$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft File: YB71rSfD3A1NmC22u0dsBsvHAKA.mft (raw, json) Hash identifier: I0k1ppwFt3C9k0SvSTpwVQSeHYNLMkkuF42tOIMI1MI= Subject key identifier: BD:4C:09:A4:34:90:06:FC:A5:38:B8:3D:96:62:44:04:3F:9A:E4:23 Authority key identifier: 60:1E:F5:AD:27:C3:DC:0D:4D:98:2D:B6:BB:47:6C:06:CB:C7:00:A0 Certificate issuer: /CN=A91BFE4E/serialNumber=601EF5AD27C3DC0D4D982DB6BB476C06CBC700A0 Certificate serial: 7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB71rSfD3A1NmC22u0dsBsvHAKA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft Manifest number: 7F Signing time: Sat 31 May 2025 06:13:15 +0000 Manifest this update: Sat 31 May 2025 06:13:14 +0000 Manifest next update: Sat 07 Jun 2025 06:13:14 +0000 Files and hashes: 1: YB71rSfD3A1NmC22u0dsBsvHAKA.crl (hash: /fpgScW0PiDTXGN6LTJFvQwRFn0OOOQdDILfE2tGnRo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.crl rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB71rSfD3A1NmC22u0dsBsvHAKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:13:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 127 (0x7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFE4E, serialNumber=601EF5AD27C3DC0D4D982DB6BB476C06CBC700A0 Validity Not Before: May 31 06:13:14 2025 GMT Not After : Jun 7 06:13:14 2025 GMT Subject: CN=683a9dfa-f74d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:0d:87:9e:69:66:14:c2:b4:5a:76:ab:a9:b5: 90:5e:85:05:33:99:7b:57:a1:b3:b0:d3:5f:6d:aa: 8a:dc:54:79:ad:8c:c4:e6:39:f1:01:ed:94:16:5d: ea:0b:89:41:c1:a1:ad:16:b5:dd:f2:9e:1b:6e:9f: 20:32:7e:f8:14:8a:49:1f:8c:13:79:99:fb:95:ec: e8:64:8d:87:85:d2:aa:f1:68:65:85:a7:c2:63:12: e3:1c:85:4a:6e:85:e4:ab:11:39:55:6a:ea:d6:ba: 56:04:a9:e2:fe:8c:6f:49:ee:97:0e:5a:22:3d:7b: 33:6f:6a:b2:44:29:a5:3b:3f:80:f3:38:fe:9f:e3: ef:3b:93:17:ad:3c:25:94:bb:eb:0e:d6:95:c6:e6: dc:c9:f4:99:ca:b5:c9:30:fd:6a:ed:48:0b:b4:04: e4:16:f0:33:46:c5:5c:04:31:70:2d:9a:1a:00:a0: c0:d1:8e:fc:fb:a7:7b:0b:d8:f0:f3:fb:c4:61:50: 6e:c3:0a:b1:d2:f8:86:af:84:35:f0:9c:18:38:5b: 0b:71:75:23:53:20:61:58:8e:79:1a:b3:a0:45:30: 9a:fc:71:ec:70:24:34:a3:da:4a:d4:ff:cf:f6:23: 2b:20:b4:03:06:10:b0:aa:db:a6:f0:88:31:da:9e: c3:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:4C:09:A4:34:90:06:FC:A5:38:B8:3D:96:62:44:04:3F:9A:E4:23 X509v3 Authority Key Identifier: keyid:60:1E:F5:AD:27:C3:DC:0D:4D:98:2D:B6:BB:47:6C:06:CB:C7:00:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB71rSfD3A1NmC22u0dsBsvHAKA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:61:c2:fa:08:b9:72:b4:53:e5:c4:97:61:63:94:ef:dd:b8: 