$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft File: YN1l7H9y62x9qLk3BuLTug8GW_w.mft (raw, json) Hash identifier: KAf3yK7Q68TSj8P18Od3i00zf5id9BdJq53c0nNSYuw= Subject key identifier: 1A:8A:80:84:88:7C:02:5A:6E:D9:21:71:82:EF:91:0D:94:DF:7B:D4 Authority key identifier: 60:DD:65:EC:7F:72:EB:6C:7D:A8:B9:37:06:E2:D3:BA:0F:06:5B:FC Certificate issuer: /CN=A91A4264/serialNumber=60DD65EC7F72EB6C7DA8B93706E2D3BA0F065BFC Certificate serial: 1A67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YN1l7H9y62x9qLk3BuLTug8GW_w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft Manifest number: 1A58 Signing time: Fri 30 May 2025 16:31:41 +0000 Manifest this update: Fri 30 May 2025 16:31:41 +0000 Manifest next update: Fri 06 Jun 2025 16:31:41 +0000 Files and hashes: 1: YN1l7H9y62x9qLk3BuLTug8GW_w.crl (hash: KYrO8Wx32C348096/LVYOyuxqZxBsdsNBsJqZ5AvhPU=) 2: D75BE71A410511E7970A2A5FC4F9AE02.roa (hash: rSf0co4QElknqmx/HUwcUze0T308M2kPbS2aUDzOJyo=) 3: 91CB97905BD211EBA9178181C4F9AE02.roa (hash: Wesd0InqJ/VHy6+SYHu7ABNFnSg/btyWb+0cbj+CPEk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.crl rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YN1l7H9y62x9qLk3BuLTug8GW_w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:31:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6759 (0x1a67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4264, serialNumber=60DD65EC7F72EB6C7DA8B93706E2D3BA0F065BFC Validity Not Before: May 30 16:31:41 2025 GMT Not After : Jun 6 16:31:41 2025 GMT Subject: CN=6839dd6d-800a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:9f:ab:a5:2a:7b:7f:53:93:20:2a:e9:fd:c6: e2:fb:f0:3a:a1:56:c1:b2:c5:6d:a5:55:35:7a:df: a0:f8:5b:3f:43:e4:96:a1:75:30:7f:a1:53:9b:45: 13:fa:29:49:02:29:17:ed:3f:04:f7:9f:fc:49:84: 65:ab:d6:1d:11:55:6d:e9:3d:a9:7c:9b:86:e7:10: 65:8d:61:74:52:92:44:ef:a0:57:ae:e4:93:aa:63: d0:6a:4b:a7:16:a6:ef:b8:8b:55:84:a3:31:87:fa: 11:eb:be:1f:9d:a7:12:09:2c:16:5a:4a:a7:c4:dc: 32:84:de:1a:37:14:e9:67:6d:44:cc:2e:76:ec:d0: 14:f7:05:08:af:d9:67:9b:d6:9d:e5:17:ed:f9:53: 73:6f:7e:c1:f7:a6:5e:ab:de:68:77:bd:5c:5e:44: 3a:4b:b0:22:35:29:c2:2f:0c:29:52:8d:f9:3d:74: 96:58:57:63:46:ac:85:7f:12:e2:31:72:a4:bc:38: a8:31:97:49:73:e6:39:aa:77:e0:18:49:4c:f5:35: 92:a0:d6:f3:54:df:4a:35:ad:21:9f:76:0f:d2:3f: ca:78:e9:3d:05:e9:7a:31:77:30:09:11:50:ed:f4: 29:4a:a2:59:c6:42:d7:bd:b7:d2:f0:08:a1:13:f1: ae:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:8A:80:84:88:7C:02:5A:6E:D9:21:71:82:EF:91:0D:94:DF:7B:D4 X509v3 Authority Key Identifier: keyid:60:DD:65:EC:7F:72:EB:6C:7D:A8:B9:37:06:E2:D3:BA:0F:06:5B:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YN1l7H9y62x9qLk3BuLTug8GW_w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:90:3f:b0:e2:00:ec:f6:a6:ee:8f:13:b4:95:d4:b7:72:08: 25:7f:29:bd:f7:98:dd:59:4e:08:fe:04:2b:a6:d2:ac:09:f7: 87:ed:d0:7a:f0:e2:0f:db:d8:3d:75:f1:79:50:52:c1:78:10: d5:bf:40:ef:f6:40:84:ea:9e:89:80:8e:da:23:d5:44:22:3d: 52:1e:f1:eb:ab:43:49:07:67:95:0b:26:ae:2a:20:22:20:91: c7:fd:c8:45:f7:90:7e:38:95:06:5a:e5:df:16:d9:da:08:68: cf:37:a0:ef:a3:2b:28:ac:31:86:54:de:3d:6d:c2:43:71:5d: c4:e4:10:54:d2:30:d4:6d:fa:33:5d:b4:11:be:3d:90:3f:f8: af:74:c2:af:26:1b:8f:23:5a:c1:b1:57:92:fa:85:a3:3f:ac: f9:40:48:a7:f3:47:02:40:40:8c:1b:81:43:87:40:0f:13:1b: d8:d6:b2:6c:ff:5f:ba:f8:0c:98:f6:6f:ef:a7:81:ed:7c:75: 42:48:c5:ee:12:7a:4c:a3:9e:0c:70:99:b6:06:9c:16:d5:17: 9a:a3:d5:7a:d8:da:98:a4:ac:79:c7:c1:b3:ab:9b:57:64:f6: bc:4b:e6:5e:fb:be:6c:34:c2:e1:c9:b6:41:2b:d6:6c:ff:82: e6:76:30:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGmcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQyNjQxMTAvBgNVBAUTKDYwREQ2NUVDN0Y3MkVCNkM3REE4QjkzNzA2RTJEM0JB MEYwNjVCRkMwHhcNMjUwNTMwMTYzMTQxWhcNMjUwNjA2MTYzMTQxWjAYMRYwFAYD VQQDEw02ODM5ZGQ2ZC04MDBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzp+rpSp7f1OTICrp/cbi+/A6oVbBssVtpVU1et+g+Fs/Q+SWoXUwf6FTm0UT +ilJAikX7T8E95/8SYRlq9YdEVVt6T2pfJuG5xBljWF0UpJE76BXruSTqmPQakun FqbvuItVhKMxh/oR674fnacSCSwWWkqnxNwyhN4aNxTpZ21EzC527NAU9wUIr9ln m9ad5Rft+VNzb37B96Zeq95od71cXkQ6S7AiNSnCLwwpUo35PXSWWFdjRqyFfxLi MXKkvDioMZdJc+Y5qnfgGElM9TWSoNbzVN9KNa0hn3YP0j/KeOk9Bel6MXcwCRFQ 7fQpSqJZxkLXvbfS8AihE/GuLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBqKgISI fAJabtkhcYLvkQ2U33vUMB8GA1UdIwQYMBaAFGDdZex/cutsfai5Nwbi07oPBlv8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDI2NC9DNThENkZGQTQx MDQxMUU3OUVDMDM4NURDNEY5QUUwMi9ZTjFsN0g5eTYyeDlxTGszQnVMVHVnOEdX X3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lOMWw3SDl5NjJ4OXFMazNCdUxUdWc4R1dfdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDI2NC9DNThENkZGQTQxMDQxMUU3OUVDMDM4NURDNEY5QUUwMi9ZTjFsN0g5eTYy eDlxTGszQnVMVHVnOEdXX3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXkD+w4gDs9qbujxO0ldS3cgglfym995jdWU4I/gQrptKsCfeH7dB6 8OIP29g9dfF5UFLBeBDVv0Dv9kCE6p6JgI7aI9VEIj1SHvHrq0NJB2eVCyauKiAi IJHH/chF95B+OJUGWuXfFtnaCGjPN6DvoysorDGGVN49bcJDcV3E5BBU0jDUbfoz XbQRvj2QP/ivdMKvJhuPI1rBsVeS+oWjP6z5QEin80cCQECMG4FDh0APExvY1rJs /1+6+AyY9m/vp4HtfHVCSMXuEnpMo54McJm2BpwW1Reao9V62NqYpKx5x8Gzq5tX ZPa8S+Ze+75sNMLhybZBK9Zs/4LmdjA+ -----END CERTIFICATE-----Generated at Sat May 31 17:17:31 2025 by rpki-client