$ rpki-client -vvf rpki.apnic.net/member_repository/A919FA55/0F9E616E40FC11EEB8206744C4F9AE02/YCdrQR9t9pTdNkxP04LyXJ5qYGI.mft File: YCdrQR9t9pTdNkxP04LyXJ5qYGI.mft (raw, json) Hash identifier: n3DTEs2SwfqEXspxau+5IiPP9mapICw0z08S1dld5No= Subject key identifier: 37:FA:12:68:12:86:28:9C:87:D5:02:55:6F:EB:CD:C7:25:CE:A6:7F Authority key identifier: 60:27:6B:41:1F:6D:F6:94:DD:36:4C:4F:D3:82:F2:5C:9E:6A:60:62 Certificate issuer: /CN=A919FA55/serialNumber=60276B411F6DF694DD364C4FD382F25C9E6A6062 Certificate serial: 0159 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCdrQR9t9pTdNkxP04LyXJ5qYGI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919FA55/0F9E616E40FC11EEB8206744C4F9AE02/YCdrQR9t9pTdNkxP04LyXJ5qYGI.mft Manifest number: 0153 Signing time: Sat 31 May 2025 03:51:36 +0000 Manifest this update: Sat 31 May 2025 03:51:36 +0000 Manifest next update: Sat 07 Jun 2025 03:51:36 +0000 Files and hashes: 1: YCdrQR9t9pTdNkxP04LyXJ5qYGI.crl (hash: QEQlJCh0amxQWnS6mLoGEC+qnvjujwt6lF471yZRjLk=) 2: 730BFF8C428B11EEB9A5EA63C4F9AE02.roa (hash: kkjE94BBiiWiAJ9He43Jc/0GO/LlMOG+ydM9xjAZ/oQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919FA55/0F9E616E40FC11EEB8206744C4F9AE02/YCdrQR9t9pTdNkxP04LyXJ5qYGI.crl rsync://rpki.apnic.net/member_repository/A919FA55/0F9E616E40FC11EEB8206744C4F9AE02/YCdrQR9t9pTdNkxP04LyXJ5qYGI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCdrQR9t9pTdNkxP04LyXJ5qYGI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:51:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 345 (0x159) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919FA55, serialNumber=60276B411F6DF694DD364C4FD382F25C9E6A6062 Validity Not Before: May 31 03:51:36 2025 GMT Not After : Jun 7 03:51:36 2025 GMT Subject: CN=683a7cc8-fc67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d0:ce:ce:96:df:4a:ef:c1:58:f9:6a:1c:27: 33:2c:1c:81:d4:d6:df:3a:f8:1f:0b:f5:b3:9e:3c: 36:78:d7:b3:4f:75:f1:cc:9b:21:09:9b:6e:6c:c0: 98:e2:01:e0:6c:e9:31:53:c6:e2:a1:ff:f5:9f:f1: d0:3b:ae:68:a2:a0:9c:1f:17:a0:5d:e6:f8:aa:a8: e5:de:70:1b:02:1e:8c:55:37:fe:4d:3f:87:2c:83: d8:8e:59:d7:46:75:48:b6:d5:bf:60:b5:43:00:f9: e8:43:d0:f8:e2:c6:29:46:c3:09:66:00:23:ae:2f: 68:ed:33:2b:8c:48:34:50:ee:cd:5f:a8:6c:7e:7b: 74:44:bc:3f:56:8b:3d:8f:a9:4c:1d:64:e2:26:3b: 30:bf:bc:bf:34:67:de:19:2b:39:6c:47:62:50:bb: 7a:5b:59:28:92:da:db:a1:eb:26:c1:d6:24:fb:a4: 47:34:63:3d:b3:1b:2e:0c:dc:a2:b7:4a:80:d4:f2: f0:b5:dd:f7:7c:d3:fe:1d:a8:4d:1b:9f:31:59:8a: 8e:6e:da:cc:31:f1:23:3b:26:27:b5:1d:ff:d8:fb: f1:fb:5a:24:dc:06:5c:f0:55:fe:8d:81:86:96:b9: 88:75:2f:63:0e:0e:d6:0e:06:7d:ad:b7:69:4a:06: c4:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:FA:12:68:12:86:28:9C:87:D5:02:55:6F:EB:CD:C7:25:CE:A6:7F X509v3 Authority Key Identifier: