$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft File: yoXhM8HiOWFMnFd4ARi9swlSjnY.mft (raw, json) Hash identifier: 06zeBf6rFgVlTJKgPjqQ51cCNl2CnsZatLbpuYobs38= Subject key identifier: 65:6F:8C:E3:5B:05:9A:C7:39:EB:78:1F:55:CF:3E:B2:04:2A:B3:45 Authority key identifier: CA:85:E1:33:C1:E2:39:61:4C:9C:57:78:01:18:BD:B3:09:52:8E:76 Certificate issuer: /CN=A91DC42E/serialNumber=CA85E133C1E239614C9C57780118BDB309528E76 Certificate serial: 0792 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft Manifest number: 078C Signing time: Fri 30 May 2025 21:35:43 +0000 Manifest this update: Fri 30 May 2025 21:35:42 +0000 Manifest next update: Fri 06 Jun 2025 21:35:42 +0000 Files and hashes: 1: yoXhM8HiOWFMnFd4ARi9swlSjnY.crl (hash: n2KqRqkX7UZrf2kfcPP4eHT1aPlmkDaaMqG0+6h5kEQ=) 2: 4AAD8CFE0D1E11EB83C9B637C4F9AE02.roa (hash: SKKgbqIxO8h2gMjhNkPa/ZI17L9sik+EpFHik6yG+pU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.crl rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:35:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1938 (0x792) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC42E, serialNumber=CA85E133C1E239614C9C57780118BDB309528E76 Validity Not Before: May 30 21:35:42 2025 GMT Not After : Jun 6 21:35:42 2025 GMT Subject: CN=683a24af-67a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c8:1f:f4:00:dd:96:4d:5c:23:3b:3c:67:74: b8:c9:c2:af:0b:16:95:cf:7a:47:5a:a2:f8:72:92: bf:61:5e:a5:ee:0d:04:2c:ec:5c:33:0b:f4:d2:f2: 70:1f:fc:f9:d7:24:0a:f5:b9:f0:7e:1e:5f:e6:be: 23:70:cc:f9:22:6f:7e:0b:76:49:b8:4e:01:3a:77: ed:95:ed:5b:06:d4:85:0a:e1:95:6d:30:ee:15:a7: eb:94:99:68:2d:28:24:b2:bc:93:78:43:37:d0:17: 60:15:b4:34:d6:97:d0:d1:55:56:61:74:fd:37:44: c9:e8:70:f4:e5:ac:80:56:c2:51:63:5f:5b:b3:0c: 2e:f6:df:d9:14:c8:17:f5:ba:f1:7b:fb:b6:f4:8e: 45:6b:bc:2c:b8:a3:96:72:f2:e3:83:62:fc:61:87: 10:62:7a:22:47:11:9e:ca:f8:98:b1:3e:18:f2:be: 77:91:9e:b0:d9:73:e7:b1:79:a3:c3:64:39:c4:8e: f7:80:43:a3:82:00:08:07:d1:50:8b:b7:b1:4f:d3: e9:44:2b:7f:c4:23:75:8f:08:d8:ca:a8:6d:af:24: 32:d3:3b:ec:5a:b0:fb:e9:d9:94:eb:0c:eb:7f:58: 2f:18:09:c8:df:4a:4d:86:0d:0e:fe:b2:2b:25:d9: fb:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:6F:8C:E3:5B:05:9A:C7:39:EB:78:1F:55:CF:3E:B2:04:2A:B3:45 X509v3 Authority Key Identifier: keyid:CA:85:E1:33:C1:E2:39:61:4C:9C:57:78:01:18:BD:B3:09:52:8E:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:97:e8:82:2c:28:dc:01:43:16:3f:db:53:28:45:e3:55:7f: