$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft File: Yt3ChdqLPiCesA6qNnGEXaps8oY.mft (raw, json) Hash identifier: Xjym0BeYMkc1iBKzKaoapifjIouC3mJzPUhhO9uuVz0= Subject key identifier: 31:AF:0A:E4:51:F1:A5:FF:6A:B2:67:EE:C2:5E:81:2F:C2:43:96:3C Authority key identifier: 62:DD:C2:85:DA:8B:3E:20:9E:B0:0E:AA:36:71:84:5D:AA:6C:F2:86 Certificate issuer: /CN=A91CE5A6/serialNumber=62DDC285DA8B3E209EB00EAA3671845DAA6CF286 Certificate serial: 015E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft Manifest number: 0158 Signing time: Sat 19 Jul 2025 04:18:50 +0000 Manifest this update: Sat 19 Jul 2025 04:18:50 +0000 Manifest next update: Sat 26 Jul 2025 04:18:50 +0000 Files and hashes: 1: Yt3ChdqLPiCesA6qNnGEXaps8oY.crl (hash: DwjDXZJxFJYGjAtXHr0BFvK1Av4NLMyFuJlVQGhEo8Y=) 2: 64120230B2C211EFA43BF057C4F9AE02.roa (hash: 9h3davUQ9pNDA3U7SYojAK+YEhrIBkhT56ukToleizY=) 3: 3B8DEFBCB2CD11EFBEB6A532C4F9AE02.roa (hash: DgTHE1vd+LuLJ/6bYp2I4wVbGI057+J0uGiHNmi5Ok4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.crl rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 04:18:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 350 (0x15e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE5A6, serialNumber=62DDC285DA8B3E209EB00EAA3671845DAA6CF286 Validity Not Before: Jul 19 04:18:50 2025 GMT Not After : Jul 26 04:18:50 2025 GMT Subject: CN=687b1caa-f490 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:f0:ad:79:1e:8d:d6:b8:a3:1a:ae:74:99:ea: f9:f8:cc:cd:00:4f:e4:1b:94:2f:32:ee:3a:bd:65: fa:3e:3a:16:1a:b9:71:93:82:73:57:cc:ce:b6:07: 36:e0:27:14:74:aa:ea:e5:7d:36:a9:06:95:39:0c: 96:7c:87:39:bc:ee:bc:e5:49:4d:29:4f:31:c8:85: 24:6f:62:2d:58:f8:57:6e:b3:3d:0f:8a:2d:18:56: 48:4d:43:1e:fc:37:f3:6d:db:d0:f4:f5:a1:43:94: 55:62:02:d2:e4:41:22:5e:8b:4e:08:64:b8:28:21: 6d:38:1e:ca:de:5a:97:40:a4:67:fb:c9:5e:79:da: 5b:95:fe:af:ec:d1:97:8a:54:88:f3:58:ba:e5:8f: 2f:39:bb:60:c1:7f:64:86:5f:9c:1d:75:31:61:fe: 7f:aa:05:75:0d:ca:e8:ab:bb:c3:72:b0:6c:31:38: 39:77:83:d9:e5:a6:93:56:42:dc:f1:06:25:66:d4: 04:9b:aa:db:48:d1:79:04:28:df:1e:cd:5f:ae:dd: a2:e9:19:b8:e9:d9:72:71:4e:4e:08:b0:04:98:e9: 22:5f:5d:e6:b6:a0:54:26:45:9e:75:74:af:3c:72: 3f:63:f3:b5:ad:05:2e:d3:97:39:94:50:52:26:23: 60:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:AF:0A:E4:51:F1:A5:FF:6A:B2:67:EE:C2:5E:81:2F:C2:43:96:3C X509v3 Authority Key Identifier: keyid:62:DD:C2:85:DA:8B:3E:20:9E:B0:0E:AA:36:71:84:5D:AA:6C:F2:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:da:35:fe:a7:ac:52:4f:bf:cc:d7:c1:cd:98:74:de:83:fc: