$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft File: Yt3ChdqLPiCesA6qNnGEXaps8oY.mft (raw, json) Hash identifier: JLQwHSXBXlty6MTSUiZ3etT+y8uXZ849IC/v4eeXDgg= Subject key identifier: D2:BB:7A:06:38:8B:8F:F7:70:A0:D9:B0:5E:FE:F4:6D:7E:DF:98:18 Authority key identifier: 62:DD:C2:85:DA:8B:3E:20:9E:B0:0E:AA:36:71:84:5D:AA:6C:F2:86 Certificate issuer: /CN=A91CE5A6/serialNumber=62DDC285DA8B3E209EB00EAA3671845DAA6CF286 Certificate serial: 0147 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft Manifest number: 0141 Signing time: Tue 03 Jun 2025 04:11:08 +0000 Manifest this update: Tue 03 Jun 2025 04:11:08 +0000 Manifest next update: Tue 10 Jun 2025 04:11:08 +0000 Files and hashes: 1: Yt3ChdqLPiCesA6qNnGEXaps8oY.crl (hash: Vqsia0kz9Gr5PilhM5GiyuQyB7ad95yewz1W1w8z+E4=) 2: 64120230B2C211EFA43BF057C4F9AE02.roa (hash: 9h3davUQ9pNDA3U7SYojAK+YEhrIBkhT56ukToleizY=) 3: 3B8DEFBCB2CD11EFBEB6A532C4F9AE02.roa (hash: DgTHE1vd+LuLJ/6bYp2I4wVbGI057+J0uGiHNmi5Ok4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.crl rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 04:11:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 327 (0x147) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE5A6, serialNumber=62DDC285DA8B3E209EB00EAA3671845DAA6CF286 Validity Not Before: Jun 3 04:11:08 2025 GMT Not After : Jun 10 04:11:08 2025 GMT Subject: CN=683e75dc-5827 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:57:6f:80:78:da:51:5a:d2:81:f8:19:dd:41: 80:7e:f2:1c:bb:6c:65:75:43:0d:8f:a3:f7:eb:02: b7:32:71:75:f4:bb:ae:c2:77:13:9a:ff:63:2f:3a: 7f:88:49:94:e1:a1:54:95:c7:9b:3a:c3:24:94:51: 97:a9:77:15:b9:98:18:09:13:a1:ef:5b:08:33:5a: ed:8d:b1:87:fd:55:c5:4a:5e:81:94:97:7c:a3:32: e3:62:5d:33:0a:8b:e7:2a:4e:cc:3e:92:22:6c:11: 34:21:82:14:e9:f1:95:5f:0c:67:fd:6e:80:5a:7b: 92:4f:6b:df:28:14:0d:c7:03:97:a0:60:82:7c:9a: 2d:e3:1b:5f:46:f0:fc:d4:6e:d9:59:58:98:0e:42: 7a:31:fd:71:ce:a3:53:f4:09:13:99:25:a8:cd:dd: 39:89:d4:69:18:3d:d6:e7:64:8e:a5:f0:6a:57:b2: 42:ef:a5:3d:e9:aa:63:fa:15:15:f6:f1:6b:95:24: aa:1e:c0:ad:c7:42:09:1e:8f:dd:d7:18:e8:38:6c: 6f:54:41:d5:b2:02:2a:f3:26:15:04:48:72:39:87: 78:6e:78:63:00:d5:a9:39:ac:1a:ed:fd:70:2e:d3: 3b:a6:71:0e:0c:32:01:f1:22:87:7b:ab:bc:ae:6e: 26:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:BB:7A:06:38:8B:8F:F7:70:A0:D9:B0:5E:FE:F4:6D:7E:DF:98:18 X509v3 Authority Key Identifier: keyid:62:DD:C2:85:DA:8B:3E:20:9E:B0:0E:AA:36:71:84:5D:AA:6C:F2:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:8b:cd:32:8b:18:6d:4f:52:2c:92:00:94:70:49:80:dd:1f: 24:ad:c8:a5:d5:20:c0:aa:79:05:c6:7a:79:4d:a4:d1:8c:6b: 4e:ad:81:c5:e3:69:62:fc:0b:fe:6a:29:0f:aa:72:9c:09:16: fd:69:9e:53:92:89:87:89:82:cc:a4:0c:c7:68:b1:78:c3:99: 29:9a:f6:d2:c0:ff:55:ea:f5:ce:5d:7b:24:00:eb:2f:e0:57: 13:56:cc:11:fc:f0:49:aa:29:ca:4e:f7:d7:1b:86:cf:82:7e: 4b:62:be:ba:58:7f:d3:4f:db:19:77:97:a5:4e:24:55:1e:d9: 5a:58:8a:f8:30:55:ed:d4:71:8f:a3:79:20:20:92:dc:5c:5f: b0:1e:a6:3a:5b:96:40:3f:4f:a0:dc:ac:07:bf:ee:d1:4f:22: 45:f8:71:b6:87:49:28:e5:c8:c2:1b:f7:e9:11:c0:a0:c8:f8: 6d:cf:17:cc:40:cc:89:0f:cc:95:ca:f7:4e:b8:e3:a5:7c:2e: 07:48:07:5d:d2:49:19:7b:7c:6b:dc:aa:0a:4c:35:0b:88:7a: 8a:52:6f:dc:0c:7f:37:3a:6f:5e:32:1f:eb:5e:48:9c:60:b4: ab:15:0e:a7:41:3d:eb:5b:57:4f:7d:9a:76:21:28:37:77:f4: 70:20:bb:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1QTYxMTAvBgNVBAUTKDYyRERDMjg1REE4QjNFMjA5RUIwMEVBQTM2NzE4NDVE QUE2Q0YyODYwHhcNMjUwNjAzMDQxMTA4WhcNMjUwNjEwMDQxMTA4WjAYMRYwFAYD VQQDEw02ODNlNzVkYy01ODI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoFdvgHjaUVrSgfgZ3UGAfvIcu2xldUMNj6P36wK3MnF19LuuwncTmv9jLzp/ iEmU4aFUlcebOsMklFGXqXcVuZgYCROh71sIM1rtjbGH/VXFSl6BlJd8ozLjYl0z CovnKk7MPpIibBE0IYIU6fGVXwxn/W6AWnuST2vfKBQNxwOXoGCCfJot4xtfRvD8 1G7ZWViYDkJ6Mf1xzqNT9AkTmSWozd05idRpGD3W52SOpfBqV7JC76U96apj+hUV 9vFrlSSqHsCtx0IJHo/d1xjoOGxvVEHVsgIq8yYVBEhyOYd4bnhjANWpOawa7f1w LtM7pnEODDIB8SKHe6u8rm4m6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNK7egY4 i4/3cKDZsF7+9G1+35gYMB8GA1UdIwQYMBaAFGLdwoXaiz4gnrAOqjZxhF2qbPKG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTVBNi9BQUIzM0U0QzVC M0YxMUVFOEYxRDNENkVDNEY5QUUwMi9ZdDNDaGRxTFBpQ2VzQTZxTm5HRVhhcHM4 b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1l0M0NoZHFMUGlDZXNBNnFObkdFWGFwczhvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTVBNi9BQUIzM0U0QzVCM0YxMUVFOEYxRDNENkVDNEY5QUUwMi9ZdDNDaGRxTFBp Q2VzQTZxTm5HRVhhcHM4b1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZi80yixhtT1IskgCUcEmA3R8krcil1SDAqnkFxnp5TaTRjGtOrYHF 42li/Av+aikPqnKcCRb9aZ5TkomHiYLMpAzHaLF4w5kpmvbSwP9V6vXOXXskAOsv 4FcTVswR/PBJqinKTvfXG4bPgn5LYr66WH/TT9sZd5elTiRVHtlaWIr4MFXt1HGP o3kgIJLcXF+wHqY6W5ZAP0+g3KwHv+7RTyJF+HG2h0ko5cjCG/fpEcCgyPhtzxfM QMyJD8yVyvdOuOOlfC4HSAdd0kkZe3xr3KoKTDULiHqKUm/cDH83Om9eMh/rXkic YLSrFQ6nQT3rW1dPfZp2ISg3d/RwILsE -----END CERTIFICATE-----Generated at Tue Jun 3 23:42:40 2025 by rpki-client