$ rpki-client -vvf rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.mft File: Ys-2EOllD-PIACvGF7cFck0qAt0.mft (raw, json) Hash identifier: 6MEM2HLryNcoJGpNhafV9+Y3oKT+E9ZJbIrEeu61LLQ= Subject key identifier: 3C:8F:18:4B:B4:25:82:FA:BF:BC:2E:6E:B0:FF:FB:5F:2A:8D:36:86 Authority key identifier: 62:CF:B6:10:E9:65:0F:E3:C8:00:2B:C6:17:B7:05:72:4D:2A:02:DD Certificate issuer: /CN=A917B1B1/serialNumber=62CFB610E9650FE3C8002BC617B705724D2A02DD Certificate serial: 1825 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ys-2EOllD-PIACvGF7cFck0qAt0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.mft Manifest number: 1818 Signing time: Fri 30 May 2025 16:42:47 +0000 Manifest this update: Fri 30 May 2025 16:42:47 +0000 Manifest next update: Fri 06 Jun 2025 16:42:47 +0000 Files and hashes: 1: Ys-2EOllD-PIACvGF7cFck0qAt0.crl (hash: aMpuxD8Ji2fFgFrKr1c7S6S9SUYYxRXBttTnrJzxqG4=) 2: C1C12662CFC811EB9A5C5879C4F9AE02.roa (hash: YxR/IEAXYjhKk4qyNbFNVRXx2+Bty0U++VTURHi/7GY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.crl rsync://rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ys-2EOllD-PIACvGF7cFck0qAt0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:42:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6181 (0x1825) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B1B1, serialNumber=62CFB610E9650FE3C8002BC617B705724D2A02DD Validity Not Before: May 30 16:42:47 2025 GMT Not After : Jun 6 16:42:47 2025 GMT Subject: CN=6839e007-f20e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f4:5e:0c:74:e1:5b:2c:fc:df:a5:29:19:3d: b4:f3:f7:4e:fa:84:a0:43:5f:49:4c:39:2e:65:c5: db:4e:6b:72:3f:e6:92:5a:05:25:17:2a:6b:a8:d7: a8:73:76:cb:2b:b3:f7:58:3a:0d:55:70:09:96:6a: e0:90:34:cf:d1:5f:a3:98:96:fe:e2:95:0d:3d:d3: d9:7f:dc:4a:19:db:a2:28:25:3a:74:cf:be:73:53: a7:45:bc:49:29:f6:e7:1e:cc:da:28:9b:98:de:e4: f0:f8:05:1b:4d:ac:c2:6f:4f:71:20:08:a5:9a:22: 74:36:39:1e:8e:d7:72:2c:42:a9:2e:da:88:31:b5: 80:85:f6:60:49:7d:38:82:68:68:65:41:36:4c:c8: dd:56:11:ec:7f:45:b2:b6:27:ae:15:10:e2:5a:a1: 67:ff:48:f6:5c:39:a3:40:72:f5:d3:05:97:24:0c: 37:76:19:76:e7:85:f4:5e:85:09:45:65:bd:1b:a4: b4:c0:35:7d:9e:1d:46:04:c3:47:8f:75:b6:cc:ab: b8:12:16:92:d9:85:d0:4b:a6:51:09:3e:0a:f1:ca: 9c:2b:e5:3c:71:65:3b:9f:be:64:4e:1f:ae:09:cf: 63:81:86:70:5a:d9:3e:f2:6d:25:0a:88:f2:79:22: f9:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:8F:18:4B:B4:25:82:FA:BF:BC:2E:6E:B0:FF:FB:5F:2A:8D:36:86 X509v3 Authority Key Identifier: keyid:62:CF:B6:10:E9:65:0F:E3:C8:00:2B:C6:17:B7:05:72:4D:2A:02:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ys-2EOllD-PIACvGF7cFck0qAt0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:2c:b9:b0:6a:a7:f5:33:c5:b8:07:4f:a7:9b:96:4c:dc:d7: 1b:79:cb:25:10:2b:d0:03:66:b5:98:23:21:ed:c7:72:03:0c: ca:fb:2e:8d:24:7b:56:20:2a:0e:43:13:e0:22:fb:b2:fc:fe: a2:b1:33:a9:9c:6c:6b:5a:dc:62:60:e1:b2:f7:bd:e6:09:87: 26:9e:07:69:9b:12:9e:25:57:a1:81:a6:ce:91:fe:24:ee:fe: 22:a8:76:a7:39:e6:0f:85:d1:ac:f3:3e:6a:43:a5:26:7f:80: c8:6a:7c:ce:c4:db:16:ef:4c:b1:f0:4b:a2:7e:da:a0:f4:a7: 19:d9:88:e4:ff:cc:1f:f1:4c:5e:42:f0:8c:3b:a0:70:e1:ff: f7:f1:1a:f1:54:57:0f:d4:1b:6f:19:ea:99:16:a7:78:32:28: a3:45:2c:d3:74:4a:8e:13:2e:ef:ad:ce:a1:39:70:83:bc:66: 4a:fe:d5:56:6c:f8:fa:c5:e9:45:d4:53:c4:db:99:6b:e9:bb: 55:e4:11:4e:b9:8f:dd:32:88:61:de:1c:98:16:4c:ec:77:aa: 75:08:f0:57:a4:09:ce:6f:4b:25:39:71:ff:78:8f:96:db:cb: dd:16:b3:81:1f:b4:99:c4:57:51:c1:99:4d:28:94:96:43:aa: 14:79:2e:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGCUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0IxQjExMTAvBgNVBAUTKDYyQ0ZCNjEwRTk2NTBGRTNDODAwMkJDNjE3QjcwNTcy NEQyQTAyREQwHhcNMjUwNTMwMTY0MjQ3WhcNMjUwNjA2MTY0MjQ3WjAYMRYwFAYD VQQDEw02ODM5ZTAwNy1mMjBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy/ReDHThWyz836UpGT208/dO+oSgQ19JTDkuZcXbTmtyP+aSWgUlFyprqNeo c3bLK7P3WDoNVXAJlmrgkDTP0V+jmJb+4pUNPdPZf9xKGduiKCU6dM++c1OnRbxJ KfbnHszaKJuY3uTw+AUbTazCb09xIAilmiJ0NjkejtdyLEKpLtqIMbWAhfZgSX04 gmhoZUE2TMjdVhHsf0WytieuFRDiWqFn/0j2XDmjQHL10wWXJAw3dhl254X0XoUJ RWW9G6S0wDV9nh1GBMNHj3W2zKu4EhaS2YXQS6ZRCT4K8cqcK+U8cWU7n75kTh+u Cc9jgYZwWtk+8m0lCojyeSL5/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDyPGEu0 JYL6v7wubrD/+18qjTaGMB8GA1UdIwQYMBaAFGLPthDpZQ/jyAArxhe3BXJNKgLd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjFCMS9BMEYwQURGMEIy NTIxMUU3OEI1MEZGNjBDNEY5QUUwMi9Zcy0yRU9sbEQtUElBQ3ZHRjdjRmNrMHFB dDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lzLTJFT2xsRC1QSUFDdkdGN2NGY2swcUF0MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjFCMS9BMEYwQURGMEIyNTIxMUU3OEI1MEZGNjBDNEY5QUUwMi9Zcy0yRU9sbEQt UElBQ3ZHRjdjRmNrMHFBdDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqLLmwaqf1M8W4B0+nm5ZM3NcbecslECvQA2a1mCMh7cdyAwzK+y6N JHtWICoOQxPgIvuy/P6isTOpnGxrWtxiYOGy973mCYcmngdpmxKeJVehgabOkf4k 7v4iqHanOeYPhdGs8z5qQ6Umf4DIanzOxNsW70yx8Euiftqg9KcZ2Yjk/8wf8Uxe QvCMO6Bw4f/38RrxVFcP1BtvGeqZFqd4MiijRSzTdEqOEy7vrc6hOXCDvGZK/tVW bPj6xelF1FPE25lr6btV5BFOuY/dMohh3hyYFkzsd6p1CPBXpAnOb0slOXH/eI+W 28vdFrOBH7SZxFdRwZlNKJSWQ6oUeS4d -----END CERTIFICATE-----Generated at Sat May 31 15:18:04 2025 by rpki-client