$ rpki-client -vvf rpki.apnic.net/member_repository/A91949C1/09F52B142DD511EF9E505E5DC4F9AE02/-YvpQtnreFakMNG8KUc7xN1nf-o.mft File: -YvpQtnreFakMNG8KUc7xN1nf-o.mft (raw, json) Hash identifier: PwQzxDauHBBzmJydE55ndISfF+Hgfi1crGC+hH3n7aY= Subject key identifier: 32:46:9A:CB:32:9E:A5:81:4C:0F:D7:D7:AE:B8:88:07:AE:CD:60:C4 Authority key identifier: F9:8B:E9:42:D9:EB:78:56:A4:30:D1:BC:29:47:3B:C4:DD:67:7F:EA Certificate issuer: /CN=A91949C1/serialNumber=F98BE942D9EB7856A430D1BC29473BC4DD677FEA Certificate serial: B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-YvpQtnreFakMNG8KUc7xN1nf-o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91949C1/09F52B142DD511EF9E505E5DC4F9AE02/-YvpQtnreFakMNG8KUc7xN1nf-o.mft Manifest number: B1 Signing time: Sun 01 Jun 2025 05:41:36 +0000 Manifest this update: Sun 01 Jun 2025 05:41:35 +0000 Manifest next update: Sun 08 Jun 2025 05:41:35 +0000 Files and hashes: 1: -YvpQtnreFakMNG8KUc7xN1nf-o.crl (hash: cK/mO2hzBxgx/XDkFkOOaJYgQyjZdzHQy1xP9fd1eiQ=) 2: 5E1227E22DD511EF9AFE395EC4F9AE02.roa (hash: Etmj0xt/W0SmV0Orr2NUt8hTe4pIwfnUtLKYwnR9+RI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91949C1/09F52B142DD511EF9E505E5DC4F9AE02/-YvpQtnreFakMNG8KUc7xN1nf-o.crl rsync://rpki.apnic.net/member_repository/A91949C1/09F52B142DD511EF9E505E5DC4F9AE02/-YvpQtnreFakMNG8KUc7xN1nf-o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-YvpQtnreFakMNG8KUc7xN1nf-o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 05:41:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 178 (0xb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91949C1, serialNumber=F98BE942D9EB7856A430D1BC29473BC4DD677FEA Validity Not Before: Jun 1 05:41:35 2025 GMT Not After : Jun 8 05:41:35 2025 GMT Subject: CN=683be80f-630b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:26:ab:be:0a:2e:b6:63:9c:03:f4:1e:f0:92: c2:b8:1f:62:47:37:ed:11:cb:4f:78:f1:0a:b8:6e: 32:eb:cb:e1:fc:3b:77:19:bb:20:86:df:84:bc:4b: a6:88:57:2e:60:2d:ea:c8:9a:c4:b2:47:23:c3:bf: a1:76:11:61:b0:60:55:42:a9:14:32:c5:26:9d:59: e4:fb:26:64:02:2c:41:da:28:c7:2c:63:5c:f0:bb: 21:ff:5d:3b:e5:68:45:80:27:d9:db:53:2a:f5:d0: aa:92:ea:c3:79:8e:23:98:2a:de:ea:f1:ed:d8:37: ac:8f:a2:29:ce:3f:d0:99:f2:96:7c:fd:0a:ce:da: 99:24:67:52:ac:cb:eb:07:6e:69:61:00:26:77:ae: 1e:90:64:1d:85:4f:54:38:fb:e8:f5:6a:79:eb:26: dd:bf:65:da:90:e4:88:f1:fc:16:0e:34:a2:0c:0c: 72:23:db:01:5c:d5:2a:6a:7e:d9:c0:91:3d:cd:35: 12:f1:34:50:02:d2:89:d9:30:c9:46:01:ca:96:27: 9d:ea:af:b8:8c:6a:7c:bf:64:fe:3c:21:bb:93:0f: 4d:c6:2f:a9:d6:87:56:39:07:8c:06:64:a1:a4:31: 36:c2:65:d4:e9:c3:7e:76:11:0b:a1:83:8d:97:87: df:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:46:9A:CB:32:9E:A5:81:4C:0F:D7:D7:AE:B8:88:07:AE:CD:60:C4 X509v3 Authority Key Identifier: keyid:F9:8B:E9:42:D9:EB:78:56:A4:30:D1:BC:29:47:3B:C4:DD:67:7F:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91949C1/09F52B142DD511EF9E505E5DC4F9AE02/-YvpQtnreFakMNG8KUc7xN1nf-o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-YvpQtnreFakMNG8KUc7xN1nf-o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91949C1/09F52B142DD511EF9E505E5DC4F9AE02/-YvpQtnreFakMNG8KUc7xN1nf-o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:fa:35:98:25:48:02:d2:e5:b6:f4:88:29:c0:40:0a:e4:d9: 86:b2:52:09:1b:7e:d9:74:a7:25:d6:75:39:f8:2a:cf:d0:4a: 5b:2c:11:85:b1:3b:80:e9:9f:a5:ee:36:30:b8:4e:49:60:e2: 63:cd:6f:ef:50:3f:6e:94:34:56:0b:6d:82:c7:f5:15:dc:32: c0:69:df:8d:0b:01:45:43:47:27:92:99:c7:e3:7a:5a:fa:8a: 7a:0b:93:48:1e:8c:88:e0:db:99:b6:5f:85:bd:ab:81:16:ee: f7:eb:be:81:62:c4:6b:30:3f:69:ff:ce:b6:7f:a6:38:f5:c7: 86:2d:d9:22:51:4d:0e:5c:e3:28:39:25:ab:ee:4e:db:80:c5: a6:20:52:49:08:c2:1a:ca:10:20:c1:37:f5:08:ba:86:28:6e: 3a:db:42:ba:ff:27:50:88:15:92:44:92:fb:69:e6:3c:fe:ea: 15:25:12:6a:7b:33:29:1b:79:89:9f:cc:70:f4:d4:9b:d1:26: 05:72:e2:e3:df:74:70:13:ee:ab:38:4c:6d:13:48:4d:3e:37: 6b:7b:2f:6a:60:e2:a5:07:76:3a:2f:61:93:09:f0:d3:e6:89: b0:b6:f0:08:6b:d9:8f:f7:24:95:3a:3a:76:3d:c4:bb:06:e6: 0e:8a:21:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQ5QzExMTAvBgNVBAUTKEY5OEJFOTQyRDlFQjc4NTZBNDMwRDFCQzI5NDczQkM0 REQ2NzdGRUEwHhcNMjUwNjAxMDU0MTM1WhcNMjUwNjA4MDU0MTM1WjAYMRYwFAYD VQQDEw02ODNiZTgwZi02MzBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoCarvgoutmOcA/Qe8JLCuB9iRzftEctPePEKuG4y68vh/Dt3Gbsght+EvEum iFcuYC3qyJrEskcjw7+hdhFhsGBVQqkUMsUmnVnk+yZkAixB2ijHLGNc8Lsh/107 5WhFgCfZ21Mq9dCqkurDeY4jmCre6vHt2Desj6Ipzj/QmfKWfP0KztqZJGdSrMvr B25pYQAmd64ekGQdhU9UOPvo9Wp56ybdv2XakOSI8fwWDjSiDAxyI9sBXNUqan7Z wJE9zTUS8TRQAtKJ2TDJRgHKlied6q+4jGp8v2T+PCG7kw9Nxi+p1odWOQeMBmSh pDE2wmXU6cN+dhELoYONl4fffQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDJGmssy nqWBTA/X1664iAeuzWDEMB8GA1UdIwQYMBaAFPmL6ULZ63hWpDDRvClHO8TdZ3/q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDlDMS8wOUY1MkIxNDJE RDUxMUVGOUU1MDVFNURDNEY5QUUwMi8tWXZwUXRucmVGYWtNTkc4S1VjN3hOMW5m LW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy1ZdnBRdG5yZUZha01ORzhLVWM3eE4xbmYtby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDlDMS8wOUY1MkIxNDJERDUxMUVGOUU1MDVFNURDNEY5QUUwMi8tWXZwUXRucmVG YWtNTkc4S1VjN3hOMW5mLW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAK+jWYJUgC0uW29IgpwEAK5NmGslIJG37ZdKcl1nU5+CrP0EpbLBGF sTuA6Z+l7jYwuE5JYOJjzW/vUD9ulDRWC22Cx/UV3DLAad+NCwFFQ0cnkpnH43pa +op6C5NIHoyI4NuZtl+FvauBFu73676BYsRrMD9p/862f6Y49ceGLdkiUU0OXOMo OSWr7k7bgMWmIFJJCMIayhAgwTf1CLqGKG4620K6/ydQiBWSRJL7aeY8/uoVJRJq ezMpG3mJn8xw9NSb0SYFcuLj33RwE+6rOExtE0hNPjdrey9qYOKlB3Y6L2GTCfDT 5omwtvAIa9mP9ySVOjp2PcS7BuYOiiFJ -----END CERTIFICATE-----Generated at Mon Jun 2 20:18:05 2025 by rpki-client