$ rpki-client -vvf rpki.apnic.net/member_repository/A91BCC44/C160FCAC480A11EA9811906DC4F9AE02/-Y6-IGkPLysjShVIfdCVIfPUdTw.mft File: -Y6-IGkPLysjShVIfdCVIfPUdTw.mft (raw, json) Hash identifier: fQkbRQbIgGZ3YwSdSSaYIh7slvGdkF6904+7799NCNA= Subject key identifier: 16:87:49:ED:FD:1A:79:57:12:F1:6C:73:F3:E6:15:18:5C:E1:1F:63 Authority key identifier: F9:8E:BE:20:69:0F:2F:2B:23:4A:15:48:7D:D0:95:21:F3:D4:75:3C Certificate issuer: /CN=A91BCC44/serialNumber=F98EBE20690F2F2B234A15487DD09521F3D4753C Certificate serial: 0AEE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Y6-IGkPLysjShVIfdCVIfPUdTw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BCC44/C160FCAC480A11EA9811906DC4F9AE02/-Y6-IGkPLysjShVIfdCVIfPUdTw.mft Manifest number: 0AE7 Signing time: Fri 30 May 2025 19:35:28 +0000 Manifest this update: Fri 30 May 2025 19:35:27 +0000 Manifest next update: Fri 06 Jun 2025 19:35:27 +0000 Files and hashes: 1: -Y6-IGkPLysjShVIfdCVIfPUdTw.crl (hash: aAkwOUbCkHF55quJXSVrvRTznjLye4rvFm6YJMu/Csw=) 2: B69F45F6480C11EAA7171874C4F9AE02.roa (hash: gMyJ+7eXQOz2lZ7oRn13QHvOh0RqD5UbZBYLXAXV9no=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BCC44/C160FCAC480A11EA9811906DC4F9AE02/-Y6-IGkPLysjShVIfdCVIfPUdTw.crl rsync://rpki.apnic.net/member_repository/A91BCC44/C160FCAC480A11EA9811906DC4F9AE02/-Y6-IGkPLysjShVIfdCVIfPUdTw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Y6-IGkPLysjShVIfdCVIfPUdTw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:35:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2798 (0xaee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BCC44, serialNumber=F98EBE20690F2F2B234A15487DD09521F3D4753C Validity Not Before: May 30 19:35:27 2025 GMT Not After : Jun 6 19:35:27 2025 GMT Subject: CN=683a0880-c5d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:1f:57:6e:70:6a:4e:60:9b:30:a0:aa:4a:0f: 59:ec:7a:c5:1e:2c:11:3b:96:0d:59:2b:92:1b:3d: 28:9d:17:2b:62:76:6b:1f:e6:c2:1e:ba:e8:1d:1a: 74:c6:fb:2c:28:9a:87:da:24:d5:cc:b7:83:3e:63: 6d:d1:fc:8b:a2:39:ce:e6:7e:df:cd:2e:60:61:4c: e9:12:d9:a6:f2:ff:75:6c:b5:86:7d:e5:8c:5d:17: ec:9d:a8:77:29:0f:f3:10:ff:c7:6c:9e:f3:4c:cb: 28:93:b4:c4:cd:c5:3e:69:c4:e2:cf:64:d7:3b:25: 5e:00:9f:6a:04:36:36:db:3d:5f:d7:4d:1c:84:9e: 65:4a:35:eb:96:b7:b2:73:85:f4:82:08:51:5e:0f: 00:f4:22:40:ef:1b:57:8c:b5:3f:2c:f0:0d:31:94: ee:2f:a0:b5:d4:60:15:0f:b3:3d:77:bd:bd:c2:55: bf:a9:8a:52:e5:5d:2e:e8:ed:be:33:17:da:d2:b6: 0a:7e:c4:03:0d:8f:e2:e2:40:12:fa:9a:8e:26:f0: d2:a4:98:fa:b3:ae:3e:73:b4:71:10:b2:18:f2:6a: 9b:46:4f:be:f2:dd:8b:09:2c:10:2d:8d:7d:3d:42: eb:6f:d0:00:6d:bd:4a:21:63:b0:b6:4a:75:89:f4: e4:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:87:49:ED:FD:1A:79:57:12:F1:6C:73:F3:E6:15:18:5C:E1:1F:63 X509v3 Authority Key Identifier: keyid:F9:8E:BE:20:69:0F:2F:2B:23:4A:15:48:7D:D0:95:21:F3:D4:75:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BCC44/C160FCAC480A11EA9811906DC4F9AE02/-Y6-IGkPLysjShVIfdCVIfPUdTw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Y6-IGkPLysjShVIfdCVIfPUdTw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BCC44/C160FCAC480A11EA9811906DC4F9AE02/-Y6-IGkPLysjShVIfdCVIfPUdTw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:d3:c0:75:aa:f6:e8:f7:5d:2f:c0:c6:07:42:69:a3:32:4c: ec:71:58:93:f4:11:2a:5c:16:79:05:b1:4d:dd:de:84:9f:bb: fe:76:ae:8d:4c:05:95:bd:52:60:39:da:67:c3:01:1e:a1:5b: b7:f3:41:ae:1d:b3:a7:5d:fa:7e:70:5d:cc:12:a1:55:d4:08: 15:98:e9:6a:f3:7f:b8:70:6a:b8:03:06:5c:b4:ca:b5:14:9a: 14:46:e3:3d:89:28:af:54:58:5a:b3:66:7d:bc:92:c1:3c:ed: ee:31:dc:2b:70:28:d3:1f:df:f7:96:40:6c:ac:f6:03:19:95: 5f:2e:27:8e:e3:e3:9c:bc:26:10:58:a2:4c:39:15:6c:38:57: 59:76:e3:d1:e2:13:9e:87:8f:a5:ee:0e:9c:93:f5:49:88:e6: db:0a:8c:d0:a6:a1:cb:97:16:0a:8b:c3:c7:b6:fb:a3:0e:09: 74:4f:e3:7b:7b:68:39:ca:4d:ba:55:77:df:3b:9f:a9:99:7a: 2d:45:65:89:d2:74:13:6e:6e:f7:cb:e2:1a:fc:46:d6:36:2d: 05:c8:87:c4:aa:3a:5b:78:af:88:d0:21:d8:07:60:f0:73:bc: d4:eb:5d:6c:2e:2e:48:34:7e:02:e1:30:6d:d1:c6:42:8c:42: 1a:93:a6:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCu4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkNDNDQxMTAvBgNVBAUTKEY5OEVCRTIwNjkwRjJGMkIyMzRBMTU0ODdERDA5NTIx RjNENDc1M0MwHhcNMjUwNTMwMTkzNTI3WhcNMjUwNjA2MTkzNTI3WjAYMRYwFAYD VQQDEw02ODNhMDg4MC1jNWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlh9XbnBqTmCbMKCqSg9Z7HrFHiwRO5YNWSuSGz0onRcrYnZrH+bCHrroHRp0 xvssKJqH2iTVzLeDPmNt0fyLojnO5n7fzS5gYUzpEtmm8v91bLWGfeWMXRfsnah3 KQ/zEP/HbJ7zTMsok7TEzcU+acTiz2TXOyVeAJ9qBDY22z1f100chJ5lSjXrlrey c4X0gghRXg8A9CJA7xtXjLU/LPANMZTuL6C11GAVD7M9d729wlW/qYpS5V0u6O2+ Mxfa0rYKfsQDDY/i4kAS+pqOJvDSpJj6s64+c7RxELIY8mqbRk++8t2LCSwQLY19 PULrb9AAbb1KIWOwtkp1ifTkrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBaHSe39 GnlXEvFsc/PmFRhc4R9jMB8GA1UdIwQYMBaAFPmOviBpDy8rI0oVSH3QlSHz1HU8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQ0M0NC9DMTYwRkNBQzQ4 MEExMUVBOTgxMTkwNkRDNEY5QUUwMi8tWTYtSUdrUEx5c2pTaFZJZmRDVklmUFVk VHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1ZNi1JR2tQTHlzalNoVklmZENWSWZQVWRUdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Q0M0NC9DMTYwRkNBQzQ4MEExMUVBOTgxMTkwNkRDNEY5QUUwMi8tWTYtSUdrUEx5 c2pTaFZJZmRDVklmUFVkVHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZ08B1qvbo910vwMYHQmmjMkzscViT9BEqXBZ5BbFN3d6En7v+dq6N TAWVvVJgOdpnwwEeoVu380GuHbOnXfp+cF3MEqFV1AgVmOlq83+4cGq4AwZctMq1 FJoURuM9iSivVFhas2Z9vJLBPO3uMdwrcCjTH9/3lkBsrPYDGZVfLieO4+OcvCYQ WKJMORVsOFdZduPR4hOeh4+l7g6ck/VJiObbCozQpqHLlxYKi8PHtvujDgl0T+N7 e2g5yk26VXffO5+pmXotRWWJ0nQTbm73y+Ia/EbWNi0FyIfEqjpbeK+I0CHYB2Dw c7zU611sLi5INH4C4TBt0cZCjEIak6ZC -----END CERTIFICATE-----Generated at Sat May 31 16:33:05 2025 by rpki-client