$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft File: YbAiM19NheFtR3oAatyOPy_alGA.mft (raw, json) Hash identifier: nNwxTaEkx2h4mkVeRU5C5P48KefcW4l1BDx5yv7lH0o= Subject key identifier: 71:F9:FF:42:7E:7E:E1:F0:E1:77:B9:1F:BD:EE:0A:73:60:FD:93:EC Authority key identifier: 61:B0:22:33:5F:4D:85:E1:6D:47:7A:00:6A:DC:8E:3F:2F:DA:94:60 Certificate issuer: /CN=A91A7C77/serialNumber=61B022335F4D85E16D477A006ADC8E3F2FDA9460 Certificate serial: 0496 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft Manifest number: 0494 Signing time: Sat 07 Jun 2025 00:01:15 +0000 Manifest this update: Sat 07 Jun 2025 00:01:14 +0000 Manifest next update: Sat 14 Jun 2025 00:01:14 +0000 Files and hashes: 1: YbAiM19NheFtR3oAatyOPy_alGA.crl (hash: C53Ay9qj64sNO4clq1dy0056GpbJReIT98giuwa+Uug=) 2: FF4EB6B2395811ECA422C462C4F9AE02.roa (hash: kkkJWZ9fDn1htzEtE1zpX7lAAG0cOZUfH1foPNvS114=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.crl rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Jun 2025 00:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1174 (0x496) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7C77, serialNumber=61B022335F4D85E16D477A006ADC8E3F2FDA9460 Validity Not Before: Jun 7 00:01:14 2025 GMT Not After : Jun 14 00:01:14 2025 GMT Subject: CN=6843814b-7a62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:3a:ff:13:27:3e:4f:52:72:63:84:9b:03:a4: 69:e4:7d:91:1d:a5:42:e9:9e:54:67:3c:df:83:b5: 7c:f7:f7:b2:cb:ad:86:fd:8b:15:b2:79:c4:3a:b2: 62:c4:a2:e3:a2:3e:cf:a7:57:9a:af:57:7a:2e:33: f9:0d:aa:6d:1e:08:8c:8f:5e:93:1e:ce:d5:5d:48: b5:ea:45:4c:10:eb:7c:e8:bc:2c:03:f0:36:2b:24: a1:e4:6b:dc:0e:26:bd:70:7e:b3:2b:47:6a:51:73: 7b:15:17:e0:ed:00:aa:d2:08:ca:36:11:d2:1c:e1: de:1d:ef:60:80:ed:46:f5:c2:a5:53:e3:b4:eb:ad: 6e:ce:0c:5f:7d:99:b6:b7:12:0b:d1:cb:bb:7c:67: a7:79:ce:71:bd:e8:7c:77:f7:9a:a3:4e:0c:d5:b0: 3c:e0:6d:49:a7:c7:0f:4d:3b:99:60:e0:62:7e:56: 80:20:1e:2a:9d:21:64:95:32:c0:91:a1:a4:34:80: 44:da:c0:1e:5b:bf:6d:d9:b0:3b:33:f5:14:f1:18: 41:1e:3e:9d:0d:3b:cd:8d:ff:2a:f1:51:bf:c6:19: cc:2b:dd:0f:62:e4:9d:7d:51:7f:73:01:2a:9d:05: a7:58:22:40:23:f7:c9:5b:64:5b:ff:8a:ae:0a:85: 8e:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:F9:FF:42:7E:7E:E1:F0:E1:77:B9:1F:BD:EE:0A:73:60:FD:93:EC X509v3 Authority Key Identifier: keyid:61:B0:22:33:5F:4D:85:E1:6D:47:7A:00:6A:DC:8E:3F:2F:DA:94:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:ff:95:70:08:78:8f:91:e6:4a:d2:0b:4f:ee:62:6a:e0:5f: