$ rpki-client -vvf rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.mft File: YqwbuVgKcRmBnntrbrLDUVNHh_0.mft (raw, json) Hash identifier: 2p7hqXdRzT6Hhwo3k7ZB470S17jy5SJGcrW9u2XsWrg= Subject key identifier: 6A:A4:B1:88:B8:33:44:EB:63:D0:B5:E9:BF:E8:DE:B1:F2:C2:D3:39 Authority key identifier: 62:AC:1B:B9:58:0A:71:19:81:9E:7B:6B:6E:B2:C3:51:53:47:87:FD Certificate issuer: /CN=A911DD08/serialNumber=62AC1BB9580A7119819E7B6B6EB2C351534787FD Certificate serial: 9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YqwbuVgKcRmBnntrbrLDUVNHh_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.mft Manifest number: 97 Signing time: Sat 31 May 2025 05:56:00 +0000 Manifest this update: Sat 31 May 2025 05:55:59 +0000 Manifest next update: Sat 07 Jun 2025 05:55:59 +0000 Files and hashes: 1: YqwbuVgKcRmBnntrbrLDUVNHh_0.crl (hash: TZYH7EfWZ7kfvtI2+10KKVwVz6ZK5zX1icuNQctvuX8=) 2: 652283665B1A11EFA78B847EC4F9AE02.roa (hash: tP/YOIdnoY7zTO5p4ZVWJihHDwAVW3mBLrg6H6OaTlM=) 3: 474934DE5B1A11EFBF0E1F7CC4F9AE02.roa (hash: AbR4JwNeIxvK28YKeU+rC69Mel7G0dy68L3LDpPyx/4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.crl rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YqwbuVgKcRmBnntrbrLDUVNHh_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:55:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DD08, serialNumber=62AC1BB9580A7119819E7B6B6EB2C351534787FD Validity Not Before: May 31 05:55:59 2025 GMT Not After : Jun 7 05:55:59 2025 GMT Subject: CN=683a99ef-34f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:74:25:d3:02:d5:b6:ac:2e:19:97:10:ca:37: 61:27:d8:52:55:25:28:26:3d:e6:69:16:b1:11:f3: c0:3b:9f:03:d3:52:70:6e:31:f3:2a:98:d0:86:91: 29:cf:d7:7b:57:c7:ee:41:db:0b:90:6d:70:29:33: ad:59:1a:2b:75:c0:88:01:ad:96:50:e1:19:e9:b7: f0:3e:84:7d:11:f8:a5:68:7c:21:97:7f:1e:69:90: 68:13:46:f3:be:a6:90:52:50:05:07:68:fe:09:a3: e2:02:29:f7:9c:0b:ab:5a:69:6e:2d:22:c5:dd:ca: f5:60:6c:fb:c0:a1:7d:40:8c:cb:87:30:45:99:fd: 75:93:80:aa:42:3b:1b:b9:c4:31:00:c1:17:2d:2c: 1e:bb:0f:a6:6d:fb:9a:45:7c:49:0b:7c:08:8c:ef: 43:fd:06:44:dc:e0:d6:05:e9:d7:c0:d9:ff:c0:2a: 86:a6:a6:42:b8:2a:35:86:86:47:c3:06:df:fc:ba: 46:98:39:76:f9:b8:ff:c1:b6:e5:af:4f:cb:4e:e9: 5d:6a:42:49:8f:42:0d:fa:63:aa:81:d9:9d:13:22: 14:7a:b2:ae:b5:21:b2:83:80:40:ce:94:92:a9:ef: e7:21:fe:86:ed:7a:fb:d5:2a:f8:0c:9e:ec:42:88: 21:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:A4:B1:88:B8:33:44:EB:63:D0:B5:E9:BF:E8:DE:B1:F2:C2:D3:39 X509v3 Authority Key Identifier: keyid:62:AC:1B:B9:58:0A:71:19:81:9E:7B:6B:6E:B2:C3:51:53:47:87:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YqwbuVgKcRmBnntrbrLDUVNHh_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:48:e4:98:72:ac:c4:f4:0e:00:bf:4b:ca:8b:99:8c:c3:1b: 2b:65:c2:19:a6:82:d8:a8:67:fb:90:cd:f2:ba:5a:fa:1a:8e: fc:cd:0a:5c:bf:ec:8b:a4:52:94:45:ed:38:9f:87:82:ab:01: fb:db:61:ac:21:70:81:57:84:22:c5:43:65:5a:51:52:d7:cc: b4:95:b0:24:3e:d5:e8:77:4e:b8:f3:0e:15:8b:8c:80:51:5e: 8a:a6:6d:fe:17:b2:53:26:45:db:af:9c:3a:45:f9:96:84:93: 5d:da:59:6f:16:5d:9c:7c:23:45:4e:4d:aa:3f:2c:44:89:b8: e4:15:68:d7:7a:f3:e0:c9:5b:d1:9c:df:fb:85:22:ee:de:f0: d9:a8:9d:77:ec:31:d5:f1:e1:5a:30:ef:a2:cd:c0:65:0a:a6: da:23:ec:d3:e9:ce:12:8b:ed:3f:62:09:3b:e2:d7:69:0d:08: 6a:d6:76:89:92:10:4b:38:2c:df:cf:44:87:ca:d7:2c:50:f5: 64:f2:3d:44:b1:f9:1e:7e:4d:13:57:81:40:d9:f7:c1:e8:55: 73:a8:53:ec:63:ab:0f:e5:b0:10:73:98:27:7d:2f:1f:3b:cf: 55:db:83:ee:5d:fa:c3:ee:53:b2:7e:9b:81:50:28:d2:73:64: 55:a1:63:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUREMDgxMTAvBgNVBAUTKDYyQUMxQkI5NTgwQTcxMTk4MTlFN0I2QjZFQjJDMzUx NTM0Nzg3RkQwHhcNMjUwNTMxMDU1NTU5WhcNMjUwNjA3MDU1NTU5WjAYMRYwFAYD VQQDEw02ODNhOTllZi0zNGY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArXQl0wLVtqwuGZcQyjdhJ9hSVSUoJj3maRaxEfPAO58D01JwbjHzKpjQhpEp z9d7V8fuQdsLkG1wKTOtWRordcCIAa2WUOEZ6bfwPoR9EfilaHwhl38eaZBoE0bz vqaQUlAFB2j+CaPiAin3nAurWmluLSLF3cr1YGz7wKF9QIzLhzBFmf11k4CqQjsb ucQxAMEXLSweuw+mbfuaRXxJC3wIjO9D/QZE3ODWBenXwNn/wCqGpqZCuCo1hoZH wwbf/LpGmDl2+bj/wbblr0/LTuldakJJj0IN+mOqgdmdEyIUerKutSGyg4BAzpSS qe/nIf6G7Xr71Sr4DJ7sQogh+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGqksYi4 M0TrY9C16b/o3rHywtM5MB8GA1UdIwQYMBaAFGKsG7lYCnEZgZ57a26yw1FTR4f9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREQwOC85QTVGQkI2MjVC MTkxMUVGQkVEMEM0N0FDNEY5QUUwMi9ZcXdidVZnS2NSbUJubnRyYnJMRFVWTkho XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lxd2J1VmdLY1JtQm5udHJickxEVVZOSGhfMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx REQwOC85QTVGQkI2MjVCMTkxMUVGQkVEMEM0N0FDNEY5QUUwMi9ZcXdidVZnS2NS bUJubnRyYnJMRFVWTkhoXzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOSOSYcqzE9A4Av0vKi5mMwxsrZcIZpoLYqGf7kM3yulr6Go78zQpc v+yLpFKURe04n4eCqwH722GsIXCBV4QixUNlWlFS18y0lbAkPtXod0648w4Vi4yA UV6Kpm3+F7JTJkXbr5w6RfmWhJNd2llvFl2cfCNFTk2qPyxEibjkFWjXevPgyVvR nN/7hSLu3vDZqJ137DHV8eFaMO+izcBlCqbaI+zT6c4Si+0/Ygk74tdpDQhq1naJ khBLOCzfz0SHytcsUPVk8j1Esfkefk0TV4FA2ffB6FVzqFPsY6sP5bAQc5gnfS8f O89V24PuXfrD7lOyfpuBUCjSc2RVoWOu -----END CERTIFICATE-----Generated at Sat May 31 17:46:24 2025 by rpki-client