$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.mft File: y8FNQFd4Ri-cXZFYOlxxg28jwZ0.mft (raw, json) Hash identifier: KG2Vn/0Qk/4yqvpduCsF9Abj9P6A5keVrwd/n3Fub9A= Subject key identifier: 6F:E9:3C:AE:E6:B1:19:77:25:A6:4F:90:44:28:8C:F2:0B:C2:15:F7 Authority key identifier: CB:C1:4D:40:57:78:46:2F:9C:5D:91:58:3A:5C:71:83:6F:23:C1:9D Certificate issuer: /CN=A91B9C52/serialNumber=CBC14D405778462F9C5D91583A5C71836F23C19D Certificate serial: 2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.mft Manifest number: 053A Signing time: Fri 30 May 2025 23:52:31 +0000 Manifest this update: Fri 30 May 2025 23:52:31 +0000 Manifest next update: Fri 06 Jun 2025 23:52:31 +0000 Files and hashes: 1: y8FNQFd4Ri-cXZFYOlxxg28jwZ0.crl (hash: e7KSLl5w5QygXlv4Mno9AiVVDbIhmr7y/6sgL5c7hng=) 2: B0245792094611F089247D2CC4F9AE02.roa (hash: WzcjSkbp1L3UZdNgdiavQerl/BKgE6QHhDZV6MZpLAY=) 3: DB78EC4202C411F0A370F12EC4F9AE02.roa (hash: cYCE21n+c8J3/ZWE+DpkusC3dL/h3MNQr/C6R6q0LQY=) 4: DBEA4AA402C411F0A370F12EC4F9AE02.roa (hash: LglT88AP992wwS6++8oX+hvPgvXH2IXg5x9/81P07t8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.crl rsync://rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:52:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9C52, serialNumber=CBC14D405778462F9C5D91583A5C71836F23C19D Validity Not Before: May 30 23:52:31 2025 GMT Not After : Jun 6 23:52:31 2025 GMT Subject: CN=683a44bf-57d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:97:50:79:72:6e:71:c4:06:1d:c7:4e:d0:f9: f8:7a:54:10:23:aa:a4:27:ec:61:b7:bc:f2:ed:29: 45:f0:9b:62:62:b8:97:83:f5:1d:c8:98:16:bb:1a: bd:2f:ca:64:c2:d3:99:69:35:f4:db:27:af:3a:b7: 45:c7:a5:99:a5:7a:d3:39:ba:84:10:db:4e:6d:85: 38:38:5b:59:04:5a:7d:46:9b:50:a2:5a:d6:1c:21: 13:ba:b3:41:70:76:a1:d5:71:65:f4:da:12:93:c9: 80:4b:a6:76:95:0c:ee:41:4c:a5:19:91:c9:58:57: 97:56:bb:44:b6:ca:ff:bb:3e:bb:97:94:c4:6b:b4: 56:54:a7:14:fe:9c:7c:0f:55:19:a3:b9:6d:97:e2: d2:b0:9e:54:bb:43:3c:b8:5f:86:ac:d7:50:11:1c: 78:1d:1a:86:61:b7:41:90:be:6a:42:f0:13:85:8f: ab:65:a7:46:31:8d:91:11:c5:bf:8e:d4:71:3f:19: b2:a2:a9:44:11:fa:52:ea:47:27:8d:4b:a8:58:48: 0f:ed:d7:05:76:36:21:96:42:cc:48:f7:cc:a0:89: 5f:ac:00:d7:40:88:57:6f:fd:71:27:26:a2:94:fc: 88:ad:6e:21:72:90:d1:0b:c1:ef:f0:fc:e7:a4:a2: 39:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:E9:3C:AE:E6:B1:19:77:25:A6:4F:90:44:28:8C:F2:0B:C2:15:F7 X509v3 Authority Key Identifier: