$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.mft File: Y3kC4bqWiB1HLuyt-kW1V348HDE.mft (raw, json) Hash identifier: 9lRVHJNUBPcF1NO23GW9U/1ei//AKBRUVu2SzQj5VH8= Subject key identifier: 7C:B7:58:02:56:AF:7A:30:7A:88:96:3B:21:77:6B:2F:FB:FC:6B:BA Authority key identifier: 63:79:02:E1:BA:96:88:1D:47:2E:EC:AD:FA:45:B5:57:7E:3C:1C:31 Certificate issuer: /CN=A91CE524/serialNumber=637902E1BA96881D472EECADFA45B5577E3C1C31 Certificate serial: 011F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y3kC4bqWiB1HLuyt-kW1V348HDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.mft Manifest number: 011D Signing time: Sat 31 May 2025 04:23:29 +0000 Manifest this update: Sat 31 May 2025 04:23:28 +0000 Manifest next update: Sat 07 Jun 2025 04:23:28 +0000 Files and hashes: 1: Y3kC4bqWiB1HLuyt-kW1V348HDE.crl (hash: cgr7SuNchEYZ3UzPqUthJ/NB+06rAXDygzyIIh021JU=) 2: FF1FE402898011EEB3403779C4F9AE02.roa (hash: WhOLdJmONFcVyaVlMrHX886HXRKh0RLcsl55SUDqRa4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.crl rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y3kC4bqWiB1HLuyt-kW1V348HDE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:23:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 287 (0x11f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE524, serialNumber=637902E1BA96881D472EECADFA45B5577E3C1C31 Validity Not Before: May 31 04:23:28 2025 GMT Not After : Jun 7 04:23:28 2025 GMT Subject: CN=683a8440-6914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:ff:b0:0c:b5:d5:a0:c6:bb:16:b6:c3:b3:fc: 1c:9b:04:3b:24:0b:64:ab:9c:7e:1c:af:c7:89:2e: 68:80:4e:c7:b5:a1:33:2c:a7:b8:71:42:34:8c:f4: fa:6a:e1:a7:37:10:e9:f8:4b:d7:28:20:35:9c:3b: f5:c1:9e:51:f7:04:dc:30:41:f6:e9:0f:61:c0:0b: d2:b3:13:1b:66:fe:f1:1d:8c:b4:f8:68:fb:17:8c: 26:f5:39:3e:8b:13:5b:6f:3a:9d:5f:d6:93:fd:f1: d1:21:f1:8e:9c:dc:02:32:fb:6d:58:de:72:ad:6c: 98:6f:8d:e9:52:36:a9:a8:95:58:c3:03:3e:9b:d8: dc:cd:59:48:9b:04:03:54:e5:af:8d:0f:2b:2c:92: 25:68:ac:db:9f:5d:11:24:38:80:f4:32:10:1c:5e: e1:78:df:6e:23:0f:22:4e:34:ba:b1:7d:96:35:0a: 04:2f:a6:7c:a6:c2:1e:57:c3:4d:42:56:ee:ec:9f: 2f:9f:01:16:e3:11:b2:23:a8:1a:3e:24:17:a2:5a: 5d:20:fc:d1:97:8f:e1:af:0b:70:bd:41:fd:05:85: fd:95:a5:64:f7:86:0d:20:2a:8d:af:f8:c7:00:65: 0d:e4:cd:d6:2d:15:e9:90:65:59:27:2b:82:15:93: 17:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:B7:58:02:56:AF:7A:30:7A:88:96:3B:21:77:6B:2F:FB:FC:6B:BA X509v3 Authority Key Identifier: keyid:63:79:02:E1:BA:96:88:1D:47:2E:EC:AD:FA:45:B5:57:7E:3C:1C:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y3kC4bqWiB1HLuyt-kW1V348HDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:80:d7:a2:76:95:70:d2:d1:b4:73:ee:75:f6:6f:e8:15:fd: 10:48:df:d8:45:53:75:5c:5b:f5:3d:b9:77:07:62:8b:bd:5c: ac:3d:ff:fb:7e:ca:d5:ca:83:c1:d0:d4:d0:f7:c9:27:11:d8: 7e:d3:e8:91:a7:e6:28:f5:0f:f8:a2:43:ee:4a:0d:02:81:e2: 38:29:ca:c5:15:f1:36:f1:b8:0e:76:99:9e:cf:c8:bf:d4:c9: 23:3f:63:fb:cd:f8:a1:f3:52:8b:c4:9a:54:c8:f8:54:03:2a: 86:ea:9a:2b:a8:1e:36:63:44:cc:88:6c:2d:cc:dd:d1:24:86: d3:f8:6f:47:c5:0f:2a:85:2d:cd:31:f2:71:60:17:34:5f:6b: 9c:36:9f:ab:3a:dd:c6:09:61:fd:85:b3:53:f4:57:1e:3e:d8: 44:5a:8e:73:cd:6d:5d:a4:b4:65:af:fb:64:fc:e3:32:9a:3b: 89:10:75:c1:73:b5:28:86:ca:91:83:bb:d6:62:7f:45:89:75: 41:50:41:3c:9c:4e:3f:54:87:58:3d:e4:af:c4:e4:1e:4d:99: 6e:3a:6b:19:87:0b:22:27:d7:c1:79:c9:fc:9e:00:f2:5c:9d: 55:5b:98:d7:30:a5:fd:c9:2e:ed:3b:a6:7e:ed:d1:b2:0f:d5: c4:fb:2b:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1MjQxMTAvBgNVBAUTKDYzNzkwMkUxQkE5Njg4MUQ0NzJFRUNBREZBNDVCNTU3 N0UzQzFDMzEwHhcNMjUwNTMxMDQyMzI4WhcNMjUwNjA3MDQyMzI4WjAYMRYwFAYD VQQDEw02ODNhODQ0MC02OTE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6P+wDLXVoMa7FrbDs/wcmwQ7JAtkq5x+HK/HiS5ogE7HtaEzLKe4cUI0jPT6 auGnNxDp+EvXKCA1nDv1wZ5R9wTcMEH26Q9hwAvSsxMbZv7xHYy0+Gj7F4wm9Tk+ ixNbbzqdX9aT/fHRIfGOnNwCMvttWN5yrWyYb43pUjapqJVYwwM+m9jczVlImwQD VOWvjQ8rLJIlaKzbn10RJDiA9DIQHF7heN9uIw8iTjS6sX2WNQoEL6Z8psIeV8NN Qlbu7J8vnwEW4xGyI6gaPiQXolpdIPzRl4/hrwtwvUH9BYX9laVk94YNICqNr/jH AGUN5M3WLRXpkGVZJyuCFZMXOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHy3WAJW r3oweoiWOyF3ay/7/Gu6MB8GA1UdIwQYMBaAFGN5AuG6logdRy7srfpFtVd+PBwx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTUyNC8wQzJDMkJENjg4 QzUxMUVFQTgzMTFDNzFDNEY5QUUwMi9ZM2tDNGJxV2lCMUhMdXl0LWtXMVYzNDhI REUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kza0M0YnFXaUIxSEx1eXQta1cxVjM0OEhERS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTUyNC8wQzJDMkJENjg4QzUxMUVFQTgzMTFDNzFDNEY5QUUwMi9ZM2tDNGJxV2lC MUhMdXl0LWtXMVYzNDhIREUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7gNeidpVw0tG0c+519m/oFf0QSN/YRVN1XFv1Pbl3B2KLvVysPf/7 fsrVyoPB0NTQ98knEdh+0+iRp+Yo9Q/4okPuSg0CgeI4KcrFFfE28bgOdpmez8i/ 1MkjP2P7zfih81KLxJpUyPhUAyqG6porqB42Y0TMiGwtzN3RJIbT+G9HxQ8qhS3N MfJxYBc0X2ucNp+rOt3GCWH9hbNT9FcePthEWo5zzW1dpLRlr/tk/OMymjuJEHXB c7UohsqRg7vWYn9FiXVBUEE8nE4/VIdYPeSvxOQeTZluOmsZhwsiJ9fBecn8ngDy XJ1VW5jXMKX9yS7tO6Z+7dGyD9XE+yvZ -----END CERTIFICATE-----Generated at Sat May 31 17:53:17 2025 by rpki-client