$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft File: ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft (raw, json) Hash identifier: vM0QY2g82XP6jRB+gJSS6DvXb2IQZGnBf5baluqQdr0= Subject key identifier: 67:4C:25:D8:A4:F5:9C:14:EC:57:11:B1:60:D6:7F:AF:60:FD:60:48 Authority key identifier: C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB Certificate issuer: /CN=A91D2ACF/serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Certificate serial: 0A17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft Manifest number: 0A0B Signing time: Fri 30 May 2025 20:01:00 +0000 Manifest this update: Fri 30 May 2025 20:01:00 +0000 Manifest next update: Fri 06 Jun 2025 20:01:00 +0000 Files and hashes: 1: ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl (hash: 8814POQEQsM3UYAYSI0h6ISBDxN5ym5B8at9/TQ8flw=) 2: F22D283A9B3B11EBA5C76B80C4F9AE02.roa (hash: egvdAkYLzu5gxxKonGYdt5g+UPStKzivhdsfzC6knl8=) 3: 3A851EE273E411EA9572F76EC4F9AE02.roa (hash: vR/hsH9Zhb8FIZHjA0oIM8YiJ7UXh8ADZ/D+wU+8mAM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2583 (0xa17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2ACF, serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Validity Not Before: May 30 20:01:00 2025 GMT Not After : Jun 6 20:01:00 2025 GMT Subject: CN=683a0e7c-c38a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:a2:23:59:81:5f:2a:05:b1:f5:bc:c4:6a:59: 64:8d:94:8e:73:59:f7:f8:6f:58:87:b8:54:55:2c: 01:2d:ff:59:4d:67:8e:0c:3d:c2:72:11:ec:82:da: cb:dc:59:a7:00:85:b6:41:e3:d5:dd:f5:ec:38:66: ad:88:2f:63:d1:2e:b2:ea:bc:4c:a6:b6:59:05:d1: dd:2b:54:4f:c6:b4:4c:f2:2c:05:c8:ff:f8:02:fa: 67:f8:e2:08:aa:53:de:90:02:df:97:bf:6e:e0:2c: f7:6c:de:2d:17:fa:cf:bd:78:84:38:c2:b3:b7:90: e5:f6:f0:4d:26:48:50:04:46:d3:1e:a3:e8:ce:9b: 7b:9e:08:72:b5:38:79:18:5a:9d:6e:d7:9e:b8:2a: 35:59:cc:91:23:d0:8e:57:bb:8e:39:53:a2:d6:6e: 13:8e:88:be:18:d2:c8:b8:43:19:26:dc:36:f4:ee: 9a:7d:0b:fd:aa:34:d2:25:0c:6e:72:68:c9:ce:31: ae:05:e4:3e:97:7f:72:65:5b:f6:a2:40:6b:df:24: df:36:cc:a4:aa:7c:bb:15:a0:2a:1b:02:13:b6:47: df:34:e1:f2:70:89:45:8b:29:62:85:4c:38:f0:81: 0a:cf:dd:ca:4e:bc:9a:4c:be:6e:57:c9:9b:b0:3b: ac:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:4C:25:D8:A4:F5:9C:14:EC:57:11:B1:60:D6:7F:AF:60:FD:60:48 X509v3 Authority Key Identifier: keyid:C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:dc:43:83:8d:f6:29:e4:51:64:e1:59:20:e7:4e:ca:9e:aa: