$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft File: yCFQSaXsETZftnQLghcGdiaArRc.mft (raw, json) Hash identifier: jW5mqUr+AM7a0y0TtKlgSPICtd3GRa9A1YwERZzJGO8= Subject key identifier: 29:4B:55:04:9E:8A:EE:BF:0C:E6:BA:A0:A4:E9:44:FC:72:48:AF:60 Authority key identifier: C8:21:50:49:A5:EC:11:36:5F:B6:74:0B:82:17:06:76:26:80:AD:17 Certificate issuer: /CN=A91DC459/serialNumber=C8215049A5EC11365FB6740B821706762680AD17 Certificate serial: D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft Manifest number: D5 Signing time: Sat 31 May 2025 05:12:42 +0000 Manifest this update: Sat 31 May 2025 05:12:42 +0000 Manifest next update: Sat 07 Jun 2025 05:12:42 +0000 Files and hashes: 1: yCFQSaXsETZftnQLghcGdiaArRc.crl (hash: lG7h3d4v7VFxc/VqnvSyZofoIzPjs7e0ltPh4TAdv0Y=) 2: 264C45FAFA3F11EE8A884F09C4F9AE02.roa (hash: 5Qk7wqUj4bSez6DKvrGbvLq6LTkbYNIBEPZBlcBLEEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.crl rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:12:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 215 (0xd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC459, serialNumber=C8215049A5EC11365FB6740B821706762680AD17 Validity Not Before: May 31 05:12:42 2025 GMT Not After : Jun 7 05:12:42 2025 GMT Subject: CN=683a8fca-f0f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:8b:20:6d:e5:ff:d1:a6:5f:8a:a9:0d:ae:a0: ae:8d:64:14:d5:11:41:f0:a9:1c:84:93:da:bb:e7: e3:f3:7b:24:7b:68:6f:f6:71:ed:17:9b:8d:47:da: 7a:e4:b1:ef:13:b0:0d:43:d7:87:7e:2d:10:2f:94: e3:a2:82:36:1f:53:05:ac:2b:36:d7:22:ae:4a:6f: 4d:9c:ab:22:a9:37:40:a0:80:95:30:c1:b0:db:e2: 23:95:bc:d9:1d:cc:16:1d:ec:a3:e3:a0:37:28:27: 19:1d:c9:ff:e7:22:b0:3a:63:5f:dc:e1:f5:e6:e0: 49:29:b9:ff:a0:8b:27:e0:d9:66:4b:72:62:9c:81: 55:fb:bc:04:b9:e3:b1:25:37:af:b5:6b:cb:f2:b9: 5b:62:53:d6:23:24:95:db:83:14:7e:25:be:f3:f8: 5e:0b:05:c6:08:cc:69:bd:1f:c8:a4:0f:dc:f5:de: b8:8a:cc:55:32:86:10:82:29:1b:e8:59:e4:6b:17: 92:48:59:96:d1:3b:f7:96:f8:9b:83:5e:a0:a6:14: 0c:a8:74:f2:b0:e4:0b:e4:98:01:c2:93:c6:df:67: 34:8f:52:69:ee:c9:02:8d:dc:68:ec:ac:43:85:68: e8:9a:b5:a5:23:86:c4:00:30:6a:94:9c:03:e6:ca: 83:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:4B:55:04:9E:8A:EE:BF:0C:E6:BA:A0:A4:E9:44:FC:72:48:AF:60 X509v3 Authority Key Identifier: keyid:C8:21:50:49:A5:EC:11:36:5F:B6:74:0B:82:17:06:76:26:80:AD:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:45:fe:12:b1:a8:eb:c7:f5:a3:01:3b:6f:3b:f7:5b:39:0f: