$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.mft File: yOujNL19pukuZ8QIvQN4e66uDK0.mft (raw, json) Hash identifier: nnAph6qv4PEsSaX4sflxRUdxWO6Zl8Z/inwVF56zwI4= Subject key identifier: 48:01:F0:12:73:FA:53:2E:D8:37:31:36:7E:1C:0C:5C:A5:60:5B:4F Authority key identifier: C8:EB:A3:34:BD:7D:A6:E9:2E:67:C4:08:BD:03:78:7B:AE:AE:0C:AD Certificate issuer: /CN=A91CFE07/serialNumber=C8EBA334BD7DA6E92E67C408BD03787BAEAE0CAD Certificate serial: 0D65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOujNL19pukuZ8QIvQN4e66uDK0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.mft Manifest number: 0D50 Signing time: Fri 30 May 2025 18:10:13 +0000 Manifest this update: Fri 30 May 2025 18:10:13 +0000 Manifest next update: Fri 06 Jun 2025 18:10:13 +0000 Files and hashes: 1: yOujNL19pukuZ8QIvQN4e66uDK0.crl (hash: JB3xJo8LgqrdT3xSQxWQHmOHM27L9BMPOLRh6TjaK8s=) 2: A95EC0B2C9FA11EBB7F2E749C4F9AE02.roa (hash: h9Ek+uVHJkd43jpvXLhIeId4TZWOhn+0W2MAspUZuOw=) 3: 226B7BC2AAC611EE9F22785DC4F9AE02.roa (hash: sy4Su4ASjc+OqwWE5jPxA/U7NJeDsxDapY34Q7SzDAE=) 4: A82C70A4C9FA11EBB7F2E749C4F9AE02.roa (hash: +QLq15+GCrbTMv3T/U18UwN/WHFJnfWgXMxuf5yq0ts=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.crl rsync://rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOujNL19pukuZ8QIvQN4e66uDK0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:10:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3429 (0xd65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFE07, serialNumber=C8EBA334BD7DA6E92E67C408BD03787BAEAE0CAD Validity Not Before: May 30 18:10:13 2025 GMT Not After : Jun 6 18:10:13 2025 GMT Subject: CN=6839f485-bea2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:95:08:14:a5:e3:ec:18:40:ae:80:01:e5:40: 3d:e6:18:68:e5:f5:db:74:de:70:09:7c:2f:a7:64: 37:4b:48:d0:53:ee:fc:a9:6a:b9:11:2b:d9:ed:4c: b9:7d:2f:3c:ac:0a:55:96:15:28:27:a8:65:ad:a7: 12:80:b6:fc:b2:9c:5b:9a:54:a1:e2:ce:6a:b5:ed: d8:74:ad:05:3f:3b:27:c5:64:d7:96:24:3f:85:db: 5d:39:3e:5d:fd:bf:0f:90:59:f8:62:44:f0:0e:67: 20:4d:5f:71:b9:20:e1:13:2a:41:d8:c9:d0:06:38: 75:fc:a3:87:af:60:b2:ca:16:36:19:1c:b7:05:38: b5:2f:70:fd:ab:f8:2e:ba:b6:0b:bb:ee:10:d6:67: de:74:e1:e1:1f:13:d2:ec:1e:f6:3e:3f:95:34:aa: 65:ff:7f:3b:d0:71:05:b9:ce:ac:9d:23:97:f8:43: da:86:bb:ef:51:9e:91:62:ab:5a:27:56:a6:b4:a6: c8:9e:83:9a:68:79:e1:76:18:5e:49:7a:dd:9c:8a: 0d:1e:41:48:a7:0f:47:a7:e4:ed:ac:28:c0:d2:d0: b2:09:14:1f:df:77:06:21:51:cf:a8:d5:bb:ea:9e: 83:85:79:cb:cc:9d:16:29:30:2d:76:7e:d8:76:42: 82:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:01:F0:12:73:FA:53:2E:D8:37:31:36:7E:1C:0C:5C:A5:60:5B:4F