c0:f3:40:b1:43:06:cd:2f:fe:e1:45:65:db:34:13:c8:e6:b5: c5:dd:92:b0:9e:e8:ba:66:d5:8a:4a:4d:15:6a:f0:8d:d6:f4: 46:b5:67:71:c5:95:a6:b0:8d:9d:05:c7:53:a7:8d:03:a7:aa: 8d:ba:72:0b:42:10:92:f9:a4:7f:2a:c7:25:80:e1:ee:42:d2: d3:75:4c:7b:fc:a9:dc:58:d9:c5:2d:00:c4:9a:b1:83:99:eb: 9c:8b:62:e7:c7:58:4a:7e:cc:d5:d9:3b:79:a1:2c:21:73:f0: 03:81:84:31:8a:ff:3f:bb:22:15:c3:f5:21:f1:d4:ee:05:60: b9:fb:16:a5:39:0b:07:b4:db:28:74:a5:7f:36:ac:9c:e3:79: 43:e7:d4:97:c1:b9:a9:ad:c0:ab:9a:18:06:df:e7:45:bb:5c: 1b:f1:04:99:64:45:e4:ac:66:4a:da:af:a0:3e:72:9a:e4:1b: f9:74:0a:41:10:e0:fd:f6:30:e8:02:b4:fe:31:9a:6c:ff:8d: 6c:2f:b4:b8:24:83:74:60:50:82:6a:a6:a1:e4:2e:53:dc:28: 22:5b:38:b0:af:f2:cb:39:34:47:f5:b9:83:bc:2c:f3:f2:0b: 2b:9c:7d:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB5IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0MkUxMTAvBgNVBAUTKENBODVFMTMzQzFFMjM5NjE0QzlDNTc3ODAxMThCREIz MDk1MjhFNzYwHhcNMjUwNTMwMjEzNTQyWhcNMjUwNjA2MjEzNTQyWjAYMRYwFAYD VQQDEw02ODNhMjRhZi02N2E2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuMgf9ADdlk1cIzs8Z3S4ycKvCxaVz3pHWqL4cpK/YV6l7g0ELOxcMwv00vJw H/z51yQK9bnwfh5f5r4jcMz5Im9+C3ZJuE4BOnftle1bBtSFCuGVbTDuFafrlJlo LSgksryTeEM30BdgFbQ01pfQ0VVWYXT9N0TJ6HD05ayAVsJRY19bswwu9t/ZFMgX 9brxe/u29I5Fa7wsuKOWcvLjg2L8YYcQYnoiRxGeyviYsT4Y8r53kZ6w2XPnsXmj w2Q5xI73gEOjggAIB9FQi7exT9PpRCt/xCN1jwjYyqhtryQy0zvsWrD76dmU6wzr f1gvGAnI30pNhg0O/rIrJdn7wQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGVvjONb BZrHOet4H1XPPrIEKrNFMB8GA1UdIwQYMBaAFMqF4TPB4jlhTJxXeAEYvbMJUo52 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzQyRS9ENkE3RkY0ODBE MTcxMUVCQTc0MUE1MEFDNEY5QUUwMi95b1hoTThIaU9XRk1uRmQ0QVJpOXN3bFNq blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lvWGhNOEhpT1dGTW5GZDRBUmk5c3dsU2puWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzQyRS9ENkE3RkY0ODBEMTcxMUVCQTc0MUE1MEFDNEY5QUUwMi95b1hoTThIaU9X Rk1uRmQ0QVJpOXN3bFNqblkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzl+iCLCjcAUMWP9tTKEXjVX/A80CxQwbNL/7hRWXbNBPI5rXF3ZKw nui6ZtWKSk0VavCN1vRGtWdxxZWmsI2dBcdTp40Dp6qNunILQhCS+aR/KsclgOHu QtLTdUx7/KncWNnFLQDEmrGDmeuci2Lnx1hKfszV2Tt5oSwhc/ADgYQxiv8/uyIV w/Uh8dTuBWC5+xalOQsHtNsodKV/Nqyc43lD59SXwbmprcCrmhgG3+dFu1wb8QSZ ZEXkrGZK2q+gPnKa5Bv5dApBEOD99jDoArT+MZps/41sL7S4JIN0YFCCaqah5C5T 3CgiWziwr/LLOTRH9bmDvCzz8gsrnH1P -----END CERTIFICATE-----Generated at Sat May 31 17:27:58 2025 by rpki-client