$ rpki-client -vvf rpki.apnic.net/member_repository/A917314A/5EF8A91600EA11ED9C0CB332C4F9AE02/JyyuXyHIv2trSRWvAATH78_H2z0.mft File: JyyuXyHIv2trSRWvAATH78_H2z0.mft (raw, json) Hash identifier: Rt9e/T9rmLcR3Pxyz+C/UNhWt5oezrPJAzXDXvITxyg= Subject key identifier: 9B:E2:10:C8:91:39:14:EE:4D:B1:BA:D6:B8:13:5F:5E:B7:B6:D0:70 Authority key identifier: 27:2C:AE:5F:21:C8:BF:6B:6B:49:15:AF:00:04:C7:EF:CF:C7:DB:3D Certificate issuer: /CN=A917314A/serialNumber=272CAE5F21C8BF6B6B4915AF0004C7EFCFC7DB3D Certificate serial: 02A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JyyuXyHIv2trSRWvAATH78_H2z0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917314A/5EF8A91600EA11ED9C0CB332C4F9AE02/JyyuXyHIv2trSRWvAATH78_H2z0.mft Manifest number: 02A0 Signing time: Sun 01 Jun 2025 01:45:06 +0000 Manifest this update: Sun 01 Jun 2025 01:45:05 +0000 Manifest next update: Sun 08 Jun 2025 01:45:05 +0000 Files and hashes: 1: JyyuXyHIv2trSRWvAATH78_H2z0.crl (hash: 2ChTwWK6EtZBJW0et/Fgqvh3ZD4E2874Td1JkmZ/48w=) 2: 8620180E00EE11EDBC60AA4FC4F9AE02.roa (hash: 8amN8Nk9oVQpcGLG743ZVOV+dvrusSJP1h0AZ4Q+u2o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917314A/5EF8A91600EA11ED9C0CB332C4F9AE02/JyyuXyHIv2trSRWvAATH78_H2z0.crl rsync://rpki.apnic.net/member_repository/A917314A/5EF8A91600EA11ED9C0CB332C4F9AE02/JyyuXyHIv2trSRWvAATH78_H2z0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JyyuXyHIv2trSRWvAATH78_H2z0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 01:45:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 677 (0x2a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917314A, serialNumber=272CAE5F21C8BF6B6B4915AF0004C7EFCFC7DB3D Validity Not Before: Jun 1 01:45:05 2025 GMT Not After : Jun 8 01:45:05 2025 GMT Subject: CN=683bb0a2-17cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:26:6a:d9:38:9a:8a:f9:15:8b:ce:ea:3a:14: 05:8f:c2:b6:b5:38:06:59:bd:1e:d4:1b:fb:7a:4d: 67:31:a0:c0:16:ad:64:a0:5f:38:05:d6:84:19:79: 16:1c:4c:40:dd:28:22:1c:8c:db:a5:36:79:83:2d: 8d:45:49:0b:cb:13:28:d4:9a:28:b7:bd:8b:48:03: c4:85:5b:0c:9f:65:c3:ea:ba:89:29:74:a9:95:12: 42:ea:98:0f:81:fe:c1:24:66:df:32:b8:3b:bc:84: 4b:58:a1:4d:94:73:d7:d0:b1:d5:5b:11:28:42:4c: 7a:b5:b8:4a:de:4f:92:1c:3c:30:24:86:b8:01:5e: 53:15:d4:a7:0c:95:7e:b2:d5:6e:2d:83:21:56:33: 5b:aa:d8:9d:f5:2f:f7:66:d8:c1:f8:a1:99:ac:5a: 38:e8:7c:58:e8:72:8f:c6:a5:6c:c9:ab:53:c1:e8: 70:e6:e1:d3:d6:56:80:98:66:77:4d:eb:41:8e:7a: 73:80:5f:8a:24:57:cb:f2:0f:51:f1:05:99:a2:c6: 03:7b:00:ea:e0:d1:e9:ad:24:ff:bd:be:38:57:30: ae:6b:f3:0a:92:47:eb:f3:6d:f7:02:e4:42:69:13: ec:fd:a7:d3:41:d4:bc:77:a2:1d:31:b8:06:ac:03: a0:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:E2:10:C8:91:39:14:EE:4D:B1:BA:D6:B8:13:5F:5E:B7:B6:D0:70 X509v3 Authority Key Identifier: keyid:27:2C:AE:5F:21:C8:BF:6B:6B:49:15:AF:00:04:C7:EF:CF:C7:DB:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917314A/5EF8A91600EA11ED9C0CB332C4F9AE02/JyyuXyHIv2trSRWvAATH78_H2z0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JyyuXyHIv2trSRWvAATH78_H2z0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917314A/5EF8A91600EA11ED9C0CB332C4F9AE02/JyyuXyHIv2trSRWvAATH78_H2z0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:66:1b:51:24:90:99:0e:0d:c5:34:4f:8d:a3:0f:4a:35:08: e2:61:e7:79:8a:f9:c3:06:f5:a7:3a:f7:df:d2:d2:c6:52:c7: ce:f4:19:fa:61:b2:c3:4b:99:f2:b8:5e:c2:5a:be:85:bb:f3: 25:87:2b:76:1c:6c:8d:88:4b:ea:cb:4f:c4:ee:fd:cd:62:b1: d3:3a:75:9e:e8:a0:7b:a5:1c:fb:52:cf:f8:f8:28:3c:6f:17: d6:d5:38:5a:88:51:96:91:9b:3e:b4:bb:58:50:f1:ac:2d:f6: bb:2b:c1:a8:76:2e:12:42:b0:50:e9:d4:ed:02:f2:a6:73:30: 9d:58:b1:2f:db:68:46:e0:dc:84:2a:86:a9:74:83:8b:62:84: 87:76:77:c0:8b:a4:44:ce:19:c4:6d:98:64:5f:21:e1:c6:fb: b7:d8:23:fc:d0:f3:3c:af:53:df:c2:fb:ae:06:f7:a0:ad:ce: 14:bc:ff:14:b1:5f:41:1c:a9:80:42:16:6b:2d:38:0f:61:66: 3e:52:d5:c1:10:72:90:71:78:28:21:ae:4c:be:d6:89:b9:d3: e1:7b:29:c1:6c:d3:a2:ff:7d:cb:3d:a2:23:ae:88:88:2b:43: 0d:cd:36:6b:f3:0e:af:06:0e:c1:c2:46:14:0f:ce:53:3e:6a: 67:81:4f:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzMxNEExMTAvBgNVBAUTKDI3MkNBRTVGMjFDOEJGNkI2QjQ5MTVBRjAwMDRDN0VG Q0ZDN0RCM0QwHhcNMjUwNjAxMDE0NTA1WhcNMjUwNjA4MDE0NTA1WjAYMRYwFAYD VQQDEw02ODNiYjBhMi0xN2NjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsSZq2TiaivkVi87qOhQFj8K2tTgGWb0e1Bv7ek1nMaDAFq1koF84BdaEGXkW HExA3SgiHIzbpTZ5gy2NRUkLyxMo1Joot72LSAPEhVsMn2XD6rqJKXSplRJC6pgP gf7BJGbfMrg7vIRLWKFNlHPX0LHVWxEoQkx6tbhK3k+SHDwwJIa4AV5TFdSnDJV+ stVuLYMhVjNbqtid9S/3ZtjB+KGZrFo46HxY6HKPxqVsyatTwehw5uHT1laAmGZ3 TetBjnpzgF+KJFfL8g9R8QWZosYDewDq4NHprST/vb44VzCua/MKkkfr8233AuRC aRPs/afTQdS8d6IdMbgGrAOgIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJviEMiR ORTuTbG61rgTX163ttBwMB8GA1UdIwQYMBaAFCcsrl8hyL9ra0kVrwAEx+/Px9s9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzE0QS81RUY4QTkxNjAw RUExMUVEOUMwQ0IzMzJDNEY5QUUwMi9KeXl1WHlISXYydHJTUld2QUFUSDc4X0gy ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0p5eXVYeUhJdjJ0clNSV3ZBQVRINzhfSDJ6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzE0QS81RUY4QTkxNjAwRUExMUVEOUMwQ0IzMzJDNEY5QUUwMi9KeXl1WHlISXYy dHJTUld2QUFUSDc4X0gyejAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZZhtRJJCZDg3FNE+Now9KNQjiYed5ivnDBvWnOvff0tLGUsfO9Bn6 YbLDS5nyuF7CWr6Fu/Mlhyt2HGyNiEvqy0/E7v3NYrHTOnWe6KB7pRz7Us/4+Cg8 bxfW1ThaiFGWkZs+tLtYUPGsLfa7K8Godi4SQrBQ6dTtAvKmczCdWLEv22hG4NyE KoapdIOLYoSHdnfAi6REzhnEbZhkXyHhxvu32CP80PM8r1PfwvuuBvegrc4UvP8U sV9BHKmAQhZrLTgPYWY+UtXBEHKQcXgoIa5MvtaJudPheynBbNOi/33LPaIjroiI K0MNzTZr8w6vBg7BwkYUD85TPmpngU+W -----END CERTIFICATE-----Generated at Mon Jun 2 07:17:18 2025 by rpki-client