$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft File: yq3LrMUbKkZS3XMHTygsM00BAnc.mft (raw, json) Hash identifier: WnJ5tCVTnuthqPFp9IgwANgJnX90uVnQjyGJX+Kt+TA= Subject key identifier: C7:11:25:25:FB:59:B4:2D:35:5E:8D:67:D6:33:84:8A:77:D8:3C:61 Authority key identifier: CA:AD:CB:AC:C5:1B:2A:46:52:DD:73:07:4F:28:2C:33:4D:01:02:77 Certificate issuer: /CN=A91DCCB3/serialNumber=CAADCBACC51B2A4652DD73074F282C334D010277 Certificate serial: 099F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yq3LrMUbKkZS3XMHTygsM00BAnc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft Manifest number: 0999 Signing time: Fri 30 May 2025 20:15:45 +0000 Manifest this update: Fri 30 May 2025 20:15:44 +0000 Manifest next update: Fri 06 Jun 2025 20:15:44 +0000 Files and hashes: 1: yq3LrMUbKkZS3XMHTygsM00BAnc.crl (hash: pObGvSKWuB/56S5OZwTlVPJmLP3VPydYVdXFJCoDclM=) 2: 57EE11D0895D11EA81B43245C4F9AE02.roa (hash: LX76oihYc6Vcq0IqMjxINDxugVvobb/j/buf30BAPmQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.crl rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yq3LrMUbKkZS3XMHTygsM00BAnc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:15:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2463 (0x99f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCCB3, serialNumber=CAADCBACC51B2A4652DD73074F282C334D010277 Validity Not Before: May 30 20:15:44 2025 GMT Not After : Jun 6 20:15:44 2025 GMT Subject: CN=683a11f1-be91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:55:d4:c6:b5:eb:9b:95:da:cd:61:b0:82:c9: 54:a5:50:20:24:cd:51:75:d6:b5:56:39:1c:1d:e2: 2c:12:a4:9f:37:fe:83:85:ef:96:91:25:00:90:32: d1:e9:2c:00:6f:9c:a3:db:9c:63:d3:92:21:29:6d: b9:3e:53:03:f9:1d:66:34:23:26:a1:46:ef:7b:ec: 1d:50:ce:5d:bd:23:39:d0:e6:bb:27:0f:7f:8f:63: df:91:1e:33:cc:13:50:22:6c:95:44:fd:cb:36:a2: 93:b2:22:15:61:a9:bf:22:c9:aa:33:d7:b6:a4:d5: 11:30:b5:90:f7:db:8d:1e:74:3f:c6:a6:07:bd:e5: e5:2a:a1:52:7b:c4:37:41:20:8d:48:82:60:88:fd: d7:5a:47:da:26:11:18:54:d9:3e:53:6a:61:c1:00: f9:d2:33:b7:84:bb:e4:11:28:e0:f1:e1:30:80:0f: 41:36:e7:fe:d5:79:69:00:a5:36:6e:6b:6b:78:d5: 31:8c:9b:6a:85:ed:74:fc:e5:34:73:ab:4f:bc:02: 11:50:93:86:d5:9e:72:84:a9:33:f7:76:da:a9:b8: 6f:ad:8d:66:9a:b8:cf:e7:ff:26:f2:62:20:f0:23: a7:e4:6d:54:db:7f:60:5e:cc:66:a2:c2:f9:41:63: 3f:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:11:25:25:FB:59:B4:2D:35:5E:8D:67:D6:33:84:8A:77:D8:3C:61 X509v3 Authority Key Identifier: keyid:CA:AD:CB:AC:C5:1B:2A:46:52:DD:73:07:4F:28:2C:33:4D:01:02:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yq3LrMUbKkZS3XMHTygsM00BAnc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:a4:e8:4c:a2:ca:e2:79:75:85:31:8e:54:3d:26:61:5d:1b: a9:57:93:4d:ba:1c:53:58:9d:b3:2e:53:31:81:17:b3:9a:b9: 1d:56:a1:f4:99:56:dd:9d:a7:9a:e2:39:68:4b:14:24:52:da: 5a:f2:1d:04:ae:32:37:a3:5d:c4:3f:88:8d:4c:11:05:fa:df: d8:98:5c:04:66:81:74:f9:8a:c6:31:07:66:4e:f2:58:a8:58: e9:08:ad:34:3e:16:59:83:d0:6d:8f:7f:62:2c:59:bd:29:eb: e3:92:2c:09:ad:20:12:46:6a:dd:cd:45:e9:4a:21:65:c2:f7: 4e:11:17:87:be:f8:25:62:76:92:80:57:98:35:f3:be:7f:5d: bf:0a:ce:b4:dc:60:41:6d:ca:f4:9e:63:d3:61:02:6f:11:e1: 64:d1:1a:c0:4e:86:a6:df:45:6e:a3:36:a5:2f:6a:e6:78:a3: 86:ea:37:77:96:9e:3b:89:d9:cb:6b:f9:2d:f7:23:bf:96:66: fe:a4:f6:ca:2f:c5:4e:04:a1:8b:6d:fd:cc:db:f2:3c:33:e9: f3:b5:d8:a8:78:e0:8b:45:5c:0a:9c:6e:8e:7f:fe:2a:c7:35: e7:b2:90:b8:b3:7e:05:4e:a7:e8:40:a5:87:06:95:81:d2:6f: 43:e6:53:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCZ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENDQjMxMTAvBgNVBAUTKENBQURDQkFDQzUxQjJBNDY1MkRENzMwNzRGMjgyQzMz NEQwMTAyNzcwHhcNMjUwNTMwMjAxNTQ0WhcNMjUwNjA2MjAxNTQ0WjAYMRYwFAYD VQQDEw02ODNhMTFmMS1iZTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt1XUxrXrm5XazWGwgslUpVAgJM1Rdda1VjkcHeIsEqSfN/6Dhe+WkSUAkDLR 6SwAb5yj25xj05IhKW25PlMD+R1mNCMmoUbve+wdUM5dvSM50Oa7Jw9/j2PfkR4z zBNQImyVRP3LNqKTsiIVYam/IsmqM9e2pNURMLWQ99uNHnQ/xqYHveXlKqFSe8Q3 QSCNSIJgiP3XWkfaJhEYVNk+U2phwQD50jO3hLvkESjg8eEwgA9BNuf+1XlpAKU2 bmtreNUxjJtqhe10/OU0c6tPvAIRUJOG1Z5yhKkz93baqbhvrY1mmrjP5/8m8mIg 8COn5G1U239gXsxmosL5QWM/swIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMcRJSX7 WbQtNV6NZ9YzhIp32DxhMB8GA1UdIwQYMBaAFMqty6zFGypGUt1zB08oLDNNAQJ3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0NCMy80MUZENjAxNjg5 NUMxMUVBODkwQzYzNDNDNEY5QUUwMi95cTNMck1VYktrWlMzWE1IVHlnc00wMEJB bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lxM0xyTVViS2taUzNYTUhUeWdzTTAwQkFuYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Q0NCMy80MUZENjAxNjg5NUMxMUVBODkwQzYzNDNDNEY5QUUwMi95cTNMck1VYktr WlMzWE1IVHlnc00wMEJBbmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnpOhMosrieXWFMY5UPSZhXRupV5NNuhxTWJ2zLlMxgRezmrkdVqH0 mVbdnaea4jloSxQkUtpa8h0ErjI3o13EP4iNTBEF+t/YmFwEZoF0+YrGMQdmTvJY qFjpCK00PhZZg9Btj39iLFm9KevjkiwJrSASRmrdzUXpSiFlwvdOEReHvvglYnaS gFeYNfO+f12/Cs603GBBbcr0nmPTYQJvEeFk0RrAToam30VuozalL2rmeKOG6jd3 lp47idnLa/kt9yO/lmb+pPbKL8VOBKGLbf3M2/I8M+nztdioeOCLRVwKnG6Of/4q xzXnspC4s34FTqfoQKWHBpWB0m9D5lOZ -----END CERTIFICATE-----Generated at Sat May 31 16:40:42 2025 by rpki-client