$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFAB9/E853382C9F1311EC9E45D572C4F9AE02/3YoriGVMM2b_5_z2VWqXhgAqpls.mft File: 3YoriGVMM2b_5_z2VWqXhgAqpls.mft (raw, json) Hash identifier: kIGlei9UJveMF1wp8I9MQlwtnAoo5ekP+vrRyZ3Alkc= Subject key identifier: 1C:A7:3F:6A:D8:A9:24:31:51:0C:92:3B:AC:FF:3E:A5:29:B9:C2:86 Authority key identifier: DD:8A:2B:88:65:4C:33:66:FF:E7:FC:F6:55:6A:97:86:00:2A:A6:5B Certificate issuer: /CN=A91CFAB9/serialNumber=DD8A2B88654C3366FFE7FCF6556A9786002AA65B Certificate serial: 03A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3YoriGVMM2b_5_z2VWqXhgAqpls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFAB9/E853382C9F1311EC9E45D572C4F9AE02/3YoriGVMM2b_5_z2VWqXhgAqpls.mft Manifest number: 0399 Signing time: Sat 31 May 2025 01:00:38 +0000 Manifest this update: Sat 31 May 2025 01:00:38 +0000 Manifest next update: Sat 07 Jun 2025 01:00:38 +0000 Files and hashes: 1: 3YoriGVMM2b_5_z2VWqXhgAqpls.crl (hash: Pj1VfFJuBqyyTce7zIAP4DdFoA3sjsBWK2M+5faxTy4=) 2: 596CCC4E9F1911EC8FDFEA7DC4F9AE02.roa (hash: ctAElc1BM1zI8owbq6eyFwFyuzNUp7IAey45t5f8jpA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFAB9/E853382C9F1311EC9E45D572C4F9AE02/3YoriGVMM2b_5_z2VWqXhgAqpls.crl rsync://rpki.apnic.net/member_repository/A91CFAB9/E853382C9F1311EC9E45D572C4F9AE02/3YoriGVMM2b_5_z2VWqXhgAqpls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3YoriGVMM2b_5_z2VWqXhgAqpls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 929 (0x3a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFAB9, serialNumber=DD8A2B88654C3366FFE7FCF6556A9786002AA65B Validity Not Before: May 31 01:00:38 2025 GMT Not After : Jun 7 01:00:38 2025 GMT Subject: CN=683a54b6-7b07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:0c:da:5b:ea:60:61:70:c2:8b:bf:02:cf:82: 3e:81:0b:7b:3f:ae:37:ba:b5:cd:8e:d2:6a:34:05: 78:07:84:bc:c2:60:8e:ec:70:4a:9d:23:73:f5:82: 51:20:65:24:4b:bc:4e:80:e8:2b:cf:a0:95:72:a6: c6:c7:f5:fe:01:7c:32:22:21:66:f3:c3:ef:3b:33: 05:50:2a:26:1f:ea:68:3a:f3:14:73:46:d5:37:ce: d1:18:32:34:31:06:ec:79:52:23:30:e3:4d:d3:66: f8:85:63:57:bb:11:2a:c0:17:5e:96:65:0c:82:3d: 84:f3:3a:80:d3:44:ff:7c:6c:4e:d1:0d:e6:60:83: 77:eb:eb:40:98:b1:3e:53:04:84:7c:e1:fb:de:57: ca:65:f6:35:ae:96:83:a5:ce:7a:6b:9c:04:18:cc: 98:bb:20:02:ef:7f:5e:0b:4e:71:5c:9b:80:b7:8d: e4:a9:bb:f5:e5:b6:2c:b2:86:2e:2d:67:32:23:8e: 35:c0:18:98:2e:eb:1a:d8:77:5c:0b:1c:0c:15:07: eb:ec:90:1e:29:41:88:8f:b6:d6:fd:f1:94:04:b2: 48:08:b2:0e:12:05:fa:08:ce:9d:87:a0:85:c3:d4: e4:30:01:88:22:58:8f:ed:96:ed:a7:93:c7:54:75: 58:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:A7:3F:6A:D8:A9:24:31:51:0C:92:3B:AC:FF:3E:A5:29:B9:C2:86 X509v3 Authority Key Identifier: keyid:DD:8A:2B:88:65:4C:33:66:FF:E7:FC:F6:55:6A:97:86:00:2A:A6:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/E853382C9F1311EC9E45D572C4F9AE02/3YoriGVMM2b_5_z2VWqXhgAqpls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3YoriGVMM2b_5_z2VWqXhgAqpls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/E853382C9F1311EC9E45D572C4F9AE02/3YoriGVMM2b_5_z2VWqXhgAqpls.