$ rpki-client -vvf rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft File: y-PSoWWxlLlY7sO2qURXdyo6CSo.mft (raw, json) Hash identifier: CoC9xmJ8p7lBCPyeXrvwcI5KcpqM+3DhQFqBUsm24JM= Subject key identifier: 6E:AD:B1:05:0E:04:D2:89:53:0F:4F:13:2E:2F:8F:8F:83:CF:29:2B Authority key identifier: CB:E3:D2:A1:65:B1:94:B9:58:EE:C3:B6:A9:44:57:77:2A:3A:09:2A Certificate issuer: /CN=A9154FE7/serialNumber=CBE3D2A165B194B958EEC3B6A94457772A3A092A Certificate serial: 0821 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft Manifest number: 0814 Signing time: Fri 30 May 2025 21:05:47 +0000 Manifest this update: Fri 30 May 2025 21:05:47 +0000 Manifest next update: Fri 06 Jun 2025 21:05:47 +0000 Files and hashes: 1: y-PSoWWxlLlY7sO2qURXdyo6CSo.crl (hash: V6tkn3WCAZ4u0LTLkGyaOaqS+UOr/0QMZokw2UgioME=) 2: 4B3AC7DC5FC811ED869A6956C4F9AE02.roa (hash: hwrYZn+i2OUNCmUoK3ena1siLJOV1HVO2m5EjPVb3kw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.crl rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:05:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2081 (0x821) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154FE7, serialNumber=CBE3D2A165B194B958EEC3B6A94457772A3A092A Validity Not Before: May 30 21:05:47 2025 GMT Not After : Jun 6 21:05:47 2025 GMT Subject: CN=683a1dab-534f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:31:43:3f:1d:97:a8:8d:c2:17:54:8e:66:e5: 7a:0c:d6:0a:69:94:b9:ab:bf:e1:ab:0f:6b:80:1a: e6:36:89:1d:53:83:ee:da:ca:87:df:44:65:f3:cc: e7:7a:21:ff:4c:8f:2e:ec:91:f5:ba:19:70:64:b4: 8d:a5:74:60:f9:aa:f9:9f:f2:f2:69:55:3a:34:a4: 3a:d5:27:4e:df:80:5b:6a:78:af:b7:02:5d:01:06: d7:fe:7d:25:87:fd:c8:f3:20:c2:d3:e0:15:eb:39: 41:d2:c9:23:09:de:a0:bf:c8:6c:89:c4:6c:cd:63: 24:03:93:9e:68:a8:c8:0f:bc:0e:db:13:44:6c:51: b9:8e:c0:65:92:69:26:e5:e8:09:6e:d3:cb:0b:ac: 76:89:60:c6:2c:82:97:8f:51:9b:4c:1f:ff:32:fd: 48:fc:34:22:7b:b3:18:1d:96:ba:0a:cc:2a:bf:45: 8d:58:3d:bf:a0:8d:e2:2b:00:30:a8:29:0e:f9:e1: 19:ea:92:4b:5a:93:82:4b:bd:85:e8:8c:8a:eb:17: 5d:57:4e:1b:c1:3c:55:a5:b4:2b:43:c8:f6:2b:2e: 07:58:0f:ca:c3:73:cf:36:63:e4:4a:7b:ce:c9:f5: 44:40:f9:f5:e4:93:88:ee:a6:0b:76:6e:b1:74:b1: 15:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:AD:B1:05:0E:04:D2:89:53:0F:4F:13:2E:2F:8F:8F:83:CF:29:2B X509v3 Authority Key Identifier: keyid:CB:E3:D2:A1:65:B1:94:B9:58:EE:C3:B6:A9:44:57:77:2A:3A:09:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:fe:af:94:ce:15:88:47:93:8b:5d:6d:35:89:55:20:bc:38: b8:54:99:a8:73:b1:be:c9:1d:8e:11:73:aa:ed:94:cb:59:cd: ed:a9:96:a6:9a:60:83:32:64:8d:d5:2c:d5:92:b9:a7:3a:9f: 9a:f4:e9:de:c5:11:7c:87:26:81:4d:8b:fe:51:ea:61:58:61: 00:fd:aa:29:2e:6a:01:32:0b:5f:4b:67:8b:63:a6:c4:97:16: 57:26:eb:37:f2:8d:7d:7e:b4:8f:29:22:43:6c:e5:36:a1:bf: 80:4a:b2:99:8d:76:3f:91:a4:e8:71:4f:ff:aa:45:aa:63:75: eb:3e:0d:89:e6:02:df:f8:e2:33:fa:ad:a6:1e:2e:37:63:3b: a5:7f:4b:cf:46:a4:db:ef:f0:28:1e:53:43:2c:f8:62:e4:da: f0:b9:90:15:da:22:d5:04:11:62:8c:4f:d4:ba:91:e0:80:60: 94:55:3f:89:ad:ec:4c:b9:a1:a5:c5:fb:b2:a7:29:a0:ad:bd: 54:14:df:65:8b:a2:ed:23:f6:a2:21:ae:dc:71:93:97:26:04: 04:31:79:52:b7:b1:ca:18:de:c5:d8:dd:57:2e:60:36:3c:5c: f0:8a:6a:31:5b:21:c1:d5:49:e3:fa:54:10:89:cf:54:3c:e7: ea:e1:d2:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRGRTcxMTAvBgNVBAUTKENCRTNEMkExNjVCMTk0Qjk1OEVFQzNCNkE5NDQ1Nzc3 MkEzQTA5MkEwHhcNMjUwNTMwMjEwNTQ3WhcNMjUwNjA2MjEwNTQ3WjAYMRYwFAYD VQQDEw02ODNhMWRhYi01MzRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4jFDPx2XqI3CF1SOZuV6DNYKaZS5q7/hqw9rgBrmNokdU4Pu2sqH30Rl88zn eiH/TI8u7JH1uhlwZLSNpXRg+ar5n/LyaVU6NKQ61SdO34BbanivtwJdAQbX/n0l h/3I8yDC0+AV6zlB0skjCd6gv8hsicRszWMkA5OeaKjID7wO2xNEbFG5jsBlkmkm 5egJbtPLC6x2iWDGLIKXj1GbTB//Mv1I/DQie7MYHZa6Cswqv0WNWD2/oI3iKwAw qCkO+eEZ6pJLWpOCS72F6IyK6xddV04bwTxVpbQrQ8j2Ky4HWA/Kw3PPNmPkSnvO yfVEQPn15JOI7qYLdm6xdLEVUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG6tsQUO BNKJUw9PEy4vj4+DzykrMB8GA1UdIwQYMBaAFMvj0qFlsZS5WO7DtqlEV3cqOgkq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEZFNy81QTJEODlFQURC N0QxMUVBQkNGM0VDM0VDNEY5QUUwMi95LVBTb1dXeGxMbFk3c08ycVVSWGR5bzZD U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ktUFNvV1d4bExsWTdzTzJxVVJYZHlvNkNTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEZFNy81QTJEODlFQURCN0QxMUVBQkNGM0VDM0VDNEY5QUUwMi95LVBTb1dXeGxM bFk3c08ycVVSWGR5bzZDU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3/q+UzhWIR5OLXW01iVUgvDi4VJmoc7G+yR2OEXOq7ZTLWc3tqZam mmCDMmSN1SzVkrmnOp+a9OnexRF8hyaBTYv+UephWGEA/aopLmoBMgtfS2eLY6bE lxZXJus38o19frSPKSJDbOU2ob+ASrKZjXY/kaTocU//qkWqY3XrPg2J5gLf+OIz +q2mHi43Yzulf0vPRqTb7/AoHlNDLPhi5NrwuZAV2iLVBBFijE/UupHggGCUVT+J rexMuaGlxfuypymgrb1UFN9li6LtI/aiIa7ccZOXJgQEMXlSt7HKGN7F2N1XLmA2 PFzwimoxWyHB1Unj+lQQic9UPOfq4dLE -----END CERTIFICATE-----Generated at Sat May 31 16:36:46 2025 by rpki-client