$ rpki-client -vvf rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.mft File: RYBbVYDVFRl9GmFa1myLnUhU9eo.mft (raw, json) Hash identifier: Vdj+BIFUAYffOmO38R9pfUol6x7TH1Vv7MOuVN8V5qE= Subject key identifier: C4:64:DC:80:D9:7B:60:29:3D:81:5C:F8:71:3C:F2:1C:8D:C8:FD:E5 Authority key identifier: 45:80:5B:55:80:D5:15:19:7D:1A:61:5A:D6:6C:8B:9D:48:54:F5:EA Certificate issuer: /CN=A91589E7/serialNumber=45805B5580D515197D1A615AD66C8B9D4854F5EA Certificate serial: 17E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYBbVYDVFRl9GmFa1myLnUhU9eo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.mft Manifest number: 17DC Signing time: Fri 30 May 2025 16:44:39 +0000 Manifest this update: Fri 30 May 2025 16:44:39 +0000 Manifest next update: Fri 06 Jun 2025 16:44:39 +0000 Files and hashes: 1: RYBbVYDVFRl9GmFa1myLnUhU9eo.crl (hash: hEd//1QuGLnu0hhDkz7xeRvPpvdmoKYzjr555Mj85b4=) 2: 94A1F97A369711EA866E381CC4F9AE02.roa (hash: KWbJbgpGfDdYPVO+KIuyWusqQxr6PU0FBc6ESlEd+IQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.crl rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYBbVYDVFRl9GmFa1myLnUhU9eo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:44:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6117 (0x17e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91589E7, serialNumber=45805B5580D515197D1A615AD66C8B9D4854F5EA Validity Not Before: May 30 16:44:39 2025 GMT Not After : Jun 6 16:44:39 2025 GMT Subject: CN=6839e077-5417 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:63:e6:80:5a:10:23:1b:7e:3d:ed:28:a8:7a: b8:4e:da:e3:e6:a2:d0:99:77:d1:7d:4f:e2:8e:ea: 18:34:e9:f7:e5:c5:49:de:c0:9f:05:4d:9c:4e:7c: ae:ad:13:8b:c2:a4:87:7b:7a:a1:b9:0f:d6:bb:88: de:ba:86:ca:d8:de:a6:d1:fc:b2:d5:e4:ba:6a:ea: 76:87:60:d7:51:9b:fb:ed:a2:ae:42:24:4d:19:3f: cc:ef:49:1a:b2:23:bb:9c:81:66:8e:03:b9:a8:ec: 77:9a:45:73:69:53:f1:fe:41:a7:f2:1a:75:24:4a: aa:65:44:90:b5:50:df:fd:c6:23:f2:38:e4:86:cd: df:0e:0c:f6:08:65:89:a7:04:df:ae:c9:fb:78:48: c2:d2:3a:8a:e9:6e:b1:2a:f5:63:f7:1f:96:e3:31: d4:ae:7e:ab:7a:c7:8c:a2:48:aa:a1:02:a1:3c:95: fd:10:57:57:68:84:86:d3:53:1e:86:f6:39:2a:b4: de:31:b6:50:03:15:34:cf:e2:02:8a:0c:b5:ff:67: 81:e9:ca:73:77:45:db:38:8d:2e:32:39:2a:97:7b: 5a:3c:65:9a:7f:2e:d3:13:76:bb:8e:57:93:62:44: 25:8f:c4:a3:02:03:cc:a7:8b:73:f9:0e:07:f6:fc: ae:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:64:DC:80:D9:7B:60:29:3D:81:5C:F8:71:3C:F2:1C:8D:C8:FD:E5 X509v3 Authority Key Identifier: keyid:45:80:5B:55:80:D5:15:19:7D:1A:61:5A:D6:6C:8B:9D:48:54:F5:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYBbVYDVFRl9GmFa1myLnUhU9eo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:48:eb:1e:51:64:fd:49:93:33:6f:54:c3:74:ef:ec:f5:27: 03:64:be:70:ec:03:78:c6:bc:64:97:a3:05:4a:5c:da:22:ca: f3:81:df:dc:25:a9:95:d6:cb:2c:3d:e2:24:0d:22:6f:86:76: 11:cc:6b:59:b6:7b:f4:c3:47:c8:d1:99:9e:c5:b0:03:da:f3: f8:72:88:be:97:c4:9b:99:06:1b:44:1f:f9:0f:9d:60:b6:a9: 9f:e6:84:9d:ae:ca:c3:dc:66:b3:36:4e:9c:de:e3:c6:8d:ec: 0e:54:cf:25:55:23:0b:f3:34:e9:b9:27:54:56:f9:8a:c1:cd: a3:25:8f:b6:46:20:20:9b:c3:98:ec:b7:c3:cb:46:74:c4:94: f3:3d:ee:20:5c:7a:40:a7:89:82:91:56:57:ba:83:42:f3:8e: 7f:db:4f:89:3a:51:ab:0b:7b:35:20:13:98:50:3f:92:2a:a0: 9a:f0:64:8d:49:c6:86:27:fc:ea:d2:3a:f5:c6:7f:e9:e4:49: a7:94:70:8f:b3:6b:7e:43:98:6b:b6:ac:c4:dc:02:b3:ce:15: 63:b5:e7:94:c7:02:47:b3:63:5f:78:3c:31:c5:0f:a1:eb:8d: 66:9e:24:6b:25:bd:67:de:55:a4:10:12:5c:3a:04:7f:89:5e: ae:cc:fa:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF+UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg5RTcxMTAvBgNVBAUTKDQ1ODA1QjU1ODBENTE1MTk3RDFBNjE1QUQ2NkM4QjlE NDg1NEY1RUEwHhcNMjUwNTMwMTY0NDM5WhcNMjUwNjA2MTY0NDM5WjAYMRYwFAYD VQQDEw02ODM5ZTA3Ny01NDE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsWPmgFoQIxt+Pe0oqHq4Ttrj5qLQmXfRfU/ijuoYNOn35cVJ3sCfBU2cTnyu rROLwqSHe3qhuQ/Wu4jeuobK2N6m0fyy1eS6aup2h2DXUZv77aKuQiRNGT/M70ka siO7nIFmjgO5qOx3mkVzaVPx/kGn8hp1JEqqZUSQtVDf/cYj8jjkhs3fDgz2CGWJ pwTfrsn7eEjC0jqK6W6xKvVj9x+W4zHUrn6reseMokiqoQKhPJX9EFdXaISG01Me hvY5KrTeMbZQAxU0z+ICigy1/2eB6cpzd0XbOI0uMjkql3taPGWafy7TE3a7jleT YkQlj8SjAgPMp4tz+Q4H9vyutQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMRk3IDZ e2ApPYFc+HE88hyNyP3lMB8GA1UdIwQYMBaAFEWAW1WA1RUZfRphWtZsi51IVPXq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODlFNy9GOEZGMTUyMkJE RkIxMUU3Qjg3M0ZFMjdDNEY5QUUwMi9SWUJiVllEVkZSbDlHbUZhMW15TG5VaFU5 ZW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JZQmJWWURWRlJsOUdtRmExbXlMblVoVTllby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODlFNy9GOEZGMTUyMkJERkIxMUU3Qjg3M0ZFMjdDNEY5QUUwMi9SWUJiVllEVkZS bDlHbUZhMW15TG5VaFU5ZW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZSOseUWT9SZMzb1TDdO/s9ScDZL5w7AN4xrxkl6MFSlzaIsrzgd/c JamV1sssPeIkDSJvhnYRzGtZtnv0w0fI0ZmexbAD2vP4coi+l8SbmQYbRB/5D51g tqmf5oSdrsrD3GazNk6c3uPGjewOVM8lVSML8zTpuSdUVvmKwc2jJY+2RiAgm8OY 7LfDy0Z0xJTzPe4gXHpAp4mCkVZXuoNC845/20+JOlGrC3s1IBOYUD+SKqCa8GSN ScaGJ/zq0jr1xn/p5EmnlHCPs2t+Q5hrtqzE3AKzzhVjteeUxwJHs2NfeDwxxQ+h 641mniRrJb1n3lWkEBJcOgR/iV6uzPrQ -----END CERTIFICATE-----Generated at Sat May 31 17:07:46 2025 by rpki-client