$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft File: YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft (raw, json) Hash identifier: RMkMvlq/glENhMJQb3yezejjUc2Urcef77ZmPd0MYtU= Subject key identifier: 99:1D:66:14:1F:23:9A:27:43:5D:9D:20:11:A5:42:6F:53:DB:76:D3 Authority key identifier: 60:06:B9:65:83:13:D8:64:99:16:19:D6:97:9B:0F:7E:01:E4:B6:68 Certificate issuer: /CN=A91E5A08/serialNumber=6006B9658313D864991619D6979B0F7E01E4B668 Certificate serial: 018D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft Manifest number: 018A Signing time: Sat 31 May 2025 03:14:24 +0000 Manifest this update: Sat 31 May 2025 03:14:24 +0000 Manifest next update: Sat 07 Jun 2025 03:14:24 +0000 Files and hashes: 1: YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl (hash: xigBzvRcA9TOZKfUEAS/tG/WhK33Ct21RzdmqUFSJqg=) 2: EC9A7C9EE26811EDBB19B85EC4F9AE02.roa (hash: b95mpJ4EM9DYq2FEBTGRF8becbveDJsLEHAflxFwbco=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:14:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 397 (0x18d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5A08, serialNumber=6006B9658313D864991619D6979B0F7E01E4B668 Validity Not Before: May 31 03:14:24 2025 GMT Not After : Jun 7 03:14:24 2025 GMT Subject: CN=683a7410-dc4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ef:0b:47:35:d9:2e:8c:6b:99:53:4d:ec:cb: 6d:a3:bf:40:dd:e3:62:98:db:1c:f7:df:75:6c:19: 79:13:a7:59:a4:d7:a6:e9:98:58:96:9a:36:99:6a: 72:5b:38:1b:0b:26:83:21:4d:03:4f:89:56:a6:3b: fb:ad:b9:f5:4d:55:87:91:bd:a0:6f:36:3e:c0:e0: ed:bd:41:a2:e9:6f:df:3a:1d:45:00:73:0a:2a:5b: 46:3d:9a:03:09:13:7c:cb:33:56:2f:97:9f:14:02: f8:c2:8c:58:7a:84:81:65:2a:84:18:11:6d:a2:02: 1b:38:fc:c8:16:e4:87:20:5d:53:a1:a8:f9:b5:c2: ca:c2:fc:ac:fa:0c:54:2e:17:64:b5:0b:92:52:57: c6:25:05:c5:6f:e1:3f:0b:2a:27:dd:06:6d:d5:00: 17:1f:88:00:70:04:8a:42:3c:b0:be:3e:e7:9e:64: 0b:fa:b8:0f:69:74:b5:10:e0:97:6e:82:f0:26:50: 6c:6d:28:4c:8d:23:aa:ae:ff:c6:a2:aa:17:56:bf: 10:d1:53:0e:1b:f6:32:1d:51:20:bc:d0:b8:79:c4: 55:be:f0:6f:64:00:8c:9d:f4:3c:7c:01:df:fc:f2: 7a:8e:86:f0:cf:91:3e:5d:f1:e0:99:45:34:5d:f3: d5:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:1D:66:14:1F:23:9A:27:43:5D:9D:20:11:A5:42:6F:53:DB:76:D3 X509v3 Authority Key Identifier: keyid:60:06:B9:65:83:13:D8:64:99:16:19:D6:97:9B:0F:7E:01:E4:B6:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:bf:a0:1c:5d:ef:1a:56:2a:95:0f:bf:0a:6b:40:d6:5d:3d: 