$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft File: y8ZgM3D76EzM4GToT08m7b7CZ7E.mft (raw, json) Hash identifier: uTejWXxVuE+kQFx424j2n4qxU5HqEA8zQn/zZzfy7AM= Subject key identifier: 5B:E6:04:11:0E:55:BB:AE:A6:68:E0:BE:86:36:70:3E:9B:68:D9:D7 Authority key identifier: CB:C6:60:33:70:FB:E8:4C:CC:E0:64:E8:4F:4F:26:ED:BE:C2:67:B1 Certificate issuer: /CN=A91D9CA8/serialNumber=CBC6603370FBE84CCCE064E84F4F26EDBEC267B1 Certificate serial: 55 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft Manifest number: 4A Signing time: Tue 03 Jun 2025 07:22:27 +0000 Manifest this update: Tue 03 Jun 2025 07:22:26 +0000 Manifest next update: Tue 10 Jun 2025 07:22:26 +0000 Files and hashes: 1: y8ZgM3D76EzM4GToT08m7b7CZ7E.crl (hash: SJZ8gRmwKMiXDZTf57YWCsLCO+c9laA+JJAdcyy3aXw=) 2: 459A40A0399111F0B589186BC4F9AE02.roa (hash: m6LxhqSKzKitfbLvhayOz3v+ioNxwddzbxWryqPlX6o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.crl rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 07:22:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 85 (0x55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9CA8, serialNumber=CBC6603370FBE84CCCE064E84F4F26EDBEC267B1 Validity Not Before: Jun 3 07:22:26 2025 GMT Not After : Jun 10 07:22:26 2025 GMT Subject: CN=683ea2b3-7157 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:b2:a9:23:df:c5:98:c9:48:0b:18:6e:b4:37: 01:30:fe:74:1f:2b:22:14:b1:0f:79:65:8a:f1:ac: 9a:8b:68:b5:bb:7e:77:87:02:03:1e:75:c5:b6:5d: 4c:dc:39:82:db:89:a9:5e:e6:01:64:5a:73:35:fb: 2d:47:22:6b:e0:f5:07:03:05:cd:f1:5b:a4:ef:1b: 3c:f8:f7:62:b5:5c:d0:99:09:ee:03:bd:dc:c1:ec: 0f:c9:6a:fd:58:3d:95:e0:74:a9:c1:07:b3:76:cb: d8:ec:2c:ad:14:89:3a:4c:56:a0:4a:c3:26:80:9f: 2c:af:39:94:4c:91:29:b2:87:70:86:1e:96:ee:3a: 0d:4d:c3:87:c7:02:89:7b:a2:c4:09:6c:33:33:ae: b7:1c:7c:74:97:82:da:bd:f6:52:06:a3:78:b8:dc: 78:5a:6f:43:af:69:dd:4b:d6:02:d7:60:aa:dd:ad: fc:77:e8:aa:f6:07:32:1f:16:f4:5c:1e:f4:29:a4: 2c:20:ac:94:fd:6e:bb:58:8c:87:5c:1e:f5:d1:fc: 7d:5b:b4:10:48:bb:79:97:3c:1e:6c:c5:1f:6c:3f: 99:90:1f:4a:0d:28:cc:06:7f:b9:46:53:59:aa:96: 32:55:96:8c:4f:cb:71:7a:14:75:89:4f:43:e7:09: cc:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:E6:04:11:0E:55:BB:AE:A6:68:E0:BE:86:36:70:3E:9B:68:D9:D7 X509v3 Authority Key Identifier: keyid:CB:C6:60:33:70:FB:E8:4C:CC:E0:64:E8:4F:4F:26:ED:BE:C2:67:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:14:21:2f:24:0f:72:75:73:f7:4b:f5:d6:60:6b:00:4b:d6: 