$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4102/B78AA7F4654D11EA86E5017FC4F9AE02/ySmS1w7OQRpiVb9AueCkUhSUQA0.mft File: ySmS1w7OQRpiVb9AueCkUhSUQA0.mft (raw, json) Hash identifier: Fo9cc6m3T81NL0+QL00zbVQtVyq0K/ArXA5NKTU3wb4= Subject key identifier: 9E:2F:9C:4F:C6:72:9D:B1:21:99:C3:68:85:99:5A:71:5C:DA:B1:AD Authority key identifier: C9:29:92:D7:0E:CE:41:1A:62:55:BF:40:B9:E0:A4:52:14:94:40:0D Certificate issuer: /CN=A91C4102/serialNumber=C92992D70ECE411A6255BF40B9E0A4521494400D Certificate serial: 0A55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySmS1w7OQRpiVb9AueCkUhSUQA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4102/B78AA7F4654D11EA86E5017FC4F9AE02/ySmS1w7OQRpiVb9AueCkUhSUQA0.mft Manifest number: 11DB Signing time: Fri 30 May 2025 19:52:04 +0000 Manifest this update: Fri 30 May 2025 19:52:04 +0000 Manifest next update: Fri 06 Jun 2025 19:52:04 +0000 Files and hashes: 1: ySmS1w7OQRpiVb9AueCkUhSUQA0.crl (hash: /+lm06reVFh6gP1aQmuurZ/7u6pGQUycuVMLPsW0xuk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4102/B78AA7F4654D11EA86E5017FC4F9AE02/ySmS1w7OQRpiVb9AueCkUhSUQA0.crl rsync://rpki.apnic.net/member_repository/A91C4102/B78AA7F4654D11EA86E5017FC4F9AE02/ySmS1w7OQRpiVb9AueCkUhSUQA0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySmS1w7OQRpiVb9AueCkUhSUQA0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:52:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2645 (0xa55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4102, serialNumber=C92992D70ECE411A6255BF40B9E0A4521494400D Validity Not Before: May 30 19:52:04 2025 GMT Not After : Jun 6 19:52:04 2025 GMT Subject: CN=683a0c64-3654 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:cf:1f:25:4e:d9:23:ab:f3:7f:85:60:6e:34: 3a:89:a4:8d:99:f4:4e:74:da:34:88:28:80:87:15: fe:bb:f2:d2:7c:05:05:ce:5e:8d:a7:67:e9:d4:48: ad:e0:7b:54:f7:db:d4:c1:74:f9:c7:23:9e:05:5d: 4c:54:36:35:e2:9f:cc:bb:c9:6a:d2:22:0b:10:10: 60:bc:43:b6:5c:f1:b3:e8:d4:07:99:4e:85:51:c8: 82:77:fe:31:28:60:bb:53:26:85:94:94:9d:98:8c: 52:6b:5a:e7:7f:e4:0e:80:1f:a9:de:d6:c3:bd:49: c0:9c:a4:42:90:5a:08:93:f8:7f:4e:81:6f:b7:7e: e2:11:ad:78:75:61:19:7d:ce:ce:b1:a8:cd:b1:10: e4:13:51:a6:c7:1a:be:64:8f:46:d8:94:2b:07:de: c4:28:2f:bf:79:56:42:15:b5:1d:df:70:f0:cb:36: 45:43:9b:a0:18:6f:67:b6:7c:28:4a:bc:0c:a2:dc: d8:6b:bd:6c:e1:18:93:d2:65:d6:8a:8b:76:aa:81: 8e:9f:4e:ad:1d:23:c7:9b:1c:f4:07:8c:2a:e6:fc: 1b:35:91:4d:68:5e:df:5a:5a:94:42:3b:ec:21:9b: 14:e1:2b:28:3c:97:6b:b7:30:12:97:9a:ad:bc:59: 1a:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:2F:9C:4F:C6:72:9D:B1:21:99:C3:68:85:99:5A:71:5C:DA:B1:AD X509v3 Authority Key Identifier: keyid:C9:29:92:D7:0E:CE:41:1A:62:55:BF:40:B9:E0:A4:52:14:94:40:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4102/B78AA7F4654D11EA86E5017FC4F9AE02/ySmS1w7OQRpiVb9AueCkUhSUQA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySmS1w7OQRpiVb9AueCkUhSUQA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4102/B78AA7F4654D11EA86E5017FC4F9AE02/ySmS1w7OQRpiVb9AueCkUhSUQA0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:61:c7:0b:49:7b:b6:8b:cd:23:7e:b4:91:34:ac:67:e8:f3: 2a:9e:12:35:c3:48:dd:c0:c2:47:2e:c6:05:9e:86:fd:35:04: 73:54:f1:7e:94:c8:fa:dc:84:0b:8e:8c:24:02:87:92:9e:c3: 9c:11:f9:95:86:6f:02:74:46:18:f5:5a:8f:65:06:55:ac:60: 11:65:8b:c9:4a:46:b8:32:99:9a:52:b5:98:a6:a8:1d:4b:69: c9:9c:47:aa:7e:cc:29:8a:c9:26:68:e5:0b:a2:77:d2:c2:00: 9c:f2:7c:8f:58:31:e6:c2:0e:91:99:c8:df:4d:ce:1f:a0:fc: 06:71:e6:e3:5d:ea:e1:be:4c:ff:9d:10:2e:4a:e4:14:cc:6a: 74:16:8d:86:1e:5a:ac:2e:35:b3:e2:7f:ba:6a:ee:f1:c1:08: cd:e8:23:1c:59:3c:ee:6b:ec:e1:af:fc:66:db:35:32:a3:bc: c9:ea:26:ec:85:13:9b:7e:1c:12:e5:53:f5:09:d7:9e:b7:a3: a3:cf:ff:fd:33:ee:fa:2b:0d:d1:fa:d5:7e:43:08:9d:d4:8a: 95:28:39:af:24:6f:53:96:7f:5c:4a:a6:21:9a:59:95:5f:2e: 75:22:31:53:33:fc:89:d0:4a:d8:c4:6e:58:20:97:f3:cc:d6: 9e:4c:ce:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICClUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQxMDIxMTAvBgNVBAUTKEM5Mjk5MkQ3MEVDRTQxMUE2MjU1QkY0MEI5RTBBNDUy MTQ5NDQwMEQwHhcNMjUwNTMwMTk1MjA0WhcNMjUwNjA2MTk1MjA0WjAYMRYwFAYD VQQDEw02ODNhMGM2NC0zNjU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAys8fJU7ZI6vzf4VgbjQ6iaSNmfROdNo0iCiAhxX+u/LSfAUFzl6Np2fp1Eit 4HtU99vUwXT5xyOeBV1MVDY14p/Mu8lq0iILEBBgvEO2XPGz6NQHmU6FUciCd/4x KGC7UyaFlJSdmIxSa1rnf+QOgB+p3tbDvUnAnKRCkFoIk/h/ToFvt37iEa14dWEZ fc7OsajNsRDkE1Gmxxq+ZI9G2JQrB97EKC+/eVZCFbUd33DwyzZFQ5ugGG9ntnwo SrwMotzYa71s4RiT0mXWiot2qoGOn06tHSPHmxz0B4wq5vwbNZFNaF7fWlqUQjvs IZsU4SsoPJdrtzASl5qtvFka8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ4vnE/G cp2xIZnDaIWZWnFc2rGtMB8GA1UdIwQYMBaAFMkpktcOzkEaYlW/QLngpFIUlEAN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDEwMi9CNzhBQTdGNDY1 NEQxMUVBODZFNTAxN0ZDNEY5QUUwMi95U21TMXc3T1FScGlWYjlBdWVDa1VoU1VR QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lTbVMxdzdPUVJwaVZiOUF1ZUNrVWhTVVFBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDEwMi9CNzhBQTdGNDY1NEQxMUVBODZFNTAxN0ZDNEY5QUUwMi95U21TMXc3T1FS cGlWYjlBdWVDa1VoU1VRQTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlYccLSXu2i80jfrSRNKxn6PMqnhI1w0jdwMJHLsYFnob9NQRzVPF+ lMj63IQLjowkAoeSnsOcEfmVhm8CdEYY9VqPZQZVrGARZYvJSka4MpmaUrWYpqgd S2nJnEeqfswpiskmaOULonfSwgCc8nyPWDHmwg6RmcjfTc4foPwGcebjXerhvkz/ nRAuSuQUzGp0Fo2GHlqsLjWz4n+6au7xwQjN6CMcWTzua+zhr/xm2zUyo7zJ6ibs hRObfhwS5VP1Cdeet6Ojz//9M+76Kw3R+tV+Qwid1IqVKDmvJG9Tln9cSqYhmlmV Xy51IjFTM/yJ0ErYxG5YIJfzzNaeTM6g -----END CERTIFICATE-----Generated at Sat May 31 16:05:22 2025 by rpki-client