$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3E17/920C5ECAE16811ECAAD8F818C4F9AE02/yKkupf322jjqQIWq7lWnJIzTTzo.mft File: yKkupf322jjqQIWq7lWnJIzTTzo.mft (raw, json) Hash identifier: lQwSilWAE4kYo9K3VjEQ1ETrfA9/mwKlHkMXbQe6CIw= Subject key identifier: 7F:2C:78:AD:A1:1B:1D:D2:10:B0:20:79:41:9E:20:69:96:0C:96:97 Authority key identifier: C8:A9:2E:A5:FD:F6:DA:38:EA:40:85:AA:EE:55:A7:24:8C:D3:4F:3A Certificate issuer: /CN=A91B3E17/serialNumber=C8A92EA5FDF6DA38EA4085AAEE55A7248CD34F3A Certificate serial: 02EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yKkupf322jjqQIWq7lWnJIzTTzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3E17/920C5ECAE16811ECAAD8F818C4F9AE02/yKkupf322jjqQIWq7lWnJIzTTzo.mft Manifest number: 02E8 Signing time: Sat 31 May 2025 01:30:56 +0000 Manifest this update: Sat 31 May 2025 01:30:55 +0000 Manifest next update: Sat 07 Jun 2025 01:30:55 +0000 Files and hashes: 1: yKkupf322jjqQIWq7lWnJIzTTzo.crl (hash: z+dFqLacw8rgvBmHWjPjUiGfCvXFcS88860IpQ8jS54=) 2: 3166C07AE16C11ECB2629D1AC4F9AE02.roa (hash: ipLQrTfxlsH1xbpA5Xtx6FI7FTiCB5Vq0xVbQe7ALKk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3E17/920C5ECAE16811ECAAD8F818C4F9AE02/yKkupf322jjqQIWq7lWnJIzTTzo.crl rsync://rpki.apnic.net/member_repository/A91B3E17/920C5ECAE16811ECAAD8F818C4F9AE02/yKkupf322jjqQIWq7lWnJIzTTzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yKkupf322jjqQIWq7lWnJIzTTzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:30:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 748 (0x2ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3E17, serialNumber=C8A92EA5FDF6DA38EA4085AAEE55A7248CD34F3A Validity Not Before: May 31 01:30:55 2025 GMT Not After : Jun 7 01:30:55 2025 GMT Subject: CN=683a5bcf-4af8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:0e:31:38:d7:d1:c9:2b:72:6f:a7:62:39:b2: ae:de:66:41:e0:54:fd:e2:aa:a1:16:5b:9a:42:20: 60:67:1f:e3:f1:21:bc:79:14:73:da:a9:df:07:99: 57:5f:e8:cf:52:f2:a8:f6:4b:92:93:5e:81:9e:63: 13:15:d5:0d:9c:d2:33:4c:80:7e:e5:2a:5b:b2:c0: 17:ce:12:92:93:56:e6:a0:bf:6f:d3:23:d0:cd:67: bc:9a:d2:2e:37:35:57:66:9a:50:58:55:67:12:8d: 92:fb:e6:b9:68:ed:8e:28:de:2a:23:5d:ad:a7:dd: 37:77:41:86:9c:b1:ad:e9:b5:1b:de:55:5a:fe:6c: 08:2f:97:52:70:3a:ae:14:23:2c:20:2a:9b:11:a4: b3:8a:4a:2a:1c:eb:0b:fb:8a:4f:31:75:d8:b7:9f: 8d:3c:68:16:ce:de:8a:d9:a8:1d:cc:21:3d:a1:5a: e6:1e:80:5a:63:73:79:b8:e9:93:21:c6:3e:a8:e2: 56:93:8d:37:f4:7b:f9:79:7a:4e:ce:d9:e9:f8:95: d1:a0:86:72:2d:94:17:06:cb:5a:03:6e:7b:f6:27: 3e:b7:01:bd:55:e2:64:09:0a:8e:7e:28:62:8e:9d: 5f:86:7d:f3:38:6a:c4:d3:1f:38:da:2a:31:a5:8d: a4:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:2C:78:AD:A1:1B:1D:D2:10:B0:20:79:41:9E:20:69:96:0C:96:97 X509v3 Authority Key Identifier: keyid:C8:A9:2E:A5:FD:F6:DA:38:EA:40:85:AA:EE:55:A7:24:8C:D3:4F:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3E17/920C5ECAE16811ECAAD8F818C4F9AE02/yKkupf322jjqQIWq7lWnJIzTTzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yKkupf322jjqQIWq7lWnJIzTTzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3E17/920C5ECAE16811ECAAD8F818C4F9AE02/yKkupf322jjqQIWq7lWnJIzTTzo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:96:8d:f7:5b:a9:c5:af:39:7e:47:18:50:fc:49:01:e6:51: 43:96:8a:01:d3:09:b9:d7:26:95:ed:0b:9f:4a:48:92:65:d8: 9f:bb:40:bc:20:ce:d2:b0:87:cd:0a:37:d2:05:4e:27:2a:5a: 6a:fc:bd:f4:c7:7f:4d:94:41:2d:8e:4a:b0:b3:b0:d0:37:0f: 65:37:ba:e3:e9:25:d2:13:ee:0b:0a:80:96:31:29:4d:f2:28: 83:de:cd:62:87:bc:43:48:f9:79:a7:bb:75:af:86:d8:c2:cc: a4:9a:1b:18:d3:05:e5:87:93:4e:02:f2:f6:78:74:38:95:9a: af:33:bd:76:d5:1e:12:da:bd:a8:78:ed:f4:43:a1:06:f3:98: b2:30:d1:f5:80:ac:ac:c3:2f:bb:05:fd:c2:72:24:d3:60:02: 08:16:2f:fb:89:0e:41:52:8d:da:f2:c1:9e:9f:7e:4b:d2:80: 02:7e:17:42:c2:8c:ff:96:df:08:ff:3e:f8:8e:16:0e:10:ec: df:45:64:2b:0d:a0:ff:b4:c7:a0:24:98:e9:46:dd:5a:73:60: 67:4f:3c:47:a5:01:0a:6e:e9:4d:b4:43:b1:c0:cb:29:6d:f9: 47:a3:ec:a2:fd:04:93:2b:83:f0:a5:ad:2c:d3:ae:99:00:98: 36:62:63:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAuwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNFMTcxMTAvBgNVBAUTKEM4QTkyRUE1RkRGNkRBMzhFQTQwODVBQUVFNTVBNzI0 OENEMzRGM0EwHhcNMjUwNTMxMDEzMDU1WhcNMjUwNjA3MDEzMDU1WjAYMRYwFAYD VQQDEw02ODNhNWJjZi00YWY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyg4xONfRyStyb6diObKu3mZB4FT94qqhFluaQiBgZx/j8SG8eRRz2qnfB5lX X+jPUvKo9kuSk16BnmMTFdUNnNIzTIB+5SpbssAXzhKSk1bmoL9v0yPQzWe8mtIu NzVXZppQWFVnEo2S++a5aO2OKN4qI12tp903d0GGnLGt6bUb3lVa/mwIL5dScDqu FCMsICqbEaSzikoqHOsL+4pPMXXYt5+NPGgWzt6K2agdzCE9oVrmHoBaY3N5uOmT IcY+qOJWk4039Hv5eXpOztnp+JXRoIZyLZQXBstaA2579ic+twG9VeJkCQqOfihi jp1fhn3zOGrE0x842ioxpY2kRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH8seK2h Gx3SELAgeUGeIGmWDJaXMB8GA1UdIwQYMBaAFMipLqX99to46kCFqu5VpySM0086 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0UxNy85MjBDNUVDQUUx NjgxMUVDQUFEOEY4MThDNEY5QUUwMi95S2t1cGYzMjJqanFRSVdxN2xXbkpJelRU em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lLa3VwZjMyMmpqcVFJV3E3bFduSkl6VFR6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC M0UxNy85MjBDNUVDQUUxNjgxMUVDQUFEOEY4MThDNEY5QUUwMi95S2t1cGYzMjJq anFRSVdxN2xXbkpJelRUem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnlo33W6nFrzl+RxhQ/EkB5lFDlooB0wm51yaV7QufSkiSZdifu0C8 IM7SsIfNCjfSBU4nKlpq/L30x39NlEEtjkqws7DQNw9lN7rj6SXSE+4LCoCWMSlN 8iiD3s1ih7xDSPl5p7t1r4bYwsykmhsY0wXlh5NOAvL2eHQ4lZqvM7121R4S2r2o eO30Q6EG85iyMNH1gKyswy+7Bf3CciTTYAIIFi/7iQ5BUo3a8sGen35L0oACfhdC woz/lt8I/z74jhYOEOzfRWQrDaD/tMegJJjpRt1ac2BnTzxHpQEKbulNtEOxwMsp bflHo+yi/QSTK4Pwpa0s066ZAJg2YmOM -----END CERTIFICATE-----Generated at Sat May 31 17:00:18 2025 by rpki-client