$ rpki-client -vvf rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft File: 2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft (raw, json) Hash identifier: Pzq9r4jXJjJRVpKgZdXFL5Q330o+gqOOwATZXCQIbys= Subject key identifier: F6:61:64:03:6F:86:2C:0E:70:EA:52:B1:9B:AE:B0:8C:9B:C0:F5:62 Authority key identifier: D9:85:29:14:8C:BA:5D:DE:D3:B7:3D:60:52:EE:05:16:C0:24:C4:F3 Certificate issuer: /CN=A914C4ED/serialNumber=D98529148CBA5DDED3B73D6052EE0516C024C4F3 Certificate serial: 01DF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft Manifest number: 01DA Signing time: Sun 01 Jun 2025 01:08:49 +0000 Manifest this update: Sun 01 Jun 2025 01:08:49 +0000 Manifest next update: Sun 08 Jun 2025 01:08:48 +0000 Files and hashes: 1: 2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl (hash: 3fvfGmVWIPz6L5MUaEVDFUBokaFdy3XWfnQWdDSdG7I=) 2: F060FF0E720D11EDA84BE02EC4F9AE02.roa (hash: MTvQaAV2j4a15rRSTpoB41scqYTwrnry9bJaizx2K5M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 01:08:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 479 (0x1df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C4ED, serialNumber=D98529148CBA5DDED3B73D6052EE0516C024C4F3 Validity Not Before: Jun 1 01:08:49 2025 GMT Not After : Jun 8 01:08:48 2025 GMT Subject: CN=683ba821-16b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:0d:7e:c4:9e:86:6f:01:aa:98:a2:83:14:72: ed:56:1e:d4:db:2b:67:3f:a5:48:f2:d4:13:bd:34: 90:8e:37:01:e5:14:cd:90:f6:38:c3:4e:b9:d0:f4: 4e:20:44:7b:5b:cb:ab:ca:b8:35:e6:f1:42:06:c8: f7:a1:0d:91:d6:8b:3a:fe:17:d2:05:9e:ec:8f:2e: 3d:f7:62:13:d4:e6:2a:92:6c:54:45:8b:1b:c8:91: a6:f9:13:0f:ca:35:95:7d:20:4e:fb:b2:6e:41:10: b3:f5:9f:07:de:6f:5e:d6:2a:4e:90:64:73:2e:6a: 33:83:d3:3b:29:7c:d1:87:14:cd:5e:8a:8b:63:9f: 8c:a0:27:01:bd:02:f9:1a:9b:1b:b5:b8:a0:4e:af: c5:60:72:11:20:4d:c2:5f:22:c1:e8:65:ed:d1:fe: ab:7c:96:30:b6:6e:5d:1b:fa:02:eb:94:6d:f5:5d: d4:bd:88:17:c0:95:20:71:fb:da:b3:15:61:d6:94: 2d:a0:48:21:f6:e2:5c:d1:16:e6:1d:b9:43:38:15: e3:e8:d2:ef:1c:36:fc:3f:e6:61:0f:4c:94:5a:bd: 7d:3a:f3:bd:88:b7:8d:22:04:db:5d:92:16:6a:64: 2b:77:ae:f0:6a:65:10:50:81:c0:55:80:8e:fe:b1: 6f:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:61:64:03:6F:86:2C:0E:70:EA:52:B1:9B:AE:B0:8C:9B:C0:F5:62 X509v3 Authority Key Identifier: keyid:D9:85:29:14:8C:BA:5D:DE:D3:B7:3D:60:52:EE:05:16:C0:24:C4:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:bc:3c:77:aa:41:23:c8:0d:d4:13:dc:bc:24:6d:62:ff:3e: a7:a2:1e:e9:f7:97:23:ab:43:53:c4:64:bc:cb:84:6e:7e:9a: 40:41:d6:c5:46:7d:03:32:a0:3a:3b:02:d9:83:04:db:da:45: 18:10:2e:a3:f4:7c:ea:a4:65:f7:65:fe:17:3a:c2:dd:6f:17: d0:e8:79:bd:93:3c:68:15:84:a1:14:6b:b4:cb:eb:c8:13:fe: 10:3c:b6:e8:5e:dd:c4:3f:ea:b9:6d:29:95:24:95:cc:bb:97: d6:ce:56:9b:e1:6d:c5:ec:77:b0:96:b8:33:c7:0b:bc:17:1d: ba:66:21:af:b5:d0:2c:5f:9b:43:e8:7f:79:fb:12:25:24:4c: 23:b0:1d:7a:45:d8:5a:70:06:ec:53:6e:e5:70:46:10:16:39: a3:69:4d:f0:0b:c3:db:17:93:f5:46:dc:37:c9:79:d7:38:e5: e0:3a:25:ca:23:86:69:8a:f3:f4:c1:3a:fe:31:92:7a:fb:7b: 73:91:05:41:13:0d:c1:8a:03:89:93:13:3d:aa:30:3b:bc:4b: b5:8a:17:99:a6:72:64:05:aa:d0:cb:f4:c1:b0:5e:01:ab:19: 8d:db:6b:2f:9a:01:15:fa:0c:4f:0f:81:73:4f:52:65:79:fd: a7:de:a3:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAd8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0RUQxMTAvBgNVBAUTKEQ5ODUyOTE0OENCQTVEREVEM0I3M0Q2MDUyRUUwNTE2 QzAyNEM0RjMwHhcNMjUwNjAxMDEwODQ5WhcNMjUwNjA4MDEwODQ4WjAYMRYwFAYD VQQDEw02ODNiYTgyMS0xNmI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkw1+xJ6GbwGqmKKDFHLtVh7U2ytnP6VI8tQTvTSQjjcB5RTNkPY4w0650PRO IER7W8uryrg15vFCBsj3oQ2R1os6/hfSBZ7sjy4992IT1OYqkmxURYsbyJGm+RMP yjWVfSBO+7JuQRCz9Z8H3m9e1ipOkGRzLmozg9M7KXzRhxTNXoqLY5+MoCcBvQL5 GpsbtbigTq/FYHIRIE3CXyLB6GXt0f6rfJYwtm5dG/oC65Rt9V3UvYgXwJUgcfva sxVh1pQtoEgh9uJc0RbmHblDOBXj6NLvHDb8P+ZhD0yUWr19OvO9iLeNIgTbXZIW amQrd67wamUQUIHAVYCO/rFvNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPZhZANv hiwOcOpSsZuusIybwPViMB8GA1UdIwQYMBaAFNmFKRSMul3e07c9YFLuBRbAJMTz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzRFRC83NTk4NDQ0NDcy MEQxMUVEQjU0NUUwMzBDNEY5QUUwMi8yWVVwRkl5NlhkN1R0ejFnVXU0RkZzQWt4 UE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJZVXBGSXk2WGQ3VHR6MWdVdTRGRnNBa3hQTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzRFRC83NTk4NDQ0NDcyMEQxMUVEQjU0NUUwMzBDNEY5QUUwMi8yWVVwRkl5Nlhk N1R0ejFnVXU0RkZzQWt4UE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrvDx3qkEjyA3UE9y8JG1i/z6noh7p95cjq0NTxGS8y4RufppAQdbF Rn0DMqA6OwLZgwTb2kUYEC6j9HzqpGX3Zf4XOsLdbxfQ6Hm9kzxoFYShFGu0y+vI E/4QPLboXt3EP+q5bSmVJJXMu5fWzlab4W3F7Hewlrgzxwu8Fx26ZiGvtdAsX5tD 6H95+xIlJEwjsB16RdhacAbsU27lcEYQFjmjaU3wC8PbF5P1Rtw3yXnXOOXgOiXK I4ZpivP0wTr+MZJ6+3tzkQVBEw3BigOJkxM9qjA7vEu1iheZpnJkBarQy/TBsF4B qxmN22svmgEV+gxPD4FzT1Jlef2n3qM3 -----END CERTIFICATE-----Generated at Mon Jun 2 20:43:55 2025 by rpki-client