fe:8f:89:49:c2:52:c3:49:0a:a8:82:a2:30:0f:6e:c5:e5:0b: 74:9f:36:b0:a1:cf:7a:45:03:bc:6b:7b:52:f7:d6:ef:34:31: b4:32:99:9e:14:f0:06:7e:49:5c:15:6f:69:8a:ba:1a:62:61: 1f:49:40:e0:2c:19:9c:22:6e:bd:13:e5:6b:2d:57:e1:1f:13: ba:9f:16:74:ad:88:a0:3c:ed:73:6a:51:7d:cd:a7:d6:a2:44: ea:4a:5f:da:36:90:a5:8a:61:6e:93:62:d0:83:9f:18:57:98: d1:8b:67:75:51:c2:35:3d:cf:88:fc:4f:74:a2:7a:a0:40:b8: 8e:40:35:ac:e4:80:0b:99:fb:fa:19:c8:70:fc:7d:66:bc:e9: 8c:53:9b:3b:f2:8d:1f:40:50:b0:3d:ea:fb:c2:53:4c:3b:7b: 05:0b:ad:eb:a6:6c:be:47:61:78:66:ce:a3:90:2d:b1:ce:97: a8:ef:06:4e:4a:6d:67:a2:1e:7a:b9:1f:6d:5d:24:1c:d0:e4: 77:6c:7d:43:11:96:68:52:9e:0c:aa:76:48:9c:55:16:12:6b: 0b:dc:76:1b:21:69:96:bd:c1:ab:f3:65:f1:e6:2d:56:58:75: dc:31:49:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0NTkxMTAvBgNVBAUTKEM4MjE1MDQ5QTVFQzExMzY1RkI2NzQwQjgyMTcwNjc2 MjY4MEFEMTcwHhcNMjUwNTMxMDUxMjQyWhcNMjUwNjA3MDUxMjQyWjAYMRYwFAYD VQQDEw02ODNhOGZjYS1mMGYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArosgbeX/0aZfiqkNrqCujWQU1RFB8KkchJPau+fj83ske2hv9nHtF5uNR9p6 5LHvE7ANQ9eHfi0QL5TjooI2H1MFrCs21yKuSm9NnKsiqTdAoICVMMGw2+IjlbzZ HcwWHeyj46A3KCcZHcn/5yKwOmNf3OH15uBJKbn/oIsn4NlmS3JinIFV+7wEueOx JTevtWvL8rlbYlPWIySV24MUfiW+8/heCwXGCMxpvR/IpA/c9d64isxVMoYQgikb 6FnkaxeSSFmW0Tv3lvibg16gphQMqHTysOQL5JgBwpPG32c0j1Jp7skCjdxo7KxD hWjomrWlI4bEADBqlJwD5sqDqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFClLVQSe iu6/DOa6oKTpRPxySK9gMB8GA1UdIwQYMBaAFMghUEml7BE2X7Z0C4IXBnYmgK0X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzQ1OS9BOTM1MDdCQ0Y2 RDUxMUVFQjg3ODNDMUVDNEY5QUUwMi95Q0ZRU2FYc0VUWmZ0blFMZ2hjR2RpYUFy UmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lDRlFTYVhzRVRaZnRuUUxnaGNHZGlhQXJSYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzQ1OS9BOTM1MDdCQ0Y2RDUxMUVFQjg3ODNDMUVDNEY5QUUwMi95Q0ZRU2FYc0VU WmZ0blFMZ2hjR2RpYUFyUmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbRf4Ssajrx/WjATtvO/dbOQ/+j4lJwlLDSQqogqIwD27F5Qt0nzaw oc96RQO8a3tS99bvNDG0MpmeFPAGfklcFW9piroaYmEfSUDgLBmcIm69E+VrLVfh HxO6nxZ0rYigPO1zalF9zafWokTqSl/aNpClimFuk2LQg58YV5jRi2d1UcI1Pc+I /E90onqgQLiOQDWs5IALmfv6Gchw/H1mvOmMU5s78o0fQFCwPer7wlNMO3sFC63r pmy+R2F4Zs6jkC2xzpeo7wZOSm1noh56uR9tXSQc0OR3bH1DEZZoUp4MqnZInFUW EmsL3HYbIWmWvcGr82Xx5i1WWHXcMUmq -----END CERTIFICATE-----Generated at Sat May 31 17:00:27 2025 by rpki-client