$ rpki-client -vvf rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft File: YfjH66e1XnGy5rF3QJFCUdiM8KY.mft (raw, json) Hash identifier: SfavEKuIryczz0GYikaIc8ee7VECWGUvk6zTZOKqBtI= Subject key identifier: 2D:03:62:F3:B1:BC:CF:FB:6C:05:A5:24:F1:7F:79:56:7D:0E:F9:75 Authority key identifier: 61:F8:C7:EB:A7:B5:5E:71:B2:E6:B1:77:40:91:42:51:D8:8C:F0:A6 Certificate issuer: /CN=A9158491/serialNumber=61F8C7EBA7B55E71B2E6B17740914251D88CF0A6 Certificate serial: 53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfjH66e1XnGy5rF3QJFCUdiM8KY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft Manifest number: 4B Signing time: Sat 31 May 2025 07:03:35 +0000 Manifest this update: Sat 31 May 2025 07:03:34 +0000 Manifest next update: Sat 07 Jun 2025 07:03:34 +0000 Files and hashes: 1: YfjH66e1XnGy5rF3QJFCUdiM8KY.crl (hash: X2N7s8I+w8ysN2g+26ZbF1J/0N66oNdrMv0TrdmF7ag=) 2: 5FDDEE1CE34211EF8EA0CA77C4F9AE02.roa (hash: U1IGaFhELlQWY/Ln876qk8JzJ3sNkyrrUJbwE+5NxYc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.crl rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfjH66e1XnGy5rF3QJFCUdiM8KY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:03:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158491, serialNumber=61F8C7EBA7B55E71B2E6B17740914251D88CF0A6 Validity Not Before: May 31 07:03:34 2025 GMT Not After : Jun 7 07:03:34 2025 GMT Subject: CN=683aa9c6-f843 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:c8:d1:b9:cc:92:b0:68:c1:36:af:d5:c6:96: 2b:51:02:78:3f:3c:2d:2f:41:c1:3a:29:be:ac:17: 11:7b:18:5c:d8:58:4e:44:68:2f:39:05:5d:35:72: 74:b6:5c:a7:7c:85:74:de:99:cf:8e:7b:bd:23:9c: 5a:73:26:8a:91:0f:51:46:c0:89:fa:68:51:68:b8: 55:2c:0f:ac:e3:ad:d7:10:c9:67:23:57:d2:66:18: 47:3c:78:09:20:25:d1:aa:59:3c:2b:bc:43:06:63: 56:a1:e6:07:18:4a:33:7d:d2:74:c7:49:3b:d5:8e: 5a:20:af:a4:5d:6b:52:26:da:9b:39:10:b1:83:a9: 38:9e:44:18:92:a1:9d:76:71:e0:65:41:9e:39:83: 1a:88:e5:01:3d:dc:4e:75:4b:35:15:ce:cd:17:bd: ad:8c:a8:df:d9:49:ce:b2:e4:a5:df:27:a4:f9:12: 6c:f0:c5:28:9b:20:d5:b2:a9:59:7a:e9:4f:a9:ee: 89:fe:92:c0:66:1b:8f:9f:dd:8c:99:2d:bd:69:b5: 91:cf:b4:1f:25:0f:6e:8f:63:1b:cc:65:a7:e0:eb: ac:ab:db:02:4a:b9:6f:1d:b2:4a:4e:af:bf:17:f9: 46:19:51:b3:bd:26:ce:48:27:97:08:c3:eb:be:5c: 5f:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:03:62:F3:B1:BC:CF:FB:6C:05:A5:24:F1:7F:79:56:7D:0E:F9:75 X509v3 Authority Key Identifier: