$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft File: 0ypa3AVCwugXwgK-a3KB6GnReJc.mft (raw, json) Hash identifier: 1DOBLKe5suEnglDcy5/+QWLDR2fYcaBh0kTTrBS+x9M= Subject key identifier: 94:44:85:84:35:DC:30:1A:26:45:AF:E1:AA:90:AB:91:50:21:9F:92 Authority key identifier: D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97 Certificate issuer: /CN=A91E0855/serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897 Certificate serial: A8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft Manifest number: A6 Signing time: Tue 03 Jun 2025 05:56:43 +0000 Manifest this update: Tue 03 Jun 2025 05:56:43 +0000 Manifest next update: Tue 10 Jun 2025 05:56:43 +0000 Files and hashes: 1: 0ypa3AVCwugXwgK-a3KB6GnReJc.crl (hash: zJfiTAxRQSJhko3YIqdWxnun1u6M7sZ6DBN6eaLi8bQ=) 2: 1818952C8D5811EFAD3A5D3BC4F9AE02.roa (hash: tKSHJqdsSmpGgJzA0ThHFbJCNwhgg/q9aM0ZWxNfpP8=) 3: 30C3ECA444B811EF8C81962AC4F9AE02.roa (hash: YRkHlOrrGzxXTEGbxmwj8yAFxeMrCPHch9CuERcM2OI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.crl rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:56:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 168 (0xa8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0855, serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897 Validity Not Before: Jun 3 05:56:43 2025 GMT Not After : Jun 10 05:56:43 2025 GMT Subject: CN=683e8e9b-bd40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:7a:1b:a9:80:f7:f1:1f:31:9b:b4:e9:90:a2: e4:9f:38:e2:ca:1a:e2:cf:89:58:d3:ed:2f:0d:e0: 64:01:9f:c5:b3:fc:9a:f6:66:03:78:ad:0a:be:79: 2c:38:e2:7e:52:e2:72:f5:f0:96:8d:68:5b:bd:74: a1:92:67:91:30:40:07:16:57:ad:15:37:f1:8a:f5: e6:12:0d:30:ff:27:03:a3:03:5f:82:61:17:1c:37: e9:78:db:f2:2a:f9:5b:31:bc:c1:63:6c:3c:31:6b: 1d:9f:96:ed:fc:bb:c0:ae:71:bb:2b:e8:3b:ee:61: b6:36:2d:52:a6:6d:45:ca:4b:d3:aa:b1:69:5a:ab: c5:24:c9:aa:9a:10:fd:eb:eb:34:5a:2b:1e:ce:56: ae:7a:1c:17:a8:3d:0b:90:fb:d6:8c:18:fa:29:9b: 40:1f:3f:09:68:56:9a:8e:74:08:06:82:9c:08:7d: c0:30:e1:67:69:a8:0e:54:d3:89:7f:97:28:78:c2: 93:a4:ab:e6:44:27:3f:f8:25:0a:08:73:c7:5a:d5: bc:42:c7:79:dc:be:8b:53:ba:9c:4d:63:09:ec:3f: 5a:bf:c6:fb:cc:a5:e2:cf:15:6c:07:04:ca:b0:9a: 3c:47:89:19:ac:6a:56:aa:90:5d:5c:b0:b4:58:72: 31:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:44:85:84:35:DC:30:1A:26:45:AF:E1:AA:90:AB:91:50:21:9F:92 X509v3 Authority Key Identifier: keyid:D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:2c:2e:ee:2f:13:b4:92:96:62:63:95:2e:02:cd:a8:61:a6: 47:67:a2:c5:88:25:1f:f1:a2:b0:f3:4b:fa:cf:b3:0b:0a:22: 5a:df:b4:45:94:74:99:95:d3:f5:e6:f3:c9:99:56:81:d4:70: e7:85:f1:fc:80:cc:64:31:5e:60:d4:04:c6:d8:31:86:d9:44: eb:d4:0e:c5:38:46:cc:38:ba:4d:9a:f3:2b:49:ab:d8:a1:87: b7:ac:84:29:53:90:bf:cf:1d:2f:4d:1c:30:f2:6d:78:76:a4: f9:d1:ad:23:80:3c:8f:4e:e0:29:08:42:a6:64:fe:c3:c7:54: ce:b6:63:3b:10:e6:da:33:b4:fd:5b:22:9a:b1:82:ed:e3:22: 83:17:cb:70:81:86:fd:d3:94:cf:78:21:fc:9e:8c:5f:98:b8: 20:e2:b5:0d:e2:50:52:cf:77:4a:5b:be:7d:2a:fc:f7:a6:8d: 78:e9:9a:68:03:38:fd:1d:27:61:a1:d5:7f:f1:df:9b:98:38: 8a:0e:23:a3:3f:57:2b:67:51:3b:8b:f3:fd:4c:82:59:d2:4d: ad:39:09:c6:2d:58:ee:87:89:02:fe:bf:86:d2:db:f4:51:91: 3d:f1:bc:b2:f7:4c:88:64:26:6a:f3:ca:42:93:51:ca:0c:9a: 09:9d:b3:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTA4NTUxMTAvBgNVBAUTKEQzMkE1QURDMDU0MkMyRTgxN0MyMDJCRTZCNzI4MUU4 NjlEMTc4OTcwHhcNMjUwNjAzMDU1NjQzWhcNMjUwNjEwMDU1NjQzWjAYMRYwFAYD VQQDEw02ODNlOGU5Yi1iZDQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApHobqYD38R8xm7TpkKLknzjiyhriz4lY0+0vDeBkAZ/Fs/ya9mYDeK0Kvnks OOJ+UuJy9fCWjWhbvXShkmeRMEAHFletFTfxivXmEg0w/ycDowNfgmEXHDfpeNvy KvlbMbzBY2w8MWsdn5bt/LvArnG7K+g77mG2Ni1Spm1FykvTqrFpWqvFJMmqmhD9 6+s0WisezlauehwXqD0LkPvWjBj6KZtAHz8JaFaajnQIBoKcCH3AMOFnaagOVNOJ f5coeMKTpKvmRCc/+CUKCHPHWtW8Qsd53L6LU7qcTWMJ7D9av8b7zKXizxVsBwTK sJo8R4kZrGpWqpBdXLC0WHIxEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJREhYQ1 3DAaJkWv4aqQq5FQIZ+SMB8GA1UdIwQYMBaAFNMqWtwFQsLoF8ICvmtygehp0XiX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDg1NS81MDRDRkZFMjQ0 OTYxMUVGOEU4NEU2M0RDNEY5QUUwMi8weXBhM0FWQ3d1Z1h3Z0stYTNLQjZHblJl SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzB5cGEzQVZDd3VnWHdnSy1hM0tCNkduUmVKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDg1NS81MDRDRkZFMjQ0OTYxMUVGOEU4NEU2M0RDNEY5QUUwMi8weXBhM0FWQ3d1 Z1h3Z0stYTNLQjZHblJlSmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRLC7uLxO0kpZiY5UuAs2oYaZHZ6LFiCUf8aKw80v6z7MLCiJa37RF lHSZldP15vPJmVaB1HDnhfH8gMxkMV5g1ATG2DGG2UTr1A7FOEbMOLpNmvMrSavY oYe3rIQpU5C/zx0vTRww8m14dqT50a0jgDyPTuApCEKmZP7Dx1TOtmM7EObaM7T9 WyKasYLt4yKDF8twgYb905TPeCH8noxfmLgg4rUN4lBSz3dKW759Kvz3po146Zpo Azj9HSdhodV/8d+bmDiKDiOjP1crZ1E7i/P9TIJZ0k2tOQnGLVjuh4kC/r+G0tv0 UZE98byy90yIZCZq88pCk1HKDJoJnbOC -----END CERTIFICATE-----Generated at Tue Jun 3 23:58:44 2025 by rpki-client