$ rpki-client -vvf rpki.apnic.net/member_repository/A91A77C2/3EDAD10CC63211EBAAD74A2EC4F9AE02/ybbzh3rMoIEu_42KP1wESgwwvIA.mft File: ybbzh3rMoIEu_42KP1wESgwwvIA.mft (raw, json) Hash identifier: upoU6ydd9WtOeB/XN+BWGJ1AOooZ1zML482BVvf6wEA= Subject key identifier: 13:31:89:22:A7:05:C1:CB:C1:F9:32:A0:D3:7B:73:F1:C0:B4:C3:52 Authority key identifier: C9:B6:F3:87:7A:CC:A0:81:2E:FF:8D:8A:3F:5C:04:4A:0C:30:BC:80 Certificate issuer: /CN=A91A77C2/serialNumber=C9B6F3877ACCA0812EFF8D8A3F5C044A0C30BC80 Certificate serial: 05BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ybbzh3rMoIEu_42KP1wESgwwvIA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A77C2/3EDAD10CC63211EBAAD74A2EC4F9AE02/ybbzh3rMoIEu_42KP1wESgwwvIA.mft Manifest number: 05B6 Signing time: Fri 30 May 2025 23:19:48 +0000 Manifest this update: Fri 30 May 2025 23:19:48 +0000 Manifest next update: Fri 06 Jun 2025 23:19:48 +0000 Files and hashes: 1: ybbzh3rMoIEu_42KP1wESgwwvIA.crl (hash: lu/QNjHaY0jlLSzjTWIsAdbiaKBqcG+LTrjmkQ6++/o=) 2: E5692882C63411EB9E5F5F30C4F9AE02.roa (hash: f4gRh38ZrvS7ONxmLsMLRwFey6PLic9m7nSCkN6WMeY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A77C2/3EDAD10CC63211EBAAD74A2EC4F9AE02/ybbzh3rMoIEu_42KP1wESgwwvIA.crl rsync://rpki.apnic.net/member_repository/A91A77C2/3EDAD10CC63211EBAAD74A2EC4F9AE02/ybbzh3rMoIEu_42KP1wESgwwvIA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ybbzh3rMoIEu_42KP1wESgwwvIA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:19:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1467 (0x5bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A77C2, serialNumber=C9B6F3877ACCA0812EFF8D8A3F5C044A0C30BC80 Validity Not Before: May 30 23:19:48 2025 GMT Not After : Jun 6 23:19:48 2025 GMT Subject: CN=683a3d14-8480 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:44:47:8c:89:8d:0b:fd:13:c3:66:d7:83:58: 41:52:47:c1:a0:0b:58:80:06:72:c6:8b:32:89:f3: ff:87:f8:17:13:72:ad:c1:c1:ab:68:81:66:30:89: 38:a7:19:9e:54:c5:2d:78:b8:48:a1:a9:45:e0:f2: bd:ba:00:ad:a2:69:84:a8:20:08:88:e7:ce:72:12: fd:f8:77:94:63:91:d8:42:5e:87:ea:b3:d0:eb:d9: 47:7d:4f:4f:ec:16:8b:91:2b:0a:ee:8c:3f:2e:08: 5f:31:16:7b:a9:9e:50:c9:02:da:53:19:29:b0:15: c3:43:0d:46:7f:c8:f5:c8:20:9f:9e:60:29:04:f7: 96:57:8d:79:0f:3e:70:a2:10:57:be:b5:f5:f0:ab: 67:48:f8:fa:67:9b:d1:84:3f:1d:88:d1:0e:7c:ea: 64:97:9c:da:99:0c:3a:41:0c:28:8d:46:0e:a3:27: eb:ca:7f:1b:91:53:0d:e7:ee:39:ec:6b:41:33:2b: db:04:95:e7:ac:3c:bd:f0:22:e3:ef:1d:45:f7:30: da:fe:19:3c:b2:ba:6b:b2:00:cf:d8:16:f5:8f:88: 49:cf:d2:d4:a7:ee:64:6e:11:5d:a2:c1:17:f8:c5: b7:a4:cd:5c:72:f1:fe:f3:7c:a5:40:eb:e9:3b:ba: 03:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:31:89:22:A7:05:C1:CB:C1:F9:32:A0:D3:7B:73:F1:C0:B4:C3:52 X509v3 Authority Key Identifier: keyid:C9:B6:F3:87:7A:CC:A0:81:2E:FF:8D:8A:3F:5C:04:4A:0C:30:BC:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A77C2/3EDAD10CC63211EBAAD74A2EC4F9AE02/ybbzh3rMoIEu_42KP1wESgwwvIA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ybbzh3rMoIEu_42KP1wESgwwvIA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A77C2/3EDAD10CC63211EBAAD74A2EC4F9AE02/ybbzh3rMoIEu_42KP1wESgwwvIA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:80:7d:d6:11:08:88:3a:b5:41:b9:e0:ec:3b:30:2e:be:d8: 2b:c5:6f:69:88:16:75:70:93:f9:6a:76:c8:29:06:3b:5c:4c: e6:0d:3b:45:5f:36:d0:fe:73:6b:55:8e:c1:91:20:02:d2:8d: 2c:27:e2:ed:ce:92:42:82:50:0c:03:a8:9b:01:02:e1:b3:69: 48:4d:92:52:7e:75:db:3d:0b:3b:3b:0d:fb:9f:db:3d:b7:4f: e9:95:b3:ea:96:88:b2:20:e5:70:1e:1e:e7:a9:bd:ea:43:05: 28:dd:4b:00:9a:dd:e8:f6:35:b8:78:5d:b8:21:1b:0a:de:2c: 28:6d:bc:e1:67:49:1e:76:50:03:47:88:19:e9:82:60:c5:a3: dc:79:69:4b:cc:28:ec:ba:5d:cc:55:4c:1b:f5:f4:4c:c2:c4: 31:cb:a6:58:46:53:65:d9:97:f6:d9:a4:bd:4a:4a:1a:f8:fb: 30:a2:88:6b:36:71:5d:ae:ed:95:79:1b:50:9b:3f:37:3c:76: 60:e1:8c:00:4e:11:7f:ee:0b:df:9c:81:f1:ea:64:95:3b:1b: 86:e7:71:15:3c:db:95:fd:04:f9:c6:f4:64:ed:3c:f6:66:25: 6f:12:bb:57:ef:b8:6b:d8:85:be:5e:1a:04:d9:ab:5b:b2:95: be:ba:6b:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc3QzIxMTAvBgNVBAUTKEM5QjZGMzg3N0FDQ0EwODEyRUZGOEQ4QTNGNUMwNDRB MEMzMEJDODAwHhcNMjUwNTMwMjMxOTQ4WhcNMjUwNjA2MjMxOTQ4WjAYMRYwFAYD VQQDEw02ODNhM2QxNC04NDgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAykRHjImNC/0Tw2bXg1hBUkfBoAtYgAZyxosyifP/h/gXE3KtwcGraIFmMIk4 pxmeVMUteLhIoalF4PK9ugCtommEqCAIiOfOchL9+HeUY5HYQl6H6rPQ69lHfU9P 7BaLkSsK7ow/LghfMRZ7qZ5QyQLaUxkpsBXDQw1Gf8j1yCCfnmApBPeWV415Dz5w ohBXvrX18KtnSPj6Z5vRhD8diNEOfOpkl5zamQw6QQwojUYOoyfryn8bkVMN5+45 7GtBMyvbBJXnrDy98CLj7x1F9zDa/hk8srprsgDP2Bb1j4hJz9LUp+5kbhFdosEX +MW3pM1ccvH+83ylQOvpO7oDvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBMxiSKn BcHLwfkyoNN7c/HAtMNSMB8GA1UdIwQYMBaAFMm284d6zKCBLv+Nij9cBEoMMLyA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzdDMi8zRURBRDEwQ0M2 MzIxMUVCQUFENzRBMkVDNEY5QUUwMi95YmJ6aDNyTW9JRXVfNDJLUDF3RVNnd3d2 SUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3liYnpoM3JNb0lFdV80MktQMXdFU2d3d3ZJQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzdDMi8zRURBRDEwQ0M2MzIxMUVCQUFENzRBMkVDNEY5QUUwMi95YmJ6aDNyTW9J RXVfNDJLUDF3RVNnd3d2SUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrgH3WEQiIOrVBueDsOzAuvtgrxW9piBZ1cJP5anbIKQY7XEzmDTtF XzbQ/nNrVY7BkSAC0o0sJ+LtzpJCglAMA6ibAQLhs2lITZJSfnXbPQs7Ow37n9s9 t0/plbPqloiyIOVwHh7nqb3qQwUo3UsAmt3o9jW4eF24IRsK3iwobbzhZ0kedlAD R4gZ6YJgxaPceWlLzCjsul3MVUwb9fRMwsQxy6ZYRlNl2Zf22aS9Skoa+Pswoohr NnFdru2VeRtQmz83PHZg4YwAThF/7gvfnIHx6mSVOxuG53EVPNuV/QT5xvRk7Tz2 ZiVvErtX77hr2IW+XhoE2atbspW+umuI -----END CERTIFICATE-----Generated at Sat May 31 16:31:27 2025 by rpki-client