$ rpki-client -vvf rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft File: ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft (raw, json) Hash identifier: zQLxz99Z/dt5GZ6Hduk6j/vGsXgTVyNtgm2H22brDIA= Subject key identifier: 46:B5:F9:01:C7:1A:95:86:AC:0F:70:A5:CB:21:26:1E:6A:58:76:F5 Authority key identifier: C9:C2:8F:99:0B:62:74:12:C9:7C:2D:CE:C7:C9:06:E6:1A:D3:25:AC Certificate issuer: /CN=A91597E8/serialNumber=C9C28F990B627412C97C2DCEC7C906E61AD325AC Certificate serial: 348E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft Manifest number: 348E Signing time: Fri 30 May 2025 14:46:54 +0000 Manifest this update: Fri 30 May 2025 14:46:54 +0000 Manifest next update: Fri 06 Jun 2025 14:46:54 +0000 Files and hashes: 1: ycKPmQtidBLJfC3Ox8kG5hrTJaw.crl (hash: r/Kn2BJxtU7vXG7CgjyjESC3LP6hxTObWr5v6l8o2gI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.crl rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 14:46:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13454 (0x348e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91597E8, serialNumber=C9C28F990B627412C97C2DCEC7C906E61AD325AC Validity Not Before: May 30 14:46:54 2025 GMT Not After : Jun 6 14:46:54 2025 GMT Subject: CN=6839c4de-9072 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:04:c3:72:31:01:dc:48:54:22:6e:5f:ac:ef: 30:66:c1:88:4b:b6:fb:a5:e2:b8:de:f6:42:ef:24: a9:c0:b4:b7:e7:9f:39:4d:a3:c9:26:18:71:ad:0c: b2:42:a8:a1:83:39:6f:06:f7:1f:d9:5e:16:17:5a: 08:dc:bb:97:0a:a6:26:ba:26:73:60:57:00:c2:c1: 33:f3:2a:1e:1b:fb:d7:51:e4:00:71:a8:2c:93:26: 10:a3:84:55:43:ac:a7:20:ec:f0:9e:cb:9b:6d:6d: 28:90:f0:e2:d2:4f:32:d7:9a:19:e0:7f:4b:55:b9: fd:f6:4b:88:aa:a9:7d:e2:94:63:3e:9f:48:0b:53: 20:f6:08:45:0d:d6:1b:bf:f8:6e:83:72:5e:33:3a: 3b:9f:08:80:bb:3a:cd:04:6d:44:ca:d8:84:2a:32: 51:80:52:27:95:dd:09:dc:a8:5e:9a:a2:c6:15:88: f4:16:8e:2c:93:53:df:1c:5d:d3:5e:5f:54:41:4e: 72:27:f8:2d:fb:21:20:68:5c:a9:1c:04:40:32:e4: d6:b8:f7:47:a5:a5:de:42:50:11:71:d1:1b:ca:e8: aa:84:a9:93:ec:f2:43:52:d8:86:8a:82:e9:67:ff: 02:37:77:37:98:35:6b:3d:34:71:d9:30:e6:56:71: 5c:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:B5:F9:01:C7:1A:95:86:AC:0F:70:A5:CB:21:26:1E:6A:58:76:F5 X509v3 Authority Key Identifier: keyid:C9:C2:8F:99:0B:62:74:12:C9:7C:2D:CE:C7:C9:06:E6:1A:D3:25:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:a0:0c:e3:7b:44:88:d0:ef:69:c0:2a:51:b0:10:02:d4:f1: f5:69:f8:bb:ff:96:c4:f7:47:6a:42:46:70:0b:32:ee:7f:15: 72:3e:20:1d:e9:71:ab:a1:03:ec:74:72:a0:af:c9:60:c4:39: 8e:28:00:66:4f:75:fe:12:06:a8:75:5e:c7:19:84:7a:d8:45: 00:09:c9:1b:0e:ce:fc:5e:65:b6:64:c2:a2:ef:df:45:b5:c3: bf:8c:07:95:89:32:d6:e5:f5:bf:a6:90:6b:77:bb:fe:02:f1: 19:db:cc:23:ba:f5:e9:21:d2:b5:e5:de:67:3b:fb:88:5b:00: ef:f3:25:a7:a2:74:4e:bb:a7:3f:6a:1a:ff:b4:7b:18:ee:8a: de:5b:79:53:d7:99:c0:a7:99:25:69:55:61:56:31:3f:44:5b: 6e:37:2b:e7:3f:09:d6:a7:9c:30:72:af:a1:ef:af:8e:b4:aa: fc:48:af:91:7c:5d:58:b7:d7:b5:2a:70:4d:ca:48:7c:d5:ac: 84:93:8e:93:0a:81:a3:0d:f2:5a:c8:39:ad:0a:16:08:f1:00: 16:93:98:fc:46:59:1d:42:4f:32:53:fc:41:ae:1f:d6:61:4f: 17:77:ca:80:95:8d:42:6f:bf:be:76:b7:37:26:fc:45:2f:58: 97:90:39:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTk3RTgxMTAvBgNVBAUTKEM5QzI4Rjk5MEI2Mjc0MTJDOTdDMkRDRUM3QzkwNkU2 MUFEMzI1QUMwHhcNMjUwNTMwMTQ0NjU0WhcNMjUwNjA2MTQ0NjU0WjAYMRYwFAYD VQQDEw02ODM5YzRkZS05MDcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ATDcjEB3EhUIm5frO8wZsGIS7b7peK43vZC7ySpwLS35585TaPJJhhxrQyy QqihgzlvBvcf2V4WF1oI3LuXCqYmuiZzYFcAwsEz8yoeG/vXUeQAcagskyYQo4RV Q6ynIOzwnsubbW0okPDi0k8y15oZ4H9LVbn99kuIqql94pRjPp9IC1Mg9ghFDdYb v/hug3JeMzo7nwiAuzrNBG1EytiEKjJRgFInld0J3KhemqLGFYj0Fo4sk1PfHF3T Xl9UQU5yJ/gt+yEgaFypHARAMuTWuPdHpaXeQlARcdEbyuiqhKmT7PJDUtiGioLp Z/8CN3c3mDVrPTRx2TDmVnFcywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEa1+QHH GpWGrA9wpcshJh5qWHb1MB8GA1UdIwQYMBaAFMnCj5kLYnQSyXwtzsfJBuYa0yWs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTdFOC83QTBGRTdGQTFE OTIxMUUyQjVCQzc0RjUwOEIwMkNEMi95Y0tQbVF0aWRCTEpmQzNPeDhrRzVoclRK YXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ljS1BtUXRpZEJMSmZDM094OGtHNWhyVEphdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTdFOC83QTBGRTdGQTFEOTIxMUUyQjVCQzc0RjUwOEIwMkNEMi95Y0tQbVF0aWRC TEpmQzNPeDhrRzVoclRKYXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVoAzje0SI0O9pwCpRsBAC1PH1afi7/5bE90dqQkZwCzLufxVyPiAd 6XGroQPsdHKgr8lgxDmOKABmT3X+EgaodV7HGYR62EUACckbDs78XmW2ZMKi799F tcO/jAeViTLW5fW/ppBrd7v+AvEZ28wjuvXpIdK15d5nO/uIWwDv8yWnonROu6c/ ahr/tHsY7oreW3lT15nAp5klaVVhVjE/RFtuNyvnPwnWp5wwcq+h76+OtKr8SK+R fF1Yt9e1KnBNykh81ayEk46TCoGjDfJayDmtChYI8QAWk5j8RlkdQk8yU/xBrh/W YU8Xd8qAlY1Cb7++drc3JvxFL1iXkDmD -----END CERTIFICATE-----Generated at Sat May 31 16:36:48 2025 by rpki-client