$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1E29/DD13F8F0B29F11EA9380C04BC4F9AE02/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.mft File: W_YkOZCpRkyFt4I9tCbiq5ZyCjw.mft (raw, json) Hash identifier: fndwZ+n5H6NLDL6AQBtk+eHSnRsTQcXsrh+rLnB/x5A= Subject key identifier: 98:8E:55:72:17:BB:D6:E1:6C:F0:72:A6:F8:50:AD:7E:3C:3D:FD:66 Authority key identifier: 5B:F6:24:39:90:A9:46:4C:85:B7:82:3D:B4:26:E2:AB:96:72:0A:3C Certificate issuer: /CN=A91D1E29/serialNumber=5BF6243990A9464C85B7823DB426E2AB96720A3C Certificate serial: 08D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1E29/DD13F8F0B29F11EA9380C04BC4F9AE02/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.mft Manifest number: 08CC Signing time: Sun 08 Jun 2025 20:10:29 +0000 Manifest this update: Sun 08 Jun 2025 20:10:29 +0000 Manifest next update: Sun 15 Jun 2025 20:10:29 +0000 Files and hashes: 1: W_YkOZCpRkyFt4I9tCbiq5ZyCjw.crl (hash: ag3fmWR088qXhdv2sV22X0TkBswbkrNCf9t0uypyUfk=) 2: 108B7DAAB2A711EAABBE8663C4F9AE02.roa (hash: qTuGE1JcRtd/cW9n5J8BXF2j1PTZne38og2GGYl8DqM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1E29/DD13F8F0B29F11EA9380C04BC4F9AE02/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.crl rsync://rpki.apnic.net/member_repository/A91D1E29/DD13F8F0B29F11EA9380C04BC4F9AE02/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Jun 2025 20:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2258 (0x8d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1E29, serialNumber=5BF6243990A9464C85B7823DB426E2AB96720A3C Validity Not Before: Jun 8 20:10:29 2025 GMT Not After : Jun 15 20:10:29 2025 GMT Subject: CN=6845ee35-d0bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:df:af:3f:3b:c0:86:2b:01:71:73:3f:94:a7: 34:a7:02:44:c5:8c:ca:22:cf:45:e5:cf:3b:c0:e5: 14:e3:cc:30:3a:07:f3:43:61:6d:2c:b3:25:1b:f6: bb:48:5d:4a:c3:06:03:29:68:c4:a9:10:57:e4:ab: 3f:80:fe:a4:45:01:2a:d8:83:8b:aa:7b:6c:4c:a1: b3:ec:66:2a:6e:ac:80:58:93:6d:18:c1:58:34:0d: 7e:a3:d3:43:2f:bd:a1:ab:18:e5:bd:d7:d2:0e:63: 51:e1:11:29:b0:f1:84:74:9c:e0:76:5b:a2:97:35: 32:aa:98:78:fc:7f:f4:d5:06:0f:f6:68:b3:7a:65: 4b:56:43:65:bd:3e:f6:20:b0:5f:51:44:9d:c8:fb: cc:aa:c3:19:f9:ed:27:00:24:a5:c5:fe:55:00:f3: aa:aa:75:40:28:c2:62:d8:d7:47:4e:41:3b:1b:c6: 75:51:8d:35:88:14:95:8d:ad:90:f3:fd:e6:61:95: c6:ad:18:2c:56:d3:4c:b0:8e:67:d8:36:c2:e7:b8: cc:25:d0:da:6f:70:e1:ad:ea:1f:77:5a:af:0e:54: c3:08:85:b4:52:2f:7a:81:0e:f2:5d:27:fc:a8:57: a4:06:10:e0:fc:f3:8f:b9:d8:d1:5e:a5:38:3c:8f: 69:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:8E:55:72:17:BB:D6:E1:6C:F0:72:A6:F8:50:AD:7E:3C:3D:FD:66 X509v3 Authority Key Identifier: keyid:5B:F6:24:39:90:A9:46:4C:85:B7:82:3D:B4:26:E2:AB:96:72:0A:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1E29/DD13F8F0B29F11EA9380C04BC4F9AE02/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1E29/DD13F8F0B29F11EA9380C04BC4F9AE02/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:04:26:d7:5e:9a:94:03:77:01:66:5b:fe:62:d3:7b:bf:cd: 99:f4:8f:a2:03:0b:ac:45:6e:df:5b:56:ec:b4:c9:bb:03:c5: f5:a5:51:0e:22:5d:55:ad:c0:e3:87:86:17:68:ee:18:9d:d6: ac:6c:63:47:f2:04:0f:1b:c8:7b:17:4d:1e:e8:b4:ef:55:b0: bc:b4:f5:32:68:7f:85:18:58:b9:46:44:10:be:77:5e:fe:a1: ec:f9:d5:e5:44:b0:56:b1:01:37:b3:87:51:aa:ad:9d:fa:1f: a7:17:83:e2:a5:d0:b8:45:68:c0:6e:82:0e:5f:62:bb:e3:94: 0c:bf:f5:28:03:f5:b1:68:37:90:13:52:16:11:a5:5d:24:0d: 6d:ca:83:8f:82:77:c4:7a:0f:4c:28:5d:77:17:8b:45:0f:96: 98:cf:40:84:bf:f9:52:1e:4d:c8:15:c8:04:d8:5a:43:f8:96: 17:d8:c1:e8:30:75:cc:17:10:bf:0f:ba:c9:13:c4:f8:b4:ea: 3c:35:ca:92:41:46:f0:c2:1b:ef:ab:12:79:62:52:6d:9a:bc: 72:be:34:0c:8e:a0:64:21:81:0c:cc:19:54:14:77:09:1a:f9: 14:f9:4b:8b:47:35:c1:94:d8:e3:4c:a6:d6:85:76:72:a5:36: 35:e3:54:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCNIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFFMjkxMTAvBgNVBAUTKDVCRjYyNDM5OTBBOTQ2NEM4NUI3ODIzREI0MjZFMkFC OTY3MjBBM0MwHhcNMjUwNjA4MjAxMDI5WhcNMjUwNjE1MjAxMDI5WjAYMRYwFAYD VQQDEw02ODQ1ZWUzNS1kMGJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2t+vPzvAhisBcXM/lKc0pwJExYzKIs9F5c87wOUU48wwOgfzQ2FtLLMlG/a7 SF1KwwYDKWjEqRBX5Ks/gP6kRQEq2IOLqntsTKGz7GYqbqyAWJNtGMFYNA1+o9ND L72hqxjlvdfSDmNR4REpsPGEdJzgdluilzUyqph4/H/01QYP9mizemVLVkNlvT72 ILBfUUSdyPvMqsMZ+e0nACSlxf5VAPOqqnVAKMJi2NdHTkE7G8Z1UY01iBSVja2Q 8/3mYZXGrRgsVtNMsI5n2DbC57jMJdDab3Dhreofd1qvDlTDCIW0Ui96gQ7yXSf8 qFekBhDg/POPudjRXqU4PI9pxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJiOVXIX u9bhbPBypvhQrX48Pf1mMB8GA1UdIwQYMBaAFFv2JDmQqUZMhbeCPbQm4quWcgo8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUUyOS9ERDEzRjhGMEIy OUYxMUVBOTM4MEMwNEJDNEY5QUUwMi9XX1lrT1pDcFJreUZ0NEk5dENiaXE1WnlD ancuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dfWWtPWkNwUmt5RnQ0STl0Q2JpcTVaeUNqdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MUUyOS9ERDEzRjhGMEIyOUYxMUVBOTM4MEMwNEJDNEY5QUUwMi9XX1lrT1pDcFJr eUZ0NEk5dENiaXE1WnlDancubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASBCbXXpqUA3cBZlv+YtN7v82Z9I+iAwusRW7fW1bstMm7A8X1pVEO Il1VrcDjh4YXaO4YndasbGNH8gQPG8h7F00e6LTvVbC8tPUyaH+FGFi5RkQQvnde /qHs+dXlRLBWsQE3s4dRqq2d+h+nF4PipdC4RWjAboIOX2K745QMv/UoA/WxaDeQ E1IWEaVdJA1tyoOPgnfEeg9MKF13F4tFD5aYz0CEv/lSHk3IFcgE2FpD+JYX2MHo MHXMFxC/D7rJE8T4tOo8NcqSQUbwwhvvqxJ5YlJtmrxyvjQMjqBkIYEMzBlUFHcJ GvkU+UuLRzXBlNjjTKbWhXZypTY141T+ -----END CERTIFICATE-----Generated at Tue Jun 10 22:17:23 2025 by rpki-client