ea:62:12:79:27:64:60:3a:14:b5:57:3e:50:58:de:d1:f0:02: ea:c6:d1:d8:0d:cd:57:b9:44:79:e3:ae:4d:40:d3:3d:e9:5e: f3:6e:3d:ca:ca:af:42:db:74:cf:d8:2d:b3:36:ab:b2:1f:22: 2f:3d:65:3a:0e:57:96:c9:14:24:a0:3b:12:47:a3:dd:35:20: d5:dd:0d:ef:aa:d1:b3:8e:92:53:d8:89:e9:c0:ef:6a:fe:a3: 86:4e:55:ec:73:2d:6d:57:82:58:e1:fd:81:d8:e0:33:ae:3e: 28:1d:07:09:c1:3a:35:43:ba:74:e4:54:e7:0d:55:27:6c:b0: 79:aa:8f:5f:2f:74:2e:43:14:7e:a5:27:78:8e:6e:fe:df:06: 99:85:ee:02:d7:90:c1:00:44:90:37:83:92:fd:ff:da:f7:c0: 68:a1:cf:16:86:1c:2d:b2:e2:14:56:1b:00:e9:12:33:39:b8: 9c:1e:84:fa:2b:8d:23:c7:26:f3:7c:9d:0a:8f:bb:b3:d4:2c: 54:8f:8f:aa:c8:de:b4:69:a2:82:7e:1a:c8:63:5e:b3:72:1c: 7f:1b:53:59:13:94:d7:07:3d:7b:8b:c0:de:18:71:70:63:46: 00:4f:08:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDNzcxMTAvBgNVBAUTKDYxQjAyMjMzNUY0RDg1RTE2RDQ3N0EwMDZBREM4RTNG MkZEQTk0NjAwHhcNMjUwNjA3MDAwMTE0WhcNMjUwNjE0MDAwMTE0WjAYMRYwFAYD VQQDEw02ODQzODE0Yi03YTYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8jr/Eyc+T1JyY4SbA6Rp5H2RHaVC6Z5UZzzfg7V89/eyy62G/YsVsnnEOrJi xKLjoj7Pp1ear1d6LjP5DaptHgiMj16THs7VXUi16kVMEOt86LwsA/A2KySh5Gvc Dia9cH6zK0dqUXN7FRfg7QCq0gjKNhHSHOHeHe9ggO1G9cKlU+O0661uzgxffZm2 txIL0cu7fGenec5xveh8d/eao04M1bA84G1Jp8cPTTuZYOBiflaAIB4qnSFklTLA kaGkNIBE2sAeW79t2bA7M/UU8RhBHj6dDTvNjf8q8VG/xhnMK90PYuSdfVF/cwEq nQWnWCJAI/fJW2Rb/4quCoWOuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHH5/0J+ fuHw4Xe5H73uCnNg/ZPsMB8GA1UdIwQYMBaAFGGwIjNfTYXhbUd6AGrcjj8v2pRg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0M3Ny9EQzIwMUFGRTM5 NTQxMUVDODBEOUQzNTlDNEY5QUUwMi9ZYkFpTTE5TmhlRnRSM29BYXR5T1B5X2Fs R0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liQWlNMTlOaGVGdFIzb0FhdHlPUHlfYWxHQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0M3Ny9EQzIwMUFGRTM5NTQxMUVDODBEOUQzNTlDNEY5QUUwMi9ZYkFpTTE5Tmhl RnRSM29BYXR5T1B5X2FsR0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBM/5VwCHiPkeZK0gtP7mJq4F/qYhJ5J2RgOhS1Vz5QWN7R8ALqxtHY Dc1XuUR5465NQNM96V7zbj3Kyq9C23TP2C2zNquyHyIvPWU6DleWyRQkoDsSR6Pd NSDV3Q3vqtGzjpJT2InpwO9q/qOGTlXscy1tV4JY4f2B2OAzrj4oHQcJwTo1Q7p0 5FTnDVUnbLB5qo9fL3QuQxR+pSd4jm7+3waZhe4C15DBAESQN4OS/f/a98Booc8W hhwtsuIUVhsA6RIzObicHoT6K40jxybzfJ0Kj7uz1CxUj4+qyN60aaKCfhrIY16z chx/G1NZE5TXBz17i8DeGHFwY0YATwiz -----END CERTIFICATE-----Generated at Sun Jun 8 14:45:00 2025 by rpki-client