$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC8B1/CE851A560A9511EA85FFAA71C4F9AE02/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.mft File: yH_K6Qe9IFoI5UxnpjNW2SHFkTs.mft (raw, json) Hash identifier: psIDi+1VO6HqvLEJZ2ax4Axd/SU1iAhzYcd1kbmkLkk= Subject key identifier: 54:78:49:5F:7B:50:A8:08:80:07:62:6D:45:1D:C1:5C:CC:87:90:44 Authority key identifier: C8:7F:CA:E9:07:BD:20:5A:08:E5:4C:67:A6:33:56:D9:21:C5:91:3B Certificate issuer: /CN=A91CC8B1/serialNumber=C87FCAE907BD205A08E54C67A63356D921C5913B Certificate serial: 0C2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC8B1/CE851A560A9511EA85FFAA71C4F9AE02/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.mft Manifest number: 0C23 Signing time: Fri 30 May 2025 18:46:36 +0000 Manifest this update: Fri 30 May 2025 18:46:36 +0000 Manifest next update: Fri 06 Jun 2025 18:46:36 +0000 Files and hashes: 1: yH_K6Qe9IFoI5UxnpjNW2SHFkTs.crl (hash: ZbcpHXBL1te/Ap5bEdOrIXndfui7LSlfk3otmEghq0U=) 2: 69308C200A9611EABF034172C4F9AE02.roa (hash: UpR8nuBc/YxAqJ5KwZdD471HRL+h2X0H2SIoY13S/74=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC8B1/CE851A560A9511EA85FFAA71C4F9AE02/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.crl rsync://rpki.apnic.net/member_repository/A91CC8B1/CE851A560A9511EA85FFAA71C4F9AE02/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3115 (0xc2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC8B1, serialNumber=C87FCAE907BD205A08E54C67A63356D921C5913B Validity Not Before: May 30 18:46:36 2025 GMT Not After : Jun 6 18:46:36 2025 GMT Subject: CN=6839fd0c-a7cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:0b:06:1f:72:3c:d2:be:36:3f:8c:40:15:2b: 90:f4:d2:61:77:f4:32:22:17:5b:b9:25:97:22:05: cf:02:9a:f0:24:48:bd:22:42:ca:30:61:01:3c:f5: 47:7d:46:27:81:4c:69:0f:4d:69:45:93:f3:92:63: f0:50:c9:5c:90:de:46:4e:9c:5b:f0:47:d9:7a:05: 91:35:cc:de:2c:ee:28:eb:b0:be:b5:5f:1e:2d:6e: fb:5f:51:b0:3d:57:7c:95:d3:48:1a:f5:a9:68:b3: ad:95:6b:90:37:e1:02:a9:fb:59:a0:dd:63:dc:fd: a9:5c:b6:1e:a4:b4:cb:e7:f6:96:76:04:b4:39:24: 0e:51:8f:56:a8:b9:a7:ff:c1:ac:9b:8f:53:2d:61: c8:d6:6a:47:68:5c:a3:62:5a:02:a0:94:ed:2c:2d: 10:01:b4:c9:1a:99:70:e4:22:3b:53:0b:ac:c2:2f: 33:a0:fe:c0:08:9e:6e:7b:a7:38:58:65:37:f4:ac: 11:7c:91:8b:b5:0c:ff:be:bc:90:57:ad:49:12:d7: b8:87:bf:74:9f:f0:29:31:b4:cd:f3:40:6c:bb:59: 48:66:aa:5d:e8:88:43:8a:eb:fa:4c:8a:68:dc:4f: c8:7b:bd:c5:d9:47:b6:59:0d:0b:16:4b:bb:d9:2f: aa:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:78:49:5F:7B:50:A8:08:80:07:62:6D:45:1D:C1:5C:CC:87:90:44 X509v3 Authority Key Identifier: keyid:C8:7F:CA:E9:07:BD:20:5A:08:E5:4C:67:A6:33:56:D9:21:C5:91:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC8B1/CE851A560A9511EA85FFAA71C4F9AE02/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC8B1/CE851A560A9511EA85FFAA71C4F9AE02/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:4d:8b:78:3b:63:82:48:8a:c8:35:ca:bd:eb:03:2f:63:ef: 33:f6:62:23:1e:3f:76:b3:96:0d:ea:1f:dc:7a:1b:3e:7c:12: ed:10:45:c6:e7:ab:fc:a7:b0:91:81:75:91:e7:27:8f:96:33: 50:4d:1b:b0:37:06:5d:8f:5b:ac:76:e5:ce:0c:f1:40:fb:f5: 19:08:56:29:22:ea:ec:5e:2e:61:4a:6a:1f:4c:13:fa:e9:c7: 4f:1f:1e:7e:01:85:b5:16:cc:b3:50:5c:19:72:58:0e:df:dd: 72:7e:98:c4:92:5d:d2:ff:36:3c:5e:60:87:7e:fb:27:9f:89: 16:12:75:34:95:07:fb:5b:5d:fd:ca:51:be:cd:bf:98:a3:31: 3d:12:28:f4:07:ce:ee:10:41:76:31:2e:2d:7c:db:ac:6f:f4: 2a:63:03:46:d2:d1:05:61:4b:2e:4e:25:38:82:60:70:ee:77: 24:75:49:ad:9c:60:0f:3c:ea:d9:de:8e:77:71:b2:56:0f:e2: ee:03:4a:97:96:d5:91:90:59:11:7d:10:ed:90:e8:cc:6d:37: 27:73:bf:35:46:1d:e1:d5:d1:2d:a7:cb:b0:6e:0c:da:34:f7: b5:d6:05:24:87:c5:05:13:a7:f1:e2:5c:c8:7a:fa:7e:4b:08: 93:26:9e:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0M4QjExMTAvBgNVBAUTKEM4N0ZDQUU5MDdCRDIwNUEwOEU1NEM2N0E2MzM1NkQ5 MjFDNTkxM0IwHhcNMjUwNTMwMTg0NjM2WhcNMjUwNjA2MTg0NjM2WjAYMRYwFAYD VQQDEw02ODM5ZmQwYy1hN2NiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqwsGH3I80r42P4xAFSuQ9NJhd/QyIhdbuSWXIgXPAprwJEi9IkLKMGEBPPVH fUYngUxpD01pRZPzkmPwUMlckN5GTpxb8EfZegWRNczeLO4o67C+tV8eLW77X1Gw PVd8ldNIGvWpaLOtlWuQN+ECqftZoN1j3P2pXLYepLTL5/aWdgS0OSQOUY9WqLmn /8Gsm49TLWHI1mpHaFyjYloCoJTtLC0QAbTJGplw5CI7Uwuswi8zoP7ACJ5ue6c4 WGU39KwRfJGLtQz/vryQV61JEte4h790n/ApMbTN80Bsu1lIZqpd6IhDiuv6TIpo 3E/Ie73F2Ue2WQ0LFku72S+qAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFR4SV97 UKgIgAdibUUdwVzMh5BEMB8GA1UdIwQYMBaAFMh/yukHvSBaCOVMZ6YzVtkhxZE7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzhCMS9DRTg1MUE1NjBB OTUxMUVBODVGRkFBNzFDNEY5QUUwMi95SF9LNlFlOUlGb0k1VXhucGpOVzJTSEZr VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lIX0s2UWU5SUZvSTVVeG5wak5XMlNIRmtUcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QzhCMS9DRTg1MUE1NjBBOTUxMUVBODVGRkFBNzFDNEY5QUUwMi95SF9LNlFlOUlG b0k1VXhucGpOVzJTSEZrVHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQTYt4O2OCSIrINcq96wMvY+8z9mIjHj92s5YN6h/cehs+fBLtEEXG 56v8p7CRgXWR5yePljNQTRuwNwZdj1usduXODPFA+/UZCFYpIursXi5hSmofTBP6 6cdPHx5+AYW1FsyzUFwZclgO391yfpjEkl3S/zY8XmCHfvsnn4kWEnU0lQf7W139 ylG+zb+YozE9Eij0B87uEEF2MS4tfNusb/QqYwNG0tEFYUsuTiU4gmBw7nckdUmt nGAPPOrZ3o53cbJWD+LuA0qXltWRkFkRfRDtkOjMbTcnc781Rh3h1dEtp8uwbgza NPe11gUkh8UFE6fx4lzIevp+SwiTJp56 -----END CERTIFICATE-----Generated at Sat May 31 17:32:52 2025 by rpki-client