$ rpki-client -vvf rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft File: YeT4YWtiQmYakffQErbNHkCTiQs.mft (raw, json) Hash identifier: zjNMZfA6QcJB4MUoPG5XO3NugG9l0cl4knvMC7+5xuY= Subject key identifier: 5E:D0:A2:0F:FB:EE:D0:22:7D:4C:27:7C:7A:7E:2D:D1:33:75:CF:CF Authority key identifier: 61:E4:F8:61:6B:62:42:66:1A:91:F7:D0:12:B6:CD:1E:40:93:89:0B Certificate issuer: /CN=A91605D7/serialNumber=61E4F8616B6242661A91F7D012B6CD1E4093890B Certificate serial: E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeT4YWtiQmYakffQErbNHkCTiQs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft Manifest number: E1 Signing time: Sat 31 May 2025 05:04:30 +0000 Manifest this update: Sat 31 May 2025 05:04:29 +0000 Manifest next update: Sat 07 Jun 2025 05:04:29 +0000 Files and hashes: 1: YeT4YWtiQmYakffQErbNHkCTiQs.crl (hash: JN+xWpkIVflC7+XZvT2Yx74oYYzmlXPzEc8m8p4lyzk=) 2: EA46D7ECE57F11EE96F8FB39C4F9AE02.roa (hash: yl/E8QHLka4/lwMsB6BevGouPJwrIPgnFEOjdbPwsG0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.crl rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeT4YWtiQmYakffQErbNHkCTiQs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:04:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 228 (0xe4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91605D7, serialNumber=61E4F8616B6242661A91F7D012B6CD1E4093890B Validity Not Before: May 31 05:04:29 2025 GMT Not After : Jun 7 05:04:29 2025 GMT Subject: CN=683a8dde-9415 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:d9:0b:d1:fe:d8:8a:06:8b:5f:fe:b5:54:2a: 53:30:68:75:25:d3:29:11:b7:43:5a:0a:97:a3:c5: d5:7f:4a:e3:b1:fd:96:bf:49:f8:4d:85:72:8e:3c: d0:3a:65:22:a8:df:e7:38:81:9d:22:2f:f2:90:8b: 45:e3:8c:b6:1e:f0:e0:e3:b6:71:34:63:b4:6e:62: fb:8c:fd:b8:60:cc:6d:04:d5:8f:36:87:f5:46:18: 95:72:19:82:39:69:5a:a5:62:9f:c6:69:a1:02:50: f8:bf:ca:bb:5c:80:08:d5:2c:47:86:38:0a:59:6c: e9:46:60:b9:35:b4:4b:9b:ce:09:21:3f:bf:aa:93: df:0d:4e:05:a6:a9:5b:9c:48:18:0f:83:97:01:d0: bc:0b:0d:e8:ee:26:66:0f:c5:a9:20:5a:26:c6:9f: 17:4d:8d:56:4b:86:ed:88:40:6a:6b:ec:c9:20:15: 18:00:a2:df:4e:01:08:3b:a5:44:4e:a6:84:ef:ad: 16:c0:e1:21:23:f6:74:9f:f6:50:87:cd:1e:1d:c4: c8:6c:40:34:29:ba:ae:19:a7:6f:50:39:4d:e8:78: 35:31:7d:de:85:5f:fb:ef:39:c0:76:00:a9:8a:9e: 81:2a:a8:ea:cd:dc:84:9d:86:54:db:bd:f0:e7:6e: 86:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:D0:A2:0F:FB:EE:D0:22:7D:4C:27:7C:7A:7E:2D:D1:33:75:CF:CF X509v3 Authority Key Identifier: keyid:61:E4:F8:61:6B:62:42:66:1A:91:F7:D0:12:B6:CD:1E:40:93:89:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeT4YWtiQmYakffQErbNHkCTiQs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:7c:12:3c:68:93:7a:6d:c1:aa:19:c5:64:95:6a:4a:34:a2: 34:45:f3:a8:bf:0d:ab:ca:31:dc:a9:05:60:cc:f5:18:76:39: 26:2e:20:c0:c6:b5:a4:e3:c8:e9:37:f9:fc:57:e9:20:4e:f6: 70:e5:2b:26:73:38:d5:1e:f3:0d:5d:ed:86:1e:7b:63:71:ac: 6e:ec:2b:b4:61:81:5e:59:65:11:5c:2e:18:bd:b3:0d:c3:52: 1e:af:51:30:37:84:83:44:e8:dd:db:70:14:db:6e:c1:7d:f8: a3:9f:09:fc:85:d2:c1:f4:03:4a:63:af:9e:ef:4f:79:40:63: aa:68:d7:fc:ed:99:5d:75:03:16:2d:48:bb:b3:e0:9b:30:69: 72:d6:f2:43:f2:a8:53:ca:c1:9b:f3:ff:d0:c9:bd:65:b3:49: 3a:c3:09:c6:5f:c9:03:25:d1:f4:d4:45:74:ea:c7:d8:94:d2: 69:1e:e1:ef:c1:2b:90:10:62:5d:cc:73:4a:40:5c:e6:88:6f: 25:b2:4a:da:51:24:0f:af:41:0c:8e:41:a7:5b:6d:ca:47:b4: 91:dc:c5:e1:05:7a:81:41:61:64:f2:9a:a8:fe:91:f7:16:3c: 2e:72:24:9a:fd:81:bb:14:78:b1:3d:93:dd:ba:31:a0:70:86: 23:59:68:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA1RDcxMTAvBgNVBAUTKDYxRTRGODYxNkI2MjQyNjYxQTkxRjdEMDEyQjZDRDFF NDA5Mzg5MEIwHhcNMjUwNTMxMDUwNDI5WhcNMjUwNjA3MDUwNDI5WjAYMRYwFAYD VQQDEw02ODNhOGRkZS05NDE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz9kL0f7YigaLX/61VCpTMGh1JdMpEbdDWgqXo8XVf0rjsf2Wv0n4TYVyjjzQ OmUiqN/nOIGdIi/ykItF44y2HvDg47ZxNGO0bmL7jP24YMxtBNWPNof1RhiVchmC OWlapWKfxmmhAlD4v8q7XIAI1SxHhjgKWWzpRmC5NbRLm84JIT+/qpPfDU4Fpqlb nEgYD4OXAdC8Cw3o7iZmD8WpIFomxp8XTY1WS4btiEBqa+zJIBUYAKLfTgEIO6VE TqaE760WwOEhI/Z0n/ZQh80eHcTIbEA0KbquGadvUDlN6Hg1MX3ehV/77znAdgCp ip6BKqjqzdyEnYZU273w526GeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF7Qog/7 7tAifUwnfHp+LdEzdc/PMB8GA1UdIwQYMBaAFGHk+GFrYkJmGpH30BK2zR5Ak4kL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDVENy8zQjUwRjEzMkU1 N0YxMUVFQUYxRDI5MUJDNEY5QUUwMi9ZZVQ0WVd0aVFtWWFrZmZRRXJiTkhrQ1Rp UXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1llVDRZV3RpUW1ZYWtmZlFFcmJOSGtDVGlRcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDVENy8zQjUwRjEzMkU1N0YxMUVFQUYxRDI5MUJDNEY5QUUwMi9ZZVQ0WVd0aVFt WWFrZmZRRXJiTkhrQ1RpUXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1fBI8aJN6bcGqGcVklWpKNKI0RfOovw2ryjHcqQVgzPUYdjkmLiDA xrWk48jpN/n8V+kgTvZw5SsmczjVHvMNXe2GHntjcaxu7Cu0YYFeWWURXC4YvbMN w1Ier1EwN4SDROjd23AU227Bffijnwn8hdLB9ANKY6+e7095QGOqaNf87ZlddQMW LUi7s+CbMGly1vJD8qhTysGb8//Qyb1ls0k6wwnGX8kDJdH01EV06sfYlNJpHuHv wSuQEGJdzHNKQFzmiG8lskraUSQPr0EMjkGnW23KR7SR3MXhBXqBQWFk8pqo/pH3 FjwuciSa/YG7FHixPZPdujGgcIYjWWgN -----END CERTIFICATE-----Generated at Sat May 31 17:22:09 2025 by rpki-client