$ rpki-client -vvf rpki.apnic.net/member_repository/A9117373/BFA9C36223AA11ECA8116B27C4F9AE02/YYQdHtq_n_D2AYxhEBevcZYnok0.mft File: YYQdHtq_n_D2AYxhEBevcZYnok0.mft (raw, json) Hash identifier: wAe92mWRsDztI8S8E6wKZftGNmhzXOuy8bQihd8CadI= Subject key identifier: D5:61:A7:29:72:DA:65:75:B9:42:6B:04:EA:08:C1:B6:59:2E:60:37 Authority key identifier: 61:84:1D:1E:DA:BF:9F:F0:F6:01:8C:61:10:17:AF:71:96:27:A2:4D Certificate issuer: /CN=A9117373/serialNumber=61841D1EDABF9FF0F6018C611017AF719627A24D Certificate serial: 0529 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YYQdHtq_n_D2AYxhEBevcZYnok0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117373/BFA9C36223AA11ECA8116B27C4F9AE02/YYQdHtq_n_D2AYxhEBevcZYnok0.mft Manifest number: 04FF Signing time: Sat 31 May 2025 00:00:59 +0000 Manifest this update: Sat 31 May 2025 00:00:59 +0000 Manifest next update: Sat 07 Jun 2025 00:00:59 +0000 Files and hashes: 1: YYQdHtq_n_D2AYxhEBevcZYnok0.crl (hash: ugNPqQyjiwbXnzsenoYujqv0CA/CadQCI9ef4MJvP7w=) 2: E6F081CAB4D111EFB518113FC4F9AE02.roa (hash: gmtg83b40Tkb+D3gBbZ+Di+lUHrNe5TxNxrJ6h+P2/o=) 3: CBCD14C8471B11EEABCACF68C4F9AE02.roa (hash: UQXQ0zih1R4yEWTzxa6D1G/eVXXNcEV+g1pp2duHg7A=) 4: CF9E64BED65711EE8623B920C4F9AE02.roa (hash: KFSR8nqG2sOGDYAgAFeqv4yoVxNtWdp8vNs36B/HOmY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117373/BFA9C36223AA11ECA8116B27C4F9AE02/YYQdHtq_n_D2AYxhEBevcZYnok0.crl rsync://rpki.apnic.net/member_repository/A9117373/BFA9C36223AA11ECA8116B27C4F9AE02/YYQdHtq_n_D2AYxhEBevcZYnok0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YYQdHtq_n_D2AYxhEBevcZYnok0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1321 (0x529) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117373, serialNumber=61841D1EDABF9FF0F6018C611017AF719627A24D Validity Not Before: May 31 00:00:59 2025 GMT Not After : Jun 7 00:00:59 2025 GMT Subject: CN=683a46bb-f56c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:7b:f9:97:05:17:53:23:b5:de:a6:89:43:22: 7f:c8:35:49:77:da:35:bd:8a:b5:0c:c2:06:6c:79: 61:39:5c:5b:4e:59:4b:0b:12:5d:5f:68:fb:dc:c0: e9:64:91:af:bc:01:37:00:f2:47:be:92:e6:e7:be: 26:98:1a:3d:9a:f6:09:d3:e6:01:79:cd:5b:71:52: 4c:e9:db:11:19:d0:6b:51:38:cd:c5:2f:b2:44:de: 52:0c:0b:7b:06:e6:c9:78:6c:32:08:68:49:ca:de: 52:2d:79:06:63:6d:51:87:47:37:66:ba:37:d5:68: 41:86:f2:92:cd:24:98:26:bb:6c:f8:60:43:76:fd: 2d:5f:13:c4:01:96:7a:e5:ac:65:f8:96:38:4b:57: 1f:58:ed:6b:09:2a:4a:40:7e:af:24:2e:e6:49:34: 71:73:c1:52:3e:b0:4d:28:67:e7:48:ce:fd:56:4e: 6a:02:74:58:19:7e:c7:7e:aa:39:ff:73:08:01:c6: 6e:19:7a:93:4f:61:bf:41:a1:5e:94:36:8b:c4:fb: 17:f1:19:8c:8f:83:c3:b7:5b:fe:b0:f8:47:e2:0d: 2c:d6:e2:f7:25:b6:3b:61:d1:2b:a6:11:56:6a:c1: 1b:74:db:fe:da:57:2d:28:e3:76:ac:b8:a3:9d:63: 49:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:61:A7:29:72:DA:65:75:B9:42:6B:04:EA:08:C1:B6:59:2E:60:37 