ff:61:89:be:21:d1:e1:89:54:01:a2:19:3e:12:cb:28:37:eb: 9e:0d:ef:d1:8a:e0:a1:35:f8:42:95:6f:30:84:f6:16:eb:da: c6:eb:39:d1:a6:38:4e:9f:fa:b9:12:3e:1a:78:9e:79:2c:79: a8:47:b4:59:2d:22:f3:e6:de:06:70:0f:ba:c0:25:da:53:82: b3:fc:30:01:c6:a6:ff:20:17:ce:05:86:fc:d7:1a:54:0a:ac: a4:d3:b7:8f:7e:4a:9e:ad:0d:e3:4e:fe:71:7d:6d:b1:8b:cd: e2:bb:56:a4:28:f5:f9:12:d7:50:5f:03:d8:2d:fa:eb:13:a0: 3f:9a:2d:fe:ff:cb:09:0a:15:89:cd:11:2b:7a:e6:97:e6:54: 21:99:55:1f:1b:70:98:ed:1e:3f:a6:70:86:34:a9:7b:99:37: d8:da:b2:cb:8c:70:4a:de:57:6a:dd:b1:41:77:ad:ff:88:b3: 94:05:31:20:3e:36:f8:67:c7:22:83:13:bd:e8:1b:7b:8b:a8: c5:13:68:e0:8a:9a:da:89:bc:64:54:17:b6:b7:5c:23:de:5b: ee:94:34:3a:f1:21:6f:77:6c:81:30:51:7b:1f:c5:6d:d5:bc: d1:70:35:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICChcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJBQ0YxMTAvBgNVBAUTKEM5RUQ0Qjc2NzZFM0Y1QTVCMUY4QTZBMEREN0UyMjFC NjNFNTM0QUIwHhcNMjUwNTMwMjAwMTAwWhcNMjUwNjA2MjAwMTAwWjAYMRYwFAYD VQQDEw02ODNhMGU3Yy1jMzhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA16IjWYFfKgWx9bzEallkjZSOc1n3+G9Yh7hUVSwBLf9ZTWeODD3CchHsgtrL 3FmnAIW2QePV3fXsOGatiC9j0S6y6rxMprZZBdHdK1RPxrRM8iwFyP/4Avpn+OII qlPekALfl79u4Cz3bN4tF/rPvXiEOMKzt5Dl9vBNJkhQBEbTHqPozpt7nghytTh5 GFqdbteeuCo1WcyRI9COV7uOOVOi1m4Tjoi+GNLIuEMZJtw29O6afQv9qjTSJQxu cmjJzjGuBeQ+l39yZVv2okBr3yTfNsykqny7FaAqGwITtkffNOHycIlFiylihUw4 8IEKz93KTryaTL5uV8mbsDusIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGdMJdik 9ZwU7FcRsWDWf69g/WBIMB8GA1UdIwQYMBaAFMntS3Z24/WlsfimoN1+Ihtj5TSr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkFDRi81QUM2MkIyQTcz RTMxMUVBOUI1OTQzNkVDNEY5QUUwMi95ZTFMZG5iajlhV3gtS2FnM1g0aUcyUGxO S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3llMUxkbmJqOWFXeC1LYWczWDRpRzJQbE5Lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkFDRi81QUM2MkIyQTczRTMxMUVBOUI1OTQzNkVDNEY5QUUwMi95ZTFMZG5iajlh V3gtS2FnM1g0aUcyUGxOS3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBb3EODjfYp5FFk4Vkg507Knqr/YYm+IdHhiVQBohk+EssoN+ueDe/R iuChNfhClW8whPYW69rG6znRpjhOn/q5Ej4aeJ55LHmoR7RZLSLz5t4GcA+6wCXa U4Kz/DABxqb/IBfOBYb81xpUCqyk07ePfkqerQ3jTv5xfW2xi83iu1akKPX5EtdQ XwPYLfrrE6A/mi3+/8sJChWJzREreuaX5lQhmVUfG3CY7R4/pnCGNKl7mTfY2rLL jHBK3ldq3bFBd63/iLOUBTEgPjb4Z8cigxO96Bt7i6jFE2jgipraibxkVBe2t1wj 3lvulDQ68SFvd2yBMFF7H8Vt1bzRcDU3 -----END CERTIFICATE-----Generated at Sat May 31 17:20:36 2025 by rpki-client