$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft File: Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft (raw, json) Hash identifier: a3xAeS1yHxrdIKizpF3Pyih58Tp4VK4rzikLqIh7sSI= Subject key identifier: 19:CC:93:83:4C:41:1C:E0:9C:96:16:27:C5:2C:96:0D:FC:7D:35:92 Authority key identifier: 63:0E:FC:8B:C8:24:7F:99:A0:12:80:74:1E:4A:1A:0D:B7:F1:47:B0 Certificate issuer: /CN=A91BB629/serialNumber=630EFC8BC8247F99A01280741E4A1A0DB7F147B0 Certificate serial: B9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft Manifest number: B7 Signing time: Wed 09 Jul 2025 06:47:29 +0000 Manifest this update: Wed 09 Jul 2025 06:47:29 +0000 Manifest next update: Wed 16 Jul 2025 06:47:29 +0000 Files and hashes: 1: Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl (hash: lj/KYJdUFz1bFhLX7dIwjgNXGXK8T1cuvHkwHY5XSwo=) 2: 7CE4326245B511EFBAC06E1EC4F9AE02.roa (hash: bllAWJknG6t7sgMmQWLY59vxPXpNHKXKelWOMC8ypAI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Jul 2025 06:47:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 185 (0xb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB629, serialNumber=630EFC8BC8247F99A01280741E4A1A0DB7F147B0 Validity Not Before: Jul 9 06:47:29 2025 GMT Not After : Jul 16 06:47:29 2025 GMT Subject: CN=686e1081-5c67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:32:ec:7a:df:28:f2:57:07:c8:98:26:83:c3: 76:ae:e5:a8:f2:e5:d6:bd:cd:5d:a2:33:92:ce:8c: 18:c4:37:36:24:1a:85:9e:93:61:15:25:02:67:5c: bb:ea:27:3d:d0:9a:5b:46:b2:09:34:7d:bb:e5:9d: b3:ed:20:3b:10:4a:b0:cc:5e:64:41:6e:70:f3:42: 6e:e2:f8:f3:ad:3e:b9:2a:a0:ef:35:eb:b4:f0:83: 05:cd:80:8e:ff:15:cc:03:6f:f4:25:0d:79:4d:79: 31:3d:36:55:56:c6:6b:24:63:06:82:e5:be:8d:f1: 5a:13:05:f5:70:97:ca:c1:cb:b5:ad:5e:17:35:91: af:9c:48:d5:52:29:95:62:fa:11:dc:f1:4f:8c:52: a7:34:98:ad:3b:dd:67:d0:a1:fe:94:24:80:4c:b1: 6f:dc:dc:d8:06:9a:98:7b:6e:4e:76:0a:7c:c6:98: b4:3c:38:54:57:0d:be:11:7a:d2:00:65:a8:86:c8: 23:c7:b3:46:c3:92:e4:3a:94:a6:9e:58:8b:b7:55: da:bb:72:ca:a8:99:06:f9:f6:45:23:29:d5:79:a4: 26:8b:be:1b:7e:0f:88:49:8b:d4:41:ba:cd:ed:86: 5e:c0:bf:cb:96:07:99:27:e0:72:9b:3f:f4:72:08: 0a:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:CC:93:83:4C:41:1C:E0:9C:96:16:27:C5:2C:96:0D:FC:7D:35:92 X509v3 Authority Key Identifier: keyid:63:0E:FC:8B:C8:24:7F:99:A0:12:80:74:1E:4A:1A:0D:B7:F1:47:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:4e:6f:7f:b2:02:dd:58:31:d6:8f:f3:89:9f:e0:73:19:41: d9:3d:82:57:5e:bb:40:c3:af:2b:d4:97:1f:1a:f0:69:18:5e: 9d:42:8e:72:22:1c:89:a6:5a:33:56:52:e0:2f:15:a2:07:8f: 8f:88:11:c4:ae:07:2e:3d:45:16:86:82:0f:04:c2:8e:ff:66: fe:ef:be:cd:64:89:81:e5:26:0e:69:a2:f4:ed:06:10:0c:f2: 55:f7:99:43:3c:f6:e4:fa:8c:03:90:8d:20:df:69:18:01:5f: 78:13:e1:09:1d:97:84:23:5b:3d:22:1e:b7:ec:1f:2b:b8:11: 13:f7:64:61:3f:41:50:73:97:c6:02:4e:02:93:ee:7d:95:1e: e6:a6:9a:b4:11:31:d3:79:4b:45:9c:32:83:26:ec:22:b2:b8: be:f6:e7:50:82:37:79:6e:fd:4c:87:80:b4:22:8f:9d:0b:96: b5:ca:df:1c:ab:b5:f6:cb:7f:ed:72:87:32:f7:ba:d9:38:10: 3f:e2:4c:88:10:2c:60:e0:67:d2:78:63:3f:6b:69:64:68:20: 5f:ac:eb:9b:55:e8:d6:2f:65:5f:e3:2d:77:95:54:22:fc:ae: ac:20:ae:6f:08:24:b6:66:99:2b:21:2b:28:4e:bf:45:42:13: 90:67:28:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI2MjkxMTAvBgNVBAUTKDYzMEVGQzhCQzgyNDdGOTlBMDEyODA3NDFFNEExQTBE QjdGMTQ3QjAwHhcNMjUwNzA5MDY0NzI5WhcNMjUwNzE2MDY0NzI5WjAYMRYwFAYD VQQDEw02ODZlMTA4MS01YzY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwzLset8o8lcHyJgmg8N2ruWo8uXWvc1dojOSzowYxDc2JBqFnpNhFSUCZ1y7 6ic90JpbRrIJNH275Z2z7SA7EEqwzF5kQW5w80Ju4vjzrT65KqDvNeu08IMFzYCO /xXMA2/0JQ15TXkxPTZVVsZrJGMGguW+jfFaEwX1cJfKwcu1rV4XNZGvnEjVUimV YvoR3PFPjFKnNJitO91n0KH+lCSATLFv3NzYBpqYe25Odgp8xpi0PDhUVw2+EXrS AGWohsgjx7NGw5LkOpSmnliLt1Xau3LKqJkG+fZFIynVeaQmi74bfg+ISYvUQbrN 7YZewL/LlgeZJ+Bymz/0cggKFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBnMk4NM QRzgnJYWJ8Uslg38fTWSMB8GA1UdIwQYMBaAFGMO/IvIJH+ZoBKAdB5KGg238Uew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjYyOS9FMkNGOTQwQTQ1 QjQxMUVGOEZEQjc0MURDNEY5QUUwMi9Zdzc4aThna2Y1bWdFb0IwSGtvYURiZnhS N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1l3NzhpOGdrZjVtZ0VvQjBIa29hRGJmeFI3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjYyOS9FMkNGOTQwQTQ1QjQxMUVGOEZEQjc0MURDNEY5QUUwMi9Zdzc4aThna2Y1 bWdFb0IwSGtvYURiZnhSN0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0Tm9/sgLdWDHWj/OJn+BzGUHZPYJXXrtAw68r1JcfGvBpGF6dQo5y IhyJplozVlLgLxWiB4+PiBHErgcuPUUWhoIPBMKO/2b+777NZImB5SYOaaL07QYQ DPJV95lDPPbk+owDkI0g32kYAV94E+EJHZeEI1s9Ih637B8ruBET92RhP0FQc5fG Ak4Ck+59lR7mppq0ETHTeUtFnDKDJuwisri+9udQgjd5bv1Mh4C0Io+dC5a1yt8c q7X2y3/tcocy97rZOBA/4kyIECxg4GfSeGM/a2lkaCBfrOubVejWL2Vf4y13lVQi /K6sIK5vCCS2ZpkrISsoTr9FQhOQZygM -----END CERTIFICATE-----Generated at Wed Jul 9 09:46:39 2025 by rpki-client