$ rpki-client -vvf rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/YBqj_Udwv8aa8kBvLoDtCOfca0M.mft File: YBqj_Udwv8aa8kBvLoDtCOfca0M.mft (raw, json) Hash identifier: IPt5mMW+HWnoEV9vfZaWfck08I3skELdX1KxhBONeW0= Subject key identifier: 33:FE:C2:1B:52:9C:D0:0E:36:47:6B:B9:35:DC:41:50:3F:05:DA:14 Authority key identifier: 60:1A:A3:FD:47:70:BF:C6:9A:F2:40:6F:2E:80:ED:08:E7:DC:6B:43 Certificate issuer: /CN=A91954E2/serialNumber=601AA3FD4770BFC69AF2406F2E80ED08E7DC6B43 Certificate serial: B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBqj_Udwv8aa8kBvLoDtCOfca0M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/YBqj_Udwv8aa8kBvLoDtCOfca0M.mft Manifest number: AE Signing time: Sat 31 May 2025 05:38:41 +0000 Manifest this update: Sat 31 May 2025 05:38:41 +0000 Manifest next update: Sat 07 Jun 2025 05:38:41 +0000 Files and hashes: 1: YBqj_Udwv8aa8kBvLoDtCOfca0M.crl (hash: thMwYpZxVyNJZSB5TaHBnoEm5rJOqvWVz3CILzmEU/8=) 2: CC8E710C347011EF9F04CE66C4F9AE02.roa (hash: zqqFgR8hZJd3tGWwh69g86T2JXS+0860K/pt4Nn27L8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/YBqj_Udwv8aa8kBvLoDtCOfca0M.crl rsync://rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/YBqj_Udwv8aa8kBvLoDtCOfca0M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBqj_Udwv8aa8kBvLoDtCOfca0M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:38:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 176 (0xb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91954E2, serialNumber=601AA3FD4770BFC69AF2406F2E80ED08E7DC6B43 Validity Not Before: May 31 05:38:41 2025 GMT Not After : Jun 7 05:38:41 2025 GMT Subject: CN=683a95e1-279f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:0c:13:23:40:3e:ab:85:5a:3e:4e:9f:05:3a: e0:a4:e3:8b:22:52:9b:f3:3c:0c:27:ff:d3:7e:bf: 83:ed:cc:45:c9:01:b5:6b:6a:68:e5:c1:d5:a7:50: ea:12:bf:cd:37:4e:ab:e3:f5:dc:62:9e:d3:ab:a1: 3f:f1:20:8e:c6:17:c0:05:25:8d:d3:5c:9d:3f:bd: 24:47:19:13:16:af:a1:66:f9:d1:0f:43:09:45:8b: 31:18:93:f1:ff:e5:63:fc:2d:2b:66:99:49:74:c6: f4:9d:f4:0f:10:0c:db:f6:a4:8b:76:3f:f2:cb:34: 60:21:dc:95:2d:97:79:9a:17:5b:08:b2:9f:5e:b6: f0:e8:2b:6d:15:1c:b0:03:db:9e:ca:ae:fb:00:d1: e7:7f:97:ca:54:62:47:e9:94:91:aa:e3:94:c8:d5: 66:b1:e1:e1:e0:bd:05:82:d5:5f:34:e9:02:b4:fa: 3f:b9:7d:f0:6b:15:8e:08:c1:7a:c4:3d:d6:ef:2d: a9:0c:46:56:3d:3d:f3:3b:ff:05:76:85:bb:18:46: 0b:00:a8:80:a1:78:47:32:4f:b8:c4:28:8f:db:dd: 32:d5:49:f5:4d:3b:ed:4e:91:09:92:8b:ab:68:0c: cb:51:6e:39:85:af:42:58:a8:93:57:72:af:17:cf: c3:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:FE:C2:1B:52:9C:D0:0E:36:47:6B:B9:35:DC:41:50:3F:05:DA:14 X509v3 Authority Key Identifier: