$ rpki-client -vvf rpki.apnic.net/member_repository/A91C15F2/56322D98B89811EBAD6C1D48C4F9AE02/Y4K1EzSDFdWvPxMOxUwdqGcojCw.mft File: Y4K1EzSDFdWvPxMOxUwdqGcojCw.mft (raw, json) Hash identifier: b8bDSUoubPfBflc/kNiZIRxdjecuVHrglBguIWGnzcI= Subject key identifier: EF:7D:C8:6E:7A:E9:A9:7C:EB:AF:E0:6E:F0:72:A6:BA:65:12:B2:7D Authority key identifier: 63:82:B5:13:34:83:15:D5:AF:3F:13:0E:C5:4C:1D:A8:67:28:8C:2C Certificate issuer: /CN=A91C15F2/serialNumber=6382B513348315D5AF3F130EC54C1DA867288C2C Certificate serial: 05E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4K1EzSDFdWvPxMOxUwdqGcojCw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C15F2/56322D98B89811EBAD6C1D48C4F9AE02/Y4K1EzSDFdWvPxMOxUwdqGcojCw.mft Manifest number: 05E0 Signing time: Fri 30 May 2025 23:11:40 +0000 Manifest this update: Fri 30 May 2025 23:11:39 +0000 Manifest next update: Fri 06 Jun 2025 23:11:39 +0000 Files and hashes: 1: Y4K1EzSDFdWvPxMOxUwdqGcojCw.crl (hash: YeI+nQZI4LRp5iI37sabuWH5DIPoGme/bVINVvCoaOE=) 2: C8AE3C40B93811EBAC80A46DC4F9AE02.roa (hash: Ck3Q3b0m7wZfc35rCMLbisQ7sVgiMLOPm+0PDdt1xrg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C15F2/56322D98B89811EBAD6C1D48C4F9AE02/Y4K1EzSDFdWvPxMOxUwdqGcojCw.crl rsync://rpki.apnic.net/member_repository/A91C15F2/56322D98B89811EBAD6C1D48C4F9AE02/Y4K1EzSDFdWvPxMOxUwdqGcojCw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4K1EzSDFdWvPxMOxUwdqGcojCw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:11:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1513 (0x5e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C15F2, serialNumber=6382B513348315D5AF3F130EC54C1DA867288C2C Validity Not Before: May 30 23:11:39 2025 GMT Not After : Jun 6 23:11:39 2025 GMT Subject: CN=683a3b2c-8edd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:70:a4:54:b3:c9:ea:e6:c4:36:94:91:cb:12: 59:cc:2d:0d:cb:39:a0:6f:b3:82:9d:ac:8b:7f:60: 48:7b:0a:11:72:9b:05:87:74:99:86:89:81:7e:9c: 95:b2:2c:cb:af:72:e6:92:9a:8e:f6:2e:4b:0c:11: 1a:77:ef:c1:6a:91:78:6c:a9:4f:71:e8:9d:4b:c5: 5a:02:c2:c2:06:53:0e:75:5a:50:eb:a6:48:8e:7c: bf:0c:12:90:72:66:35:a5:2a:40:4e:87:c7:3d:38: ed:0c:3b:34:bf:65:c4:e8:66:ca:db:6d:ec:0b:6a: 52:04:3e:7f:a2:0b:1d:24:33:08:6b:dc:41:da:d5: 8c:18:a1:25:05:ea:99:06:22:de:5b:e8:fd:e3:a4: 97:4e:52:63:e2:af:84:34:b2:1f:ca:59:8c:48:f0: fc:f5:69:9d:95:39:07:14:9a:a1:9e:ee:c3:f9:6e: b0:ed:65:47:76:ae:c0:8b:0f:99:98:18:9a:65:02: 18:90:5f:4d:1c:ee:c7:82:fd:2d:92:f3:15:9d:3b: 28:8e:67:e6:b2:13:62:8e:94:90:da:68:6c:9a:55: 7d:f1:7a:f2:8d:e7:9d:b0:37:ea:9c:b0:27:13:bf: 17:f2:ed:f6:12:f7:78:ff:87:7e:01:f3:6d:16:52: 96:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:7D:C8:6E:7A:E9:A9:7C:EB:AF:E0:6E:F0:72:A6:BA:65:12:B2:7D X509v3 Authority Key Identifier: