$ rpki-client -vvf rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft File: YBi5hcOZywcxwWNM_ktHkS8q9dE.mft (raw, json) Hash identifier: iDe25Fbr2fdr7RMin8psvPB2sbnDJXJzUNYKIy36a1U= Subject key identifier: 94:7A:9E:0B:B1:04:4B:2A:73:2B:CD:C8:E1:1C:92:2A:D4:7B:56:CB Authority key identifier: 60:18:B9:85:C3:99:CB:07:31:C1:63:4C:FE:4B:47:91:2F:2A:F5:D1 Certificate issuer: /CN=A9183BA5/serialNumber=6018B985C399CB0731C1634CFE4B47912F2AF5D1 Certificate serial: 01D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft Manifest number: 01D4 Signing time: Sat 31 May 2025 02:32:39 +0000 Manifest this update: Sat 31 May 2025 02:32:39 +0000 Manifest next update: Sat 07 Jun 2025 02:32:39 +0000 Files and hashes: 1: YBi5hcOZywcxwWNM_ktHkS8q9dE.crl (hash: u5RdKzigDU0pxuhwTlEeDz/Wx9MDELQdR1bVakmJVGQ=) 2: C386C06A706211EDA9CCDB76C4F9AE02.roa (hash: kCv4bHKTur2lJoL7asgYL11dC+z1ZsHw44gWQxYmfaI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.crl rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:32:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 472 (0x1d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9183BA5, serialNumber=6018B985C399CB0731C1634CFE4B47912F2AF5D1 Validity Not Before: May 31 02:32:39 2025 GMT Not After : Jun 7 02:32:39 2025 GMT Subject: CN=683a6a47-aa7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:30:74:d0:d8:9d:b0:cb:82:62:b7:68:b1:36: 14:ae:ee:cd:a6:47:e1:05:93:1d:47:26:36:1d:15: bf:4c:3a:0c:11:22:5c:6f:3f:c8:90:76:74:20:78: 54:61:db:25:fc:9a:51:2a:c1:a1:00:f4:7b:23:c6: bb:81:26:e9:dc:2a:62:a0:2c:30:67:1d:aa:1b:8c: 15:0e:e6:60:03:e4:ef:f2:0f:25:c7:32:7b:cf:47: 6a:0f:2e:3b:d6:ea:e2:bf:68:b7:0f:e1:22:0c:08: 1c:de:8d:e4:bf:03:31:75:dd:4e:3b:c0:7f:38:8f: 38:63:2a:63:eb:5d:8b:3e:c8:0c:c2:07:d1:45:96: 84:00:1b:7f:f4:01:ca:c3:a9:3c:2f:02:78:6a:84: 2a:6b:05:c2:5e:da:da:fb:1e:8c:a2:69:89:85:05: bc:c6:e3:a9:1f:fd:f3:a6:1e:08:56:0d:a6:71:47: c9:2c:a5:f2:2d:c8:cc:81:43:9a:41:cc:e8:f2:28: 46:f5:d8:d1:aa:58:ab:86:a0:05:0a:13:b3:7d:d3: e3:76:77:d7:58:e6:37:9b:64:47:e3:fd:8d:e6:5a: 59:73:d6:ce:51:d4:55:f9:cb:70:5b:f4:95:ad:0a: 59:10:a8:04:2b:b1:b4:e6:84:5c:90:42:49:0e:8b: f9:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:7A:9E:0B:B1:04:4B:2A:73:2B:CD:C8:E1:1C:92:2A:D4:7B:56:CB X509v3 Authority Key Identifier: keyid:60:18:B9:85:C3:99:CB:07:31:C1:63:4C:FE:4B:47:91:2F:2A:F5:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:5d:60:36:8b:4d:f1:78:f2:51:0d:21:3b:56:bb:8d:e1:26: