$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft File: ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft (raw, json) Hash identifier: YmuFXnfGBlGOcroKFSaMEU0OOZYywDHqxZ0FTbmwnjU= Subject key identifier: 69:30:7D:0B:38:2D:B9:EB:1E:95:7F:9D:94:A1:5B:DB:8B:DB:10:B2 Authority key identifier: 93:2E:C2:E6:E5:2B:5A:F6:C7:B0:3C:41:50:20:ED:E2:72:AA:A1:45 Certificate issuer: /CN=A91CEF3E/serialNumber=932EC2E6E52B5AF6C7B03C415020EDE272AAA145 Certificate serial: 0E88 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft Manifest number: 0E77 Signing time: Sat 31 May 2025 17:46:59 +0000 Manifest this update: Sat 31 May 2025 17:46:58 +0000 Manifest next update: Sat 07 Jun 2025 17:46:58 +0000 Files and hashes: 1: ky7C5uUrWvbHsDxBUCDt4nKqoUU.crl (hash: RxGmK+P/szfA1obrznzL6Pihp9Z8rw6SYX4PPFdg+Xk=) 2: 5C154406988911E991B10838C4F9AE02.roa (hash: rlBKToBwc/S7CrTJwY8L3fa6c6H9ms0SKbG322SWU2g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.crl rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 17:46:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3720 (0xe88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEF3E, serialNumber=932EC2E6E52B5AF6C7B03C415020EDE272AAA145 Validity Not Before: May 31 17:46:58 2025 GMT Not After : Jun 7 17:46:58 2025 GMT Subject: CN=683b4093-b242 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:de:cc:9b:10:23:61:77:f8:70:12:de:f6:25: e5:e5:83:9e:04:90:45:75:55:cd:0c:96:73:9a:03: e8:4c:a3:c0:3c:82:73:da:ea:9a:37:e4:d6:45:fb: ec:8c:94:1a:64:7d:44:23:53:67:66:ed:57:00:66: 0f:24:85:23:ab:78:fa:ae:07:c1:a0:bf:9d:26:28: 17:ea:96:9e:a4:73:22:a4:2d:b4:b9:29:78:d0:f1: 28:f2:9c:7b:1c:da:31:c3:7b:58:66:46:dc:e6:3e: ad:a4:3e:09:98:b9:d0:be:d0:19:29:a1:92:c4:d9: 5f:6f:65:32:d1:22:12:fa:cf:23:04:d1:58:79:82: 3f:dd:45:a8:a4:60:2a:e6:89:fa:99:18:dc:08:76: 46:89:2d:59:ba:5b:12:d2:b0:96:fb:64:90:c7:57: ea:e5:c5:2b:ef:fe:42:21:e3:3f:86:ba:c1:61:0c: 6b:36:75:70:35:4e:c3:7d:5b:08:4c:e8:b0:c8:0a: f8:53:4c:1e:ad:5a:29:c7:15:34:30:e8:90:86:b5: 05:3e:36:4d:4a:b3:91:3e:09:94:88:a7:6f:32:f8: 8f:17:3e:76:22:bf:06:0b:b0:5d:6b:85:4e:ec:2c: 46:28:1a:22:59:0c:13:90:e4:b4:3a:34:cd:21:c9: 6d:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:30:7D:0B:38:2D:B9:EB:1E:95:7F:9D:94:A1:5B:DB:8B:DB:10:B2 X509v3 Authority Key Identifier: keyid:93:2E:C2:E6:E5:2B:5A:F6:C7:B0:3C:41:50:20:ED:E2:72:AA:A1:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:0e:d1:d8:3d:b4:7e:4f:19:70:c8:f3:85:37:d0:e9:fc:ab: 