$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD1F9/484F26E64ACF11EFB8218E15C4F9AE02/YsqcEm4U_7u8PWQHEF6-FRuZYFs.mft File: YsqcEm4U_7u8PWQHEF6-FRuZYFs.mft (raw, json) Hash identifier: aPPzI2pUwin2NAhNxBIO6WdlQIxNh1OumgsHBaF972g= Subject key identifier: 5E:AC:A7:9E:A0:16:C5:DD:0F:F8:A5:97:D0:B1:EF:DF:B6:17:06:2F Authority key identifier: 62:CA:9C:12:6E:14:FF:BB:BC:3D:64:07:10:5E:BE:15:1B:99:60:5B Certificate issuer: /CN=A91DD1F9/serialNumber=62CA9C126E14FFBBBC3D6407105EBE151B99605B Certificate serial: 9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsqcEm4U_7u8PWQHEF6-FRuZYFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD1F9/484F26E64ACF11EFB8218E15C4F9AE02/YsqcEm4U_7u8PWQHEF6-FRuZYFs.mft Manifest number: 9E Signing time: Sat 31 May 2025 05:50:24 +0000 Manifest this update: Sat 31 May 2025 05:50:24 +0000 Manifest next update: Sat 07 Jun 2025 05:50:24 +0000 Files and hashes: 1: YsqcEm4U_7u8PWQHEF6-FRuZYFs.crl (hash: nCoPC5AIA3zX1y5l1nHIpjPkH/3FWriQBmJW/lqnab0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD1F9/484F26E64ACF11EFB8218E15C4F9AE02/YsqcEm4U_7u8PWQHEF6-FRuZYFs.crl rsync://rpki.apnic.net/member_repository/A91DD1F9/484F26E64ACF11EFB8218E15C4F9AE02/YsqcEm4U_7u8PWQHEF6-FRuZYFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsqcEm4U_7u8PWQHEF6-FRuZYFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:50:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 158 (0x9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD1F9, serialNumber=62CA9C126E14FFBBBC3D6407105EBE151B99605B Validity Not Before: May 31 05:50:24 2025 GMT Not After : Jun 7 05:50:24 2025 GMT Subject: CN=683a98a0-a46f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:80:80:56:f3:43:8c:3a:c0:cd:9a:d9:d0:57: a6:95:cf:76:2e:02:52:9f:42:2a:f1:4d:96:ba:01: 91:00:f8:45:3a:0e:55:29:90:12:74:4d:72:13:15: ed:76:64:db:f6:45:f5:93:19:58:64:a0:d2:cb:a5: a6:4b:d4:71:2d:ce:e6:f9:aa:bc:66:df:f2:be:78: ef:d6:ae:63:bd:77:90:b6:8a:6a:c4:46:f2:7e:a9: 20:74:d5:63:5c:35:28:43:db:58:4b:b8:61:a5:f2: 75:bd:fa:1a:e9:8b:67:f9:06:53:a8:70:2b:a0:3c: ff:9f:85:90:b6:fd:e4:79:23:e9:0a:5c:cc:ff:be: fe:83:ee:d6:df:96:e2:3a:53:24:3d:a6:30:4c:78: ef:db:54:e2:d6:f0:3e:80:20:98:22:18:8e:a6:1c: 17:9a:ca:0f:de:91:40:6b:36:05:96:be:08:27:73: 23:9e:d0:78:36:f8:65:75:e4:26:00:c6:67:8b:3a: f3:e0:f5:0f:34:d9:53:29:5b:98:f1:d4:da:c9:d1: c7:cd:bf:1a:37:13:04:a4:3d:cf:16:90:6e:74:cf: 38:81:78:85:f7:80:43:48:80:17:74:50:04:54:57: 28:1c:37:fc:81:c9:2a:42:c4:4f:76:2c:90:b5:a9: 71:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:AC:A7:9E:A0:16:C5:DD:0F:F8:A5:97:D0:B1:EF:DF:B6:17:06:2F X509v3 Authority Key Identifier: keyid:62:CA:9C:12:6E:14:FF:BB:BC:3D:64:07:10:5E:BE:15:1B:99:60:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD1F9/484F26E64ACF11EFB8218E15C4F9AE02/YsqcEm4U_7u8PWQHEF6-FRuZYFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsqcEm4U_7u8PWQHEF6-FRuZYFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD1F9/484F26E64ACF11EFB8218E15C4F9AE02/YsqcEm4U_7u8PWQHEF6-FRuZYFs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:94:f6:68:56:1d:db:34:3d:69:88:c7:a3:4b:5e:8f:21:d5: 68:6e:b7:5d:b8:54:3c:f3:48:80:81:f3:f3:dc:da:66:7e:ba: d8:22:d0:5a:b8:20:7b:29:6b:4d:ff:cb:2d:1e:5f:52:d1:e2: 34:5b:e0:17:e9:bc:54:04:e9:0d:7d:bc:cd:41:5f:63:af:56: 4e:1e:3f:ed:3f:5c:15:3e:e2:68:e3:75:91:62:92:e9:6c:2f: 5a:3b:68:28:c9:0e:06:3d:2b:fc:e3:92:03:e0:63:46:41:a2: 3c:3d:48:a5:ea:ad:b9:45:8d:4b:63:71:3d:d4:48:99:38:9c: 3b:9c:75:53:b6:13:d3:85:76:54:e9:1d:21:db:01:0f:6a:55: c5:6c:6a:d6:38:0c:14:7a:40:91:70:e8:58:41:72:d0:d4:b2: 5c:da:3c:e3:2b:93:19:f1:bc:08:06:ef:96:ce:71:25:b4:e0: 5a:20:49:28:18:0e:39:7a:e5:53:48:a1:4e:a1:1b:61:7b:18: 92:5b:ee:46:b5:43:db:36:81:9a:87:14:fd:6d:11:62:5b:68: cb:72:aa:b9:6b:74:e8:5f:29:ca:c2:db:d1:3a:2f:99:11:98: b9:6c:2d:5a:80:76:fd:94:39:05:c5:82:11:02:13:01:eb:c7: b2:cf:0a:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQxRjkxMTAvBgNVBAUTKDYyQ0E5QzEyNkUxNEZGQkJCQzNENjQwNzEwNUVCRTE1 MUI5OTYwNUIwHhcNMjUwNTMxMDU1MDI0WhcNMjUwNjA3MDU1MDI0WjAYMRYwFAYD VQQDEw02ODNhOThhMC1hNDZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2oCAVvNDjDrAzZrZ0Femlc92LgJSn0Iq8U2WugGRAPhFOg5VKZASdE1yExXt dmTb9kX1kxlYZKDSy6WmS9RxLc7m+aq8Zt/yvnjv1q5jvXeQtopqxEbyfqkgdNVj XDUoQ9tYS7hhpfJ1vfoa6Ytn+QZTqHAroDz/n4WQtv3keSPpClzM/77+g+7W35bi OlMkPaYwTHjv21Ti1vA+gCCYIhiOphwXmsoP3pFAazYFlr4IJ3MjntB4NvhldeQm AMZnizrz4PUPNNlTKVuY8dTaydHHzb8aNxMEpD3PFpBudM84gXiF94BDSIAXdFAE VFcoHDf8gckqQsRPdiyQtalxOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF6sp56g FsXdD/ill9Cx79+2FwYvMB8GA1UdIwQYMBaAFGLKnBJuFP+7vD1kBxBevhUbmWBb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDFGOS80ODRGMjZFNjRB Q0YxMUVGQjgyMThFMTVDNEY5QUUwMi9Zc3FjRW00VV83dThQV1FIRUY2LUZSdVpZ RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lzcWNFbTRVXzd1OFBXUUhFRjYtRlJ1WllGcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDFGOS80ODRGMjZFNjRBQ0YxMUVGQjgyMThFMTVDNEY5QUUwMi9Zc3FjRW00VV83 dThQV1FIRUY2LUZSdVpZRnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCclPZoVh3bND1piMejS16PIdVobrdduFQ880iAgfPz3NpmfrrYItBa uCB7KWtN/8stHl9S0eI0W+AX6bxUBOkNfbzNQV9jr1ZOHj/tP1wVPuJo43WRYpLp bC9aO2goyQ4GPSv845ID4GNGQaI8PUil6q25RY1LY3E91EiZOJw7nHVTthPThXZU 6R0h2wEPalXFbGrWOAwUekCRcOhYQXLQ1LJc2jzjK5MZ8bwIBu+WznEltOBaIEko GA45euVTSKFOoRthexiSW+5GtUPbNoGahxT9bRFiW2jLcqq5a3ToXynKwtvROi+Z EZi5bC1agHb9lDkFxYIRAhMB68eyzwpB -----END CERTIFICATE-----Generated at Sat May 31 17:49:40 2025 by rpki-client