b7:9d:fa:c4:6b:7f:db:16:57:37:52:bb:6f:6f:13:e8:d8:d9: 41:f4:c3:03:d7:4e:41:a6:44:3a:4a:fe:4d:ae:32:76:f2:4d: 63:ea:8b:99:22:94:a9:77:e8:61:90:42:a2:db:ad:7d:53:a8: 51:a9:45:08:9d:bf:0a:29:f3:93:93:1e:46:be:5a:aa:44:7a: 7f:c1:4f:0a:d5:72:b5:76:9b:28:c6:ff:d7:e5:77:ad:ad:47: 16:cd:36:a3:74:06:b2:8e:6b:4c:6a:0c:e1:d0:a9:9f:24:67: 09:37:6e:d9:42:6d:c6:19:d9:18:ba:f3:6b:7a:3b:a5:47:17: d9:b0:05:8a:ba:a6:ea:e8:d7:f5:28:18:e1:90:47:33:20:42: db:c8:24:6d:de:9f:2b:c1:31:58:c8:26:62:fc:09:85:5a:93: f3:f5:6a:ae:df:c3:56:c1:e9:38:c8:b7:e7:a7:1b:2b:c2:17: 28:80:5e:a2:db:05:4c:8c:ef:f8:6d:9a:73:2f:09:cc:b2:17: 6d:5b:37:2d:0b:8b:a8:e9:8f:96:61:ad:91:2f:cb:75:e8:5a: 08:1a:b5:25:79:cd:07:b6:06:54:99:c8:1b:c9:d1:6e:b1:be: d9:ed:23:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODNCQTUxMTAvBgNVBAUTKDYwMThCOTg1QzM5OUNCMDczMUMxNjM0Q0ZFNEI0Nzkx MkYyQUY1RDEwHhcNMjUwNTMxMDIzMjM5WhcNMjUwNjA3MDIzMjM5WjAYMRYwFAYD VQQDEw02ODNhNmE0Ny1hYTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0TB00NidsMuCYrdosTYUru7NpkfhBZMdRyY2HRW/TDoMESJcbz/IkHZ0IHhU Ydsl/JpRKsGhAPR7I8a7gSbp3CpioCwwZx2qG4wVDuZgA+Tv8g8lxzJ7z0dqDy47 1uriv2i3D+EiDAgc3o3kvwMxdd1OO8B/OI84Yypj612LPsgMwgfRRZaEABt/9AHK w6k8LwJ4aoQqawXCXtra+x6MommJhQW8xuOpH/3zph4IVg2mcUfJLKXyLcjMgUOa Qczo8ihG9djRqlirhqAFChOzfdPjdnfXWOY3m2RH4/2N5lpZc9bOUdRV+ctwW/SV rQpZEKgEK7G05oRckEJJDov57wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJR6ngux BEsqcyvNyOEckirUe1bLMB8GA1UdIwQYMBaAFGAYuYXDmcsHMcFjTP5LR5EvKvXR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4M0JBNS8yODYyMENDNDcw NUUxMUVEQkMwN0YxNThDNEY5QUUwMi9ZQmk1aGNPWnl3Y3h3V05NX2t0SGtTOHE5 ZEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lCaTVoY09aeXdjeHdXTk1fa3RIa1M4cTlkRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 M0JBNS8yODYyMENDNDcwNUUxMUVEQkMwN0YxNThDNEY5QUUwMi9ZQmk1aGNPWnl3 Y3h3V05NX2t0SGtTOHE5ZEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWXWA2i03xePJRDSE7VruN4Sa3nfrEa3/bFlc3UrtvbxPo2NlB9MMD 105BpkQ6Sv5NrjJ28k1j6ouZIpSpd+hhkEKi2619U6hRqUUInb8KKfOTkx5Gvlqq RHp/wU8K1XK1dpsoxv/X5XetrUcWzTajdAayjmtMagzh0KmfJGcJN27ZQm3GGdkY uvNrejulRxfZsAWKuqbq6Nf1KBjhkEczIELbyCRt3p8rwTFYyCZi/AmFWpPz9Wqu 38NWwek4yLfnpxsrwhcogF6i2wVMjO/4bZpzLwnMshdtWzctC4uo6Y+WYa2RL8t1 6FoIGrUlec0HtgZUmcgbydFusb7Z7SPl -----END CERTIFICATE-----Generated at Sat May 31 14:38:09 2025 by rpki-client