$ rpki-client -vvf rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft File: y1sC0Pxzbip6stKIoPwzFnpLvO0.mft (raw, json) Hash identifier: sQbOY3x4yFe9PbRh/OPBmzGm3akS2eYo6Q9/zuQH7Nc= Subject key identifier: AD:E5:19:6C:D5:44:78:80:CE:9C:4E:89:90:99:E0:14:7E:82:23:60 Authority key identifier: CB:5B:02:D0:FC:73:6E:2A:7A:B2:D2:88:A0:FC:33:16:7A:4B:BC:ED Certificate issuer: /CN=A9129F1D/serialNumber=CB5B02D0FC736E2A7AB2D288A0FC33167A4BBCED Certificate serial: 01C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft Manifest number: 01C2 Signing time: Sat 31 May 2025 02:41:49 +0000 Manifest this update: Sat 31 May 2025 02:41:49 +0000 Manifest next update: Sat 07 Jun 2025 02:41:49 +0000 Files and hashes: 1: y1sC0Pxzbip6stKIoPwzFnpLvO0.crl (hash: 1P4QPtd7zjNmfq/QZhNsZZypU+l+O9aMosm3ED1GBko=) 2: 3E122AE0876011ED84335D46C4F9AE02.roa (hash: bMGYEkxmsNwyimLtEml2g/yxjeK2QwKmxudQ/0mQEOc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.crl rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:41:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 454 (0x1c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129F1D, serialNumber=CB5B02D0FC736E2A7AB2D288A0FC33167A4BBCED Validity Not Before: May 31 02:41:49 2025 GMT Not After : Jun 7 02:41:49 2025 GMT Subject: CN=683a6c6d-b3b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:2c:6a:70:85:16:28:d2:b1:2e:a5:df:72:52: bc:f2:2c:b1:cd:d1:ee:fb:c4:48:30:1a:eb:d2:b7: 60:04:74:0b:4d:49:fc:94:43:c3:df:c2:ca:d5:2e: f7:60:a8:af:e1:b9:6a:6e:d0:b9:fe:2b:7e:f0:a6: 99:5a:a9:fa:cf:77:d9:bf:1a:ed:93:31:10:61:a1: 10:be:f7:5a:53:09:1b:58:7d:77:ab:03:66:66:d9: 22:39:fa:ee:a3:02:fd:70:f3:aa:23:2f:34:c7:d9: dd:ed:73:13:b1:f0:94:d6:f2:92:cb:25:6d:66:1b: 39:c6:b1:52:44:6b:8c:df:fb:00:e7:b6:4e:05:fc: e5:0b:ef:59:d1:3d:b9:d1:e8:92:f8:a1:9c:29:74: 89:b7:7a:7d:71:7b:42:6c:2b:8d:df:d2:33:12:d4: d2:6e:9f:d7:d9:b1:20:6f:8b:40:ad:33:c4:1e:e9: 2e:50:5d:56:0b:e6:49:b5:40:f1:a5:d4:54:3e:4e: d1:6e:6a:e0:24:76:79:5b:34:1c:63:b1:c1:00:9b: 38:d1:7c:03:33:62:ec:5a:b6:fb:47:35:d9:67:0e: 06:84:bd:0e:5d:53:ea:b6:34:08:64:3c:a6:ea:3f: a4:b5:54:88:78:3e:90:8d:e4:40:f2:ab:73:24:77: f4:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:E5:19:6C:D5:44:78:80:CE:9C:4E:89:90:99:E0:14:7E:82:23:60 X509v3 Authority Key Identifier: keyid:CB:5B:02:D0:FC:73:6E:2A:7A:B2:D2:88:A0:FC:33:16:7A:4B:BC:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:71:79:57:8a:75:f5:4c:14:36:bf:a0:ec:39:bd:95:8f:40: 