$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft File: yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft (raw, json) Hash identifier: G8EhezmQeh1iFofCS3ilu+EHMupxeYBeH2nShLdJ1ys= Subject key identifier: 75:71:CA:47:F5:AD:D6:47:31:DF:D2:B0:35:61:8F:85:54:2E:39:41 Authority key identifier: CB:16:56:81:1D:08:45:79:93:E8:D8:1B:9F:97:98:DA:D6:16:97:1A Certificate issuer: /CN=A91B4357/serialNumber=CB1656811D08457993E8D81B9F9798DAD616971A Certificate serial: 0491 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft Manifest number: 0478 Signing time: Sat 31 May 2025 00:17:28 +0000 Manifest this update: Sat 31 May 2025 00:17:28 +0000 Manifest next update: Sat 07 Jun 2025 00:17:28 +0000 Files and hashes: 1: yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl (hash: lgOVZVlXJ3YNNxZAYaHfSeiMl2mYkuA/+lHdn/eLVYE=) 2: CA888654D0E011EC9E5ACC1CC4F9AE02.roa (hash: 4by10ick3aOPoEwL9MxmYZych/O61DB95JCCfpjs2l0=) 3: 52B98FDA46AF11ECB113AA4BC4F9AE02.roa (hash: zdWwyK62ezTqtldMx3AFhd08v1ee56JEEEGh/b+1bK8=) 4: 35A2418C45AE11ECB857890EC4F9AE02.roa (hash: yt5ul2v37If2OMAgvwlcXNvNlpOeU9vk4N82gRjp7ro=) 5: 9896BA2EB6DE11EC8DB17172C4F9AE02.roa (hash: tkC8VFhPaMMB7xHukmlTC8vVY5Lai1noTB/JDIdLAEc=) 6: 351AC73E45AE11ECB857890EC4F9AE02.roa (hash: ofwlwfDv/f2slgSdPa6hT78BUtn3LBZ837QvOITSXas=) 7: 346A2B4045AE11ECB857890EC4F9AE02.roa (hash: y6Yo94bVO58GlNbuqBWAfuC5sCH6iiyxweKo6sloNrk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:17:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1169 (0x491) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4357, serialNumber=CB1656811D08457993E8D81B9F9798DAD616971A Validity Not Before: May 31 00:17:28 2025 GMT Not After : Jun 7 00:17:28 2025 GMT Subject: CN=683a4a98-34f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:cf:ce:88:ba:75:06:35:27:91:26:de:a3:e3: 30:0f:61:07:57:d3:15:e9:91:0c:02:e3:54:a9:bd: 5a:63:da:9f:15:3b:6a:87:6f:e4:29:13:0b:86:54: 53:18:6b:b8:7c:ac:a5:9a:ab:30:58:e5:9f:a9:2f: 1b:24:43:1c:aa:3a:cf:a2:54:df:35:b1:3d:60:c3: 8e:cf:3b:bf:44:eb:48:12:7b:b1:31:f1:10:6c:96: 76:8a:6c:6b:45:94:32:02:93:18:76:7f:0d:6c:77: 9e:46:2b:96:80:d3:db:75:ed:aa:5f:60:fe:10:71: 0f:37:18:da:3b:d7:42:64:77:ae:8b:89:3f:9e:7b: d9:ca:99:be:04:5b:cc:4a:46:2f:7d:d3:45:b9:09: d8:93:fb:f3:cd:06:51:b8:0c:1e:06:89:a3:cc:4f: c2:a2:18:09:af:3f:d1:d2:4b:33:b1:41:43:ec:37: d0:87:0c:a0:07:17:96:75:1e:a1:1d:69:2b:ec:7a: a4:6f:ca:8a:6e:2f:2e:cd:dc:28:c8:6e:e4:57:7a: df:04:f7:bd:9e:a0:cc:37:56:0b:b1:20:d2:8d:3c: 0d:8f:9b:ad:a3:b4:2b:a8:3a:50:69:87:ee:18:5d: 26:79:b1:f3:76:d8:50:f0:74:c0:85:86:d1:1e:31: f2:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:71:CA:47:F5:AD:D6:47:31:DF:D2:B0:35:61:8F:85:54:2E:39:41 X509v3 Authority Key Identifier: keyid:CB:16:56:81:1D:08:45:79:93:E8:D8:1B:9F:97:98:DA:D6:16:97:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:3e:db:45:95:30:28:fa:f7:3b:54:17:36:35:5a:c5:18:57: 97:c7:d2:c1:48:72:dc:1d:ac:d0:b4:51:d6:55:cf:bb:e8:0f: ab:53:1d:a5:a2:cd:9b:36:0c:6e:54:a3:df:5f:26:74:4c:44: ce:4d:5e:90:8f:16:91:fc:98:12:d3:ae:08:8c:a2:fd:a8:1e: ce:99:5c:9f:56:3d:7a:d9:fc:db:c1:53:4e:f3:43:f0:b7:6e: 7a:b1:01:97:c1:fd:4f:a0:90:89:56:84:07:8e:3d:5c:94:7d: b2:86:8c:a2:c5:99:0b:51:cc:63:da:af:b1:a9:70:79:d2:61: 11:c0:82:83:0d:da:4c:38:57:ce:cc:14:6a:80:82:ce:83:50: 6d:9a:e5:54:ba:44:dd:f2:94:ba:e1:e4:2e:ab:bb:1d:db:54: e0:70:13:67:93:58:f8:6f:32:0e:f5:ab:97:94:52:51:79:e7: d4:b1:54:0a:13:b5:d4:71:4b:4e:58:fc:6b:6b:89:82:c7:86: 5b:88:f9:18:02:19:b3:4b:d4:0c:57:3c:c4:34:93:a4:a3:76: 42:11:63:e4:bc:2e:1c:4a:fe:99:c6:13:bc:f3:d0:fc:59:be: 6d:fd:a8:dc:e3:76:cb:35:ca:91:24:62:16:70:56:84:c4:75: 7c:8d:ad:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQzNTcxMTAvBgNVBAUTKENCMTY1NjgxMUQwODQ1Nzk5M0U4RDgxQjlGOTc5OERB RDYxNjk3MUEwHhcNMjUwNTMxMDAxNzI4WhcNMjUwNjA3MDAxNzI4WjAYMRYwFAYD VQQDEw02ODNhNGE5OC0zNGYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzs/OiLp1BjUnkSbeo+MwD2EHV9MV6ZEMAuNUqb1aY9qfFTtqh2/kKRMLhlRT GGu4fKylmqswWOWfqS8bJEMcqjrPolTfNbE9YMOOzzu/ROtIEnuxMfEQbJZ2imxr RZQyApMYdn8NbHeeRiuWgNPbde2qX2D+EHEPNxjaO9dCZHeui4k/nnvZypm+BFvM SkYvfdNFuQnYk/vzzQZRuAweBomjzE/CohgJrz/R0kszsUFD7DfQhwygBxeWdR6h HWkr7Hqkb8qKbi8uzdwoyG7kV3rfBPe9nqDMN1YLsSDSjTwNj5uto7QrqDpQaYfu GF0mebHzdthQ8HTAhYbRHjHymQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHVxykf1 rdZHMd/SsDVhj4VULjlBMB8GA1UdIwQYMBaAFMsWVoEdCEV5k+jYG5+XmNrWFpca MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDM1Ny9CODRCMTBFQzQ1 QTgxMUVDOEIxNDA1NThDNEY5QUUwMi95eFpXZ1IwSVJYbVQ2TmdibjVlWTJ0WVds eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3l4WldnUjBJUlhtVDZOZ2JuNWVZMnRZV2x4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDM1Ny9CODRCMTBFQzQ1QTgxMUVDOEIxNDA1NThDNEY5QUUwMi95eFpXZ1IwSVJY bVQ2TmdibjVlWTJ0WVdseG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+PttFlTAo+vc7VBc2NVrFGFeXx9LBSHLcHazQtFHWVc+76A+rUx2l os2bNgxuVKPfXyZ0TETOTV6QjxaR/JgS064IjKL9qB7OmVyfVj162fzbwVNO80Pw t256sQGXwf1PoJCJVoQHjj1clH2yhoyixZkLUcxj2q+xqXB50mERwIKDDdpMOFfO zBRqgILOg1BtmuVUukTd8pS64eQuq7sd21TgcBNnk1j4bzIO9auXlFJReefUsVQK E7XUcUtOWPxra4mCx4ZbiPkYAhmzS9QMVzzENJOko3ZCEWPkvC4cSv6ZxhO889D8 Wb5t/ajc43bLNcqRJGIWcFaExHV8ja3l -----END CERTIFICATE-----Generated at Sat May 31 16:47:43 2025 by rpki-client