$ rpki-client -vvf rpki.apnic.net/member_repository/A91F65C7/ED0FB686C3E411EE9613F583C4F9AE02/hYtkVOIiRseB5RNSswVkEJhoV34.mft File: hYtkVOIiRseB5RNSswVkEJhoV34.mft (raw, json) Hash identifier: Mkhn8JPq9wTzZXRdmaXRkbzkBrdPxYDZg36Ig/0EvaM= Subject key identifier: 7B:BF:54:29:E2:12:C7:A0:5D:D8:7C:AB:93:DF:79:20:4E:D9:81:2B Authority key identifier: 85:8B:64:54:E2:22:46:C7:81:E5:13:52:B3:05:64:10:98:68:57:7E Certificate issuer: /CN=A91F65C7/serialNumber=858B6454E22246C781E51352B30564109868577E Certificate serial: F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYtkVOIiRseB5RNSswVkEJhoV34.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F65C7/ED0FB686C3E411EE9613F583C4F9AE02/hYtkVOIiRseB5RNSswVkEJhoV34.mft Manifest number: F9 Signing time: Sat 07 Jun 2025 04:43:12 +0000 Manifest this update: Sat 07 Jun 2025 04:43:11 +0000 Manifest next update: Sat 14 Jun 2025 04:43:11 +0000 Files and hashes: 1: hYtkVOIiRseB5RNSswVkEJhoV34.crl (hash: 1XncKcd4Ld9e0NYop919lNvyho7SpRvLoLRuLm9dpc0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F65C7/ED0FB686C3E411EE9613F583C4F9AE02/hYtkVOIiRseB5RNSswVkEJhoV34.crl rsync://rpki.apnic.net/member_repository/A91F65C7/ED0FB686C3E411EE9613F583C4F9AE02/hYtkVOIiRseB5RNSswVkEJhoV34.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYtkVOIiRseB5RNSswVkEJhoV34.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Jun 2025 04:43:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 249 (0xf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F65C7, serialNumber=858B6454E22246C781E51352B30564109868577E Validity Not Before: Jun 7 04:43:11 2025 GMT Not After : Jun 14 04:43:11 2025 GMT Subject: CN=6843c360-b340 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:c1:2b:ef:21:a9:4f:27:37:6f:88:8c:44:39: 3c:78:4b:15:38:1a:55:0d:a4:19:5c:e5:48:bb:d0: 47:d5:62:52:c4:c2:77:da:35:af:d0:8e:66:57:c0: af:27:08:90:f9:9b:a1:f9:a9:50:22:4c:ea:ae:31: 4d:92:97:3b:8a:ac:a4:32:26:01:43:ea:6b:02:ba: 54:d8:91:f3:b7:36:09:2f:a0:f3:2d:25:fe:28:dc: 93:33:1a:ed:af:b8:e7:e9:a1:5c:51:da:83:b1:0d: 58:b6:79:7b:1a:20:4c:af:23:57:25:7f:ef:02:52: 5c:ae:df:cf:0a:f5:2a:fb:61:ed:d9:f0:c7:bf:0c: f5:e5:17:c4:79:a8:7f:e2:08:ca:07:76:63:2b:89: f6:b6:a6:be:f7:d1:3a:70:92:41:58:98:71:cf:96: 63:15:2c:7f:62:ce:36:d7:fd:a3:42:70:90:41:b5: 75:6e:3f:e6:aa:0f:2e:cf:f8:85:58:54:42:ac:8f: c2:2c:58:f5:d5:51:b9:ec:0c:5e:9d:86:94:66:5b: a0:04:61:d2:86:6e:00:8d:87:5e:5e:7a:76:df:87: b2:ec:b4:2b:32:6b:d7:1e:10:70:cf:2d:40:16:79: c1:6d:ae:37:d0:78:04:44:65:c5:73:58:2d:e8:46: a1:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:BF:54:29:E2:12:C7:A0:5D:D8:7C:AB:93:DF:79:20:4E:D9:81:2B X509v3 Authority Key Identifier: keyid:85:8B:64:54:E2:22:46:C7:81:E5:13:52:B3:05:64:10:98:68:57:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F65C7/ED0FB686C3E411EE9613F583C4F9AE02/hYtkVOIiRseB5RNSswVkEJhoV34.