keyid:63:82:B5:13:34:83:15:D5:AF:3F:13:0E:C5:4C:1D:A8:67:28:8C:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C15F2/56322D98B89811EBAD6C1D48C4F9AE02/Y4K1EzSDFdWvPxMOxUwdqGcojCw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4K1EzSDFdWvPxMOxUwdqGcojCw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C15F2/56322D98B89811EBAD6C1D48C4F9AE02/Y4K1EzSDFdWvPxMOxUwdqGcojCw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:6f:a8:e3:27:9b:f2:57:07:a5:e8:9d:9e:ca:8a:82:ff:4a: d5:a7:63:35:9e:9c:3a:4b:21:3f:d9:61:7e:42:a1:3d:77:ae: df:53:38:14:e8:a5:a6:53:4c:e0:a1:9e:a8:9a:cb:34:f4:68: 5e:e2:ee:16:02:d7:66:f0:c4:c7:63:8a:58:16:4c:41:89:af: cf:e6:f1:1e:eb:ed:0f:59:d9:de:bb:ae:2d:ad:c5:98:91:23: 24:53:50:08:d7:d1:6a:c3:05:1b:1a:2d:e6:59:15:09:5e:15: d6:6d:29:ce:d7:9e:84:ac:b5:96:e3:09:98:58:5e:78:49:a4: 72:c0:66:ba:c1:fe:60:50:99:55:2f:87:84:4e:7d:d9:32:8d: 3b:e0:cd:85:c9:78:11:f3:e9:2f:59:3a:14:92:66:8b:18:fe: b4:be:32:85:c2:10:bc:93:cf:7e:ca:2b:a9:bf:b8:e6:b1:9f: 02:ba:f8:0f:6d:70:35:22:16:d9:91:8f:d9:9d:ed:d7:02:e0: d2:7e:7c:e4:7f:04:ab:ac:34:e5:78:4d:9f:35:51:b8:6b:0b: ad:47:8a:c7:b3:8c:7f:63:3f:0e:31:53:19:7f:ef:33:ac:31: 2e:f0:1b:59:4d:fe:7b:52:0b:d5:17:bd:26:e0:0e:d7:73:67: bf:0c:f0:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBekwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE1RjIxMTAvBgNVBAUTKDYzODJCNTEzMzQ4MzE1RDVBRjNGMTMwRUM1NEMxREE4 NjcyODhDMkMwHhcNMjUwNTMwMjMxMTM5WhcNMjUwNjA2MjMxMTM5WjAYMRYwFAYD VQQDEw02ODNhM2IyYy04ZWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8XCkVLPJ6ubENpSRyxJZzC0Nyzmgb7OCnayLf2BIewoRcpsFh3SZhomBfpyV sizLr3LmkpqO9i5LDBEad+/BapF4bKlPceidS8VaAsLCBlMOdVpQ66ZIjny/DBKQ cmY1pSpATofHPTjtDDs0v2XE6GbK223sC2pSBD5/ogsdJDMIa9xB2tWMGKElBeqZ BiLeW+j946SXTlJj4q+ENLIfylmMSPD89WmdlTkHFJqhnu7D+W6w7WVHdq7Aiw+Z mBiaZQIYkF9NHO7Hgv0tkvMVnTsojmfmshNijpSQ2mhsmlV98XryjeedsDfqnLAn E78X8u32Evd4/4d+AfNtFlKWuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO99yG56 6al866/gbvByprplErJ9MB8GA1UdIwQYMBaAFGOCtRM0gxXVrz8TDsVMHahnKIws MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTVGMi81NjMyMkQ5OEI4 OTgxMUVCQUQ2QzFENDhDNEY5QUUwMi9ZNEsxRXpTREZkV3ZQeE1PeFV3ZHFHY29q Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1k0SzFFelNERmRXdlB4TU94VXdkcUdjb2pDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTVGMi81NjMyMkQ5OEI4OTgxMUVCQUQ2QzFENDhDNEY5QUUwMi9ZNEsxRXpTREZk V3ZQeE1PeFV3ZHFHY29qQ3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOb6jjJ5vyVwel6J2eyoqC/0rVp2M1npw6SyE/2WF+QqE9d67fUzgU 6KWmU0zgoZ6omss09Ghe4u4WAtdm8MTHY4pYFkxBia/P5vEe6+0PWdneu64trcWY kSMkU1AI19FqwwUbGi3mWRUJXhXWbSnO156ErLWW4wmYWF54SaRywGa6wf5gUJlV L4eETn3ZMo074M2FyXgR8+kvWToUkmaLGP60vjKFwhC8k89+yiupv7jmsZ8CuvgP bXA1IhbZkY/Zne3XAuDSfnzkfwSrrDTleE2fNVG4awutR4rHs4x/Yz8OMVMZf+8z rDEu8BtZTf57UgvVF70m4A7Xc2e/DPCg -----END CERTIFICATE-----Generated at Sat May 31 17:54:47 2025 by rpki-client