$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft File: Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft (raw, json) Hash identifier: +QGyJkKKEN3S26/bt/H/GS9QyGIjLk2tacTGqxjIXSA= Subject key identifier: F2:C0:4F:2B:D5:C2:EB:8E:0C:85:8E:6E:7B:D9:6C:B2:60:21:0F:53 Authority key identifier: 63:0E:FC:8B:C8:24:7F:99:A0:12:80:74:1E:4A:1A:0D:B7:F1:47:B0 Certificate issuer: /CN=A91BB629/serialNumber=630EFC8BC8247F99A01280741E4A1A0DB7F147B0 Certificate serial: A7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft Manifest number: A5 Signing time: Tue 03 Jun 2025 05:58:48 +0000 Manifest this update: Tue 03 Jun 2025 05:58:48 +0000 Manifest next update: Tue 10 Jun 2025 05:58:48 +0000 Files and hashes: 1: Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl (hash: +a+psVOGiE4yiD6oH/4etuFPQHyjpFtX/BLy674xb2Q=) 2: 7CE4326245B511EFBAC06E1EC4F9AE02.roa (hash: bllAWJknG6t7sgMmQWLY59vxPXpNHKXKelWOMC8ypAI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:58:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 167 (0xa7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB629, serialNumber=630EFC8BC8247F99A01280741E4A1A0DB7F147B0 Validity Not Before: Jun 3 05:58:48 2025 GMT Not After : Jun 10 05:58:48 2025 GMT Subject: CN=683e8f18-b494 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e1:81:52:f1:10:d2:a1:bf:31:9f:b5:d3:e6: 63:9e:44:dd:8d:a1:5f:6b:f9:d3:98:22:e9:c0:f4: 2b:2a:79:5c:54:06:1b:9d:64:af:a2:0b:ea:f6:ec: 7f:86:e4:3e:7c:69:eb:2c:00:9a:06:9d:49:02:bd: 28:b8:e6:ea:e6:38:b9:c0:87:c9:2f:95:e6:bb:60: af:c7:80:56:5a:72:d2:c1:6e:d2:5b:f7:75:5b:3f: 0c:29:ea:52:9c:2b:7e:8d:4d:24:b5:c7:8e:d1:11: 80:89:55:e4:d2:dd:c9:fe:fd:b6:17:cc:f1:02:11: 4f:43:c2:4f:08:bd:a9:36:f6:c9:c6:b5:ec:b8:56: 52:ee:64:33:bb:38:cb:3c:a6:d2:68:7b:1b:16:6c: b6:80:a9:5c:fb:e5:50:b2:bd:4b:d0:c2:bf:c0:d6: cd:34:98:48:7f:e7:e3:98:ec:2c:fe:38:f2:9b:6a: 19:19:cb:f8:db:5c:a1:76:98:2c:1a:02:2f:37:75: d4:ef:90:59:d7:6f:f2:de:35:1b:39:3f:b1:2d:61: 04:cb:1b:e6:2b:12:8d:bc:76:65:a3:46:48:73:9e: 27:c7:9d:c1:44:9a:16:40:48:73:a2:b5:bd:c9:9e: 2d:45:59:64:c5:d7:b5:c6:e2:3f:bb:3c:db:c8:ba: ba:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:C0:4F:2B:D5:C2:EB:8E:0C:85:8E:6E:7B:D9:6C:B2:60:21:0F:53 X509v3 Authority Key Identifier: keyid:63:0E:FC:8B:C8:24:7F:99:A0:12:80:74:1E:4A:1A:0D:B7:F1:47:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:86:6d:fb:39:9a:35:cd:e8:dc:ec:24:a0:f5:8d:c5:32:6b: d9:36:cf:63:7c:0a:41:0f:be:91:cc:29:cd:7d:8b:5f:9d:a7: 7b:bf:dc:ca:dd:3e:c0:3e:1a:d6:e2:ef:1c:8d:1f:3d:2c:29: f7:20:14:59:fd:12:0b:fa:85:05:f7:76:34:ef:03:76:9d:37: da:01:93:f6:b3:3c:28:5f:01:60:d6:c8:10:e5:43:ab:6f:aa: 74:95:f6:cc:49:d9:a3:16:14:7a:66:5c:9a:e8:32:88:4c:75: 61:20:74:bf:0d:9a:ad:43:aa:5a:88:85:1d:6a:ce:75:92:52: 84:18:97:10:d0:d9:d1:df:75:a5:7d:4c:5e:29:be:ad:eb:ef: dc:8f:c4:12:b1:cc:80:11:ae:56:df:b5:35:51:84:79:46:a9: 09:04:54:ac:30:c8:9c:62:6d:1a:a5:f9:90:7a:49:68:16:8f: 2c:b4:30:9b:39:37:53:a1:cd:b7:5b:cc:8e:99:33:4c:46:76: e3:48:86:89:0a:6b:ee:3f:49:ee:a9:b6:60:4b:2b:fb:77:77: 28:43:11:93:8d:71:bd:f2:65:be:54:c3:0c:9b:2d:96:ef:c3: dd:6a:23:ab:d3:c1:33:1b:47:30:f6:a4:8d:40:a7:89:a2:1a: f3:d2:b1:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI2MjkxMTAvBgNVBAUTKDYzMEVGQzhCQzgyNDdGOTlBMDEyODA3NDFFNEExQTBE QjdGMTQ3QjAwHhcNMjUwNjAzMDU1ODQ4WhcNMjUwNjEwMDU1ODQ4WjAYMRYwFAYD VQQDEw02ODNlOGYxOC1iNDk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuOGBUvEQ0qG/MZ+10+ZjnkTdjaFfa/nTmCLpwPQrKnlcVAYbnWSvogvq9ux/ huQ+fGnrLACaBp1JAr0ouObq5ji5wIfJL5Xmu2Cvx4BWWnLSwW7SW/d1Wz8MKepS nCt+jU0ktceO0RGAiVXk0t3J/v22F8zxAhFPQ8JPCL2pNvbJxrXsuFZS7mQzuzjL PKbSaHsbFmy2gKlc++VQsr1L0MK/wNbNNJhIf+fjmOws/jjym2oZGcv421yhdpgs GgIvN3XU75BZ12/y3jUbOT+xLWEEyxvmKxKNvHZlo0ZIc54nx53BRJoWQEhzorW9 yZ4tRVlkxde1xuI/uzzbyLq6fQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPLATyvV wuuODIWObnvZbLJgIQ9TMB8GA1UdIwQYMBaAFGMO/IvIJH+ZoBKAdB5KGg238Uew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjYyOS9FMkNGOTQwQTQ1 QjQxMUVGOEZEQjc0MURDNEY5QUUwMi9Zdzc4aThna2Y1bWdFb0IwSGtvYURiZnhS N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1l3NzhpOGdrZjVtZ0VvQjBIa29hRGJmeFI3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjYyOS9FMkNGOTQwQTQ1QjQxMUVGOEZEQjc0MURDNEY5QUUwMi9Zdzc4aThna2Y1 bWdFb0IwSGtvYURiZnhSN0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkhm37OZo1zejc7CSg9Y3FMmvZNs9jfApBD76RzCnNfYtfnad7v9zK 3T7APhrW4u8cjR89LCn3IBRZ/RIL+oUF93Y07wN2nTfaAZP2szwoXwFg1sgQ5UOr b6p0lfbMSdmjFhR6Zlya6DKITHVhIHS/DZqtQ6paiIUdas51klKEGJcQ0NnR33Wl fUxeKb6t6+/cj8QSscyAEa5W37U1UYR5RqkJBFSsMMicYm0apfmQekloFo8stDCb OTdToc23W8yOmTNMRnbjSIaJCmvuP0nuqbZgSyv7d3coQxGTjXG98mW+VMMMmy2W 78PdaiOr08EzG0cw9qSNQKeJohrz0rEq -----END CERTIFICATE-----Generated at Tue Jun 3 23:53:33 2025 by rpki-client