42:1d:6d:ab:58:87:9e:cc:7d:67:02:3e:7b:f0:1e:75:3b:09: eb:d8:1d:60:4e:c8:b0:19:e1:fd:40:f8:40:af:c6:16:9e:a5: 34:e0:85:eb:b7:d1:4a:75:4c:0b:d3:5f:8e:8e:a2:4b:cb:39: 7d:09:cb:cb:3b:36:a5:fe:d5:24:ef:d9:e7:6e:7f:97:bb:d0: 87:ce:18:b5:cd:35:95:91:4b:7c:37:89:36:b7:4f:a1:21:fa: e4:82:61:82:d3:3a:c1:ec:c1:eb:0e:ce:3b:3d:7b:41:17:0e: 4f:51:ff:0c:f8:d2:ed:1b:74:76:57:c9:6c:4e:ac:52:1c:76: 6c:63:5b:26:3c:59:b4:5f:4e:72:7c:e8:ac:5c:5c:d6:8d:ee: f1:92:36:ba:6f:94:5d:68:88:fa:90:4a:c4:9a:eb:83:95:16: 48:cb:4f:d9:81:47:73:62:54:6e:be:90:86:7f:44:c8:3b:1c: 56:7e:52:ee:71:e0:64:6f:da:c1:14:11:b1:89:9c:59:a4:d5: 71:64:97:bf:46:77:9c:25:f4:73:1a:45:a0:68:e8:4c:3c:e0: 03:e1:4a:c5:26:73:29:e7:d3:e2:a5:8f:62:b3:1b:2d:0b:3b: 2b:ae:09:df -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE OUNBODExMC8GA1UEBRMoQ0JDNjYwMzM3MEZCRTg0Q0NDRTA2NEU4NEY0RjI2RURC RUMyNjdCMTAeFw0yNTA2MDMwNzIyMjZaFw0yNTA2MTAwNzIyMjZaMBgxFjAUBgNV BAMTDTY4M2VhMmIzLTcxNTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD0sqkj38WYyUgLGG60NwEw/nQfKyIUsQ95ZYrxrJqLaLW7fneHAgMedcW2XUzc OYLbiale5gFkWnM1+y1HImvg9QcDBc3xW6TvGzz492K1XNCZCe4DvdzB7A/Jav1Y PZXgdKnBB7N2y9jsLK0UiTpMVqBKwyaAnyyvOZRMkSmyh3CGHpbuOg1Nw4fHAol7 osQJbDMzrrccfHSXgtq99lIGo3i43Hhab0Ovad1L1gLXYKrdrfx36Kr2BzIfFvRc HvQppCwgrJT9brtYjIdcHvXR/H1btBBIu3mXPB5sxR9sP5mQH0oNKMwGf7lGU1mq ljJVloxPy3F6FHWJT0PnCcwVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUW+YEEQ5V u66maOC+hjZwPpto2dcwHwYDVR0jBBgwFoAUy8ZgM3D76EzM4GToT08m7b7CZ7Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5Q0E4LzIwREEyNzQ2RTRG RDExRUZBQzFDRTY3RkM0RjlBRTAyL3k4WmdNM0Q3NkV6TTRHVG9UMDhtN2I3Q1o3 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIveThaZ00zRDc2RXpNNEdUb1QwOG03YjdDWjdFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5 Q0E4LzIwREEyNzQ2RTRGRDExRUZBQzFDRTY3RkM0RjlBRTAyL3k4WmdNM0Q3NkV6 TTRHVG9UMDhtN2I3Q1o3RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAMUIS8kD3J1c/dL9dZgawBL1kIdbatYh57MfWcCPnvwHnU7CevYHWBO yLAZ4f1A+ECvxhaepTTgheu30Up1TAvTX46OokvLOX0Jy8s7NqX+1STv2eduf5e7 0IfOGLXNNZWRS3w3iTa3T6Eh+uSCYYLTOsHswesOzjs9e0EXDk9R/wz40u0bdHZX yWxOrFIcdmxjWyY8WbRfTnJ86KxcXNaN7vGSNrpvlF1oiPqQSsSa64OVFkjLT9mB R3NiVG6+kIZ/RMg7HFZ+Uu5x4GRv2sEUEbGJnFmk1XFkl79Gd5wl9HMaRaBo6Ew8 4APhSsUmcynn0+Klj2KzGy0LOyuuCd8= -----END CERTIFICATE-----Generated at Tue Jun 3 23:43:40 2025 by rpki-client