$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft File: Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft (raw, json) Hash identifier: 9a0ZtW3LWvGbqHWQt3vrzmwcgVnCwbNnmcnBUG5WgUs= Subject key identifier: EB:7E:F2:7C:F7:E4:58:C0:98:F1:A4:C7:17:65:1C:C6:19:A6:17:12 Authority key identifier: 63:0E:FC:8B:C8:24:7F:99:A0:12:80:74:1E:4A:1A:0D:B7:F1:47:B0 Certificate issuer: /CN=A91BB629/serialNumber=630EFC8BC8247F99A01280741E4A1A0DB7F147B0 Certificate serial: BE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft Manifest number: BC Signing time: Sat 19 Jul 2025 06:07:07 +0000 Manifest this update: Sat 19 Jul 2025 06:07:06 +0000 Manifest next update: Sat 26 Jul 2025 06:07:06 +0000 Files and hashes: 1: Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl (hash: p3g2zK6wy/uGXyYcyZErquD0KiTWCwNA+oFqs3p2gmg=) 2: 7CE4326245B511EFBAC06E1EC4F9AE02.roa (hash: bllAWJknG6t7sgMmQWLY59vxPXpNHKXKelWOMC8ypAI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:07:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 190 (0xbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB629, serialNumber=630EFC8BC8247F99A01280741E4A1A0DB7F147B0 Validity Not Before: Jul 19 06:07:06 2025 GMT Not After : Jul 26 06:07:06 2025 GMT Subject: CN=687b360b-c710 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:8f:ec:98:e8:a8:b6:02:69:16:db:7c:e3:57: 88:c7:5a:26:66:e2:f3:6a:40:8a:2b:5c:15:6d:7a: 73:c8:99:8a:4b:e8:a5:fd:a8:85:6d:87:f6:d6:db: 07:28:5f:b8:31:30:84:d9:6c:d4:7a:89:3e:80:5a: 15:97:41:eb:28:f3:e3:f7:3f:77:59:e9:65:6d:28: 8b:0c:de:0d:73:7d:1d:f8:46:39:1f:27:f1:74:e3: 69:05:0b:7e:73:19:92:2f:91:17:1b:e9:be:d3:2d: 41:4d:e0:70:a5:e1:e9:d7:29:08:e2:f7:f0:af:17: 9a:dd:e3:00:24:eb:a6:5a:69:7b:cb:a3:08:13:03: 99:3a:fe:30:85:9f:fa:9f:d7:d3:cf:b1:3d:03:26: c0:8c:d3:d6:68:e2:65:15:b7:a1:78:27:61:89:67: 85:b9:f5:60:11:8a:c7:0e:0f:4f:38:7b:78:7f:a4: 24:db:26:93:5a:f1:7e:8e:67:aa:44:22:bf:81:d6: 3a:0e:b8:97:21:30:df:44:77:dd:bf:44:54:a5:7d: cc:dc:8c:87:8c:da:1f:4b:8c:82:3b:15:2d:41:90: 4d:e9:99:03:a4:16:8d:ca:1e:38:21:ef:1d:94:b2: 06:d7:c2:68:36:4b:81:d9:34:6c:a4:b7:77:9d:b4: 54:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:7E:F2:7C:F7:E4:58:C0:98:F1:A4:C7:17:65:1C:C6:19:A6:17:12 X509v3 Authority Key Identifier: keyid:63:0E:FC:8B:C8:24:7F:99:A0:12:80:74:1E:4A:1A:0D:B7:F1:47:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:02:76:03:0f:36:03:95:37:01:86:c1:bb:51:3a:18:f3:57: 