$ rpki-client -vvf rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.mft File: sYTDX2rtv7hd2kET8nUuDInKOpA.mft (raw, json) Hash identifier: 9NVb01fBYXBh5kKiQr9Fj+3FLOxMUUu7yM8dTkzuhKU= Subject key identifier: 8F:95:1E:E7:38:D4:0D:F3:13:3B:8A:FA:0C:DE:F1:F3:AC:D2:47:32 Authority key identifier: B1:84:C3:5F:6A:ED:BF:B8:5D:DA:41:13:F2:75:2E:0C:89:CA:3A:90 Certificate issuer: /CN=A91F88F4/serialNumber=B184C35F6AEDBFB85DDA4113F2752E0C89CA3A90 Certificate serial: 0B02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sYTDX2rtv7hd2kET8nUuDInKOpA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.mft Manifest number: 0AFA Signing time: Mon 30 Jun 2025 19:31:37 +0000 Manifest this update: Mon 30 Jun 2025 19:31:36 +0000 Manifest next update: Mon 07 Jul 2025 19:31:36 +0000 Files and hashes: 1: sYTDX2rtv7hd2kET8nUuDInKOpA.crl (hash: tNps8N8kSaAgS6MDHZQQbGQNr6WS3Yk7Q3onHZ/yess=) 2: F9D16F1CC7D811EDB42DFF20C4F9AE02.roa (hash: +JzejbKc1NZP24NoPrMtMcVkZZ9hm7s276rW0zhe0b0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.crl rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sYTDX2rtv7hd2kET8nUuDInKOpA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 19:31:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2818 (0xb02) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F88F4, serialNumber=B184C35F6AEDBFB85DDA4113F2752E0C89CA3A90 Validity Not Before: Jun 30 19:31:36 2025 GMT Not After : Jul 7 19:31:36 2025 GMT Subject: CN=6862e619-ecd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:d1:1e:6c:60:61:46:73:53:5e:05:a7:be:f1: 80:e9:c1:c9:e6:9f:63:8f:5e:f1:3a:f9:7b:37:ad: 57:48:ca:5a:6c:79:4e:e8:50:46:e9:0a:b0:32:d4: 07:5a:9f:63:73:06:16:26:86:2c:88:d1:fd:8a:94: 10:97:11:61:7a:7f:43:9f:50:7f:69:62:11:95:3e: a3:f5:63:fe:73:c1:1e:6b:1b:da:aa:9c:c1:bf:a8: 35:51:04:9d:31:55:23:72:16:14:51:ea:18:c7:76: b4:a3:e0:7e:c3:a6:33:fd:d9:b1:f4:43:9f:5d:cc: fa:c8:70:13:45:d1:ad:5a:81:16:53:d3:8f:98:0c: 99:16:8d:0c:c6:cb:43:28:f4:04:89:e5:30:7e:d8: 57:15:ca:9e:68:92:ee:ce:b6:89:d5:db:b8:88:0f: 68:4d:81:9c:74:6e:f7:dc:7f:ec:58:eb:4b:f8:53: c6:eb:35:e1:ef:3d:d7:f1:4c:6a:e3:a3:bf:f7:fa: f1:73:37:d4:33:f3:7e:d9:db:63:8e:fb:86:6b:30: 12:67:96:e4:43:e2:0d:19:72:f7:e2:f7:8c:cb:d0: 20:dc:cf:2b:b8:85:87:e6:f4:4c:b5:b7:32:72:19: 9e:4d:af:3b:00:dc:25:72:d1:29:71:ff:da:81:53: e8:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:95:1E:E7:38:D4:0D:F3:13:3B:8A:FA:0C:DE:F1:F3:AC:D2:47:32 X509v3 Authority Key Identifier: keyid:B1:84:C3:5F:6A:ED:BF:B8:5D:DA:41:13:F2:75:2E:0C:89:CA:3A:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sYTDX2rtv7hd2kET8nUuDInKOpA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:f2:33:aa:47:47:5c:26:ee:87:76:c5:7b:30:01:90:ba:8e: 25:29:84:07:22:9c:73:a4:a9:69:c2:10:e8:b4:6e:38:b5:bc: d2:c6:52:00:c4:9b:95:b9:c6:27:3b:a8:9b:c0:ff:ed:a4:62: d0:c0:04:d7:2a:43:5b:b5:0b:29:9b:f9:e1:ae:bd:63:1e:58: bb:87:85:18:2e:47:f1:5b:47:5c:0a:77:e8:e8:e9:2a:f9:07: 63:4d:6c:3f:bd:bd:42:c7:a5:e9:16:eb:3b:96:22:1e:01:e7: f6:ff:f6:d9:3c:75:f1:5b:96:1f:c5:a6:26:fb:f8:cb:be:16: e3:9b:59:5e:26:dc:45:0a:63:17:f0:e6:02:60:a1:6c:d0:bf: 63:1b:65:76:54:d1:67:68:49:d9:5e:dc:d6:63:76:17:35:c1: d8:3c:df:78:68:e2:df:5f:04:a9:16:bb:38:d0:14:d1:85:d5: b1:f8:c7:ea:ef:30:8f:82:06:79:40:cf:7b:c3:6f:f5:84:5b: d7:e1:2c:86:7f:ee:12:e4:12:1b:53:b9:0d:ef:15:fe:41:43: a4:69:f3:2a:77:a6:ae:2a:e3:d5:f1:92:32:88:a3:bf:68:43: d1:c2:01:90:8f:f3:27:28:39:aa:29:28:80:e1:56:41:84:56: 59:ae:37:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg4RjQxMTAvBgNVBAUTKEIxODRDMzVGNkFFREJGQjg1RERBNDExM0YyNzUyRTBD ODlDQTNBOTAwHhcNMjUwNjMwMTkzMTM2WhcNMjUwNzA3MTkzMTM2WjAYMRYwFAYD VQQDEw02ODYyZTYxOS1lY2QzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA09EebGBhRnNTXgWnvvGA6cHJ5p9jj17xOvl7N61XSMpabHlO6FBG6QqwMtQH Wp9jcwYWJoYsiNH9ipQQlxFhen9Dn1B/aWIRlT6j9WP+c8EeaxvaqpzBv6g1UQSd MVUjchYUUeoYx3a0o+B+w6Yz/dmx9EOfXcz6yHATRdGtWoEWU9OPmAyZFo0MxstD KPQEieUwfthXFcqeaJLuzraJ1du4iA9oTYGcdG733H/sWOtL+FPG6zXh7z3X8Uxq 46O/9/rxczfUM/N+2dtjjvuGazASZ5bkQ+INGXL34veMy9Ag3M8ruIWH5vRMtbcy chmeTa87ANwlctEpcf/agVPohwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI+VHuc4 1A3zEzuK+gze8fOs0kcyMB8GA1UdIwQYMBaAFLGEw19q7b+4XdpBE/J1LgyJyjqQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODhGNC8wN0FFNzdDQzQ4 Q0MxMUVBQUVGNTAxNTFDNEY5QUUwMi9zWVREWDJydHY3aGQya0VUOG5VdURJbktP cEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NZVERYMnJ0djdoZDJrRVQ4blV1REluS09wQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODhGNC8wN0FFNzdDQzQ4Q0MxMUVBQUVGNTAxNTFDNEY5QUUwMi9zWVREWDJydHY3 aGQya0VUOG5VdURJbktPcEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAh8jOqR0dcJu6HdsV7MAGQuo4lKYQHIpxzpKlpwhDotG44tbzSxlIA xJuVucYnO6ibwP/tpGLQwATXKkNbtQspm/nhrr1jHli7h4UYLkfxW0dcCnfo6Okq +QdjTWw/vb1Cx6XpFus7liIeAef2//bZPHXxW5YfxaYm+/jLvhbjm1leJtxFCmMX 8OYCYKFs0L9jG2V2VNFnaEnZXtzWY3YXNcHYPN94aOLfXwSpFrs40BTRhdWx+Mfq 7zCPggZ5QM97w2/1hFvX4SyGf+4S5BIbU7kN7xX+QUOkafMqd6auKuPV8ZIyiKO/ aEPRwgGQj/MnKDmqKSiA4VZBhFZZrjcM -----END CERTIFICATE-----Generated at Tue Jul 1 19:51:39 2025 by rpki-client