$ rpki-client -vvf rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft File: ny5XiO95WFurdhmHfTlierLl1Rk.mft (raw, json) Hash identifier: t6MPc5Apq0ef7h5EiVZk0LLCHMIe9aErceXhPonomUY= Subject key identifier: C1:42:5C:28:FB:45:71:41:95:6E:A4:66:BD:EA:D3:47:F8:C0:B3:92 Authority key identifier: 9F:2E:57:88:EF:79:58:5B:AB:76:19:87:7D:39:62:7A:B2:E5:D5:19 Certificate issuer: /CN=A913A7A6/serialNumber=9F2E5788EF79585BAB7619877D39627AB2E5D519 Certificate serial: 0A15 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ny5XiO95WFurdhmHfTlierLl1Rk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft Manifest number: 0A0E Signing time: Sat 31 May 2025 19:54:18 +0000 Manifest this update: Sat 31 May 2025 19:54:17 +0000 Manifest next update: Sat 07 Jun 2025 19:54:17 +0000 Files and hashes: 1: ny5XiO95WFurdhmHfTlierLl1Rk.crl (hash: MC/VraEI90L4x0g5pwZVOJEbaxO6RpptrFRoWSz81+Q=) 2: 4DAFC184ADC011ED897A4050C4F9AE02.roa (hash: /BGVJbRRDfivu1c+fyECLgKysqOT6aaM0UL54g9lwQ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.crl rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ny5XiO95WFurdhmHfTlierLl1Rk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 19:54:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2581 (0xa15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A7A6, serialNumber=9F2E5788EF79585BAB7619877D39627AB2E5D519 Validity Not Before: May 31 19:54:17 2025 GMT Not After : Jun 7 19:54:17 2025 GMT Subject: CN=683b5e69-1ea7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:f6:e1:60:1d:7a:ae:64:55:51:2a:2a:81:2c: 30:77:88:4a:68:93:e0:b7:86:76:c8:ab:59:18:95: 7e:d7:c1:cb:37:6c:a8:77:53:aa:a2:cf:2b:a4:23: 7e:60:ee:1c:52:58:29:54:83:ae:f8:72:ab:31:bf: 36:85:88:44:96:7c:e4:d4:98:96:00:f7:1d:a2:19: a5:a2:9c:eb:b9:4c:10:4c:56:ed:c8:f6:c1:d2:b2: 7d:ca:80:c3:87:67:7f:82:4b:05:83:c4:c3:32:c8: d3:25:38:a4:a5:8f:72:c3:fd:fe:3e:a5:bd:0f:84: e4:41:09:6a:84:37:8a:ef:7d:eb:48:20:be:ae:d2: d6:b3:35:8b:8d:44:f5:18:a0:aa:57:ed:f8:cb:00: 0b:f2:51:3d:d7:19:5f:49:5f:5a:61:2f:07:7f:e4: 11:ee:c5:64:f8:79:81:dc:b4:32:6f:56:89:cb:8d: e6:e5:8a:bd:d4:4c:9e:ba:d5:b7:9f:d1:eb:a9:de: 6a:00:af:4f:be:75:c5:8a:8e:02:c1:a7:92:30:c1: 03:5d:6b:0b:de:f9:6a:71:36:b2:87:96:99:e0:56: 4d:1c:a9:25:3d:1b:fa:95:73:e8:fa:7f:10:09:60: 88:8e:8b:95:9d:2a:e7:32:ec:ab:a0:73:da:8b:ac: 9a:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:42:5C:28:FB:45:71:41:95:6E:A4:66:BD:EA:D3:47:F8:C0:B3:92 X509v3 Authority Key Identifier: keyid:9F:2E:57:88:EF:79:58:5B:AB:76:19:87:7D:39:62:7A:B2:E5:D5:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ny5XiO95WFurdhmHfTlierLl1Rk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:16:5c:95:9b:61:3e:5a:ad:7b:22:1d:8f:a1:ce:f7:8f:cf: 21:7a:55:cb:58:9e:1f:f8:6f:69:6d:fb:97:4b:95:fb:ee:22: cd:9d:2f:03:ff:90:84:1f:55:a1:a1:9c:de:7e:33:29:26:99: d6:66:13:a7:a5:b9:2f:3c:7b:19:e0:15:08:16:f9:7e:d9:f2: cf:14:a8:e1:31:8d:e8:0e:21:bd:a1:f2:96:5b:cd:b6:c9:c0: 0a:c3:e7:7f:a5:84:c2:27:2d:6c:49:cc:c0:8f:76:32:d5:ae: 43:17:93:20:f2:d8:66:50:77:95:f2:d4:d7:52:f3:65:5a:a5: 98:75:ac:92:36:56:c3:2f:99:20:ea:b4:00:cc:7c:c2:3f:e5: 9d:d5:23:d2:9e:de:bb:fb:cc:19:2b:70:97:1e:4a:01:76:a1: 82:e0:8f:2e:2b:1f:26:bb:df:9b:1a:20:bf:f9:12:e2:f6:26: 0d:f9:5c:37:ef:24:d8:cb:5c:f6:46:01:07:1e:6f:8d:17:fb: b3:fc:fd:b4:9a:38:f1:98:59:d4:96:3e:b5:db:58:80:eb:be: 27:70:1b:7e:76:36:60:5b:d5:83:58:55:b5:9a:52:7e:c2:de: 23:24:86:44:36:ee:0f:68:03:3f:b4:02:6f:22:02:26:b5:4d: bd:96:ed:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICChUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E3QTYxMTAvBgNVBAUTKDlGMkU1Nzg4RUY3OTU4NUJBQjc2MTk4NzdEMzk2MjdB QjJFNUQ1MTkwHhcNMjUwNTMxMTk1NDE3WhcNMjUwNjA3MTk1NDE3WjAYMRYwFAYD VQQDEw02ODNiNWU2OS0xZWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2PbhYB16rmRVUSoqgSwwd4hKaJPgt4Z2yKtZGJV+18HLN2yod1Oqos8rpCN+ YO4cUlgpVIOu+HKrMb82hYhElnzk1JiWAPcdohmlopzruUwQTFbtyPbB0rJ9yoDD h2d/gksFg8TDMsjTJTikpY9yw/3+PqW9D4TkQQlqhDeK733rSCC+rtLWszWLjUT1 GKCqV+34ywAL8lE91xlfSV9aYS8Hf+QR7sVk+HmB3LQyb1aJy43m5Yq91EyeutW3 n9Hrqd5qAK9PvnXFio4CwaeSMMEDXWsL3vlqcTayh5aZ4FZNHKklPRv6lXPo+n8Q CWCIjouVnSrnMuyroHPai6ya3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMFCXCj7 RXFBlW6kZr3q00f4wLOSMB8GA1UdIwQYMBaAFJ8uV4jveVhbq3YZh305Ynqy5dUZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTdBNi80NTdBOEU4Mjcz QjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9ueTVYaU85NVdGdXJkaG1IZlRsaWVyTGwx UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL255NVhpTzk1V0Z1cmRobUhmVGxpZXJMbDFSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTdBNi80NTdBOEU4MjczQjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9ueTVYaU85NVdG dXJkaG1IZlRsaWVyTGwxUmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1FlyVm2E+Wq17Ih2Poc73j88helXLWJ4f+G9pbfuXS5X77iLNnS8D /5CEH1WhoZzefjMpJpnWZhOnpbkvPHsZ4BUIFvl+2fLPFKjhMY3oDiG9ofKWW822 ycAKw+d/pYTCJy1sSczAj3Yy1a5DF5Mg8thmUHeV8tTXUvNlWqWYdaySNlbDL5kg 6rQAzHzCP+Wd1SPSnt67+8wZK3CXHkoBdqGC4I8uKx8mu9+bGiC/+RLi9iYN+Vw3 7yTYy1z2RgEHHm+NF/uz/P20mjjxmFnUlj6121iA674ncBt+djZgW9WDWFW1mlJ+ wt4jJIZENu4PaAM/tAJvIgImtU29lu21 -----END CERTIFICATE-----Generated at Mon Jun 2 18:53:51 2025 by rpki-client