$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft File: y2yF51LVad_PHekEycvnHkg-9fI.mft (raw, json) Hash identifier: K+NNA+0P7Eq+y/sT27uOKJ8Gdyc64qjO6fHPf9LcLfw= Subject key identifier: 30:D4:13:CF:E1:1F:46:51:FD:8D:EC:05:05:57:E5:18:60:BD:20:EE Authority key identifier: CB:6C:85:E7:52:D5:69:DF:CF:1D:E9:04:C9:CB:E7:1E:48:3E:F5:F2 Certificate issuer: /CN=A91BC039/serialNumber=CB6C85E752D569DFCF1DE904C9CBE71E483EF5F2 Certificate serial: 04D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2yF51LVad_PHekEycvnHkg-9fI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft Manifest number: 04CD Signing time: Sat 31 May 2025 00:01:19 +0000 Manifest this update: Sat 31 May 2025 00:01:18 +0000 Manifest next update: Sat 07 Jun 2025 00:01:18 +0000 Files and hashes: 1: y2yF51LVad_PHekEycvnHkg-9fI.crl (hash: yqvZJH1fqK5kU9wtttBeHML1Bq06APgyeEKu9Mkj/Gs=) 2: B0A2E01225C411EC88466E59C4F9AE02.roa (hash: 8z4FQ3P4ffexi4IqxjF16x9Xr0QlwFMb8TffrA8dnxw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.crl rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2yF51LVad_PHekEycvnHkg-9fI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1235 (0x4d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC039, serialNumber=CB6C85E752D569DFCF1DE904C9CBE71E483EF5F2 Validity Not Before: May 31 00:01:18 2025 GMT Not After : Jun 7 00:01:18 2025 GMT Subject: CN=683a46ce-d56a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d2:1f:e8:5b:be:47:8c:22:0b:b4:6c:ed:20: 9f:c6:62:84:9b:0e:2f:0c:a9:ce:9c:5c:36:d0:5a: 84:e5:68:eb:9c:cf:eb:48:e4:5b:54:89:d6:3d:24: 75:ce:4d:15:a8:26:fc:2d:83:73:67:e7:8b:17:04: 3f:ad:b5:1c:80:a7:0e:58:bd:67:a2:99:77:e2:61: 88:6a:f4:ba:f7:00:46:6d:5c:75:96:5a:28:27:17: 39:78:be:af:80:0b:fe:77:59:7c:54:18:41:67:e9: 41:98:64:71:38:38:84:df:04:5d:21:74:63:36:3b: 0f:fb:8e:08:ed:ac:83:05:5e:d6:dd:5e:5d:78:29: 30:6e:45:fc:7b:21:08:26:e6:46:f6:dc:71:2b:1a: 0e:d1:93:57:d9:48:ed:3d:53:ce:79:60:83:e7:6b: 95:a1:20:37:75:b7:b9:02:dd:b0:6c:c6:e9:98:6a: 4e:ee:74:f6:c2:4f:2c:d2:b5:46:a4:46:cf:ef:99: 30:83:fd:76:6a:28:dc:52:80:39:2b:46:b5:cd:4e: 44:63:57:b3:b3:b0:da:6f:f0:18:81:6d:5f:ad:d8: fc:5c:f8:57:8b:1a:94:fa:44:41:db:a3:48:f7:81: 9c:2a:74:ff:d9:85:7b:fb:85:e6:99:f5:5a:63:1c: 2a:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:D4:13:CF:E1:1F:46:51:FD:8D:EC:05:05:57:E5:18:60:BD:20:EE X509v3 Authority Key Identifier: keyid:CB:6C:85:E7:52:D5:69:DF:CF:1D:E9:04:C9:CB:E7:1E:48:3E:F5:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2yF51LVad_PHekEycvnHkg-9fI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:33:84:2b:22:c4:65:2d:b2:f1:7c:b7:02:8d:5f:a6:93:d5: 4f:74:4f:75:3b:59:ab:5d:d2:2a:87:76:30:6c:9d:8f:b2:9f: 3d:99:05:54:f7:9d:d5:f2:0e:67:8e:14:b8:35:8c:00:d0:fe: 09:3e:d5:1f:4b:03:7e:b1:27:85:af:9a:7c:ff:63:43:c8:b1: 38:53:3b:60:f4:68:f7:bf:4d:9e:b4:41:0f:bc:d0:d7:1c:da: 9c:fc:6b:94:f1:94:91:4e:9b:fd:55:3d:8d:28:d3:d9:67:82: 8a:c2:f3:0b:ad:90:17:5a:41:ff:2f:f0:86:fe:61:f3:77:37: d6:b7:79:9f:b5:89:f5:68:99:6c:7c:6c:6c:5c:38:5e:a1:0f: 13:72:bc:65:2b:64:4f:8b:14:d1:65:ae:1c:31:ff:22:c9:60: 11:79:54:91:3e:3d:3d:07:86:56:82:2e:35:2e:f0:13:b3:ac: 25:f7:69:e0:e6:de:a4:f8:52:eb:db:76:fb:ff:3d:14:87:ba: dd:32:75:45:18:8b:dc:8a:e7:90:7f:08:36:ec:2b:af:88:cb: e6:88:09:e6:9e:26:fd:46:3c:ee:82:1f:f9:05:e7:61:94:de: f7:01:42:92:89:54:72:19:4d:5a:30:13:42:c5:85:37:3b:96: d3:4a:f3:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMwMzkxMTAvBgNVBAUTKENCNkM4NUU3NTJENTY5REZDRjFERTkwNEM5Q0JFNzFF NDgzRUY1RjIwHhcNMjUwNTMxMDAwMTE4WhcNMjUwNjA3MDAwMTE4WjAYMRYwFAYD VQQDEw02ODNhNDZjZS1kNTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArNIf6Fu+R4wiC7Rs7SCfxmKEmw4vDKnOnFw20FqE5WjrnM/rSORbVInWPSR1 zk0VqCb8LYNzZ+eLFwQ/rbUcgKcOWL1nopl34mGIavS69wBGbVx1llooJxc5eL6v gAv+d1l8VBhBZ+lBmGRxODiE3wRdIXRjNjsP+44I7ayDBV7W3V5deCkwbkX8eyEI JuZG9txxKxoO0ZNX2UjtPVPOeWCD52uVoSA3dbe5At2wbMbpmGpO7nT2wk8s0rVG pEbP75kwg/12aijcUoA5K0a1zU5EY1ezs7Dab/AYgW1frdj8XPhXixqU+kRB26NI 94GcKnT/2YV7+4XmmfVaYxwqbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDDUE8/h H0ZR/Y3sBQVX5RhgvSDuMB8GA1UdIwQYMBaAFMtshedS1Wnfzx3pBMnL5x5IPvXy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzAzOS9CQjUzMjNFODI1 QzIxMUVDQjQ5OUQxNThDNEY5QUUwMi95MnlGNTFMVmFkX1BIZWtFeWN2bkhrZy05 ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kyeUY1MUxWYWRfUEhla0V5Y3ZuSGtnLTlmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzAzOS9CQjUzMjNFODI1QzIxMUVDQjQ5OUQxNThDNEY5QUUwMi95MnlGNTFMVmFk X1BIZWtFeWN2bkhrZy05ZkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpM4QrIsRlLbLxfLcCjV+mk9VPdE91O1mrXdIqh3YwbJ2Psp89mQVU 953V8g5njhS4NYwA0P4JPtUfSwN+sSeFr5p8/2NDyLE4Uztg9Gj3v02etEEPvNDX HNqc/GuU8ZSRTpv9VT2NKNPZZ4KKwvMLrZAXWkH/L/CG/mHzdzfWt3mftYn1aJls fGxsXDheoQ8TcrxlK2RPixTRZa4cMf8iyWAReVSRPj09B4ZWgi41LvATs6wl92ng 5t6k+FLr23b7/z0Uh7rdMnVFGIvciueQfwg27CuviMvmiAnmnib9Rjzugh/5Bedh lN73AUKSiVRyGU1aMBNCxYU3O5bTSvMA -----END CERTIFICATE-----Generated at Sat May 31 17:34:24 2025 by rpki-client