:ee:3a:22:af:4b:0c:0b: 32:7a:4c:98:72:8d:0f:f4:36:03:e1:b8:aa:b6:5a: 08:be:f5:bc:01:28:c8:38:34:a2:e7:f0:f9:0a:5e: 37:9d:fd:f2:a8:33:ba:7a:f8:d6:ff:29:ae:35:a9: 3c:74:d3:41:9d:d0:63:1a:ea:29:eb:71:6c:e0:7a: 5c:bc:39:34:17:06:5d:e1:ef:bd:bb:67:88:59:39: ac:7b:aa:94:ea:ec:a9:c1:f2:99:de:e9:4a:f8:96: 60:5e:65:97:95:1a:cc:41:a3:74:ad:3f:aa:b4:8f: 89:aa:5c:1a:77:3d:c0:58:38:79:ea:9c:8e:6d:1b: d1:be:a3:a4:d8:4c:4e:b9:a1:61:81:dc:29:0d:d8: 8e:24:40:79:33:41:a9:b9:8a:b9:20:82:2b:b6:5b: 2a:08:d1:bd:00:e0:cf:db:1c:a9:7e:a3:43:11:ea: 50:8b:b2:c0:7e:b3:fd:f6:a4:50:d3:b0:60:ad:02: e5:56:dc:a6:18:20:a0:fe:13:16:49:06:7a:e7:30: 75:fe:d8:e3:31:b4:c7:97:ee:83:7a:4b:ae:7d:66: 5d:13:65:9d:39:7b:fa:ea:0a:17:49:f2:58:80:1e: 09:4b:36:97:71:d0:aa:bc:6c:25:5a:fb:66:a0:38: 70:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:01:F8:24:A6:62:85:64:4B:DB:90:7B:B1:76:26:90:22:BB:B3:60 X509v3 Authority Key Identifier: keyid:C8:73:BB:61:0B:91:3C:3E:CD:C7:08:A2:65:A7:4B:11:41:A7:6F:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B49F2/82E4C2A0A6EE11E985F3B011C4F9AE02/yHO7YQuRPD7NxwiiZadLEUGnb1Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yHO7YQuRPD7NxwiiZadLEUGnb1Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B49F2/82E4C2A0A6EE11E985F3B011C4F9AE02/yHO7YQuRPD7NxwiiZadLEUGnb1Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:65:69:42:95:f3:2b:03:bc:1d:79:8b:20:57:52:b9:21:5a: 8e:c0:13:6f:64:e5:76:a6:18:d9:e0:30:7d:28:d9:63:92:30: 79:8c:cf:08:2e:c5:ef:97:66:b1:05:82:20:f0:3e:c7:99:15: c6:38:35:59:f1:0d:07:cb:e6:60:27:4d:d0:90:12:fa:9a:da: d0:15:5a:cf:a0:f6:f0:0d:e6:ae:b8:04:61:56:60:3b:94:0b: 08:aa:c6:d5:bb:5d:0b:f0:37:9b:d7:27:0d:38:27:53:0c:aa: 6d:b3:75:44:7a:be:a2:fb:1a:72:c8:ac:0e:d0:64:4d:92:1a: 4e:38:3b:d5:05:f7:fb:cb:c2:92:33:93:94:ee:95:d9:21:e0: a6:9b:72:ea:59:58:b1:1a:f7:f7:57:66:dc:32:8e:3b:64:a1: 04:89:ec:a6:87:22:54:e1:ab:a4:41:44:c8:a7:b9:de:82:ed: df:89:b6:f1:8f:81:22:8d:ef:d8:3d:00:1b:12:3e:d1:41:4b: 37:5b:6d:f9:bf:5a:4e:d6:7d:15:c5:0d:a7:96:1c:ba:46:c8: 8e:79:e5:06:1a:a1:0d:a7:57:0e:52:d2:59:6b:43:c3:3f:bb: 5f:7b:cd:b6:4b:ea:d7:5e:8a:5e:84:83:3f:bb:de:89:02:c9: 55:f7:a0:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDlswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ5RjIxMTAvBgNVBAUTKEM4NzNCQjYxMEI5MTNDM0VDREM3MDhBMjY1QTc0QjEx NDFBNzZGNTQwHhcNMjUwNjMwMTgwMDM1WhcNMjUwNzA3MTgwMDM1WjAYMRYwFAYD VQQDEw02ODYyZDBjMy1kYTcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtS1SeA4Mke46Iq9LDAsyekyYco0P9DYD4biqtloIvvW8ASjIODSi5/D5Cl43 nf3yqDO6evjW/ymuNak8dNNBndBjGuop63Fs4HpcvDk0FwZd4e+9u2eIWTmse6qU 6uypwfKZ3ulK+JZgXmWXlRrMQaN0rT+qtI+Jqlwadz3AWDh56pyObRvRvqOk2ExO uaFhgdwpDdiOJEB5M0GpuYq5IIIrtlsqCNG9AODP2xypfqNDEepQi7LAfrP99qRQ 07BgrQLlVtymGCCg/hMWSQZ65zB1/tjjMbTHl+6DekuufWZdE2WdOXv66goXSfJY gB4JSzaXcdCqvGwlWvtmoDhw7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPkB+CSm YoVkS9uQe7F2JpAiu7NgMB8GA1UdIwQYMBaAFMhzu2ELkTw+zccIomWnSxFBp29U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDlGMi84MkU0QzJBMEE2 RUUxMUU5ODVGM0IwMTFDNEY5QUUwMi95SE83WVF1UlBEN054d2lpWmFkTEVVR25i MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lITzdZUXVSUEQ3Tnh3aWlaYWRMRVVHbmIxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDlGMi84MkU0QzJBMEE2RUUxMUU5ODVGM0IwMTFDNEY5QUUwMi95SE83WVF1UlBE N054d2lpWmFkTEVVR25iMVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjZWlClfMrA7wdeYsgV1K5IVqOwBNvZOV2phjZ4DB9KNljkjB5jM8I LsXvl2axBYIg8D7HmRXGODVZ8Q0Hy+ZgJ03QkBL6mtrQFVrPoPbwDeauuARhVmA7 lAsIqsbVu10L8Deb1ycNOCdTDKpts3VEer6i+xpyyKwO0GRNkhpOODvVBff7y8KS M5OU7pXZIeCmm3LqWVixGvf3V2bcMo47ZKEEieymhyJU4aukQUTIp7negu3fibbx j4Eije/YPQAbEj7RQUs3W235v1pO1n0VxQ2nlhy6RsiOeeUGGqENp1cOUtJZa0PD P7tfe822S+rXXopehIM/u96JAslV96A6 -----END CERTIFICATE-----Generated at Tue Jul 1 19:26:59 2025 by rpki-client