$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft File: yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft (raw, json) Hash identifier: fnVf6rU2GYkFxU012ElSSK2qis396wFYMvU0OYrnl9c= Subject key identifier: 16:3F:C0:EF:8E:51:99:BD:FD:7D:A9:68:24:FB:7A:1A:82:0C:4D:5C Authority key identifier: C8:E0:59:1E:7E:51:7D:41:9C:FC:86:17:1C:DC:A9:FD:E6:26:E8:F5 Certificate issuer: /CN=A91AB3E3/serialNumber=C8E0591E7E517D419CFC86171CDCA9FDE626E8F5 Certificate serial: 01BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft Manifest number: 01B9 Signing time: Tue 03 Jun 2025 02:53:01 +0000 Manifest this update: Tue 03 Jun 2025 02:53:01 +0000 Manifest next update: Tue 10 Jun 2025 02:53:01 +0000 Files and hashes: 1: yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl (hash: UMzFIevfgZ2fpsEElrA5zfK2O9ZCZGVrJD70LXZyVtc=) 2: 1E7B7BB4996C11EDA107E666C4F9AE02.roa (hash: /ERrUArKmo0KgEQ70S3Uf+U0E1QNCp3+3kkOG/O7FLo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 02:53:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 444 (0x1bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB3E3, serialNumber=C8E0591E7E517D419CFC86171CDCA9FDE626E8F5 Validity Not Before: Jun 3 02:53:01 2025 GMT Not After : Jun 10 02:53:01 2025 GMT Subject: CN=683e638d-f73d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:ef:eb:d4:a7:eb:2f:2f:fd:66:c2:32:26:0d: 09:54:b3:41:18:93:19:4f:f9:51:c0:00:2e:9e:9a: 54:a5:ff:1f:69:57:44:8c:33:ca:00:67:57:d0:cd: 5d:3d:7b:ec:82:58:39:4b:cd:68:ff:c2:b7:78:c3: 7c:b0:86:64:b7:4f:44:38:f7:ab:51:a3:72:92:e2: 36:5d:f2:cb:1f:6b:c8:25:da:79:41:6e:8f:69:af: 6d:f4:e5:e9:56:c9:0c:d9:6a:80:96:72:26:82:71: 8d:d5:77:86:db:6a:fd:fe:38:57:df:58:80:4b:a9: e9:8e:df:ab:95:83:b7:0a:66:c8:86:fd:f1:ca:2b: 68:80:da:2b:f6:d8:8c:cb:d2:b9:7c:a5:bb:89:1d: 61:e2:bd:e3:db:dd:41:87:4e:77:13:e6:26:7f:e9: db:97:d7:7c:21:63:5d:94:06:2a:ce:5c:9a:4d:0c: 96:fe:c1:72:52:78:46:bb:20:97:d1:07:7a:68:e8: f2:e3:2e:26:88:cc:40:bd:b3:20:37:fe:1a:8a:56: d1:be:67:81:c7:a6:61:52:4d:bd:a7:ad:f2:45:d5: 9f:f5:e7:a6:20:5f:8d:a4:e3:3f:7f:9c:54:61:c1: b8:fa:7a:8e:87:e9:65:c2:44:42:8a:d9:ed:b2:cc: e6:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:3F:C0:EF:8E:51:99:BD:FD:7D:A9:68:24:FB:7A:1A:82:0C:4D:5C X509v3 Authority Key Identifier: keyid:C8:E0:59:1E:7E:51:7D:41:9C:FC:86:17:1C:DC:A9:FD:E6:26:E8:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:95:0c:6a:d9:8a:04:f9:a5:cb:dd:a3:cc:a6:36:4c:e8:d7: 