65:a7:b0:99:92:48:bf:fc:e8:3d:4e:0d:4d:f7:2b:9a:e3:39: bc:c8:2a:e2:20:cd:be:53:c2:37:f8:0b:7a:40:aa:29:07:eb: 92:d4:59:d1:16:79:69:07:85:b0:9b:d5:05:6d:0b:91:70:5b: 78:91:a9:bd:9f:7d:c9:c2:fb:2a:76:03:cb:27:76:17:79:76: ae:f2:88:4d:d0:64:fa:9d:b9:73:c7:92:7e:2c:1a:0c:84:05: 58:70:25:d4:7b:54:33:df:a8:e1:fd:8b:0f:ec:f8:5c:4d:a7: 59:6c:fc:68:8b:f7:81:af:25:36:86:c9:74:66:c8:59:6f:8e: ac:4f:45:3a:83:51:c0:cf:2d:7d:1b:6e:f3:70:23:2c:94:7c: 43:d3:9b:78:86:9e:69:f6:41:db:08:19:7d:c2:17:9a:61:44: 5c:63:bc:80:43:11:6a:50:9c:f7:44:c4:5c:ae:07:36:ab:bd: b9:8d:97:ef:1f:9d:bc:42:ca:2a:2a:bf:0b:c3:84:7b:bb:23: 61:7b:70:c3:92:76:34:64:67:1b:c6:b4:29:d5:5c:e3:51:6a: 97:a0:1a:7d:31:59:75:a4:28:37:9d:c1:72:a9:6d:b8:04:fb: 09:3b:d6:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVBMDgxMTAvBgNVBAUTKDYwMDZCOTY1ODMxM0Q4NjQ5OTE2MTlENjk3OUIwRjdF MDFFNEI2NjgwHhcNMjUwNTMxMDMxNDI0WhcNMjUwNjA3MDMxNDI0WjAYMRYwFAYD VQQDEw02ODNhNzQxMC1kYzRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwe8LRzXZLoxrmVNN7Mtto79A3eNimNsc9991bBl5E6dZpNem6ZhYlpo2mWpy WzgbCyaDIU0DT4lWpjv7rbn1TVWHkb2gbzY+wODtvUGi6W/fOh1FAHMKKltGPZoD CRN8yzNWL5efFAL4woxYeoSBZSqEGBFtogIbOPzIFuSHIF1Toaj5tcLKwvys+gxU LhdktQuSUlfGJQXFb+E/Cyon3QZt1QAXH4gAcASKQjywvj7nnmQL+rgPaXS1EOCX boLwJlBsbShMjSOqrv/GoqoXVr8Q0VMOG/YyHVEgvNC4ecRVvvBvZACMnfQ8fAHf /PJ6jobwz5E+XfHgmUU0XfPV0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJkdZhQf I5onQ12dIBGlQm9T23bTMB8GA1UdIwQYMBaAFGAGuWWDE9hkmRYZ1pebD34B5LZo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUEwOC9CMDYwQ0M1NEUy NjUxMUVEODUwQ0RFNTRDNEY5QUUwMi9ZQWE1WllNVDJHU1pGaG5XbDVzUGZnSGt0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lBYTVaWU1UMkdTWkZobldsNXNQZmdIa3RtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUEwOC9CMDYwQ0M1NEUyNjUxMUVEODUwQ0RFNTRDNEY5QUUwMi9ZQWE1WllNVDJH U1pGaG5XbDVzUGZnSGt0bWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwv6AcXe8aViqVD78Ka0DWXT1lp7CZkki//Og9Tg1N9yua4zm8yCri IM2+U8I3+At6QKopB+uS1FnRFnlpB4Wwm9UFbQuRcFt4kam9n33JwvsqdgPLJ3YX eXau8ohN0GT6nblzx5J+LBoMhAVYcCXUe1Qz36jh/YsP7PhcTadZbPxoi/eBryU2 hsl0ZshZb46sT0U6g1HAzy19G27zcCMslHxD05t4hp5p9kHbCBl9wheaYURcY7yA QxFqUJz3RMRcrgc2q725jZfvH528QsoqKr8Lw4R7uyNhe3DDknY0ZGcbxrQp1Vzj UWqXoBp9MVl1pCg3ncFyqW24BPsJO9YR -----END CERTIFICATE-----Generated at Sat May 31 17:22:06 2025 by rpki-client