$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBED0/4C17A04E77E111EEAB4AEF53C4F9AE02/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.mft File: YJ_sJZQ4D8djlpQXPDz-XytZYgQ.mft (raw, json) Hash identifier: SUS2oKi+EZH+zNzWVhZ7BKjiVvqU0bT3df4lq1/nlWY= Subject key identifier: 9B:9A:87:30:35:BC:38:32:E9:83:03:86:39:DE:A1:35:0A:9E:28:78 Authority key identifier: 60:9F:EC:25:94:38:0F:C7:63:96:94:17:3C:3C:FE:5F:2B:59:62:04 Certificate issuer: /CN=A91BBED0/serialNumber=609FEC2594380FC7639694173C3CFE5F2B596204 Certificate serial: 012C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBED0/4C17A04E77E111EEAB4AEF53C4F9AE02/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.mft Manifest number: 0129 Signing time: Sat 31 May 2025 04:16:49 +0000 Manifest this update: Sat 31 May 2025 04:16:49 +0000 Manifest next update: Sat 07 Jun 2025 04:16:49 +0000 Files and hashes: 1: YJ_sJZQ4D8djlpQXPDz-XytZYgQ.crl (hash: wKtrGVfgFNUYzU4T/3WFIlkBTEVDKO3rsQ9cOdr67Os=) 2: E8E76DFA77E111EEAD38F454C4F9AE02.roa (hash: fU/RkpVL4z6Cr0cyCUfNUkgmOGc3QWQsXd03NlJ0kdY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBED0/4C17A04E77E111EEAB4AEF53C4F9AE02/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.crl rsync://rpki.apnic.net/member_repository/A91BBED0/4C17A04E77E111EEAB4AEF53C4F9AE02/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:16:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 300 (0x12c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBED0, serialNumber=609FEC2594380FC7639694173C3CFE5F2B596204 Validity Not Before: May 31 04:16:49 2025 GMT Not After : Jun 7 04:16:49 2025 GMT Subject: CN=683a82b1-c3ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:2f:bc:a4:bf:20:58:d9:c0:4c:ef:10:3e:35: 15:b8:d7:11:91:de:1b:69:6a:2e:36:e9:f8:33:a4: 31:23:c2:bc:4f:27:1f:24:96:3f:ee:72:4c:2c:99: 1c:94:33:97:7b:ee:5d:ca:cd:76:ad:ab:44:34:bc: 5d:d6:c8:08:65:5c:b9:d0:32:29:c5:fb:4c:b1:e6: 41:54:1c:f7:86:f1:a3:f2:58:cf:c8:75:a9:4d:57: 2e:7c:2b:79:a0:80:e6:65:b5:a0:cd:ec:28:e8:e0: f3:50:58:f7:d7:4d:eb:14:51:05:01:31:b2:c8:8e: c4:3e:a0:16:79:d4:74:51:17:50:e0:1a:d1:94:81: 73:00:e0:c2:1b:d6:cc:f2:4f:72:0a:93:37:5d:10: 67:e2:5d:40:c5:c4:d0:29:6f:b0:4b:57:22:b2:58: 4a:c2:83:af:58:a7:9d:34:8c:8b:d7:80:37:c6:be: 1f:2e:3f:d8:8f:3b:12:e2:82:0d:8a:7f:0f:d3:fa: 72:4a:51:84:aa:2b:0e:ea:e3:2f:9d:12:72:cd:c7: 66:48:8e:cf:69:89:e4:43:9b:78:80:a1:61:35:55: 19:8e:7f:23:d5:4d:f5:3e:e9:99:c5:ca:ae:8c:05: e0:a8:46:19:54:64:c0:d2:f1:62:bb:74:48:0b:81: 8e:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:9A:87:30:35:BC:38:32:E9:83:03:86:39:DE:A1:35:0A:9E:28:78 X509v3 Authority Key Identifier: keyid:60:9F:EC:25:94:38:0F:C7:63:96:94:17:3C:3C:FE:5F:2B:59:62:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBED0/4C17A04E77E111EEAB4AEF53C4F9AE02/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBED0/4C17A04E77E111EEAB4AEF53C4F9AE02/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:dd:25:81:32:ef:94:70:7e:19:ce:31:1d:89:df:aa:26:f1: 06:2e:c8:a6:64:b7:ce:42:3f:06:be:3d:20:f5:85:6b:3b:23: 15:3d:74:4b:3e:d8:df:36:c1:f9:6b:c6:fc:31:f6:1d:6c:6e: 46:89:77:73:ef:48:f9:49:ab:e9:2d:7d:a3:01:35:ef:00:f8: f1:98:24:4a:6b:24:bb:f7:db:39:ca:e3:66:14:e5:7c:b3:51: 6d:08:51:b2:ce:f7:89:2f:10:e0:e7:f7:0d:c3:d9:09:92:3c: cd:93:ce:49:d1:61:3e:80:68:65:43:e6:f4:d8:8c:b1:26:a4: 3b:3b:fd:c3:53:6f:c0:47:5a:f9:6b:c4:32:e6:6f:cc:a1:64: 51:52:4f:a2:cb:3b:b9:ef:65:28:39:04:8e:c5:25:d3:11:c0: a5:f7:30:11:48:71:ac:a3:30:8f:2e:5e:c8:4b:6d:5a:e2:33: 7e:74:49:7b:4e:b4:a5:70:0a:97:68:12:05:f5:85:7a:dd:a7: de:13:27:1a:0e:09:a1:4c:3a:3a:22:ca:8e:09:01:93:8e:5a: 00:59:35:98:12:70:d6:fe:31:a0:3e:92:17:e2:34:f3:3e:67: d6:2b:d1:c0:e8:b7:2b:d7:f3:dc:a0:25:84:eb:33:d1:ae:c4: 61:41:77:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJFRDAxMTAvBgNVBAUTKDYwOUZFQzI1OTQzODBGQzc2Mzk2OTQxNzNDM0NGRTVG MkI1OTYyMDQwHhcNMjUwNTMxMDQxNjQ5WhcNMjUwNjA3MDQxNjQ5WjAYMRYwFAYD VQQDEw02ODNhODJiMS1jM2VjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4S+8pL8gWNnATO8QPjUVuNcRkd4baWouNun4M6QxI8K8TycfJJY/7nJMLJkc lDOXe+5dys12ratENLxd1sgIZVy50DIpxftMseZBVBz3hvGj8ljPyHWpTVcufCt5 oIDmZbWgzewo6ODzUFj3103rFFEFATGyyI7EPqAWedR0URdQ4BrRlIFzAODCG9bM 8k9yCpM3XRBn4l1AxcTQKW+wS1cislhKwoOvWKedNIyL14A3xr4fLj/YjzsS4oIN in8P0/pySlGEqisO6uMvnRJyzcdmSI7PaYnkQ5t4gKFhNVUZjn8j1U31PumZxcqu jAXgqEYZVGTA0vFiu3RIC4GOrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJuahzA1 vDgy6YMDhjneoTUKnih4MB8GA1UdIwQYMBaAFGCf7CWUOA/HY5aUFzw8/l8rWWIE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkVEMC80QzE3QTA0RTc3 RTExMUVFQUI0QUVGNTNDNEY5QUUwMi9ZSl9zSlpRNEQ4ZGpscFFYUER6LVh5dFpZ Z1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lKX3NKWlE0RDhkamxwUVhQRHotWHl0WllnUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QkVEMC80QzE3QTA0RTc3RTExMUVFQUI0QUVGNTNDNEY5QUUwMi9ZSl9zSlpRNEQ4 ZGpscFFYUER6LVh5dFpZZ1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBm3SWBMu+UcH4ZzjEdid+qJvEGLsimZLfOQj8Gvj0g9YVrOyMVPXRL PtjfNsH5a8b8MfYdbG5GiXdz70j5SavpLX2jATXvAPjxmCRKayS799s5yuNmFOV8 s1FtCFGyzveJLxDg5/cNw9kJkjzNk85J0WE+gGhlQ+b02IyxJqQ7O/3DU2/AR1r5 a8Qy5m/MoWRRUk+iyzu572UoOQSOxSXTEcCl9zARSHGsozCPLl7IS21a4jN+dEl7 TrSlcAqXaBIF9YV63afeEycaDgmhTDo6IsqOCQGTjloAWTWYEnDW/jGgPpIX4jTz PmfWK9HA6Lcr1/PcoCWE6zPRrsRhQXeG -----END CERTIFICATE-----Generated at Sat May 31 17:31:51 2025 by rpki-client