31:ea:13:63:1b:26:f9:88:1e:87:85:ea:f4:a8:cd:1b:e3:97: f8:9c:f0:e8:50:86:ff:f1:32:2d:0c:8d:05:92:bf:c6:a7:02: 78:17:71:8d:67:39:5f:04:f2:52:02:26:2e:ef:d2:37:67:96: 60:c5:33:77:76:68:de:3c:28:ad:0d:1c:63:06:ac:53:2f:69: 51:ff:34:cf:a3:30:8c:1b:8f:b8:53:a1:c7:d9:5e:e5:3f:58: b0:bc:2b:28:e2:a4:cd:65:9c:76:fa:f9:89:4f:74:47:00:ba: 31:0a:1b:42:1f:19:2c:58:93:f4:9b:50:89:2d:81:dd:4f:8c: 28:b0:8c:1f:0e:f6:af:9a:df:04:90:5e:7f:ae:90:18:64:bf: fa:98:55:8d:83:0b:79:06:2a:93:af:02:ac:36:d3:97:88:71: c4:4c:f6:20:2e:5f:5c:2a:95:82:01:7d:e0:17:c3:fc:40:a9: 4e:d4:e1:58:ca:08:ca:65:a0:3e:18:a4:33:6e:98:ff:3f:08: f5:be:31:e8:89:0c:6f:e9:35:31:19:03:9c:6f:2f:53:0d:a0: af:70:36:68:32:e5:7d:7a:9c:1e:ad:69:05:26:a4:23:27:17: c3:82:73:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIzRTMxMTAvBgNVBAUTKEM4RTA1OTFFN0U1MTdENDE5Q0ZDODYxNzFDRENBOUZE RTYyNkU4RjUwHhcNMjUwNjAzMDI1MzAxWhcNMjUwNjEwMDI1MzAxWjAYMRYwFAYD VQQDEw02ODNlNjM4ZC1mNzNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoe/r1KfrLy/9ZsIyJg0JVLNBGJMZT/lRwAAunppUpf8faVdEjDPKAGdX0M1d PXvsglg5S81o/8K3eMN8sIZkt09EOPerUaNykuI2XfLLH2vIJdp5QW6Paa9t9OXp VskM2WqAlnImgnGN1XeG22r9/jhX31iAS6npjt+rlYO3CmbIhv3xyitogNor9tiM y9K5fKW7iR1h4r3j291Bh053E+Ymf+nbl9d8IWNdlAYqzlyaTQyW/sFyUnhGuyCX 0Qd6aOjy4y4miMxAvbMgN/4ailbRvmeBx6ZhUk29p63yRdWf9eemIF+NpOM/f5xU YcG4+nqOh+llwkRCitntsszmGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBY/wO+O UZm9/X2paCT7ehqCDE1cMB8GA1UdIwQYMBaAFMjgWR5+UX1BnPyGFxzcqf3mJuj1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjNFMy9BOTQ2MjRCNDk5 NjgxMUVEQjE2MkY4NjFDNEY5QUUwMi95T0JaSG41UmZVR2NfSVlYSE55cF9lWW02 UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lPQlpIbjVSZlVHY19JWVhITnlwX2VZbTZQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjNFMy9BOTQ2MjRCNDk5NjgxMUVEQjE2MkY4NjFDNEY5QUUwMi95T0JaSG41UmZV R2NfSVlYSE55cF9lWW02UFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDQlQxq2YoE+aXL3aPMpjZM6Ncx6hNjGyb5iB6Hher0qM0b45f4nPDo UIb/8TItDI0Fkr/GpwJ4F3GNZzlfBPJSAiYu79I3Z5ZgxTN3dmjePCitDRxjBqxT L2lR/zTPozCMG4+4U6HH2V7lP1iwvCso4qTNZZx2+vmJT3RHALoxChtCHxksWJP0 m1CJLYHdT4wosIwfDvavmt8EkF5/rpAYZL/6mFWNgwt5BiqTrwKsNtOXiHHETPYg Ll9cKpWCAX3gF8P8QKlO1OFYygjKZaA+GKQzbpj/Pwj1vjHoiQxv6TUxGQOcby9T DaCvcDZoMuV9epwerWkFJqQjJxfDgnOx -----END CERTIFICATE-----Generated at Tue Jun 3 23:41:23 2025 by rpki-client