30:5f:fb:fc:e6:73:4a:b7:9c:66:f7:f6:14:8a:7d:c0:cf:a8: f4:32:b1:c8:61:23:29:f1:18:c3:c1:2f:86:a4:07:f7:7d:37: 1c:6c:77:d4:0d:99:ba:cd:86:c7:52:e7:d8:cf:28:4a:67:e0: c0:98:f4:0f:de:57:8e:6a:3f:fd:36:e4:0e:c9:54:12:dd:2a: 0c:15:3a:ed:8a:b7:54:f9:6f:fc:bb:14:36:5c:28:72:64:69: 1d:08:d2:ba:99:49:70:11:18:e4:82:97:e2:0b:2e:55:20:5e: 90:a5:40:dc:e9:79:02:fa:d6:00:81:e1:47:5d:bd:8c:d3:b5: eb:d5:59:88:47:4d:63:9b:9e:93:99:d8:ad:64:42:1b:37:81: ae:79:16:2c:d2:bc:c4:63:30:a8:33:62:a6:26:34:5f:46:da: 17:3e:35:c3:eb:02:2c:1d:fa:a2:92:bb:ea:c4:3a:6e:89:df: 44:b5:20:62:f5:af:eb:60:b6:ec:67:b7:09:85:84:7a:dd:40: 76:14:c2:e3:3e:f6:bb:07:a5:26:5d:20:04:36:59:30:25:4a: e1:e1:b0:be:0a:b4:1f:e5:e2:b5:0e:7c:32:60:36:92:4a:9a: cd:33:5e:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDogwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VGM0UxMTAvBgNVBAUTKDkzMkVDMkU2RTUyQjVBRjZDN0IwM0M0MTUwMjBFREUy NzJBQUExNDUwHhcNMjUwNTMxMTc0NjU4WhcNMjUwNjA3MTc0NjU4WjAYMRYwFAYD VQQDEw02ODNiNDA5My1iMjQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqN7MmxAjYXf4cBLe9iXl5YOeBJBFdVXNDJZzmgPoTKPAPIJz2uqaN+TWRfvs jJQaZH1EI1NnZu1XAGYPJIUjq3j6rgfBoL+dJigX6paepHMipC20uSl40PEo8px7 HNoxw3tYZkbc5j6tpD4JmLnQvtAZKaGSxNlfb2Uy0SIS+s8jBNFYeYI/3UWopGAq 5on6mRjcCHZGiS1ZulsS0rCW+2SQx1fq5cUr7/5CIeM/hrrBYQxrNnVwNU7DfVsI TOiwyAr4U0werVopxxU0MOiQhrUFPjZNSrORPgmUiKdvMviPFz52Ir8GC7Bda4VO 7CxGKBoiWQwTkOS0OjTNIcltpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGkwfQs4 LbnrHpV/nZShW9uL2xCyMB8GA1UdIwQYMBaAFJMuwublK1r2x7A8QVAg7eJyqqFF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUYzRS9DQjc0Q0Y2RTk4 N0IxMUU5ODNFQ0NGMTNDNEY5QUUwMi9reTdDNXVVcld2YkhzRHhCVUNEdDRuS3Fv VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2t5N0M1dVVyV3ZiSHNEeEJVQ0R0NG5LcW9VVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUYzRS9DQjc0Q0Y2RTk4N0IxMUU5ODNFQ0NGMTNDNEY5QUUwMi9reTdDNXVVcld2 YkhzRHhCVUNEdDRuS3FvVVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxDtHYPbR+TxlwyPOFN9Dp/KswX/v85nNKt5xm9/YUin3Az6j0MrHI YSMp8RjDwS+GpAf3fTccbHfUDZm6zYbHUufYzyhKZ+DAmPQP3leOaj/9NuQOyVQS 3SoMFTrtirdU+W/8uxQ2XChyZGkdCNK6mUlwERjkgpfiCy5VIF6QpUDc6XkC+tYA geFHXb2M07Xr1VmIR01jm56TmditZEIbN4GueRYs0rzEYzCoM2KmJjRfRtoXPjXD 6wIsHfqikrvqxDpuid9EtSBi9a/rYLbsZ7cJhYR63UB2FMLjPva7B6UmXSAENlkw JUrh4bC+CrQf5eK1DnwyYDaSSprNM16/ -----END CERTIFICATE-----Generated at Mon Jun 2 19:39:33 2025 by rpki-client