$ rpki-client -vvf rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft File: YNExg9Od5pVlYCMefgMX5py8bA8.mft (raw, json) Hash identifier: nPCqX8oOVUlvoymSUTcD/KMS025muCVv1HaFrwAEXjg= Subject key identifier: 40:85:8A:F4:B1:88:CE:A1:C9:BC:2B:59:A5:02:C3:09:A0:AD:41:8D Authority key identifier: 60:D1:31:83:D3:9D:E6:95:65:60:23:1E:7E:03:17:E6:9C:BC:6C:0F Certificate issuer: /CN=A9131D31/serialNumber=60D13183D39DE6956560231E7E0317E69CBC6C0F Certificate serial: 10D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft Manifest number: 10C3 Signing time: Fri 30 May 2025 17:29:21 +0000 Manifest this update: Fri 30 May 2025 17:29:21 +0000 Manifest next update: Fri 06 Jun 2025 17:29:21 +0000 Files and hashes: 1: YNExg9Od5pVlYCMefgMX5py8bA8.crl (hash: lt7IF/8AO1xY/JEklfFdT0JSk5rppfi1RJa0ytfwiQ8=) 2: 1F8D757623B811E9971D8168C4F9AE02.roa (hash: teyprXUhhu0eQN/HT8J3s42u5imFw2AiXDxoE1lRwMQ=) 3: BA310DEC23B611E98E5E6062C4F9AE02.roa (hash: Z2LA9kyLWJ5DSZqXR4GtE8WTNPkiU6v9mRONlsKS1tk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.crl rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:29:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4308 (0x10d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131D31, serialNumber=60D13183D39DE6956560231E7E0317E69CBC6C0F Validity Not Before: May 30 17:29:21 2025 GMT Not After : Jun 6 17:29:21 2025 GMT Subject: CN=6839eaf1-a615 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a6:24:bf:f5:68:56:5f:5f:d8:b9:18:7e:8c: 0f:cc:20:4d:3f:42:4d:3f:98:52:f1:b8:e1:f2:cc: a6:25:4e:d9:e9:6e:00:6b:05:0b:41:9b:59:8b:3e: 40:2e:64:58:b2:96:b7:ce:24:23:4c:54:2f:3f:8c: 5c:a5:fd:9e:74:3b:da:6f:b3:56:61:bd:6d:32:b2: 08:ca:da:48:11:92:6f:10:f4:e8:58:78:57:af:74: 8a:c0:23:94:6f:9e:43:02:b1:40:40:8d:08:71:00: 9b:ec:98:52:ba:24:a6:6e:50:ca:38:a0:04:a2:8d: 6a:ac:27:df:20:62:98:be:e0:bd:6b:1b:39:16:b4: ac:7f:f6:82:d9:7a:84:4a:80:3e:28:1b:ad:5b:31: c3:1c:ff:9b:39:08:59:8b:e8:49:d7:cf:cd:40:79: e6:de:b2:ed:f8:ee:17:e9:a3:63:ba:e1:18:6f:20: 8c:b5:c4:64:81:b8:84:9c:56:95:2b:b7:75:99:d6: 55:2b:9b:44:25:af:82:8e:29:eb:d8:1e:23:1e:bb: d2:b1:1e:2c:8f:7d:38:9a:98:eb:05:70:75:4f:00: dd:28:f5:85:f1:f7:e3:8e:a4:9b:e6:f5:3e:fc:c7: 70:f5:d7:da:f0:c5:51:57:44:77:60:8d:b1:27:ad: cd:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:85:8A:F4:B1:88:CE:A1:C9:BC:2B:59:A5:02:C3:09:A0:AD:41:8D X509v3 Authority Key Identifier: keyid:60:D1:31:83:D3:9D:E6:95:65:60:23:1E:7E:03:17:E6:9C:BC:6C:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:0b:c7:2b:55:9a:f4:ea:d9:d4:f6:0a:55:47:e6:4c:42:b7: eb:c6:d7:5a:69:42:3d:b9:7d:00:75:26:72:7d:83:37:01:8c: d7:10:a3:d9:54:9a:d5:bf:25:6d:1e:c3:28:e1:2b:1f:ba:3f: 89:f4:70:e9:0a:fd:5f:3b:f4:46:2d:b0:4c:4d:1f:e1:de:5b: c7:3f:b3:af:3d:0d:5d:8e:2b:cb:db:66:a0:03:77:6c:1c:45: b9:7a:d8:80:2d:c0:1e:f3:de:fe:a1:a0:ca:e9:76:bf:20:e5: 7f:63:d7:26:dc:fe:67:15:04:c6:e2:71:67:9c:44:c2:ff:28: c9:3a:7c:3d:dd:87:bc:71:06:d5:65:ca:fc:71:5d:de:65:02: 04:85:5f:21:b6:2a:73:13:5b:56:fa:ce:64:9e:dd:95:be:ad: f8:73:88:90:84:f2:32:67:20:ca:ee:99:c4:05:2d:29:08:db: 82:5f:75:18:cd:75:41:a4:1c:fb:db:b0:8d:ab:5d:7f:f8:05: 12:03:5f:82:8b:be:87:5c:3d:9f:02:24:70:59:79:44:d3:e0: 2b:3f:d7:5b:a5:a1:2b:48:5a:77:f6:b5:e3:5b:48:c1:42:f5: 88:33:aa:d0:11:0a:bf:2b:9e:49:fc:41:fa:ae:6d:5a:51:46: 48:e0:fd:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICENQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFEMzExMTAvBgNVBAUTKDYwRDEzMTgzRDM5REU2OTU2NTYwMjMxRTdFMDMxN0U2 OUNCQzZDMEYwHhcNMjUwNTMwMTcyOTIxWhcNMjUwNjA2MTcyOTIxWjAYMRYwFAYD VQQDEw02ODM5ZWFmMS1hNjE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu6Ykv/VoVl9f2LkYfowPzCBNP0JNP5hS8bjh8symJU7Z6W4AawULQZtZiz5A LmRYspa3ziQjTFQvP4xcpf2edDvab7NWYb1tMrIIytpIEZJvEPToWHhXr3SKwCOU b55DArFAQI0IcQCb7JhSuiSmblDKOKAEoo1qrCffIGKYvuC9axs5FrSsf/aC2XqE SoA+KButWzHDHP+bOQhZi+hJ18/NQHnm3rLt+O4X6aNjuuEYbyCMtcRkgbiEnFaV K7d1mdZVK5tEJa+Cjinr2B4jHrvSsR4sj304mpjrBXB1TwDdKPWF8ffjjqSb5vU+ /Mdw9dfa8MVRV0R3YI2xJ63N3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFECFivSx iM6hybwrWaUCwwmgrUGNMB8GA1UdIwQYMBaAFGDRMYPTneaVZWAjHn4DF+acvGwP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUQzMS82NUVGMjk2QTIz MTMxMUU5QTI5QkIxNzRDNEY5QUUwMi9ZTkV4ZzlPZDVwVmxZQ01lZmdNWDVweThi QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lORXhnOU9kNXBWbFlDTWVmZ01YNXB5OGJBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUQzMS82NUVGMjk2QTIzMTMxMUU5QTI5QkIxNzRDNEY5QUUwMi9ZTkV4ZzlPZDVw VmxZQ01lZmdNWDVweThiQTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYC8crVZr06tnU9gpVR+ZMQrfrxtdaaUI9uX0AdSZyfYM3AYzXEKPZ VJrVvyVtHsMo4Ssfuj+J9HDpCv1fO/RGLbBMTR/h3lvHP7OvPQ1djivL22agA3ds HEW5etiALcAe897+oaDK6Xa/IOV/Y9cm3P5nFQTG4nFnnETC/yjJOnw93Ye8cQbV Zcr8cV3eZQIEhV8htipzE1tW+s5knt2Vvq34c4iQhPIyZyDK7pnEBS0pCNuCX3UY zXVBpBz727CNq11/+AUSA1+Ci76HXD2fAiRwWXlE0+ArP9dbpaErSFp39rXjW0jB QvWIM6rQEQq/K55J/EH6rm1aUUZI4P2A -----END CERTIFICATE-----Generated at Sat May 31 17:18:55 2025 by rpki-client