$ rpki-client -vvf rpki.apnic.net/member_repository/A91D50A2/EE31D874D02711EEBF5B693CC4F9AE02/YmEJu-zJi6UufzmbgJYtOv5astQ.mft File: YmEJu-zJi6UufzmbgJYtOv5astQ.mft (raw, json) Hash identifier: TdEPO4XL/5L/+ily4dlBaiqNU0PF2rf3w/zfDj6HBWs= Subject key identifier: FB:D8:3A:56:DD:08:F7:0E:7C:43:DA:E2:0E:FB:F9:DF:8A:FC:FD:15 Authority key identifier: 62:61:09:BB:EC:C9:8B:A5:2E:7F:39:9B:80:96:2D:3A:FE:5A:B2:D4 Certificate issuer: /CN=A91D50A2/serialNumber=626109BBECC98BA52E7F399B80962D3AFE5AB2D4 Certificate serial: F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YmEJu-zJi6UufzmbgJYtOv5astQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D50A2/EE31D874D02711EEBF5B693CC4F9AE02/YmEJu-zJi6UufzmbgJYtOv5astQ.mft Manifest number: F1 Signing time: Sat 31 May 2025 04:56:17 +0000 Manifest this update: Sat 31 May 2025 04:56:17 +0000 Manifest next update: Sat 07 Jun 2025 04:56:16 +0000 Files and hashes: 1: YmEJu-zJi6UufzmbgJYtOv5astQ.crl (hash: yqA1n6uoU/iIkNxSjr6ftkTrgbqnd9IEKtwKR4FfQGw=) 2: 7447BEF0928411EFB854A522C4F9AE02.roa (hash: 8r1ggxGUtscfFUhVNnn2tSXuD/VeviYdi6zXjlI+agM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D50A2/EE31D874D02711EEBF5B693CC4F9AE02/YmEJu-zJi6UufzmbgJYtOv5astQ.crl rsync://rpki.apnic.net/member_repository/A91D50A2/EE31D874D02711EEBF5B693CC4F9AE02/YmEJu-zJi6UufzmbgJYtOv5astQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YmEJu-zJi6UufzmbgJYtOv5astQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:56:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 244 (0xf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D50A2, serialNumber=626109BBECC98BA52E7F399B80962D3AFE5AB2D4 Validity Not Before: May 31 04:56:17 2025 GMT Not After : Jun 7 04:56:16 2025 GMT Subject: CN=683a8bf1-06b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:f4:63:ed:f0:4c:53:3d:fa:2e:7b:2b:67:5e: a8:2f:84:d0:c5:b0:3c:05:30:f7:14:04:96:11:d4: 0a:32:60:06:6e:e7:91:e7:3c:db:90:c6:c1:d2:fd: 78:0a:39:a1:9c:15:fd:1a:d3:62:07:7e:60:ab:54: 8c:99:74:2f:72:f6:6e:72:61:cc:40:25:18:33:0e: d0:83:bf:a9:94:a9:68:1e:f3:d4:4f:71:7d:39:f4: fe:25:77:a8:39:79:56:e5:ef:43:dc:5a:9e:89:7a: 5d:18:c0:cd:a7:3d:12:1d:1f:2e:c6:73:1c:47:7a: 2e:80:01:dc:a5:e3:10:0e:7d:c9:da:7e:07:58:cd: bc:0e:d4:84:bd:e3:6b:98:9a:5e:85:cc:e3:98:36: a8:3c:8d:d1:17:fe:b0:ba:48:16:c9:fa:e6:bd:c5: 15:8c:5a:72:24:ec:3d:6e:5a:e9:38:08:83:ca:32: da:a5:2d:b5:8b:21:dc:46:38:44:d9:30:cc:ac:fc: b0:1c:fb:29:e6:72:49:f0:ae:06:f1:45:5c:81:97: cd:51:ff:c2:7f:19:8c:c7:c8:cb:6c:ad:29:c5:98: e3:35:19:c3:2b:43:e6:fa:ef:50:e4:b6:31:cd:0b: 3b:37:f8:58:55:a8:c0:c4:26:e5:3b:3e:04:da:ef: fe:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:D8:3A:56:DD:08:F7:0E:7C:43:DA:E2:0E:FB:F9:DF:8A:FC:FD:15 X509v3 Authority Key Identifier: keyid:62:61:09:BB:EC:C9:8B:A5:2E:7F:39:9B:80:96:2D:3A:FE:5A:B2:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D50A2/EE31D874D02711EEBF5B693CC4F9AE02/YmEJu-zJi6UufzmbgJYtOv5astQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YmEJu-zJi6UufzmbgJYtOv5astQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D50A2/EE31D874D02711EEBF5B693CC4F9AE02/YmEJu-zJi6UufzmbgJYtOv5astQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:83:86:5d:eb:e5:e1:c7:fe:c5:5b:67:20:6b:2a:54:b1:06: a1:6e:9d:a0:b8:3d:86:67:38:28:2c:0d:13:18:8b:14:6f:e7: 3f:44:d0:05:80:d2:71:ee:01:e3:b5:56:c8:1d:e1:12:6c:7e: 77:fe:fd:ed:8f:a5:3f:97:2c:b5:f6:9b:cc:d2:fd:fe:fe:39: 5d:78:89:7b:33:c6:c4:32:28:a2:1b:40:6d:af:91:e9:28:32: db:7e:f4:17:c5:0c:4e:b0:31:b3:ee:c9:d4:81:6c:1a:ba:a2: 15:d8:65:c5:3a:6d:df:62:2a:42:8f:48:cc:21:52:31:45:47: 0e:da:a5:b6:59:23:1b:61:ec:35:76:02:a9:f5:56:1d:c0:53: b0:97:e6:6a:a4:05:c8:36:8e:f2:96:13:bb:31:4c:a7:b0:ad: 07:e1:f6:5f:97:c2:9c:0b:d8:ca:3e:bc:8f:a1:ef:90:42:95: a7:86:e5:0d:20:f6:ab:87:c9:7a:00:9b:d8:84:96:18:f3:df: 6d:ba:32:27:b8:bb:f9:4d:bc:56:d0:12:f6:00:90:4f:09:34: 4f:f3:28:b9:d4:1a:ca:9b:e0:27:88:f9:ef:30:6c:06:ad:7c: a1:36:f9:b8:8a:1c:2a:e9:db:7d:0c:73:12:0b:07:bd:5b:ba: df:c8:ab:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUwQTIxMTAvBgNVBAUTKDYyNjEwOUJCRUNDOThCQTUyRTdGMzk5QjgwOTYyRDNB RkU1QUIyRDQwHhcNMjUwNTMxMDQ1NjE3WhcNMjUwNjA3MDQ1NjE2WjAYMRYwFAYD VQQDEw02ODNhOGJmMS0wNmIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwPRj7fBMUz36LnsrZ16oL4TQxbA8BTD3FASWEdQKMmAGbueR5zzbkMbB0v14 CjmhnBX9GtNiB35gq1SMmXQvcvZucmHMQCUYMw7Qg7+plKloHvPUT3F9OfT+JXeo OXlW5e9D3FqeiXpdGMDNpz0SHR8uxnMcR3ougAHcpeMQDn3J2n4HWM28DtSEveNr mJpehczjmDaoPI3RF/6wukgWyfrmvcUVjFpyJOw9blrpOAiDyjLapS21iyHcRjhE 2TDMrPywHPsp5nJJ8K4G8UVcgZfNUf/CfxmMx8jLbK0pxZjjNRnDK0Pm+u9Q5LYx zQs7N/hYVajAxCblOz4E2u/+aQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPvYOlbd CPcOfEPa4g77+d+K/P0VMB8GA1UdIwQYMBaAFGJhCbvsyYulLn85m4CWLTr+WrLU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTBBMi9FRTMxRDg3NEQw MjcxMUVFQkY1QjY5M0NDNEY5QUUwMi9ZbUVKdS16Smk2VXVmem1iZ0pZdE92NWFz dFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ltRUp1LXpKaTZVdWZ6bWJnSll0T3Y1YXN0US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTBBMi9FRTMxRDg3NEQwMjcxMUVFQkY1QjY5M0NDNEY5QUUwMi9ZbUVKdS16Smk2 VXVmem1iZ0pZdE92NWFzdFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANg4Zd6+Xhx/7FW2cgaypUsQahbp2guD2GZzgoLA0TGIsUb+c/RNAF gNJx7gHjtVbIHeESbH53/v3tj6U/lyy19pvM0v3+/jldeIl7M8bEMiiiG0Btr5Hp KDLbfvQXxQxOsDGz7snUgWwauqIV2GXFOm3fYipCj0jMIVIxRUcO2qW2WSMbYew1 dgKp9VYdwFOwl+ZqpAXINo7ylhO7MUynsK0H4fZfl8KcC9jKPryPoe+QQpWnhuUN IParh8l6AJvYhJYY899tujInuLv5TbxW0BL2AJBPCTRP8yi51BrKm+AniPnvMGwG rXyhNvm4ihwq6dt9DHMSCwe9W7rfyKsP -----END CERTIFICATE-----Generated at Sat May 31 17:17:34 2025 by rpki-client