keyid:61:F8:C7:EB:A7:B5:5E:71:B2:E6:B1:77:40:91:42:51:D8:8C:F0:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfjH66e1XnGy5rF3QJFCUdiM8KY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:99:31:35:00:90:3d:30:f3:c3:1e:ad:e6:77:4b:c4:bd:f5: 8e:38:e3:77:5c:cf:94:8e:4b:74:c9:d4:24:04:de:88:83:72: 87:1b:49:02:55:a8:8d:c8:96:8e:dd:51:59:14:bf:ba:52:2a: 86:42:7b:a5:0e:05:09:37:ba:5d:85:d0:8b:95:a4:54:01:70: 04:d2:b6:ac:12:db:ac:ec:8d:84:5e:4d:e5:53:ac:b6:5e:af: 91:39:90:67:0f:7e:50:62:f6:2a:e6:59:d0:20:15:ae:cb:83: 61:ed:e7:9d:06:05:9b:c7:af:e3:93:70:eb:e7:91:4d:cb:7d: 87:17:96:fc:85:03:1d:fd:d0:77:45:5e:2b:d4:3f:57:08:5c: 7c:c9:3e:b0:15:cc:06:16:3d:46:7d:d1:91:39:2b:93:e0:78: e6:fe:21:b0:70:e2:43:89:c3:d4:9a:c1:33:c4:11:f0:fa:9d: 08:c1:3c:39:7b:f9:5b:9e:a0:06:19:6d:50:c6:f2:03:bb:c1: de:4f:05:dc:c8:d5:48:56:6c:98:55:e6:8d:fa:06:94:f6:48: 2c:da:7b:3e:12:b6:eb:d8:53:33:d6:87:9d:2f:33:10:05:81: 3c:88:56:6f:fe:e7:59:b2:d1:a5:a4:38:82:6f:ec:9c:a9:2d: a3:fa:7f:78 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 ODQ5MTExMC8GA1UEBRMoNjFGOEM3RUJBN0I1NUU3MUIyRTZCMTc3NDA5MTQyNTFE ODhDRjBBNjAeFw0yNTA1MzEwNzAzMzRaFw0yNTA2MDcwNzAzMzRaMBgxFjAUBgNV BAMTDTY4M2FhOWM2LWY4NDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDRyNG5zJKwaME2r9XGlitRAng/PC0vQcE6Kb6sFxF7GFzYWE5EaC85BV01cnS2 XKd8hXTemc+Oe70jnFpzJoqRD1FGwIn6aFFouFUsD6zjrdcQyWcjV9JmGEc8eAkg JdGqWTwrvEMGY1ah5gcYSjN90nTHSTvVjlogr6Rda1Im2ps5ELGDqTieRBiSoZ12 ceBlQZ45gxqI5QE93E51SzUVzs0Xva2MqN/ZSc6y5KXfJ6T5EmzwxSibINWyqVl6 6U+p7on+ksBmG4+f3YyZLb1ptZHPtB8lD26PYxvMZafg66yr2wJKuW8dskpOr78X +UYZUbO9Js5IJ5cIw+u+XF8pAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQULQNi87G8 z/tsBaUk8X95Vn0O+XUwHwYDVR0jBBgwFoAUYfjH66e1XnGy5rF3QJFCUdiM8KYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU4NDkxLzYwREE1M0ZBREZB NTExRUY4QkQ0OUY4N0M0RjlBRTAyL1lmakg2NmUxWG5HeTVyRjNRSkZDVWRpTThL WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWWZqSDY2ZTFYbkd5NXJGM1FKRkNVZGlNOEtZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU4 NDkxLzYwREE1M0ZBREZBNTExRUY4QkQ0OUY4N0M0RjlBRTAyL1lmakg2NmUxWG5H eTVyRjNRSkZDVWRpTThLWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIeZMTUAkD0w88MereZ3S8S99Y4443dcz5SOS3TJ1CQE3oiDcocbSQJV qI3Ilo7dUVkUv7pSKoZCe6UOBQk3ul2F0IuVpFQBcATStqwS26zsjYReTeVTrLZe r5E5kGcPflBi9irmWdAgFa7Lg2Ht550GBZvHr+OTcOvnkU3LfYcXlvyFAx390HdF XivUP1cIXHzJPrAVzAYWPUZ90ZE5K5PgeOb+IbBw4kOJw9SawTPEEfD6nQjBPDl7 +VueoAYZbVDG8gO7wd5PBdzI1UhWbJhV5o36BpT2SCzaez4StuvYUzPWh50vMxAF gTyIVm/+51my0aWkOIJv7JypLaP6f3g= -----END CERTIFICATE-----Generated at Sat May 31 17:46:26 2025 by rpki-client