$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft File: yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft (raw, json) Hash identifier: qtpH8U5Ul0VQHPIV6zwlPUHw9QvWJwpCCWbmrDYaC3M= Subject key identifier: FA:56:91:C3:72:30:10:17:45:A5:35:0F:AE:5B:D6:13:0B:24:A6:B9 Authority key identifier: C8:07:0F:D0:61:A8:51:FF:8A:ED:E0:DE:0C:36:07:EE:B9:8F:F7:01 Certificate issuer: /CN=A91E4D3D/serialNumber=C8070FD061A851FF8AEDE0DE0C3607EEB98FF701 Certificate serial: 05C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft Manifest number: 05AB Signing time: Fri 30 May 2025 23:27:18 +0000 Manifest this update: Fri 30 May 2025 23:27:18 +0000 Manifest next update: Fri 06 Jun 2025 23:27:18 +0000 Files and hashes: 1: yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl (hash: Cuzpi+fzuJFWfWtnvY00AR1NEyCImMjNvImWGT/w5Fk=) 2: 5FA1BF8802DD11EE86865A23C4F9AE02.roa (hash: ui8GmB9i/5pnYfd6MeCxTJj3Yjz4hQKs4XNWYMcqflM=) 3: 3003C4BA7C7711EEB9E0BE15C4F9AE02.roa (hash: FX6/INAAxmVV6MV0dP0BtJ9vR4DsIyY73KLXsHsumSU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1477 (0x5c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D3D, serialNumber=C8070FD061A851FF8AEDE0DE0C3607EEB98FF701 Validity Not Before: May 30 23:27:18 2025 GMT Not After : Jun 6 23:27:18 2025 GMT Subject: CN=683a3ed6-af07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:b7:2b:23:bc:39:e8:38:86:6e:1f:d8:6c:72: cd:98:80:f2:44:89:c6:78:6a:14:ae:7f:05:e3:cd: c9:1c:ea:91:21:da:c2:00:92:6f:a9:d9:48:03:3a: 1d:79:7d:b6:79:a4:a2:5e:7d:b4:f3:22:d1:36:84: 81:59:4f:3b:c9:93:4b:a3:63:7b:c3:46:08:41:29: e9:20:62:82:d0:b8:48:a4:5e:c0:9e:63:12:6c:4b: 91:aa:87:37:cf:84:63:6a:43:e0:0f:b6:5d:fb:f4: 3f:8e:5f:fd:e2:19:47:62:52:df:6d:be:d4:16:39: f1:a4:13:f5:f2:50:24:bf:b6:da:4a:d3:a2:38:46: 85:cd:2b:50:33:24:58:87:65:db:41:1f:b4:89:f3: 68:66:8b:96:bc:39:5d:31:47:94:99:54:9c:57:11: 5d:e7:3d:4c:ec:2a:a9:23:6c:27:f6:97:f5:26:b1: 4e:a2:e7:9b:cd:6e:4a:dd:71:af:a0:74:93:89:0f: 8c:74:2c:d6:79:05:39:14:eb:d2:fc:60:c7:29:55: c0:ce:ba:22:af:e5:d8:8c:80:2c:11:65:dd:e3:0e: d4:cd:37:9a:8a:e8:48:6e:af:0f:dd:2c:8c:2d:67: de:e4:c4:31:bb:0e:d3:c4:35:25:da:bc:ff:e7:1b: 77:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:56:91:C3:72:30:10:17:45:A5:35:0F:AE:5B:D6:13:0B:24:A6:B9 X509v3 Authority Key Identifier: keyid:C8:07:0F:D0:61:A8:51:FF:8A:ED:E0:DE:0C:36:07:EE:B9:8F:F7:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:d1:02:03:f7:fe:cd:66:c8:e3:ec:55:66:86:f1:28:09:2e: 