$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft File: Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft (raw, json) Hash identifier: S7ynOLyi7IpvI6Mn4F6M/P+asBsA5JK2FgAEC0LoLxI= Subject key identifier: 56:23:47:82:18:3D:3B:8C:54:AB:A8:AB:B2:EB:88:BD:1A:90:C2:88 Authority key identifier: 63:49:73:59:04:E1:BC:0D:65:BD:59:4A:07:76:2B:B5:29:9C:03:8A Certificate issuer: /CN=A91AFB4C/serialNumber=6349735904E1BC0D65BD594A07762BB5299C038A Certificate serial: 01B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft Manifest number: 01AF Signing time: Sat 31 May 2025 02:56:04 +0000 Manifest this update: Sat 31 May 2025 02:56:04 +0000 Manifest next update: Sat 07 Jun 2025 02:56:04 +0000 Files and hashes: 1: Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl (hash: bt6VXClMaw5wFpDrx5KFEznfxhWtm59ONFRwuygQnow=) 2: AD286018B29C11EDB216812EC4F9AE02.roa (hash: ck7frHwbdvA8vLLhGdgsJbIt8cpEwUyRbFKBDEFTB8E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:56:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 436 (0x1b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFB4C, serialNumber=6349735904E1BC0D65BD594A07762BB5299C038A Validity Not Before: May 31 02:56:04 2025 GMT Not After : Jun 7 02:56:04 2025 GMT Subject: CN=683a6fc4-534e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:97:e4:55:41:63:20:dd:92:07:4f:4a:f0:66: 4f:0b:d4:26:fe:5a:1f:bc:05:3a:1b:b2:8b:98:14: 17:2b:32:86:c7:ba:ca:45:5b:98:14:8f:46:91:90: 5a:c9:b1:96:01:fd:3b:12:7c:37:f4:0b:f6:2e:18: 0c:3e:7f:ea:03:1e:fd:ca:5f:a9:70:aa:c7:f5:96: 15:ca:03:de:ba:d2:cf:45:82:eb:cb:14:15:38:d2: 07:2e:95:40:44:fe:48:fd:f6:c5:82:4f:f0:84:34: 84:a3:46:27:0b:5e:52:da:55:de:84:f0:a9:ff:2f: 4f:ac:12:44:c9:d7:02:16:48:92:fb:39:25:bc:24: ea:96:cb:9b:bb:97:26:7f:fb:bf:08:70:1d:9d:e0: e3:f0:c6:d9:47:14:76:44:cc:8b:af:eb:cd:19:0c: 39:be:04:33:fa:58:d2:fe:20:09:a7:73:ed:1f:f7: d9:10:6f:1f:d0:8f:54:b2:7a:7a:a7:7e:a4:f9:ff: 0c:cd:72:28:77:ee:e0:9f:7c:84:81:df:26:9d:94: f0:af:84:80:a5:24:d9:80:e2:b2:24:05:ed:d3:d4: a9:4e:7f:a9:4a:ac:e5:4b:f3:70:b4:cf:b4:f3:84: d5:8b:a0:8b:a6:a0:2a:68:fb:0a:40:f2:45:98:21: 88:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:23:47:82:18:3D:3B:8C:54:AB:A8:AB:B2:EB:88:BD:1A:90:C2:88 X509v3 Authority Key Identifier: keyid:63:49:73:59:04:E1:BC:0D:65:BD:59:4A:07:76:2B:B5:29:9C:03:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e2:0e:e4:a1:66:e1:5a:95:bf:58:2b:30:d4:65:11:c8:f9:81: b0:ab:bf:d2:30:d6:39:84:77:ca:2b:e1:e8:b1:55:9b:47:59: 85:27:b8:cc:bc:f8:dc:39:47:18:f3:e0:33:b6:95:20:6e:78: 86:f0:11:fd:71:ff:48:e7:71:56:8c:7a:5c:ae:e3:8e:cb:0e: cb:e3:20:60:63:6e:46:35:4c:db:fc:51:08:17:f1:04:c9:1f: ac:fb:36:49:29:d6:65:ff:13:c2:d5:81:dc:29:fd:64:cc:3e: 72:cc:53:f4:76:3a:93:03:d5:1f:7b:4a:97:02:ad:9b:bc:d2: df:cc:71:d4:27:5d:87:36:79:10:86:cc:7c:3f:05:d4:a0:2a: f5:2b:df:6a:1d:a9:3d:bc:4d:9f:22:85:d4:dc:2c:65:66:09: 4e:e9:1d:5b:a8:ce:ad:70:83:3b:a2:68:d6:48:34:24:00:4a: e6:90:f1:8c:fa:8d:cc:b3:c2:be:02:79:cf:6e:83:25:b7:26: 0f:43:88:66:8f:46:bf:e1:69:4f:15:4e:e3:55:50:9b:f6:d2: ee:df:b9:e8:2b:94:5d:dd:29:e7:12:25:ac:b2:9a:6f:9e:15: dc:27:72:83:df:5d:cf:10:dd:cb:a6:49:e7:b9:04:47:04:0f: b1:cc:2b:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZCNEMxMTAvBgNVBAUTKDYzNDk3MzU5MDRFMUJDMEQ2NUJENTk0QTA3NzYyQkI1 Mjk5QzAzOEEwHhcNMjUwNTMxMDI1NjA0WhcNMjUwNjA3MDI1NjA0WjAYMRYwFAYD VQQDEw02ODNhNmZjNC01MzRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtZfkVUFjIN2SB09K8GZPC9Qm/lofvAU6G7KLmBQXKzKGx7rKRVuYFI9GkZBa ybGWAf07Enw39Av2LhgMPn/qAx79yl+pcKrH9ZYVygPeutLPRYLryxQVONIHLpVA RP5I/fbFgk/whDSEo0YnC15S2lXehPCp/y9PrBJEydcCFkiS+zklvCTqlsubu5cm f/u/CHAdneDj8MbZRxR2RMyLr+vNGQw5vgQz+ljS/iAJp3PtH/fZEG8f0I9Usnp6 p36k+f8MzXIod+7gn3yEgd8mnZTwr4SApSTZgOKyJAXt09SpTn+pSqzlS/NwtM+0 84TVi6CLpqAqaPsKQPJFmCGI5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFYjR4IY PTuMVKuoq7LriL0akMKIMB8GA1UdIwQYMBaAFGNJc1kE4bwNZb1ZSgd2K7UpnAOK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkI0Qy9DNDcwQjIyQUIy OTcxMUVEOTRFRjA5MjZDNEY5QUUwMi9ZMGx6V1FUaHZBMWx2VmxLQjNZcnRTbWNB NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kwbHpXUVRodkExbHZWbEtCM1lydFNtY0E0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RkI0Qy9DNDcwQjIyQUIyOTcxMUVEOTRFRjA5MjZDNEY5QUUwMi9ZMGx6V1FUaHZB MWx2VmxLQjNZcnRTbWNBNG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDiDuShZuFalb9YKzDUZRHI+YGwq7/SMNY5hHfKK+HosVWbR1mFJ7jM vPjcOUcY8+AztpUgbniG8BH9cf9I53FWjHpcruOOyw7L4yBgY25GNUzb/FEIF/EE yR+s+zZJKdZl/xPC1YHcKf1kzD5yzFP0djqTA9Ufe0qXAq2bvNLfzHHUJ12HNnkQ hsx8PwXUoCr1K99qHak9vE2fIoXU3CxlZglO6R1bqM6tcIM7omjWSDQkAErmkPGM +o3Ms8K+AnnPboMltyYPQ4hmj0a/4WlPFU7jVVCb9tLu37noK5Rd3SnnEiWssppv nhXcJ3KD313PEN3LpknnuQRHBA+xzCv0 -----END CERTIFICATE-----Generated at Sat May 31 16:50:41 2025 by rpki-client