32:f1:31:31:d8:bc:69:07:ab:98:0b:54:3c:13:8c:3b:b3:24: f8:2e:04:17:98:a6:1d:72:66:7f:d9:db:be:c6:64:c8:cd:28: ec:ca:c5:f0:11:79:0a:c7:9b:33:b5:f5:26:8c:64:dc:a7:81: bf:05:e9:57:32:bf:c8:25:36:ce:60:a3:ec:fb:7e:92:d8:d4: 70:00:6b:5c:8f:5b:76:cb:f2:f3:26:d1:df:1a:4f:b7:fa:81: 7a:5d:86:2a:6e:8f:5e:fa:dd:74:ab:5b:e6:ff:7a:60:f8:3b: 63:c4:c7:29:c2:5c:4e:fb:73:d2:c6:ac:f7:43:9b:4f:9c:f9: 52:8e:52:9f:26:f1:6a:e2:08:6a:fd:6d:60:ff:68:62:51:e6: a7:7d:dc:db:51:ba:ac:ad:a7:19:43:16:58:db:f0:59:64:b3: 4e:70:5f:24:74:f8:80:05:87:77:43:bf:96:39:18:f9:42:6d: 5f:b2:b0:31:ea:57:6d:7f:47:91:6f:c8:c4:83:3b:46:bb:68: c4:3a:0c:21:69:1c:fe:a5:62:b5:fa:58:41:76:fd:ab:e0:48: f1:78:96:c9:1f:7b:e1:35:54:8b:4b:db:b5:73:96:d7:a2:59: 91:b6:45:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI2MjkxMTAvBgNVBAUTKDYzMEVGQzhCQzgyNDdGOTlBMDEyODA3NDFFNEExQTBE QjdGMTQ3QjAwHhcNMjUwNzE5MDYwNzA2WhcNMjUwNzI2MDYwNzA2WjAYMRYwFAYD VQQDEw02ODdiMzYwYi1jNzEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5o/smOiotgJpFtt841eIx1omZuLzakCKK1wVbXpzyJmKS+il/aiFbYf21tsH KF+4MTCE2WzUeok+gFoVl0HrKPPj9z93WellbSiLDN4Nc30d+EY5HyfxdONpBQt+ cxmSL5EXG+m+0y1BTeBwpeHp1ykI4vfwrxea3eMAJOumWml7y6MIEwOZOv4whZ/6 n9fTz7E9AybAjNPWaOJlFbeheCdhiWeFufVgEYrHDg9POHt4f6Qk2yaTWvF+jmeq RCK/gdY6DriXITDfRHfdv0RUpX3M3IyHjNofS4yCOxUtQZBN6ZkDpBaNyh44Ie8d lLIG18JoNkuB2TRspLd3nbRUAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOt+8nz3 5FjAmPGkxxdlHMYZphcSMB8GA1UdIwQYMBaAFGMO/IvIJH+ZoBKAdB5KGg238Uew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjYyOS9FMkNGOTQwQTQ1 QjQxMUVGOEZEQjc0MURDNEY5QUUwMi9Zdzc4aThna2Y1bWdFb0IwSGtvYURiZnhS N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1l3NzhpOGdrZjVtZ0VvQjBIa29hRGJmeFI3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjYyOS9FMkNGOTQwQTQ1QjQxMUVGOEZEQjc0MURDNEY5QUUwMi9Zdzc4aThna2Y1 bWdFb0IwSGtvYURiZnhSN0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVAnYDDzYDlTcBhsG7UToY81cy8TEx2LxpB6uYC1Q8E4w7syT4LgQX mKYdcmZ/2du+xmTIzSjsysXwEXkKx5sztfUmjGTcp4G/BelXMr/IJTbOYKPs+36S 2NRwAGtcj1t2y/LzJtHfGk+3+oF6XYYqbo9e+t10q1vm/3pg+DtjxMcpwlxO+3PS xqz3Q5tPnPlSjlKfJvFq4ghq/W1g/2hiUeanfdzbUbqsracZQxZY2/BZZLNOcF8k dPiABYd3Q7+WORj5Qm1fsrAx6ldtf0eRb8jEgztGu2jEOgwhaRz+pWK1+lhBdv2r 4EjxeJbJH3vhNVSLS9u1c5bXolmRtkWi -----END CERTIFICATE-----Generated at Mon Jul 21 03:05:33 2025 by rpki-client