55:da:58:e6:68:c6:fb:8a:22:c7:c4:1f:9f:e4:09:a8:d4:de: 3c:c6:d0:cc:67:20:65:0b:31:10:a4:ef:60:16:6a:19:d2:ce: 72:02:a8:0a:eb:54:cc:38:ee:a5:36:c1:07:be:72:c5:0d:a8: 28:91:06:6c:1f:58:c7:e5:f4:19:56:3e:1e:1c:1b:e6:23:e3: 69:63:64:b0:1f:7e:80:ad:23:2a:47:dc:1c:d2:47:37:c9:a7: 26:f0:9d:3a:0b:9f:b6:05:b1:b0:db:bb:84:2d:d7:be:bb:3d: 8c:e0:87:e6:16:88:8a:00:d4:b4:8e:96:56:84:a4:86:5d:57: 2d:19:dd:4d:2e:38:59:7b:54:d1:d2:9f:d4:dd:98:ac:eb:49: 6a:e9:79:b2:b0:52:33:3e:5f:52:70:65:e3:d5:69:d4:86:eb: 12:e4:ba:5d:9e:3f:91:36:d1:b8:7e:d0:ed:6a:11:09:87:69: a8:0f:4b:d9:f7:28:a2:34:97:5b:e0:fe:40:2a:c4:1d:de:34: c8:3d:4f:8a:b6:79:68:b0:db:89:83:4e:3a:97:a9:d2:b1:f9: 52:3d:dc:61:4d:71:08:20:39:38:b0:b8:21:0e:5f:3f:3a:37: 76:4d:be:63 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RkU0RTExMC8GA1UEBRMoNjAxRUY1QUQyN0MzREMwRDREOTgyREI2QkI0NzZDMDZD QkM3MDBBMDAeFw0yNTA1MzEwNjEzMTRaFw0yNTA2MDcwNjEzMTRaMBgxFjAUBgNV BAMTDTY4M2E5ZGZhLWY3NGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDeDYeeaWYUwrRadquptZBehQUzmXtXobOw019tqorcVHmtjMTmOfEB7ZQWXeoL iUHBoa0Wtd3ynhtunyAyfvgUikkfjBN5mfuV7OhkjYeF0qrxaGWFp8JjEuMchUpu heSrETlVaurWulYEqeL+jG9J7pcOWiI9ezNvarJEKaU7P4DzOP6f4+87kxetPCWU u+sO1pXG5tzJ9JnKtckw/WrtSAu0BOQW8DNGxVwEMXAtmhoAoMDRjvz7p3sL2PDz +8RhUG7DCrHS+IavhDXwnBg4WwtxdSNTIGFYjnkas6BFMJr8cexwJDSj2krU/8/2 IysgtAMGELCq26bwiDHansN3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUvUwJpDSQ BvylOLg9lmJEBD+a5CMwHwYDVR0jBBgwFoAUYB71rSfD3A1NmC22u0dsBsvHAKAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJGRTRFL0RBM0Q3MUE4N0JF MzExRUY4OEQ5Qzc1M0M0RjlBRTAyL1lCNzFyU2ZEM0ExTm1DMjJ1MGRzQnN2SEFL QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWUI3MXJTZkQzQTFObUMyMnUwZHNCc3ZIQUtBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJG RTRFL0RBM0Q3MUE4N0JFMzExRUY4OEQ5Qzc1M0M0RjlBRTAyL1lCNzFyU2ZEM0Ex Tm1DMjJ1MGRzQnN2SEFLQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHZhwvoIuXK0U+XEl2FjlO/duFXaWOZoxvuKIsfEH5/kCajU3jzG0Mxn IGULMRCk72AWahnSznICqArrVMw47qU2wQe+csUNqCiRBmwfWMfl9BlWPh4cG+Yj 42ljZLAffoCtIypH3BzSRzfJpybwnToLn7YFsbDbu4Qt1767PYzgh+YWiIoA1LSO llaEpIZdVy0Z3U0uOFl7VNHSn9TdmKzrSWrpebKwUjM+X1JwZePVadSG6xLkul2e P5E20bh+0O1qEQmHaagPS9n3KKI0l1vg/kAqxB3eNMg9T4q2eWiw24mDTjqXqdKx +VI93GFNcQggOTiwuCEOXz86N3ZNvmM= -----END CERTIFICATE-----Generated at Sat May 31 16:45:48 2025 by rpki-client