$ rpki-client -vvf rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft File: YDUU_FCDUUDwM--oQ87pOWOWol0.mft (raw, json) Hash identifier: OkTDzQTITNHjgT72P/nGM1v4KabP6bPbS9+giMiPWiU= Subject key identifier: 20:7E:B3:9D:A1:16:5A:99:15:C9:71:8D:5B:AF:68:55:76:BD:70:C1 Authority key identifier: 60:35:14:FC:50:83:51:40:F0:33:EF:A8:43:CE:E9:39:63:96:A2:5D Certificate issuer: /CN=A91118FA/serialNumber=603514FC50835140F033EFA843CEE9396396A25D Certificate serial: 0B13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDUU_FCDUUDwM--oQ87pOWOWol0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft Manifest number: 0B0D Signing time: Fri 30 May 2025 19:27:04 +0000 Manifest this update: Fri 30 May 2025 19:27:04 +0000 Manifest next update: Fri 06 Jun 2025 19:27:04 +0000 Files and hashes: 1: YDUU_FCDUUDwM--oQ87pOWOWol0.crl (hash: b0c3CvYnfCl8IBP/M4dGMhSjty7JeanDP9Ib6OKx53A=) 2: 42EE36A240EC11EA875BC545C4F9AE02.roa (hash: YIrw4KxM8ISIt1Ah1KvT99pW3vrO49ALdJTT54SyTO8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.crl rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDUU_FCDUUDwM--oQ87pOWOWol0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2835 (0xb13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91118FA, serialNumber=603514FC50835140F033EFA843CEE9396396A25D Validity Not Before: May 30 19:27:04 2025 GMT Not After : Jun 6 19:27:04 2025 GMT Subject: CN=683a0688-db0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:a2:20:59:2f:e7:4d:1b:50:73:e4:fc:cd:35: eb:cb:be:66:7e:14:97:1a:55:40:6a:5c:51:54:c8: 3e:e9:19:98:7b:a5:a8:ce:1a:c5:5d:00:b2:bb:d1: 5f:bc:75:cc:a3:08:80:cb:3b:0b:12:a8:d2:82:55: 97:ce:4c:e4:89:cb:eb:93:ee:54:d1:ce:b5:0f:e8: 73:90:26:3e:af:08:fd:29:59:23:22:eb:80:d5:e2: 76:b1:2d:d7:34:df:1f:a9:56:94:46:3c:e4:6a:d1: 85:61:71:65:7c:23:09:d5:1e:93:47:2c:ae:03:4c: 78:8e:84:25:d9:52:51:a8:d2:e7:4b:9b:68:12:dc: ba:7f:80:7f:d9:c7:e3:0b:f2:cd:60:e3:20:3e:3a: c9:72:8b:83:74:41:0b:09:0f:92:98:ec:4f:14:52: 01:aa:bd:9a:30:b5:69:a0:94:5a:64:e9:42:fe:f9: 2d:b9:3d:58:42:3d:03:cb:36:7e:82:ac:91:21:78: 5e:65:e9:99:cb:c9:52:3d:a9:28:73:94:25:8d:fb: f9:90:32:cb:7c:b7:8a:ee:9e:76:69:c9:b5:af:e8: a1:03:96:ae:ef:ab:14:45:45:5c:86:7a:11:65:98: b3:a6:21:2e:c7:9a:98:2b:0e:4c:88:d2:68:06:75: 0c:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:7E:B3:9D:A1:16:5A:99:15:C9:71:8D:5B:AF:68:55:76:BD:70:C1 X509v3 Authority Key Identifier: keyid:60:35:14:FC:50:83:51:40:F0:33:EF:A8:43:CE:E9:39:63:96:A2:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDUU_FCDUUDwM--oQ87pOWOWol0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:54:ea:02:d1:df:0f:d0:c1:75:cb:b6:9b:6a:f4:b2:62:9d: 88:35:4b:fc:62:65:73:05:70:be:db:e9:cd:01:11:1f:62:d2: 99:ff:12:b4:77:44:82:3b:71:d2:c9:92:cc:41:15:8b:8f:98: c2:ce:0b:0b:3a:cc:81:c3:a9:24:47:de:eb:62:42:1a:93:aa: e8:a6:25:52:92:77:92:61:b4:af:7d:f5:24:b4:0c:a0:e7:f2: 9c:29:36:56:22:29:7f:a5:bb:3e:65:ea:b4:5a:36:91:bc:16: 60:cc:49:6f:c7:c9:a5:10:de:9c:c1:90:70:a9:59:77:98:ad: 98:68:b0:90:db:7e:42:76:f2:5a:f0:cd:6b:ac:e9:fe:d3:36: f9:71:ba:77:d8:ca:51:12:95:b8:ba:89:e5:f9:75:64:2c:db: 40:a9:3b:cd:81:79:a4:76:4c:87:d0:1e:42:84:a3:95:5f:81: 58:ce:fc:77:ce:92:57:d6:2d:4f:20:05:4d:c5:5f:41:31:ac: 70:a0:af:da:7b:be:55:89:09:9a:12:93:8a:f4:3b:52:35:b7: dc:fb:76:d6:ea:3d:89:e3:8b:2f:11:9d:6b:40:42:d9:ac:cc: 00:8b:3b:6e:57:a4:64:5e:4a:94:d1:db:86:73:0e:85:c0:9c: 2d:b5:84:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTE4RkExMTAvBgNVBAUTKDYwMzUxNEZDNTA4MzUxNDBGMDMzRUZBODQzQ0VFOTM5 NjM5NkEyNUQwHhcNMjUwNTMwMTkyNzA0WhcNMjUwNjA2MTkyNzA0WjAYMRYwFAYD VQQDEw02ODNhMDY4OC1kYjBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5KIgWS/nTRtQc+T8zTXry75mfhSXGlVAalxRVMg+6RmYe6WozhrFXQCyu9Ff vHXMowiAyzsLEqjSglWXzkzkicvrk+5U0c61D+hzkCY+rwj9KVkjIuuA1eJ2sS3X NN8fqVaURjzkatGFYXFlfCMJ1R6TRyyuA0x4joQl2VJRqNLnS5toEty6f4B/2cfj C/LNYOMgPjrJcouDdEELCQ+SmOxPFFIBqr2aMLVpoJRaZOlC/vktuT1YQj0DyzZ+ gqyRIXheZemZy8lSPakoc5Qljfv5kDLLfLeK7p52acm1r+ihA5au76sURUVchnoR ZZizpiEux5qYKw5MiNJoBnUMmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCB+s52h FlqZFclxjVuvaFV2vXDBMB8GA1UdIwQYMBaAFGA1FPxQg1FA8DPvqEPO6TljlqJd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMThGQS85ODQyNDQ5QzQw RUExMUVBQkIwMUJENDJDNEY5QUUwMi9ZRFVVX0ZDRFVVRHdNLS1vUTg3cE9XT1dv bDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lEVVVfRkNEVVVEd00tLW9RODdwT1dPV29sMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MThGQS85ODQyNDQ5QzQwRUExMUVBQkIwMUJENDJDNEY5QUUwMi9ZRFVVX0ZDRFVV RHdNLS1vUTg3cE9XT1dvbDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNVOoC0d8P0MF1y7abavSyYp2INUv8YmVzBXC+2+nNAREfYtKZ/xK0 d0SCO3HSyZLMQRWLj5jCzgsLOsyBw6kkR97rYkIak6ropiVSkneSYbSvffUktAyg 5/KcKTZWIil/pbs+Zeq0WjaRvBZgzElvx8mlEN6cwZBwqVl3mK2YaLCQ235CdvJa 8M1rrOn+0zb5cbp32MpREpW4uonl+XVkLNtAqTvNgXmkdkyH0B5ChKOVX4FYzvx3 zpJX1i1PIAVNxV9BMaxwoK/ae75ViQmaEpOK9DtSNbfc+3bW6j2J44svEZ1rQELZ rMwAiztuV6RkXkqU0duGcw6FwJwttYSO -----END CERTIFICATE-----Generated at Sat May 31 17:53:15 2025 by rpki-client