$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft File: yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft (raw, json) Hash identifier: b3wyPuOBEmlkHFOnPn0o9LfVIg9bU7tbC4gZV2rkqHM= Subject key identifier: AC:3B:E2:01:F5:1F:E6:0B:71:56:33:67:EB:00:C1:82:A2:F3:37:7B Authority key identifier: CA:A6:EB:99:B3:FE:0E:FB:65:D3:8F:15:B2:AA:E4:DC:39:DA:B3:1D Certificate issuer: /CN=A91DE352/serialNumber=CAA6EB99B3FE0EFB65D38F15B2AAE4DC39DAB31D Certificate serial: 0526 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqbrmbP-Dvtl048Vsqrk3Dnasx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft Manifest number: 0521 Signing time: Wed 04 Jun 2025 23:25:58 +0000 Manifest this update: Wed 04 Jun 2025 23:25:57 +0000 Manifest next update: Wed 11 Jun 2025 23:25:57 +0000 Files and hashes: 1: yqbrmbP-Dvtl048Vsqrk3Dnasx0.crl (hash: mlCKhWcVL0hGySjsgHfDlglIlo+o2BeoLOcCOxJ2SFE=) 2: F1C77A3C73E711ECA415F87FC4F9AE02.roa (hash: 2CyIyNp44NxNr2SQi/2YfeBSUBR+fj5EogTGvnYWavo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.crl rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqbrmbP-Dvtl048Vsqrk3Dnasx0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 23:25:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1318 (0x526) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE352, serialNumber=CAA6EB99B3FE0EFB65D38F15B2AAE4DC39DAB31D Validity Not Before: Jun 4 23:25:57 2025 GMT Not After : Jun 11 23:25:57 2025 GMT Subject: CN=6840d606-92c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:98:2e:c1:46:94:fe:f6:68:b3:93:f2:1c:01: 24:67:1a:65:8a:65:b4:65:7d:8c:36:3e:f6:e2:b4: 63:b9:ac:2d:f6:a8:83:b3:d6:f8:05:77:a5:dd:a5: dc:78:44:89:93:24:d0:68:76:9d:f1:d4:7a:75:7c: 11:79:fd:f1:06:12:54:06:68:4d:1a:18:d2:e0:9c: e2:10:d2:49:5d:fb:86:04:f6:60:50:67:40:16:3f: 33:6d:2b:96:fd:5d:a3:c1:08:5f:dd:35:00:0e:f5: cf:ab:21:01:d8:b8:6c:b3:df:e8:b6:9a:dd:0d:d5: 68:54:0c:ff:35:f7:ec:6f:b6:41:b2:a8:6a:d8:7e: 4a:5c:37:f8:7f:23:d1:6d:c5:d0:04:1c:3a:7a:12: df:b1:e1:8c:56:c8:9a:2d:d0:2e:b9:da:ae:f5:33: f1:a1:43:bd:4b:eb:ac:d0:b9:c5:db:60:79:48:d7: df:ad:39:57:e2:82:4f:66:f6:be:53:3a:b1:18:3e: 00:03:f0:23:8c:b2:f7:bc:d7:12:50:bf:5c:65:8c: 8d:01:07:d5:d2:fe:7b:bb:6d:ae:a4:97:c9:7d:cb: 91:98:95:e3:c1:b8:f8:7d:6c:d9:95:57:26:4a:e6: ab:aa:81:7c:47:90:f0:f1:cc:af:66:7c:62:a0:0b: 7c:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:3B:E2:01:F5:1F:E6:0B:71:56:33:67:EB:00:C1:82:A2:F3:37:7B X509v3 Authority Key Identifier: keyid:CA:A6:EB:99:B3:FE:0E:FB:65:D3:8F:15:B2:AA:E4:DC:39:DA:B3:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqbrmbP-Dvtl048Vsqrk3Dnasx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:70:f4:2c:d5:61:69:6e:06:c4:15:a6:0e:29:de:70:17:a6: 42:3e:17:b2:fc:ea:6a:4d:da:fb:3d:d0:58:a5:d1:ac:2a:7d: 05:51:ec:f6:de:93:66:4d:6c:08:21:38:40:d3:93:68:c4:f3: cd:cb:26:59:1c:a4:4d:92:8b:51:80:f9:80:76:f9:86:d6:78: 8e:27:96:b2:75:01:df:06:d1:a0:bb:dc:7b:7c:a8:6b:42:c4: 37:1b:6c:2e:8e:1e:c0:b7:fd:be:60:61:cf:f4:ff:41:05:27: 31:39:1c:3a:6b:9e:e5:c3:71:f4:e9:44:c5:a2:a0:8c:29:f8: 6b:bb:e6:a1:5e:31:ee:25:2b:89:6a:73:0e:45:72:8b:74:b5: 82:32:1b:6b:38:5d:90:41:15:66:fa:bf:d5:89:da:cb:bb:6d: af:ec:d0:c5:22:ec:db:24:01:38:36:af:5f:dd:6c:11:d9:7e: a7:31:f7:32:7b:e8:b5:5d:7e:19:5f:48:d4:cb:72:4b:83:2b: 61:5b:27:b9:22:4f:6b:2a:88:79:e6:6c:ee:0a:77:24:83:f6: 92:7a:ad:0e:80:8e:10:e7:77:6f:97:48:e4:57:39:9a:94:ca: 24:d0:5d:7b:d6:e2:69:70:58:49:e4:6f:63:5a:ca:47:1d:7c: d2:9f:b4:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REUzNTIxMTAvBgNVBAUTKENBQTZFQjk5QjNGRTBFRkI2NUQzOEYxNUIyQUFFNERD MzlEQUIzMUQwHhcNMjUwNjA0MjMyNTU3WhcNMjUwNjExMjMyNTU3WjAYMRYwFAYD VQQDEw02ODQwZDYwNi05MmMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyZguwUaU/vZos5PyHAEkZxplimW0ZX2MNj724rRjuawt9qiDs9b4BXel3aXc eESJkyTQaHad8dR6dXwRef3xBhJUBmhNGhjS4JziENJJXfuGBPZgUGdAFj8zbSuW /V2jwQhf3TUADvXPqyEB2Lhss9/otprdDdVoVAz/Nffsb7ZBsqhq2H5KXDf4fyPR bcXQBBw6ehLfseGMVsiaLdAuudqu9TPxoUO9S+us0LnF22B5SNffrTlX4oJPZva+ UzqxGD4AA/AjjLL3vNcSUL9cZYyNAQfV0v57u22upJfJfcuRmJXjwbj4fWzZlVcm SuarqoF8R5Dw8cyvZnxioAt8bQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKw74gH1 H+YLcVYzZ+sAwYKi8zd7MB8GA1UdIwQYMBaAFMqm65mz/g77ZdOPFbKq5Nw52rMd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTM1Mi9DOEUyMkU4QTAx MTYxMUVDOUNDREU3MjJDNEY5QUUwMi95cWJybWJQLUR2dGwwNDhWc3FyazNEbmFz eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lxYnJtYlAtRHZ0bDA0OFZzcXJrM0RuYXN4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTM1Mi9DOEUyMkU4QTAxMTYxMUVDOUNDREU3MjJDNEY5QUUwMi95cWJybWJQLUR2 dGwwNDhWc3FyazNEbmFzeDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMcPQs1WFpbgbEFaYOKd5wF6ZCPhey/OpqTdr7PdBYpdGsKn0FUez2 3pNmTWwIIThA05NoxPPNyyZZHKRNkotRgPmAdvmG1niOJ5aydQHfBtGgu9x7fKhr QsQ3G2wujh7At/2+YGHP9P9BBScxORw6a57lw3H06UTFoqCMKfhru+ahXjHuJSuJ anMORXKLdLWCMhtrOF2QQRVm+r/VidrLu22v7NDFIuzbJAE4Nq9f3WwR2X6nMfcy e+i1XX4ZX0jUy3JLgythWye5Ik9rKoh55mzuCnckg/aSeq0OgI4Q53dvl0jkVzma lMok0F171uJpcFhJ5G9jWspHHXzSn7Qd -----END CERTIFICATE-----Generated at Thu Jun 5 20:06:42 2025 by rpki-client