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:b3:17:a5:db:cf:36:9e:e9:58:80:f9:0d:44:6f:4f:4a:67: b3:03:bd:39:d3:42:3e:a7:2b:15:fc:90:85:d4:03:a9:b0:c9: 81:57:48:c8:45:ed:d6:3a:e7:ca:de:5a:f6:97:f9:57:af:1c: 4f:0f:91:d6:ba:b0:8e:93:de:29:db:51:c1:e0:3a:21:f3:56: 4e:7c:88:97:e6:8a:86:20:f6:dd:12:aa:cd:54:8d:a2:e6:e5: 71:13:76:33:60:15:2e:4d:e1:a3:74:3d:a6:6a:8b:da:c2:52: 60:d0:48:d1:9a:d5:97:88:b2:be:61:b4:11:df:35:1a:f7:d9: 90:64:ef:7c:de:51:7e:c2:74:c6:9b:0f:f9:b8:23:95:cf:0e: 4e:8f:2f:7a:58:b5:d4:29:16:ea:8d:1f:84:29:b6:a7:e4:e8: cd:eb:ab:9b:75:fe:17:7b:8d:6e:35:62:a9:87:35:a6:06:80: 66:20:51:26:67:49:94:b7:8b:44:ff:4c:05:79:36:89:11:7c: 0f:b0:86:70:32:3d:d9:a7:e3:a3:00:6b:81:ef:a9:8b:8e:b8: 00:02:ae:5c:7f:56:ae:ee:ec:cf:20:61:c9:cc:f6:52:58:c7: 20:bd:5f:76:15:b8:7b:50:2d:21:b7:7e:e2:31:47:fe:d5:da: 22:b8:b0:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZBQjkxMTAvBgNVBAUTKEREOEEyQjg4NjU0QzMzNjZGRkU3RkNGNjU1NkE5Nzg2 MDAyQUE2NUIwHhcNMjUwNTMxMDEwMDM4WhcNMjUwNjA3MDEwMDM4WjAYMRYwFAYD VQQDEw02ODNhNTRiNi03YjA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmwzaW+pgYXDCi78Cz4I+gQt7P643urXNjtJqNAV4B4S8wmCO7HBKnSNz9YJR IGUkS7xOgOgrz6CVcqbGx/X+AXwyIiFm88PvOzMFUComH+poOvMUc0bVN87RGDI0 MQbseVIjMONN02b4hWNXuxEqwBdelmUMgj2E8zqA00T/fGxO0Q3mYIN36+tAmLE+ UwSEfOH73lfKZfY1rpaDpc56a5wEGMyYuyAC739eC05xXJuAt43kqbv15bYssoYu LWcyI441wBiYLusa2HdcCxwMFQfr7JAeKUGIj7bW/fGUBLJICLIOEgX6CM6dh6CF w9TkMAGIIliP7Zbtp5PHVHVYzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBynP2rY qSQxUQySO6z/PqUpucKGMB8GA1UdIwQYMBaAFN2KK4hlTDNm/+f89lVql4YAKqZb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkFCOS9FODUzMzgyQzlG MTMxMUVDOUU0NUQ1NzJDNEY5QUUwMi8zWW9yaUdWTU0yYl81X3oyVldxWGhnQXFw bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNZb3JpR1ZNTTJiXzVfejJWV3FYaGdBcXBscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkFCOS9FODUzMzgyQzlGMTMxMUVDOUU0NUQ1NzJDNEY5QUUwMi8zWW9yaUdWTU0y Yl81X3oyVldxWGhnQXFwbHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdsxel2882nulYgPkNRG9PSmezA70500I+pysV/JCF1AOpsMmBV0jI Re3WOufK3lr2l/lXrxxPD5HWurCOk94p21HB4Doh81ZOfIiX5oqGIPbdEqrNVI2i 5uVxE3YzYBUuTeGjdD2maovawlJg0EjRmtWXiLK+YbQR3zUa99mQZO983lF+wnTG mw/5uCOVzw5Ojy96WLXUKRbqjR+EKban5OjN66ubdf4Xe41uNWKphzWmBoBmIFEm Z0mUt4tE/0wFeTaJEXwPsIZwMj3Zp+OjAGuB76mLjrgAAq5cf1au7uzPIGHJzPZS WMcgvV92Fbh7UC0ht37iMUf+1doiuLBc -----END CERTIFICATE-----Generated at Sat May 31 14:41:33 2025 by rpki-client