$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft File: YLrcBCw3e4bA3J7riVEnJc4-IzY.mft (raw, json) Hash identifier: euA7wVyMDZGDJlZOsxssqNqGSs8rLMyctiyVF6HIxKg= Subject key identifier: 9B:12:72:8A:16:74:18:F9:BB:F7:60:F0:48:F8:1D:FD:DC:EB:48:56 Authority key identifier: 60:BA:DC:04:2C:37:7B:86:C0:DC:9E:EB:89:51:27:25:CE:3E:23:36 Certificate issuer: /CN=A918D0AA/serialNumber=60BADC042C377B86C0DC9EEB89512725CE3E2336 Certificate serial: 01E4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YLrcBCw3e4bA3J7riVEnJc4-IzY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft Manifest number: 01DB Signing time: Tue 03 Jun 2025 02:40:54 +0000 Manifest this update: Tue 03 Jun 2025 02:40:53 +0000 Manifest next update: Tue 10 Jun 2025 02:40:53 +0000 Files and hashes: 1: YLrcBCw3e4bA3J7riVEnJc4-IzY.crl (hash: UE3GWTXHzA0shauolR+i7Q+gwClTnAg0vthvXsLh8W0=) 2: B6C4F8787A5911EDB8C4E04FC4F9AE02.roa (hash: 7d+9V95blk3EIKh2Ixj3Euh7Ce2kReodQwZ4pY3gbnI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.crl rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YLrcBCw3e4bA3J7riVEnJc4-IzY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 02:40:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 484 (0x1e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0AA, serialNumber=60BADC042C377B86C0DC9EEB89512725CE3E2336 Validity Not Before: Jun 3 02:40:53 2025 GMT Not After : Jun 10 02:40:53 2025 GMT Subject: CN=683e60b6-ae74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ec:8b:42:9d:20:10:a5:78:5a:b6:48:73:88: 05:97:4a:f5:f6:a7:82:f1:f8:da:ca:82:c0:37:47: ca:ae:18:79:b9:69:1c:46:ab:44:fd:d1:6e:26:10: 36:3f:5f:ad:f3:98:b1:25:65:81:44:9e:ce:bc:4a: 92:c3:1f:0c:9c:3f:47:ff:01:35:20:91:68:c9:74: 1f:70:9e:08:0b:12:4f:fb:53:02:87:ef:2f:e0:27: 47:16:22:99:be:58:46:6f:ee:80:79:86:92:6a:3f: af:8f:76:4e:3f:57:a8:35:35:86:7d:1d:83:13:2c: de:67:5f:55:41:23:ad:47:c1:f2:75:f0:dd:e3:93: d1:ca:38:71:b7:85:b2:0a:06:3c:33:72:1d:3d:6d: 8c:43:55:08:5d:47:87:71:0c:f1:f3:a7:57:69:73: 96:b0:60:5e:63:86:94:8b:c6:31:01:8a:d1:34:b3: 06:1e:7a:27:da:1d:cb:62:68:96:ca:c4:64:1e:00: 2f:de:66:75:a3:94:4e:1e:d7:06:de:b3:b0:a8:7f: 26:30:c8:1c:97:c2:c1:0e:79:6f:53:d2:61:3d:66: 36:4c:33:c6:30:69:d2:ec:25:90:c3:a5:e6:e0:f8: f1:c2:01:2f:20:0a:2e:2a:fb:c4:bc:57:98:33:14: 05:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:12:72:8A:16:74:18:F9:BB:F7:60:F0:48:F8:1D:FD:DC:EB:48:56 X509v3 Authority Key Identifier: keyid:60:BA:DC:04:2C:37:7B:86:C0:DC:9E:EB:89:51:27:25:CE:3E:23:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YLrcBCw3e4bA3J7riVEnJc4-IzY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:27:2f:11:bd:c0:92:c0:2c:78:3b:34:80:8a:d5:99:aa:40: c8:dc:dd:b8:54:0f:81:54:66:25:92:06:f2:8b:35:d2:6f:73: 71:89:cb:45:3e:59:0d:33:02:d9:6a:f5:d1:93:47:11:d1:79: a8:4f:ac:cb:2a:b5:45:74:08:8c:09:c7:75:d3:65:87:67:b2: f6:48:a4:b8:a2:d0:3a:23:4c:ad:0e:65:b5:ab:24:89:86:3c: a4:f0:ad:5b:99:16:18:15:73:a7:01:10:20:ae:4d:57:4b:ba: a0:6e:09:8a:43:68:6b:b4:5c:8e:c7:1f:67:27:3a:ec:57:ff: b3:af:44:e8:90:e6:67:ab:a0:cf:59:0d:a5:71:3d:8b:1c:f9: 4b:0a:dd:f6:13:95:8d:43:45:5d:a6:95:22:ff:3a:89:a3:8d: 39:c7:a1:c0:15:77:7c:34:d3:f2:98:22:c7:ba:0a:0b:56:e4: b0:21:b3:86:32:f1:b3:a1:23:6e:3f:9e:83:ec:a7:62:2c:d2: 26:ba:5d:ea:09:74:7c:a1:0f:72:d8:ab:ef:1c:c2:a3:a3:7e: cf:b4:be:37:68:39:0e:66:9a:bc:da:44:75:41:9e:da:5e:70: e6:00:d5:68:fa:63:21:69:a2:3f:d0:22:f6:86:6d:d1:83:cf: 29:13:ec:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwQUExMTAvBgNVBAUTKDYwQkFEQzA0MkMzNzdCODZDMERDOUVFQjg5NTEyNzI1 Q0UzRTIzMzYwHhcNMjUwNjAzMDI0MDUzWhcNMjUwNjEwMDI0MDUzWjAYMRYwFAYD VQQDEw02ODNlNjBiNi1hZTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuOyLQp0gEKV4WrZIc4gFl0r19qeC8fjayoLAN0fKrhh5uWkcRqtE/dFuJhA2 P1+t85ixJWWBRJ7OvEqSwx8MnD9H/wE1IJFoyXQfcJ4ICxJP+1MCh+8v4CdHFiKZ vlhGb+6AeYaSaj+vj3ZOP1eoNTWGfR2DEyzeZ19VQSOtR8HydfDd45PRyjhxt4Wy CgY8M3IdPW2MQ1UIXUeHcQzx86dXaXOWsGBeY4aUi8YxAYrRNLMGHnon2h3LYmiW ysRkHgAv3mZ1o5ROHtcG3rOwqH8mMMgcl8LBDnlvU9JhPWY2TDPGMGnS7CWQw6Xm 4PjxwgEvIAouKvvEvFeYMxQFFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJsScooW dBj5u/dg8Ej4Hf3c60hWMB8GA1UdIwQYMBaAFGC63AQsN3uGwNye64lRJyXOPiM2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBBQS8yQzc1RkVDODdB M0MxMUVEODYxQjI5MzNDNEY5QUUwMi9ZTHJjQkN3M2U0YkEzSjdyaVZFbkpjNC1J elkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1lMcmNCQ3czZTRiQTNKN3JpVkVuSmM0LUl6WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBBQS8yQzc1RkVDODdBM0MxMUVEODYxQjI5MzNDNEY5QUUwMi9ZTHJjQkN3M2U0 YkEzSjdyaVZFbkpjNC1JelkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUJy8RvcCSwCx4OzSAitWZqkDI3N24VA+BVGYlkgbyizXSb3NxictF PlkNMwLZavXRk0cR0XmoT6zLKrVFdAiMCcd102WHZ7L2SKS4otA6I0ytDmW1qySJ hjyk8K1bmRYYFXOnARAgrk1XS7qgbgmKQ2hrtFyOxx9nJzrsV/+zr0TokOZnq6DP WQ2lcT2LHPlLCt32E5WNQ0VdppUi/zqJo405x6HAFXd8NNPymCLHugoLVuSwIbOG MvGzoSNuP56D7KdiLNImul3qCXR8oQ9y2KvvHMKjo37PtL43aDkOZpq82kR1QZ7a XnDmANVo+mMhaaI/0CL2hm3Rg88pE+zc -----END CERTIFICATE-----Generated at Wed Jun 4 11:49:01 2025 by rpki-client