db:5b:04:02:7d:6a:c5:12:99:8a:b2:ca:13:9a:25:04:84:49: 9d:a6:70:4e:15:57:5a:0a:b6:67:ad:55:ae:f7:f4:e7:72:1c: 72:2f:e6:b5:83:c6:93:ea:61:ad:84:8f:dd:dd:8a:b5:3f:6b: f7:1d:38:f4:0b:4a:ea:57:c8:d1:b1:34:67:e3:0f:55:2c:a0: d1:77:8e:71:56:4b:a8:8d:b6:11:50:50:9f:6e:80:b5:19:fc: 45:19:12:28:c6:53:a9:15:b3:ff:4d:f9:b8:16:26:af:2f:ae: 8d:af:50:b1:a8:37:99:70:3d:e1:19:3c:bc:5d:f9:ca:9a:dd: 0b:ea:b8:c4:9b:87:e9:6f:46:8b:18:54:97:57:90:65:b0:51: 57:63:61:bb:da:a0:ad:95:cb:01:0e:0b:7f:25:ff:27:5c:e4: 2d:ce:15:e8:ac:e2:83:de:92:18:89:5f:29:6a:85:d0:f6:34: 70:a3:d3:5b:77:c5:fa:04:ab:b8:7f:07:7f:72:c7:ff:92:5a: 18:f2:36:ed:61:a6:8e:00:84:0c:27:32:05:e7:3a:fd:98:9d: 75:9c:ac:82:f4:16:13:24:fc:05:48:e9:77:92:c5:42:7b:bb: a6:13:83:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAV4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1QTYxMTAvBgNVBAUTKDYyRERDMjg1REE4QjNFMjA5RUIwMEVBQTM2NzE4NDVE QUE2Q0YyODYwHhcNMjUwNzE5MDQxODUwWhcNMjUwNzI2MDQxODUwWjAYMRYwFAYD VQQDEw02ODdiMWNhYS1mNDkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqfCteR6N1rijGq50mer5+MzNAE/kG5QvMu46vWX6PjoWGrlxk4JzV8zOtgc2 4CcUdKrq5X02qQaVOQyWfIc5vO685UlNKU8xyIUkb2ItWPhXbrM9D4otGFZITUMe /DfzbdvQ9PWhQ5RVYgLS5EEiXotOCGS4KCFtOB7K3lqXQKRn+8leedpblf6v7NGX ilSI81i65Y8vObtgwX9khl+cHXUxYf5/qgV1Dcroq7vDcrBsMTg5d4PZ5aaTVkLc 8QYlZtQEm6rbSNF5BCjfHs1frt2i6Rm46dlycU5OCLAEmOkiX13mtqBUJkWedXSv PHI/Y/O1rQUu05c5lFBSJiNg4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDGvCuRR 8aX/arJn7sJegS/CQ5Y8MB8GA1UdIwQYMBaAFGLdwoXaiz4gnrAOqjZxhF2qbPKG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTVBNi9BQUIzM0U0QzVC M0YxMUVFOEYxRDNENkVDNEY5QUUwMi9ZdDNDaGRxTFBpQ2VzQTZxTm5HRVhhcHM4 b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1l0M0NoZHFMUGlDZXNBNnFObkdFWGFwczhvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTVBNi9BQUIzM0U0QzVCM0YxMUVFOEYxRDNENkVDNEY5QUUwMi9ZdDNDaGRxTFBp Q2VzQTZxTm5HRVhhcHM4b1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB02jX+p6xST7/M18HNmHTeg/zbWwQCfWrFEpmKssoTmiUEhEmdpnBO FVdaCrZnrVWu9/TnchxyL+a1g8aT6mGthI/d3Yq1P2v3HTj0C0rqV8jRsTRn4w9V LKDRd45xVkuojbYRUFCfboC1GfxFGRIoxlOpFbP/Tfm4FiavL66Nr1CxqDeZcD3h GTy8XfnKmt0L6rjEm4fpb0aLGFSXV5BlsFFXY2G72qCtlcsBDgt/Jf8nXOQtzhXo rOKD3pIYiV8paoXQ9jRwo9Nbd8X6BKu4fwd/csf/kloY8jbtYaaOAIQMJzIF5zr9 mJ11nKyC9BYTJPwFSOl3ksVCe7umE4Mo -----END CERTIFICATE-----Generated at Sun Jul 20 18:39:49 2025 by rpki-client