$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7700/CCDBF4F0AE5711ECB4A1DA64C4F9AE02/y78mA3JNeFZrHBLDLVxIH10w8fI.mft File: y78mA3JNeFZrHBLDLVxIH10w8fI.mft (raw, json) Hash identifier: 9Swk80R9zVp4QezS44YDKaPA8PfoWkawXVfiEc1obXw= Subject key identifier: 14:B2:4E:8E:F1:4D:29:EB:57:85:B7:C8:02:4C:78:FE:BA:61:47:54 Authority key identifier: CB:BF:26:03:72:4D:78:56:6B:1C:12:C3:2D:5C:48:1F:5D:30:F1:F2 Certificate issuer: /CN=A91B7700/serialNumber=CBBF2603724D78566B1C12C32D5C481F5D30F1F2 Certificate serial: 036E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y78mA3JNeFZrHBLDLVxIH10w8fI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7700/CCDBF4F0AE5711ECB4A1DA64C4F9AE02/y78mA3JNeFZrHBLDLVxIH10w8fI.mft Manifest number: 036A Signing time: Sat 31 May 2025 01:07:29 +0000 Manifest this update: Sat 31 May 2025 01:07:29 +0000 Manifest next update: Sat 07 Jun 2025 01:07:29 +0000 Files and hashes: 1: y78mA3JNeFZrHBLDLVxIH10w8fI.crl (hash: VevC7PiIc8zhnIqVK9YqM+8I68GkkSAiyTLddQU6SAA=) 2: 93D60566AE5B11ECB19C1569C4F9AE02.roa (hash: mfWKFm3R9Zz1cfvfe7gZWjinbVCRooVyIR4rmFi/Bec=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7700/CCDBF4F0AE5711ECB4A1DA64C4F9AE02/y78mA3JNeFZrHBLDLVxIH10w8fI.crl rsync://rpki.apnic.net/member_repository/A91B7700/CCDBF4F0AE5711ECB4A1DA64C4F9AE02/y78mA3JNeFZrHBLDLVxIH10w8fI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y78mA3JNeFZrHBLDLVxIH10w8fI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:07:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 878 (0x36e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7700, serialNumber=CBBF2603724D78566B1C12C32D5C481F5D30F1F2 Validity Not Before: May 31 01:07:29 2025 GMT Not After : Jun 7 01:07:29 2025 GMT Subject: CN=683a5651-7ee8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:49:3e:60:a9:6a:3e:c7:64:86:73:25:a0:3c: 48:a2:c6:51:d4:aa:2f:13:92:34:c4:f3:35:e0:13: 4d:30:02:67:99:63:80:22:46:19:4a:5e:ac:3d:76: 53:1e:50:2c:ce:b4:0f:23:17:1c:41:86:62:43:fb: 11:68:0e:c2:f6:60:99:7a:e8:07:0c:f6:88:b0:90: 87:1a:cf:9b:bf:e6:e8:75:7f:7c:f6:d7:d4:43:e7: 98:86:ff:a9:c4:b7:60:b1:61:83:20:63:f5:fb:c6: b8:03:24:b8:1d:9d:d3:98:51:e2:66:bb:27:56:cf: 81:5d:80:9f:c5:dc:29:d9:72:da:ab:1a:cd:02:6b: 76:23:23:0c:0a:0f:e6:a2:2e:44:d6:c2:57:21:b9: c4:dd:ac:8d:f4:ff:b0:3d:e3:53:5f:cd:fe:09:0f: ba:ff:a6:a0:c1:a7:de:b1:e5:75:2f:5a:76:91:ba: 5b:ce:b7:75:69:d3:34:45:61:eb:77:88:9c:dc:1b: c1:7e:2f:fa:38:09:8a:ae:b6:99:08:63:af:68:7b: 11:b2:3d:a8:e9:2a:ad:d9:61:7b:06:c2:1b:ae:8f: 5e:ee:68:69:cc:ee:53:01:fe:32:d5:bb:9b:e0:21: 15:d0:c5:a3:bb:45:94:ff:2e:35:d1:0e:1d:0f:ce: 43:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:B2:4E:8E:F1:4D:29:EB:57:85:B7:C8:02:4C:78:FE:BA:61:47:54 X509v3 Authority Key Identifier: keyid:CB:BF:26:03:72:4D:78:56:6B:1C:12:C3:2D:5C:48:1F:5D:30:F1:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7700/CCDBF4F0AE5711ECB4A1DA64C4F9AE02/y78mA3JNeFZrHBLDLVxIH10w8fI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y78mA3JNeFZrHBLDLVxIH10w8fI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7700/CCDBF4F0AE5711ECB4A1DA64C4F9AE02/y78mA3JNeFZrHBLDLVxIH10w8fI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:94:38:b8:21:42:ba:49:39:f6:96:f5:b1:46:fd:95:22:b5: ef:70:bc:eb:7c:66:07:76:e1:a2:f1:32:0a:f1:a7:35:2c:b4: d3:93:42:6f:0b:36:a0:e1:ba:68:95:c2:b5:2e:af:94:90:b7: 30:20:2e:3b:eb:41:f9:f3:bf:f0:f3:50:0c:8f:61:b8:3c:fa: 29:e1:6c:3e:3c:30:df:9d:92:bc:56:3f:b0:a1:cd:b4:0b:48: 8e:32:9e:8e:ff:87:c4:c8:6a:a0:88:60:6a:4b:94:46:82:4a: 16:0b:4d:4c:a4:db:69:62:e8:77:52:bb:92:d3:a2:95:6e:0a: 04:6b:6e:93:70:83:f2:39:45:10:31:c6:61:b7:7b:91:45:03: 91:f6:88:79:08:2c:83:75:8e:d2:18:15:7b:ce:bc:dc:a8:8d: e2:e1:cb:94:d7:65:63:4a:2c:63:b0:06:d0:41:41:23:27:69: 69:f8:e8:8a:e9:75:f5:dd:9f:13:81:05:fe:4b:31:d7:6d:d2: 9d:92:8b:0a:ee:41:7e:1d:17:0e:61:d2:05:d8:f7:84:81:a2: 76:53:67:51:01:4e:14:9f:94:cc:11:79:e0:3a:b3:35:44:d2: 23:00:56:de:34:3e:5c:d7:22:71:67:c3:eb:0f:80:21:7a:a0: 6f:fb:3a:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA24wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc3MDAxMTAvBgNVBAUTKENCQkYyNjAzNzI0RDc4NTY2QjFDMTJDMzJENUM0ODFG NUQzMEYxRjIwHhcNMjUwNTMxMDEwNzI5WhcNMjUwNjA3MDEwNzI5WjAYMRYwFAYD VQQDEw02ODNhNTY1MS03ZWU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxkk+YKlqPsdkhnMloDxIosZR1KovE5I0xPM14BNNMAJnmWOAIkYZSl6sPXZT HlAszrQPIxccQYZiQ/sRaA7C9mCZeugHDPaIsJCHGs+bv+bodX989tfUQ+eYhv+p xLdgsWGDIGP1+8a4AyS4HZ3TmFHiZrsnVs+BXYCfxdwp2XLaqxrNAmt2IyMMCg/m oi5E1sJXIbnE3ayN9P+wPeNTX83+CQ+6/6agwafeseV1L1p2kbpbzrd1adM0RWHr d4ic3BvBfi/6OAmKrraZCGOvaHsRsj2o6Sqt2WF7BsIbro9e7mhpzO5TAf4y1bub 4CEV0MWju0WU/y410Q4dD85DpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBSyTo7x TSnrV4W3yAJMeP66YUdUMB8GA1UdIwQYMBaAFMu/JgNyTXhWaxwSwy1cSB9dMPHy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzcwMC9DQ0RCRjRGMEFF NTcxMUVDQjRBMURBNjRDNEY5QUUwMi95NzhtQTNKTmVGWnJIQkxETFZ4SUgxMHc4 ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3k3OG1BM0pOZUZackhCTERMVnhJSDEwdzhmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzcwMC9DQ0RCRjRGMEFFNTcxMUVDQjRBMURBNjRDNEY5QUUwMi95NzhtQTNKTmVG WnJIQkxETFZ4SUgxMHc4ZkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOlDi4IUK6STn2lvWxRv2VIrXvcLzrfGYHduGi8TIK8ac1LLTTk0Jv Czag4bpolcK1Lq+UkLcwIC4760H587/w81AMj2G4PPop4Ww+PDDfnZK8Vj+woc20 C0iOMp6O/4fEyGqgiGBqS5RGgkoWC01MpNtpYuh3UruS06KVbgoEa26TcIPyOUUQ McZht3uRRQOR9oh5CCyDdY7SGBV7zrzcqI3i4cuU12VjSixjsAbQQUEjJ2lp+OiK 6XX13Z8TgQX+SzHXbdKdkosK7kF+HRcOYdIF2PeEgaJ2U2dRAU4Un5TMEXngOrM1 RNIjAFbeND5c1yJxZ8PrD4AheqBv+zpx -----END CERTIFICATE-----Generated at Sat May 31 16:42:57 2025 by rpki-client