X509v3 Authority Key Identifier: keyid:C8:EB:A3:34:BD:7D:A6:E9:2E:67:C4:08:BD:03:78:7B:AE:AE:0C:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOujNL19pukuZ8QIvQN4e66uDK0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:1d:d4:eb:23:0e:e3:53:50:f4:12:28:be:3b:7b:cb:0f:dc: 18:03:bb:ac:f7:f5:06:e8:8f:2e:3d:2d:a9:e5:77:e1:9a:85: 56:0c:94:da:2e:83:05:20:f4:60:0d:44:f2:73:70:43:3f:6f: eb:3c:75:71:8e:2c:a4:34:b4:db:67:05:0f:62:e0:b2:69:32: ab:d3:2c:af:d3:2b:f6:1e:d7:bb:41:64:81:1e:e6:38:bc:33: 41:0f:69:eb:c2:7e:b7:ca:22:eb:a4:93:7d:86:3e:61:c4:57: 4a:41:41:e9:89:b7:74:1d:a0:e9:df:12:11:8b:48:b2:d1:ee: f3:bf:3f:a0:95:33:74:7a:6a:3c:1b:f2:82:be:30:ee:ce:93: ed:50:a1:08:6a:dd:cc:ea:86:90:2e:a7:2a:d9:a0:14:ae:68: b8:a3:5d:3f:98:16:68:bd:ef:98:fa:7b:f9:eb:6c:90:08:cb: e0:21:b4:c0:8d:43:b2:31:7c:50:e0:54:30:3a:ad:15:26:af: f4:41:d4:76:b3:fb:04:c4:c7:1c:a2:e2:e3:dd:e3:94:28:05: 2c:a5:f0:b4:3c:b9:55:47:bb:1c:ad:f1:c3:c8:0d:05:be:74: b7:11:aa:71:95:81:c9:c3:56:2c:17:76:82:14:fd:f2:3e:68: b3:e4:a0:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZFMDcxMTAvBgNVBAUTKEM4RUJBMzM0QkQ3REE2RTkyRTY3QzQwOEJEMDM3ODdC QUVBRTBDQUQwHhcNMjUwNTMwMTgxMDEzWhcNMjUwNjA2MTgxMDEzWjAYMRYwFAYD VQQDEw02ODM5ZjQ4NS1iZWEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsZUIFKXj7BhAroAB5UA95hho5fXbdN5wCXwvp2Q3S0jQU+78qWq5ESvZ7Uy5 fS88rApVlhUoJ6hlracSgLb8spxbmlSh4s5qte3YdK0FPzsnxWTXliQ/hdtdOT5d /b8PkFn4YkTwDmcgTV9xuSDhEypB2MnQBjh1/KOHr2CyyhY2GRy3BTi1L3D9q/gu urYLu+4Q1mfedOHhHxPS7B72Pj+VNKpl/3870HEFuc6snSOX+EPahrvvUZ6RYqta J1amtKbInoOaaHnhdhheSXrdnIoNHkFIpw9Hp+TtrCjA0tCyCRQf33cGIVHPqNW7 6p6DhXnLzJ0WKTAtdn7YdkKCVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEgB8BJz +lMu2DcxNn4cDFylYFtPMB8GA1UdIwQYMBaAFMjrozS9fabpLmfECL0DeHuurgyt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkUwNy85NjJDNEI3RUQy QkYxMUU5QTg0RDY2MjJDNEY5QUUwMi95T3VqTkwxOXB1a3VaOFFJdlFONGU2NnVE SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lPdWpOTDE5cHVrdVo4UUl2UU40ZTY2dURLMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkUwNy85NjJDNEI3RUQyQkYxMUU5QTg0RDY2MjJDNEY5QUUwMi95T3VqTkwxOXB1 a3VaOFFJdlFONGU2NnVESzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRHdTrIw7jU1D0Eii+O3vLD9wYA7us9/UG6I8uPS2p5XfhmoVWDJTa LoMFIPRgDUTyc3BDP2/rPHVxjiykNLTbZwUPYuCyaTKr0yyv0yv2Hte7QWSBHuY4 vDNBD2nrwn63yiLrpJN9hj5hxFdKQUHpibd0HaDp3xIRi0iy0e7zvz+glTN0emo8 G/KCvjDuzpPtUKEIat3M6oaQLqcq2aAUrmi4o10/mBZove+Y+nv562yQCMvgIbTA jUOyMXxQ4FQwOq0VJq/0QdR2s/sExMccouLj3eOUKAUspfC0PLlVR7scrfHDyA0F vnS3EapxlYHJw1YsF3aCFP3yPmiz5KBi -----END CERTIFICATE-----Generated at Sat May 31 17:16:17 2025 by rpki-client