X509v3 Authority Key Identifier: keyid:61:84:1D:1E:DA:BF:9F:F0:F6:01:8C:61:10:17:AF:71:96:27:A2:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117373/BFA9C36223AA11ECA8116B27C4F9AE02/YYQdHtq_n_D2AYxhEBevcZYnok0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YYQdHtq_n_D2AYxhEBevcZYnok0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117373/BFA9C36223AA11ECA8116B27C4F9AE02/YYQdHtq_n_D2AYxhEBevcZYnok0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:26:89:af:e4:75:81:e0:f7:81:07:f0:0e:8d:9e:03:01:c2: a9:3a:f6:58:17:da:1a:ba:99:c7:53:98:81:b8:ae:33:3b:ff: 43:6b:1d:50:77:88:08:05:c9:93:42:a1:e0:14:be:65:c8:4b: 7c:64:a3:25:69:aa:36:a3:d6:79:f1:76:3b:db:dd:fa:ca:17: 4c:be:89:c4:2c:b0:bc:01:67:78:b6:cb:69:4c:96:e0:e6:6d: 20:35:b8:d5:cc:49:85:e5:15:19:24:a9:40:b1:f1:d8:16:8d: d3:0d:73:c3:7a:e8:4a:ab:0f:ca:99:7c:09:8d:ac:a1:0b:82: 72:5a:8f:88:d3:cb:af:5d:1c:95:ac:da:8d:0c:ba:43:e4:f2: 9a:f0:5f:b3:69:35:52:35:9a:04:a9:b1:50:43:69:d0:db:b0: 43:97:b2:75:fc:0a:d8:6f:d0:13:f5:53:54:6d:fc:49:90:8d: d7:f1:ea:13:fb:c8:54:0f:17:25:75:79:a7:a9:ac:5b:94:0a: 9e:0a:c0:6a:cc:9b:43:1f:34:f3:94:49:7c:7d:be:c9:83:2f: 24:f5:33:08:f4:7a:fb:a7:c9:a6:d9:14:2a:2a:cd:2d:82:19: 98:80:ce:86:83:e2:e6:b5:fc:1f:04:3b:af:b8:d0:bc:6b:6b: e0:51:e5:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTczNzMxMTAvBgNVBAUTKDYxODQxRDFFREFCRjlGRjBGNjAxOEM2MTEwMTdBRjcx OTYyN0EyNEQwHhcNMjUwNTMxMDAwMDU5WhcNMjUwNjA3MDAwMDU5WjAYMRYwFAYD VQQDEw02ODNhNDZiYi1mNTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Hv5lwUXUyO13qaJQyJ/yDVJd9o1vYq1DMIGbHlhOVxbTllLCxJdX2j73MDp ZJGvvAE3APJHvpLm574mmBo9mvYJ0+YBec1bcVJM6dsRGdBrUTjNxS+yRN5SDAt7 BubJeGwyCGhJyt5SLXkGY21Rh0c3Zro31WhBhvKSzSSYJrts+GBDdv0tXxPEAZZ6 5axl+JY4S1cfWO1rCSpKQH6vJC7mSTRxc8FSPrBNKGfnSM79Vk5qAnRYGX7Hfqo5 /3MIAcZuGXqTT2G/QaFelDaLxPsX8RmMj4PDt1v+sPhH4g0s1uL3JbY7YdErphFW asEbdNv+2lctKON2rLijnWNJfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNVhpyly 2mV1uUJrBOoIwbZZLmA3MB8GA1UdIwQYMBaAFGGEHR7av5/w9gGMYRAXr3GWJ6JN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzM3My9CRkE5QzM2MjIz QUExMUVDQTgxMTZCMjdDNEY5QUUwMi9ZWVFkSHRxX25fRDJBWXhoRUJldmNaWW5v azAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lZUWRIdHFfbl9EMkFZeGhFQmV2Y1pZbm9rMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzM3My9CRkE5QzM2MjIzQUExMUVDQTgxMTZCMjdDNEY5QUUwMi9ZWVFkSHRxX25f RDJBWXhoRUJldmNaWW5vazAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6Jomv5HWB4PeBB/AOjZ4DAcKpOvZYF9oaupnHU5iBuK4zO/9Dax1Q d4gIBcmTQqHgFL5lyEt8ZKMlaao2o9Z58XY72936yhdMvonELLC8AWd4tstpTJbg 5m0gNbjVzEmF5RUZJKlAsfHYFo3TDXPDeuhKqw/KmXwJjayhC4JyWo+I08uvXRyV rNqNDLpD5PKa8F+zaTVSNZoEqbFQQ2nQ27BDl7J1/ArYb9AT9VNUbfxJkI3X8eoT +8hUDxcldXmnqaxblAqeCsBqzJtDHzTzlEl8fb7Jgy8k9TMI9Hr7p8mm2RQqKs0t ghmYgM6Gg+LmtfwfBDuvuNC8a2vgUeUk -----END CERTIFICATE-----Generated at Sat May 31 16:56:16 2025 by rpki-client