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYtkVOIiRseB5RNSswVkEJhoV34.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F65C7/ED0FB686C3E411EE9613F583C4F9AE02/hYtkVOIiRseB5RNSswVkEJhoV34.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:2a:31:c5:c7:52:05:b4:4f:f6:8d:ae:6b:b1:fe:26:70:5c: eb:a2:c7:02:46:e9:a8:3f:68:aa:99:79:3b:db:2e:9e:88:22: 8d:3c:a6:f2:f1:0d:7c:84:c5:30:4a:c9:76:07:b0:79:ff:26: e5:5a:19:89:48:4e:2f:4a:0d:67:f2:b3:7a:f3:85:5b:4b:61: 0b:fd:57:ce:f0:4d:de:9c:48:77:10:dc:20:35:e8:37:3a:5a: a2:af:75:5f:c4:ad:b7:9f:83:56:f9:df:6a:3a:ef:aa:0f:b9: 13:ab:be:8b:22:f2:b6:fd:7d:d4:bc:4d:1d:30:92:90:e4:89: b1:b1:c3:a4:e9:5e:07:a6:52:cb:09:3b:24:cb:fb:53:a5:d5: 0f:70:68:6b:14:93:20:f8:5d:04:70:85:62:b2:9b:8e:7e:53: d1:26:e8:49:0f:5b:23:ce:d2:06:b3:d2:c6:09:0b:1b:02:5c: 9a:8b:4c:55:a3:1e:3e:41:9b:a4:9d:df:4c:02:cb:76:8f:ec: 6f:f1:3f:8a:59:62:9d:41:20:f1:7a:92:cb:87:8f:4d:c4:b1: b5:6a:05:c0:6d:a3:8a:58:0d:a1:50:0f:7c:cb:05:8f:dd:fb: 74:3e:ff:76:85:40:89:18:fb:aa:09:c6:54:69:79:3f:b2:ca: 58:68:5b:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY1QzcxMTAvBgNVBAUTKDg1OEI2NDU0RTIyMjQ2Qzc4MUU1MTM1MkIzMDU2NDEw OTg2ODU3N0UwHhcNMjUwNjA3MDQ0MzExWhcNMjUwNjE0MDQ0MzExWjAYMRYwFAYD VQQDEw02ODQzYzM2MC1iMzQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4MEr7yGpTyc3b4iMRDk8eEsVOBpVDaQZXOVIu9BH1WJSxMJ32jWv0I5mV8Cv JwiQ+Zuh+alQIkzqrjFNkpc7iqykMiYBQ+prArpU2JHztzYJL6DzLSX+KNyTMxrt r7jn6aFcUdqDsQ1Ytnl7GiBMryNXJX/vAlJcrt/PCvUq+2Ht2fDHvwz15RfEeah/ 4gjKB3ZjK4n2tqa+99E6cJJBWJhxz5ZjFSx/Ys421/2jQnCQQbV1bj/mqg8uz/iF WFRCrI/CLFj11VG57AxenYaUZlugBGHShm4AjYdeXnp234ey7LQrMmvXHhBwzy1A FnnBba430HgERGXFc1gt6EahOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHu/VCni EsegXdh8q5PfeSBO2YErMB8GA1UdIwQYMBaAFIWLZFTiIkbHgeUTUrMFZBCYaFd+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjVDNy9FRDBGQjY4NkMz RTQxMUVFOTYxM0Y1ODNDNEY5QUUwMi9oWXRrVk9JaVJzZUI1Uk5Tc3dWa0VKaG9W MzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hZdGtWT0lpUnNlQjVSTlNzd1ZrRUpob1YzNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjVDNy9FRDBGQjY4NkMzRTQxMUVFOTYxM0Y1ODNDNEY5QUUwMi9oWXRrVk9JaVJz ZUI1Uk5Tc3dWa0VKaG9WMzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOKjHFx1IFtE/2ja5rsf4mcFzroscCRumoP2iqmXk72y6eiCKNPKby 8Q18hMUwSsl2B7B5/yblWhmJSE4vSg1n8rN684VbS2EL/VfO8E3enEh3ENwgNeg3 Olqir3VfxK23n4NW+d9qOu+qD7kTq76LIvK2/X3UvE0dMJKQ5ImxscOk6V4HplLL CTsky/tTpdUPcGhrFJMg+F0EcIVispuOflPRJuhJD1sjztIGs9LGCQsbAlyai0xV ox4+QZuknd9MAst2j+xv8T+KWWKdQSDxepLLh49NxLG1agXAbaOKWA2hUA98ywWP 3ft0Pv92hUCJGPuqCcZUaXk/sspYaFtZ -----END CERTIFICATE-----Generated at Sun Jun 8 06:17:15 2025 by rpki-client