keyid:60:27:6B:41:1F:6D:F6:94:DD:36:4C:4F:D3:82:F2:5C:9E:6A:60:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919FA55/0F9E616E40FC11EEB8206744C4F9AE02/YCdrQR9t9pTdNkxP04LyXJ5qYGI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCdrQR9t9pTdNkxP04LyXJ5qYGI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FA55/0F9E616E40FC11EEB8206744C4F9AE02/YCdrQR9t9pTdNkxP04LyXJ5qYGI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:73:a2:e4:15:1f:d2:32:0d:03:35:84:47:ff:2a:c9:46:02: bd:05:d9:ea:12:ce:42:06:72:82:5e:09:2f:36:1f:77:21:b6: ef:03:75:c6:70:ae:1c:70:ee:53:f8:f0:50:0f:37:59:03:d8: 4f:48:f1:11:25:eb:ab:d5:a7:f8:a0:c5:09:0c:9a:68:20:23: 98:fe:f6:1a:d5:b4:9c:94:fa:24:5c:44:57:77:c7:37:cc:ff: 5c:52:fd:5e:19:5f:d5:0e:71:5c:73:ab:57:64:72:72:44:da: bb:a2:72:44:41:8f:f3:57:cd:08:9d:dc:93:93:4c:1b:eb:c6: 3f:17:0e:13:17:8c:66:11:f0:e2:21:c2:97:e1:9d:84:97:94: 97:47:1b:f5:87:df:01:51:32:b6:81:2d:7e:0b:2e:f2:d0:73: 4c:56:e9:34:62:70:97:51:5d:b5:b9:89:55:30:aa:8b:0d:08: 05:cd:e9:08:a0:44:d5:77:b5:d1:91:68:d8:19:a8:8c:a3:9c: 60:2b:cd:dc:ea:55:4f:4d:73:52:4a:18:69:89:d1:63:83:57: 16:48:46:90:89:d5:6a:27:ae:c0:14:a3:a0:ac:ae:c7:91:cf: 06:fa:67:4b:6b:dc:97:68:e2:0b:93:16:aa:f6:91:75:d7:4a: b6:b4:c1:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUZBNTUxMTAvBgNVBAUTKDYwMjc2QjQxMUY2REY2OTRERDM2NEM0RkQzODJGMjVD OUU2QTYwNjIwHhcNMjUwNTMxMDM1MTM2WhcNMjUwNjA3MDM1MTM2WjAYMRYwFAYD VQQDEw02ODNhN2NjOC1mYzY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvNDOzpbfSu/BWPlqHCczLByB1NbfOvgfC/Wznjw2eNezT3XxzJshCZtubMCY 4gHgbOkxU8biof/1n/HQO65ooqCcHxegXeb4qqjl3nAbAh6MVTf+TT+HLIPYjlnX RnVIttW/YLVDAPnoQ9D44sYpRsMJZgAjri9o7TMrjEg0UO7NX6hsfnt0RLw/Vos9 j6lMHWTiJjswv7y/NGfeGSs5bEdiULt6W1koktrboesmwdYk+6RHNGM9sxsuDNyi t0qA1PLwtd33fNP+HahNG58xWYqObtrMMfEjOyYntR3/2Pvx+1ok3AZc8FX+jYGG lrmIdS9jDg7WDgZ9rbdpSgbE6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDf6EmgS hiich9UCVW/rzcclzqZ/MB8GA1UdIwQYMBaAFGAna0EfbfaU3TZMT9OC8lyeamBi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RkE1NS8wRjlFNjE2RTQw RkMxMUVFQjgyMDY3NDRDNEY5QUUwMi9ZQ2RyUVI5dDlwVGROa3hQMDRMeVhKNXFZ R0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lDZHJRUjl0OXBUZE5reFAwNEx5WEo1cVlHSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RkE1NS8wRjlFNjE2RTQwRkMxMUVFQjgyMDY3NDRDNEY5QUUwMi9ZQ2RyUVI5dDlw VGROa3hQMDRMeVhKNXFZR0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0c6LkFR/SMg0DNYRH/yrJRgK9BdnqEs5CBnKCXgkvNh93IbbvA3XG cK4ccO5T+PBQDzdZA9hPSPERJeur1af4oMUJDJpoICOY/vYa1bSclPokXERXd8c3 zP9cUv1eGV/VDnFcc6tXZHJyRNq7onJEQY/zV80IndyTk0wb68Y/Fw4TF4xmEfDi IcKX4Z2El5SXRxv1h98BUTK2gS1+Cy7y0HNMVuk0YnCXUV21uYlVMKqLDQgFzekI oETVd7XRkWjYGaiMo5xgK83c6lVPTXNSShhpidFjg1cWSEaQidVqJ67AFKOgrK7H kc8G+mdLa9yXaOILkxaq9pF110q2tMH/ -----END CERTIFICATE-----Generated at Sat May 31 17:50:39 2025 by rpki-client