3f:8c:5b:aa:ba:36:be:ab:c9:a9:b1:f3:2f:a4:bc:8c:9f:50: 38:87:7e:fc:7a:0f:7b:de:66:a5:df:d6:4b:d5:59:e6:27:c1: f7:4d:9c:10:59:b8:6a:fd:c8:fe:ec:fb:26:79:c3:69:4f:4a: 0b:f7:d3:a6:86:95:17:1c:9a:95:11:fa:39:94:01:00:6e:6d: 16:a7:52:de:08:77:a7:ac:da:ac:63:55:76:a5:ab:46:97:e2: a0:01:ed:e7:51:a6:98:e7:be:7b:12:da:78:c4:2c:b8:c5:13: 23:bb:26:08:29:85:61:d4:29:e6:3f:50:32:89:b8:e2:a3:4b: 43:54:5b:3e:6a:85:31:c1:3d:c6:a0:62:40:47:51:43:4b:b2: e3:e9:ce:5d:d7:f2:b7:36:2d:4f:0d:f6:a0:57:63:02:58:26: f3:f1:81:c0:eb:50:4a:25:f3:b3:71:5b:f1:0d:06:50:44:fb: 83:7d:fc:54:ef:50:3f:e3:98:fb:a3:45:a6:82:d0:f4:44:c4: 56:15:76:c7:54:72:04:ff:99:ec:66:8b:6d:72:30:08:f1:ef: c2:10:2f:f6:a0:61:40:c4:91:73:2e:f0:b1:ac:5c:56:07:36: 67:69:45:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBcUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREM0QxMTAvBgNVBAUTKEM4MDcwRkQwNjFBODUxRkY4QUVERTBERTBDMzYwN0VF Qjk4RkY3MDEwHhcNMjUwNTMwMjMyNzE4WhcNMjUwNjA2MjMyNzE4WjAYMRYwFAYD VQQDEw02ODNhM2VkNi1hZjA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7bcrI7w56DiGbh/YbHLNmIDyRInGeGoUrn8F483JHOqRIdrCAJJvqdlIAzod eX22eaSiXn208yLRNoSBWU87yZNLo2N7w0YIQSnpIGKC0LhIpF7AnmMSbEuRqoc3 z4RjakPgD7Zd+/Q/jl/94hlHYlLfbb7UFjnxpBP18lAkv7baStOiOEaFzStQMyRY h2XbQR+0ifNoZouWvDldMUeUmVScVxFd5z1M7CqpI2wn9pf1JrFOouebzW5K3XGv oHSTiQ+MdCzWeQU5FOvS/GDHKVXAzroir+XYjIAsEWXd4w7UzTeaiuhIbq8P3SyM LWfe5MQxuw7TxDUl2rz/5xt3JwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPpWkcNy MBAXRaU1D65b1hMLJKa5MB8GA1UdIwQYMBaAFMgHD9BhqFH/iu3g3gw2B+65j/cB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQzRC9CMDIwMkQzMkQ4 QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi95QWNQMEdHb1VmLUs3ZURlRERZSDdybVA5 d0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lBY1AwR0dvVWYtSzdlRGVERFlIN3JtUDl3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEQzRC9CMDIwMkQzMkQ4QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi95QWNQMEdHb1Vm LUs3ZURlRERZSDdybVA5d0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBL0QID9/7NZsjj7FVmhvEoCS4/jFuquja+q8mpsfMvpLyMn1A4h378 eg973mal39ZL1VnmJ8H3TZwQWbhq/cj+7PsmecNpT0oL99OmhpUXHJqVEfo5lAEA bm0Wp1LeCHenrNqsY1V2patGl+KgAe3nUaaY5757Etp4xCy4xRMjuyYIKYVh1Cnm P1Ayibjio0tDVFs+aoUxwT3GoGJAR1FDS7Lj6c5d1/K3Ni1PDfagV2MCWCbz8YHA 61BKJfOzcVvxDQZQRPuDffxU71A/45j7o0WmgtD0RMRWFXbHVHIE/5nsZottcjAI 8e/CEC/2oGFAxJFzLvCxrFxWBzZnaUUr -----END CERTIFICATE-----Generated at Sat May 31 16:49:06 2025 by rpki-client