$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1814/F3C8539EBA3111EB9C69C178C4F9AE02/7yfjyfFbWDsVypzMPJBdIpzi8NA.mft File: 7yfjyfFbWDsVypzMPJBdIpzi8NA.mft (raw, json) Hash identifier: 0cAc7ROaFgvTT2XCC+UEffOowUvL2CVy8vNfTRZHkKI= Subject key identifier: 7F:0E:40:4C:91:35:05:8F:09:81:73:E6:83:17:9C:37:C3:4D:7D:09 Authority key identifier: EF:27:E3:C9:F1:5B:58:3B:15:CA:9C:CC:3C:90:5D:22:9C:E2:F0:D0 Certificate issuer: /CN=A91C1814/serialNumber=EF27E3C9F15B583B15CA9CCC3C905D229CE2F0D0 Certificate serial: 05DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7yfjyfFbWDsVypzMPJBdIpzi8NA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1814/F3C8539EBA3111EB9C69C178C4F9AE02/7yfjyfFbWDsVypzMPJBdIpzi8NA.mft Manifest number: 05D5 Signing time: Fri 30 May 2025 23:13:21 +0000 Manifest this update: Fri 30 May 2025 23:13:20 +0000 Manifest next update: Fri 06 Jun 2025 23:13:20 +0000 Files and hashes: 1: 7yfjyfFbWDsVypzMPJBdIpzi8NA.crl (hash: mXO1tkfvni0/J5chxL2MLXUcQAlEpxCTDaTE6qz+s/M=) 2: 38378A3EBA3411EBB94A527CC4F9AE02.roa (hash: bXfsV+JRththOFdM9JTTJyhVvibLKGVpju+gIvVc/Sk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1814/F3C8539EBA3111EB9C69C178C4F9AE02/7yfjyfFbWDsVypzMPJBdIpzi8NA.crl rsync://rpki.apnic.net/member_repository/A91C1814/F3C8539EBA3111EB9C69C178C4F9AE02/7yfjyfFbWDsVypzMPJBdIpzi8NA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7yfjyfFbWDsVypzMPJBdIpzi8NA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:13:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1498 (0x5da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1814, serialNumber=EF27E3C9F15B583B15CA9CCC3C905D229CE2F0D0 Validity Not Before: May 30 23:13:20 2025 GMT Not After : Jun 6 23:13:20 2025 GMT Subject: CN=683a3b90-ab68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ab:64:c8:51:af:f8:fd:f1:2e:1c:71:35:67: 02:68:9d:d3:7d:64:59:e9:8a:69:27:7f:a8:10:81: ab:69:ee:6d:ec:d2:89:2e:42:10:63:d1:ce:44:ca: b0:61:3f:94:70:70:27:e5:2e:47:6c:9e:6c:05:35: 7b:a9:55:46:d2:b0:d2:31:28:82:15:98:90:f3:7b: 97:c2:4a:ee:71:e3:e4:59:ff:02:a8:95:2e:87:78: a3:c6:07:47:dd:f9:91:e3:ff:e5:7e:23:0e:b2:b1: 13:7b:b2:22:20:37:aa:7f:16:1c:76:62:ca:6d:fb: d5:e2:bb:58:d7:a2:07:69:09:d6:39:cd:26:70:f2: 66:8a:7e:2e:81:cb:45:8d:93:66:66:61:2d:fc:38: 6c:2b:c4:48:6e:5f:60:33:01:e3:16:4e:cf:11:23: 27:5f:72:a6:d6:b0:43:e3:a4:6d:57:47:d8:08:58: 54:44:07:b7:ca:16:5a:c3:01:1a:25:04:3a:b5:43: cb:8b:52:ff:0f:8e:99:db:bb:05:25:27:d8:38:54: 7c:c2:5c:f9:c7:c9:e1:46:91:a2:6e:3f:1d:ad:ac: 5d:c8:8b:77:8a:b2:b1:95:49:c1:e7:1d:ba:13:2b: 62:ea:f2:94:41:33:c3:da:9e:59:8b:69:5d:96:93: 4b:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:0E:40:4C:91:35:05:8F:09:81:73:E6:83:17:9C:37:C3:4D:7D:09 X509v3 Authority Key Identifier: keyid:EF:27:E3:C9:F1:5B:58:3B:15:CA:9C:CC:3C:90:5D:22:9C:E2:F0:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1814/F3C8539EBA3111EB9C69C178C4F9AE02/7yfjyfFbWDsVypzMPJBdIpzi8NA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7yfjyfFbWDsVypzMPJBdIpzi8NA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1814/F3C8539EBA3111EB9C69C178C4F9AE02/7yfjyfFbWDsVypzMPJBdIpzi8NA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:0f:21:5a:62:fc:77:7f:fb:c3:b4:94:cb:67:34:5c:9b:77: d2:58:8f:b4:7f:9f:2e:84:d9:14:ab:5b:9e:5b:b0:de:93:34: 47:0e:4c:ff:fe:cc:6a:0f:7a:a4:ca:89:91:e0:9f:e4:f4:0d: 56:7b:58:5e:54:d0:89:ed:8d:cc:07:c4:54:b3:72:95:c4:92: a0:e9:14:27:d6:f6:66:8a:d4:6f:96:3f:ec:a2:5a:82:88:01: bc:3e:2c:08:32:8f:0b:f8:a3:b1:c3:89:00:5c:99:fc:6a:f7: 4b:57:b7:85:7c:d0:c5:7a:de:89:2b:7c:be:ec:62:21:38:8c: 3f:3f:3e:a1:22:79:90:e4:a5:3f:6a:20:23:2e:1f:23:29:b5: d2:47:77:52:e1:d3:ba:a3:24:96:43:a8:d6:6b:36:17:97:2d: 1f:fb:26:77:3d:53:3a:90:5a:cb:27:b5:5a:9e:c7:7c:60:37: 2b:67:64:e2:5b:d8:85:98:1d:06:b1:8a:53:e7:ca:0c:cf:77: 7a:1a:a2:11:ab:96:fa:29:3c:e4:6d:67:51:17:b9:83:20:48: d2:e6:e1:cd:d3:8b:61:3b:10:48:6f:bb:b7:4f:ca:49:94:74: c9:99:41:dc:94:16:f4:d9:6a:29:39:f3:d2:11:3e:6b:8e:ee: 39:a0:00:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE4MTQxMTAvBgNVBAUTKEVGMjdFM0M5RjE1QjU4M0IxNUNBOUNDQzNDOTA1RDIy OUNFMkYwRDAwHhcNMjUwNTMwMjMxMzIwWhcNMjUwNjA2MjMxMzIwWjAYMRYwFAYD VQQDEw02ODNhM2I5MC1hYjY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsqtkyFGv+P3xLhxxNWcCaJ3TfWRZ6YppJ3+oEIGrae5t7NKJLkIQY9HORMqw YT+UcHAn5S5HbJ5sBTV7qVVG0rDSMSiCFZiQ83uXwkrucePkWf8CqJUuh3ijxgdH 3fmR4//lfiMOsrETe7IiIDeqfxYcdmLKbfvV4rtY16IHaQnWOc0mcPJmin4ugctF jZNmZmEt/DhsK8RIbl9gMwHjFk7PESMnX3Km1rBD46RtV0fYCFhURAe3yhZawwEa JQQ6tUPLi1L/D46Z27sFJSfYOFR8wlz5x8nhRpGibj8draxdyIt3irKxlUnB5x26 Eyti6vKUQTPD2p5Zi2ldlpNLTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH8OQEyR NQWPCYFz5oMXnDfDTX0JMB8GA1UdIwQYMBaAFO8n48nxW1g7FcqczDyQXSKc4vDQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTgxNC9GM0M4NTM5RUJB MzExMUVCOUM2OUMxNzhDNEY5QUUwMi83eWZqeWZGYldEc1Z5cHpNUEpCZElwemk4 TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzd5Zmp5ZkZiV0RzVnlwek1QSkJkSXB6aThOQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTgxNC9GM0M4NTM5RUJBMzExMUVCOUM2OUMxNzhDNEY5QUUwMi83eWZqeWZGYldE c1Z5cHpNUEpCZElwemk4TkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANDyFaYvx3f/vDtJTLZzRcm3fSWI+0f58uhNkUq1ueW7DekzRHDkz/ /sxqD3qkyomR4J/k9A1We1heVNCJ7Y3MB8RUs3KVxJKg6RQn1vZmitRvlj/solqC iAG8PiwIMo8L+KOxw4kAXJn8avdLV7eFfNDFet6JK3y+7GIhOIw/Pz6hInmQ5KU/ aiAjLh8jKbXSR3dS4dO6oySWQ6jWazYXly0f+yZ3PVM6kFrLJ7Vansd8YDcrZ2Ti W9iFmB0GsYpT58oMz3d6GqIRq5b6KTzkbWdRF7mDIEjS5uHN04thOxBIb7u3T8pJ lHTJmUHclBb02WopOfPSET5rju45oAAM -----END CERTIFICATE-----Generated at Sat May 31 16:59:20 2025 by rpki-client