92:e6:4b:71:4c:05:b0:ca:58:c9:84:76:04:ea:90:8f:21:13: ff:8f:cb:01:74:cc:e5:97:66:43:bd:6d:cc:96:c1:2c:36:61: 1e:5b:ff:12:00:2d:b4:50:89:dd:71:65:c9:35:bf:96:e1:09: 6d:6a:9b:09:2f:5c:90:8f:82:5e:e1:91:df:c5:11:67:ea:fe: 86:b5:5c:6a:2a:ab:e0:10:3e:bf:4c:d3:5d:34:d8:35:a6:5d: 60:dc:1f:ec:51:4e:e8:03:d3:f5:13:85:30:d3:dc:0c:44:64: 67:0e:01:f8:5b:e4:8e:c8:83:0c:b7:42:6a:35:ac:f1:aa:34: d9:3e:36:69:af:60:cb:ca:08:9f:88:6a:a6:0c:d0:2b:22:29: 18:d5:37:f3:06:a7:ea:35:db:19:54:d7:dc:80:d6:45:98:cb: 53:2a:2d:3b:8d:4e:35:4d:70:8d:63:e3:8e:b3:20:cb:7e:85: 6a:a9:fb:b9:f9:11:88:77:69:71:0b:fe:06:09:6a:e7:b9:14: 8c:3a:80:95:98:e8:a2:c4:eb:10:d2:8a:48:a2:35:e9:af:3f: b2:2f:cb:31:6c:7c:ff:2e:cc:16:f0:de:2f:5e:e4:29:ac:1f: 2a:61:7c:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlGMUQxMTAvBgNVBAUTKENCNUIwMkQwRkM3MzZFMkE3QUIyRDI4OEEwRkMzMzE2 N0E0QkJDRUQwHhcNMjUwNTMxMDI0MTQ5WhcNMjUwNjA3MDI0MTQ5WjAYMRYwFAYD VQQDEw02ODNhNmM2ZC1iM2I2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5SxqcIUWKNKxLqXfclK88iyxzdHu+8RIMBrr0rdgBHQLTUn8lEPD38LK1S73 YKiv4blqbtC5/it+8KaZWqn6z3fZvxrtkzEQYaEQvvdaUwkbWH13qwNmZtkiOfru owL9cPOqIy80x9nd7XMTsfCU1vKSyyVtZhs5xrFSRGuM3/sA57ZOBfzlC+9Z0T25 0eiS+KGcKXSJt3p9cXtCbCuN39IzEtTSbp/X2bEgb4tArTPEHukuUF1WC+ZJtUDx pdRUPk7RbmrgJHZ5WzQcY7HBAJs40XwDM2LsWrb7RzXZZw4GhL0OXVPqtjQIZDym 6j+ktVSIeD6QjeRA8qtzJHf0HQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK3lGWzV RHiAzpxOiZCZ4BR+giNgMB8GA1UdIwQYMBaAFMtbAtD8c24qerLSiKD8MxZ6S7zt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUYxRC8yMUNBQkE1Qzg3 NUUxMUVEQkRDNjQ5NDZDNEY5QUUwMi95MXNDMFB4emJpcDZzdEtJb1B3ekZucEx2 TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kxc0MwUHh6YmlwNnN0S0lvUHd6Rm5wTHZPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OUYxRC8yMUNBQkE1Qzg3NUUxMUVEQkRDNjQ5NDZDNEY5QUUwMi95MXNDMFB4emJp cDZzdEtJb1B3ekZucEx2TzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBucXlXinX1TBQ2v6DsOb2Vj0CS5ktxTAWwyljJhHYE6pCPIRP/j8sB dMzll2ZDvW3MlsEsNmEeW/8SAC20UIndcWXJNb+W4QltapsJL1yQj4Je4ZHfxRFn 6v6GtVxqKqvgED6/TNNdNNg1pl1g3B/sUU7oA9P1E4Uw09wMRGRnDgH4W+SOyIMM t0JqNazxqjTZPjZpr2DLygifiGqmDNArIikY1TfzBqfqNdsZVNfcgNZFmMtTKi07 jU41TXCNY+OOsyDLfoVqqfu5+RGId2lxC/4GCWrnuRSMOoCVmOiixOsQ0opIojXp rz+yL8sxbHz/LswW8N4vXuQprB8qYXxX -----END CERTIFICATE-----Generated at Sat May 31 15:35:07 2025 by rpki-client