keyid:CB:C1:4D:40:57:78:46:2F:9C:5D:91:58:3A:5C:71:83:6F:23:C1:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:e5:35:5e:5c:59:be:02:d9:67:ae:5d:96:a1:14:a5:8a:0d: b1:57:45:8f:01:a8:a7:80:4f:98:db:3d:30:27:f8:71:4f:f0: cd:8e:55:83:28:f2:f1:6a:ca:40:bf:78:e2:b1:20:07:39:08: c4:bb:67:4d:1d:7d:85:38:eb:12:d9:53:43:dc:5e:1f:15:1a: 01:63:78:3d:71:9f:95:59:37:40:ae:bc:d4:eb:a2:ed:df:45: f1:30:8e:71:3f:fc:6a:7f:8a:1d:ea:86:4e:44:10:05:0f:76: 7e:a4:88:54:ac:e7:e3:aa:7c:6e:b9:1f:de:82:18:24:3b:d3: 37:3b:49:f8:50:5e:96:ae:cb:70:c2:9d:76:3a:59:58:43:ae: a3:79:75:25:78:d6:9b:87:3b:06:48:14:ee:0f:ac:b1:6d:3e: 3c:f6:f4:75:f7:6a:47:61:6e:6e:2d:57:23:80:ab:ff:01:fd: f4:bf:a7:6d:e9:ed:d0:b8:25:88:ff:23:03:99:6b:de:19:25: bc:d0:9e:d6:f8:c7:96:5b:59:f6:98:84:af:07:ba:de:9b:17: a4:19:a6:e0:5d:35:60:29:23:f3:4a:3e:95:2f:19:bf:ef:10: 30:f8:ff:85:b4:0c:b0:80:52:c1:1a:0b:a1:52:12:d9:20:d8: 85:49:07:11 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC OUM1MjExMC8GA1UEBRMoQ0JDMTRENDA1Nzc4NDYyRjlDNUQ5MTU4M0E1QzcxODM2 RjIzQzE5RDAeFw0yNTA1MzAyMzUyMzFaFw0yNTA2MDYyMzUyMzFaMBgxFjAUBgNV BAMTDTY4M2E0NGJmLTU3ZDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDml1B5cm5xxAYdx07Q+fh6VBAjqqQn7GG3vPLtKUXwm2JiuJeD9R3ImBa7Gr0v ymTC05lpNfTbJ686t0XHpZmletM5uoQQ205thTg4W1kEWn1Gm1CiWtYcIRO6s0Fw dqHVcWX02hKTyYBLpnaVDO5BTKUZkclYV5dWu0S2yv+7PruXlMRrtFZUpxT+nHwP VRmjuW2X4tKwnlS7Qzy4X4as11ARHHgdGoZht0GQvmpC8BOFj6tlp0YxjZERxb+O 1HE/GbKiqUQR+lLqRyeNS6hYSA/t1wV2NiGWQsxI98ygiV+sANdAiFdv/XEnJqKU /IitbiFykNELwe/w/OekojmtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUb+k8ruax GXclpk+QRCiM8gvCFfcwHwYDVR0jBBgwFoAUy8FNQFd4Ri+cXZFYOlxxg28jwZ0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI5QzUyLzZCNzE1MTYyMEQ3 RTExRUM5QzBCNUY3NUM0RjlBRTAyL3k4Rk5RRmQ0UmktY1haRllPbHh4ZzI4anda MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveThGTlFGZDRSaS1jWFpGWU9seHhnMjhqd1owLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI5 QzUyLzZCNzE1MTYyMEQ3RTExRUM5QzBCNUY3NUM0RjlBRTAyL3k4Rk5RRmQ0Umkt Y1haRllPbHh4ZzI4andaMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGLlNV5cWb4C2WeuXZahFKWKDbFXRY8BqKeAT5jbPTAn+HFP8M2OVYMo 8vFqykC/eOKxIAc5CMS7Z00dfYU46xLZU0PcXh8VGgFjeD1xn5VZN0CuvNTrou3f RfEwjnE//Gp/ih3qhk5EEAUPdn6kiFSs5+OqfG65H96CGCQ70zc7SfhQXpauy3DC nXY6WVhDrqN5dSV41puHOwZIFO4PrLFtPjz29HX3akdhbm4tVyOAq/8B/fS/p23p 7dC4JYj/IwOZa94ZJbzQntb4x5ZbWfaYhK8Hut6bF6QZpuBdNWApI/NKPpUvGb/v EDD4/4W0DLCAUsEaC6FSEtkg2IVJBxE= -----END CERTIFICATE-----Generated at Sat May 31 16:50:36 2025 by rpki-client