keyid:60:1A:A3:FD:47:70:BF:C6:9A:F2:40:6F:2E:80:ED:08:E7:DC:6B:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/YBqj_Udwv8aa8kBvLoDtCOfca0M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBqj_Udwv8aa8kBvLoDtCOfca0M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/YBqj_Udwv8aa8kBvLoDtCOfca0M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:fe:93:97:ee:83:fd:6c:5e:ab:ad:a1:f5:ee:a4:7a:64:06: 75:2c:45:40:d8:10:d6:36:98:a8:66:07:e7:10:24:63:2c:d3: 73:20:36:a8:87:c4:03:36:39:46:84:5e:7f:e7:ab:41:98:0e: 11:61:66:79:9b:4d:bb:32:37:96:17:49:88:ea:3a:b3:fd:10: ce:80:21:1d:05:08:a3:eb:bd:07:50:7c:1b:6b:bb:07:33:c8: 52:b6:69:4f:65:7e:87:ce:52:81:be:09:59:a4:b4:10:45:f3: ae:80:49:7d:11:4f:9a:51:71:15:92:1d:07:32:0a:f6:78:13: f7:19:2e:a8:af:8f:70:ae:f4:c2:39:92:f3:1c:dd:2a:db:e4: 3f:5c:c0:fb:7a:25:a0:24:e1:a4:fb:0c:b4:ca:a9:c1:a5:06: 20:a1:2e:e2:af:09:c9:b5:59:97:aa:a4:9c:ad:61:a0:b3:77: 6a:f0:aa:c3:0a:f9:e6:0b:e9:1a:0e:4a:f8:02:63:c7:a6:09: 4d:66:69:62:a3:7c:78:f8:db:20:3f:8f:6f:61:0f:53:d0:f8: 9c:8f:92:a7:4d:c0:04:db:8a:8c:0e:21:00:8c:01:aa:e8:3e: 64:57:7b:70:04:69:f8:1a:77:e2:80:d1:a1:3e:4e:fa:d3:a9: f6:88:a4:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU0RTIxMTAvBgNVBAUTKDYwMUFBM0ZENDc3MEJGQzY5QUYyNDA2RjJFODBFRDA4 RTdEQzZCNDMwHhcNMjUwNTMxMDUzODQxWhcNMjUwNjA3MDUzODQxWjAYMRYwFAYD VQQDEw02ODNhOTVlMS0yNzlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2gwTI0A+q4VaPk6fBTrgpOOLIlKb8zwMJ//Tfr+D7cxFyQG1a2po5cHVp1Dq Er/NN06r4/XcYp7Tq6E/8SCOxhfABSWN01ydP70kRxkTFq+hZvnRD0MJRYsxGJPx /+Vj/C0rZplJdMb0nfQPEAzb9qSLdj/yyzRgIdyVLZd5mhdbCLKfXrbw6CttFRyw A9ueyq77ANHnf5fKVGJH6ZSRquOUyNVmseHh4L0FgtVfNOkCtPo/uX3waxWOCMF6 xD3W7y2pDEZWPT3zO/8FdoW7GEYLAKiAoXhHMk+4xCiP290y1Un1TTvtTpEJkour aAzLUW45ha9CWKiTV3KvF8/DJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDP+whtS nNAONkdruTXcQVA/BdoUMB8GA1UdIwQYMBaAFGAao/1HcL/GmvJAby6A7Qjn3GtD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTRFMi83M0VCRTZBMjM0 NkYxMUVGOTdDQTc1NDZDNEY5QUUwMi9ZQnFqX1Vkd3Y4YWE4a0J2TG9EdENPZmNh ME0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lCcWpfVWR3djhhYThrQnZMb0R0Q09mY2EwTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTRFMi83M0VCRTZBMjM0NkYxMUVGOTdDQTc1NDZDNEY5QUUwMi9ZQnFqX1Vkd3Y4 YWE4a0J2TG9EdENPZmNhME0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDD/pOX7oP9bF6rraH17qR6ZAZ1LEVA2BDWNpioZgfnECRjLNNzIDao h8QDNjlGhF5/56tBmA4RYWZ5m027MjeWF0mI6jqz/RDOgCEdBQij670HUHwba7sH M8hStmlPZX6HzlKBvglZpLQQRfOugEl9EU+aUXEVkh0HMgr2eBP3GS6or49wrvTC OZLzHN0q2+Q/XMD7eiWgJOGk+wy0yqnBpQYgoS7irwnJtVmXqqScrWGgs3dq8KrD CvnmC+kaDkr4AmPHpglNZmlio3x4+NsgP49vYQ9T0Picj5KnTcAE24qMDiEAjAGq 6D5kV3twBGn4GnfigNGhPk7606n2iKTo -----END CERTIFICATE-----Generated at Sat May 31 17:20:32 2025 by rpki-client