$ rpki-client -vvf rpki.apnic.net/member_repository/A91298C7/D494B8EEFA7F11EB99ADD85CC4F9AE02/YzrLjVHS8Ihpm4pxSRzHVT7AwRI.mft File: YzrLjVHS8Ihpm4pxSRzHVT7AwRI.mft (raw, json) Hash identifier: hEjmArKjoKxJAOHLBAW5GFOalGibqQhcTmOkUcS9TmA= Subject key identifier: AA:7C:FE:D4:31:E2:45:1D:A4:B8:40:83:F4:78:2C:05:CF:CC:BC:11 Authority key identifier: 63:3A:CB:8D:51:D2:F0:88:69:9B:8A:71:49:1C:C7:55:3E:C0:C1:12 Certificate issuer: /CN=A91298C7/serialNumber=633ACB8D51D2F088699B8A71491CC7553EC0C112 Certificate serial: 0529 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YzrLjVHS8Ihpm4pxSRzHVT7AwRI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91298C7/D494B8EEFA7F11EB99ADD85CC4F9AE02/YzrLjVHS8Ihpm4pxSRzHVT7AwRI.mft Manifest number: 0529 Signing time: Fri 30 May 2025 23:42:34 +0000 Manifest this update: Fri 30 May 2025 23:42:33 +0000 Manifest next update: Fri 06 Jun 2025 23:42:33 +0000 Files and hashes: 1: YzrLjVHS8Ihpm4pxSRzHVT7AwRI.crl (hash: LfkXQb0Tdg7s1W1bcYHbUk4uwRqT4UGNFIqR4x6ufy0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91298C7/D494B8EEFA7F11EB99ADD85CC4F9AE02/YzrLjVHS8Ihpm4pxSRzHVT7AwRI.crl rsync://rpki.apnic.net/member_repository/A91298C7/D494B8EEFA7F11EB99ADD85CC4F9AE02/YzrLjVHS8Ihpm4pxSRzHVT7AwRI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YzrLjVHS8Ihpm4pxSRzHVT7AwRI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:42:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1321 (0x529) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91298C7, serialNumber=633ACB8D51D2F088699B8A71491CC7553EC0C112 Validity Not Before: May 30 23:42:33 2025 GMT Not After : Jun 6 23:42:33 2025 GMT Subject: CN=683a4269-4b33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:95:23:42:13:79:4b:51:ae:1e:4c:f0:0b:1c: cb:59:e7:84:ea:87:63:05:71:1d:03:d8:2c:2b:63: ce:10:38:8f:25:ee:1a:84:d8:e7:74:5e:df:b5:bd: fe:e9:7d:2f:87:ed:79:ce:51:e9:27:82:e9:eb:ab: 5f:de:29:c5:7e:e0:fe:27:5e:87:c9:a7:f3:69:a4: 14:0a:ac:ae:13:4b:b7:6c:5a:f5:aa:69:c9:ff:a0: 1d:c1:78:1d:0b:57:b4:1a:34:6e:bd:ed:91:6a:57: f1:8f:fe:dc:ca:88:fa:24:af:b7:32:57:87:13:cc: 7b:2d:2f:00:ca:00:bc:a4:8d:71:50:69:de:bd:27: 7f:ca:83:e9:ce:66:3a:ff:4d:a2:6c:41:c4:be:cf: 0b:da:77:0d:0b:a2:aa:9c:d5:f6:be:54:67:d2:a2: 69:5e:4a:c5:68:54:7a:f1:74:b7:c5:31:5f:18:0f: 81:87:59:76:69:83:88:3d:80:8a:84:73:3b:2a:3b: ac:a4:69:80:0c:66:39:08:50:37:a5:bf:b6:42:9c: 91:44:ca:ac:a8:89:5e:94:70:89:79:a0:0f:b8:6f: 38:92:87:a3:b8:c7:50:cb:99:4d:8b:6d:45:70:6f: 75:2a:6a:d6:25:02:97:63:0f:84:66:5f:55:ed:d0: 9b:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:7C:FE:D4:31:E2:45:1D:A4:B8:40:83:F4:78:2C:05:CF:CC:BC:11 X509v3 Authority Key Identifier: keyid:63:3A:CB:8D:51:D2:F0:88:69:9B:8A:71:49:1C:C7:55:3E:C0:C1:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91298C7/D494B8EEFA7F11EB99ADD85CC4F9AE02/YzrLjVHS8Ihpm4pxSRzHVT7AwRI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YzrLjVHS8Ihpm4pxSRzHVT7AwRI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91298C7/D494B8EEFA7F11EB99ADD85CC4F9AE02/YzrLjVHS8Ihpm4pxSRzHVT7AwRI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:3a:7d:72:1c:13:5a:1e:a7:56:50:96:3b:26:90:ae:35:4d: 53:cb:b7:6b:0a:52:a8:d6:ec:56:8d:ca:5a:c2:8d:0e:f8:89: ca:03:61:c9:55:e7:b7:3e:73:da:77:a2:7a:17:74:78:4b:83: d5:f9:00:b9:a7:e5:e6:02:82:b8:a0:0f:b6:05:8f:0c:6f:fe: 00:7c:d3:74:70:aa:66:b3:4c:7c:e1:3e:d5:53:9f:7b:c5:d7: 67:bc:c3:0b:53:45:ec:a9:79:e0:a1:80:b7:41:a2:a4:68:44: a7:2b:e2:77:38:4d:df:8e:56:c3:72:39:96:3e:09:21:dd:b5: 94:cf:78:2f:63:d9:d0:7f:a5:ef:89:0f:ad:7d:8c:d8:66:46: bf:c6:39:a3:93:05:48:90:b9:6b:3f:13:dd:1b:09:f1:26:d0: 8d:74:4b:ec:1c:ee:3a:aa:7f:a4:52:20:01:4c:1b:eb:29:c2: 0e:e1:7d:c9:07:4f:4c:c8:cb:1f:7b:b7:62:17:e3:bd:ee:e9: ae:cb:22:6e:76:0d:b8:e2:7f:bd:a1:6f:21:b0:39:60:22:36: cf:ee:b5:b1:74:66:a4:48:39:9c:5d:48:b9:db:dc:b2:60:ab: 6b:f5:ed:04:6d:5a:30:11:b0:00:68:1f:d8:4e:b3:c3:b2:45: 1a:fb:d8:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk4QzcxMTAvBgNVBAUTKDYzM0FDQjhENTFEMkYwODg2OTlCOEE3MTQ5MUNDNzU1 M0VDMEMxMTIwHhcNMjUwNTMwMjM0MjMzWhcNMjUwNjA2MjM0MjMzWjAYMRYwFAYD VQQDEw02ODNhNDI2OS00YjMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9pUjQhN5S1GuHkzwCxzLWeeE6odjBXEdA9gsK2POEDiPJe4ahNjndF7ftb3+ 6X0vh+15zlHpJ4Lp66tf3inFfuD+J16HyafzaaQUCqyuE0u3bFr1qmnJ/6AdwXgd C1e0GjRuve2Ralfxj/7cyoj6JK+3MleHE8x7LS8AygC8pI1xUGnevSd/yoPpzmY6 /02ibEHEvs8L2ncNC6KqnNX2vlRn0qJpXkrFaFR68XS3xTFfGA+Bh1l2aYOIPYCK hHM7KjuspGmADGY5CFA3pb+2QpyRRMqsqIlelHCJeaAPuG84koejuMdQy5lNi21F cG91KmrWJQKXYw+EZl9V7dCbyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKp8/tQx 4kUdpLhAg/R4LAXPzLwRMB8GA1UdIwQYMBaAFGM6y41R0vCIaZuKcUkcx1U+wMES MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOThDNy9ENDk0QjhFRUZB N0YxMUVCOTlBREQ4NUNDNEY5QUUwMi9ZenJMalZIUzhJaHBtNHB4U1J6SFZUN0F3 UkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1l6ckxqVkhTOElocG00cHhTUnpIVlQ3QXdSSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OThDNy9ENDk0QjhFRUZBN0YxMUVCOTlBREQ4NUNDNEY5QUUwMi9ZenJMalZIUzhJ aHBtNHB4U1J6SFZUN0F3UkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDCOn1yHBNaHqdWUJY7JpCuNU1Ty7drClKo1uxWjcpawo0O+InKA2HJ Vee3PnPad6J6F3R4S4PV+QC5p+XmAoK4oA+2BY8Mb/4AfNN0cKpms0x84T7VU597 xddnvMMLU0XsqXngoYC3QaKkaESnK+J3OE3fjlbDcjmWPgkh3bWUz3gvY9nQf6Xv iQ+tfYzYZka/xjmjkwVIkLlrPxPdGwnxJtCNdEvsHO46qn+kUiABTBvrKcIO4X3J B09MyMsfe7diF+O97umuyyJudg244n+9oW8hsDlgIjbP7rWxdGakSDmcXUi529yy YKtr9e0EbVowEbAAaB/YTrPDskUa+9ip -----END CERTIFICATE-----Generated at Sat May 31 16:27:52 2025 by rpki-client