$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft File: Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft (raw, json) Hash identifier: 6T2nYhbPzzI2bseec6/NNMqNOJLVyspUCq7xrt6K80E= Subject key identifier: B3:A8:2D:32:4D:35:65:D9:49:5F:27:0C:F1:81:C4:84:E9:E4:8B:02 Authority key identifier: 62:2E:E7:54:36:D6:F2:F3:9F:B2:3D:2C:EB:22:33:71:84:57:3D:FE Certificate issuer: /CN=A91EB46B/serialNumber=622EE75436D6F2F39FB23D2CEB22337184573DFE Certificate serial: 0C73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft Manifest number: 0C65 Signing time: Fri 30 May 2025 18:32:03 +0000 Manifest this update: Fri 30 May 2025 18:32:03 +0000 Manifest next update: Fri 06 Jun 2025 18:32:03 +0000 Files and hashes: 1: Yi7nVDbW8vOfsj0s6yIzcYRXPf4.crl (hash: eeGxheICrwFwB4/SxmalfEos1OK9pH/Df8ezC9mbkQU=) 2: BE8369D6053711EA9A24E761C4F9AE02.roa (hash: VMJPLLhedlHAk4tQ5HhxEAJ5POLeqMTVPXSXcNzn0f0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.crl rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:32:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3187 (0xc73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB46B, serialNumber=622EE75436D6F2F39FB23D2CEB22337184573DFE Validity Not Before: May 30 18:32:03 2025 GMT Not After : Jun 6 18:32:03 2025 GMT Subject: CN=6839f9a3-c82a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:8f:ee:47:de:c0:84:e4:7a:08:0a:79:0b:a9: f4:5f:20:7f:66:aa:fc:9b:59:44:bb:1d:c2:9e:ca: 33:ea:f5:6a:db:ca:34:ef:39:a0:14:67:c0:bb:29: 3a:f1:b0:00:5a:22:f8:14:c1:20:e3:c2:35:0c:e5: cb:55:3a:ef:8d:67:08:16:40:06:2b:59:c9:a1:19: 80:59:86:65:91:0d:b6:59:1e:bb:a9:0d:98:ea:f5: 7f:f9:b2:31:41:09:5f:26:2f:30:95:6f:6a:4f:ed: 80:d0:f1:09:0f:08:a1:b9:93:38:58:da:64:10:34: be:62:a5:8a:86:c3:39:2f:8a:b6:e4:2c:ee:45:e5: 66:83:ce:1e:4f:fd:a8:12:fa:04:89:40:3c:97:9c: 87:6e:2d:60:95:aa:a9:19:81:fe:91:dd:c2:2e:65: 46:70:61:b2:4d:d8:fa:b7:ec:1c:8c:11:6e:92:8b: 40:c4:f9:95:aa:cb:8d:b7:1e:3f:2a:72:61:f1:98: 6b:ad:c0:ce:e3:9b:27:ba:24:0b:88:ff:ba:53:13: 3f:ad:44:88:9c:c2:6b:74:51:ed:38:28:ef:ef:d6: cb:c3:e7:8e:d7:d7:05:8c:ff:ce:20:61:5a:5f:50: eb:ad:b3:20:27:a2:d9:4a:38:dd:14:05:8f:d1:8b: 5e:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:A8:2D:32:4D:35:65:D9:49:5F:27:0C:F1:81:C4:84:E9:E4:8B:02 X509v3 Authority Key Identifier: keyid:62:2E:E7:54:36:D6:F2:F3:9F:B2:3D:2C:EB:22:33:71:84:57:3D:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:ae:43:72:07:33:f5:60:b7:2b:0e:40:4b:66:01:70:6d:a1: f3:4d:44:e9:28:ee:c5:af:b0:1b:26:b5:e2:65:61:5a:9e:6a: 7b:e4:97:cc:6a:bf:65:44:3e:d6:ae:6a:f1:e9:eb:64:f1:69: 43:59:c0:ea:2d:03:ed:ce:e2:b2:23:ce:b6:b2:04:d4:62:79: 73:81:dc:60:c1:7b:5d:7c:2b:af:af:ff:f4:eb:78:3d:b8:1d: c3:be:61:16:93:57:5e:bc:34:b8:74:50:89:1e:9a:c0:67:79: 0e:e9:10:33:f6:8f:8b:e6:ee:34:f1:5d:77:5b:87:67:1e:c7: a4:d8:7e:71:f4:19:85:13:96:5d:68:30:cc:cc:3a:ce:18:07: a1:68:d1:69:59:c8:74:33:b9:af:84:b2:dc:17:6c:8f:db:b1: 44:ee:63:cd:67:2c:4d:dc:ae:fb:73:61:41:d3:00:65:c9:5a: 29:f8:ac:b0:c6:d2:fa:56:b2:a7:6f:34:ad:d0:11:72:f4:be: bd:8a:e8:17:2f:c3:fb:42:fb:7e:67:ff:33:27:bd:c4:33:6b: d1:e2:7b:13:14:ff:01:e2:53:3d:e5:ce:37:04:0c:05:8a:80: 1a:d6:3d:a3:72:f2:c2:d1:7f:2d:e4:64:42:8a:84:2d:c0:de: b3:5c:a5:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI0NkIxMTAvBgNVBAUTKDYyMkVFNzU0MzZENkYyRjM5RkIyM0QyQ0VCMjIzMzcx ODQ1NzNERkUwHhcNMjUwNTMwMTgzMjAzWhcNMjUwNjA2MTgzMjAzWjAYMRYwFAYD VQQDEw02ODM5ZjlhMy1jODJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo4/uR97AhOR6CAp5C6n0XyB/Zqr8m1lEux3Cnsoz6vVq28o07zmgFGfAuyk6 8bAAWiL4FMEg48I1DOXLVTrvjWcIFkAGK1nJoRmAWYZlkQ22WR67qQ2Y6vV/+bIx QQlfJi8wlW9qT+2A0PEJDwihuZM4WNpkEDS+YqWKhsM5L4q25CzuReVmg84eT/2o EvoEiUA8l5yHbi1glaqpGYH+kd3CLmVGcGGyTdj6t+wcjBFukotAxPmVqsuNtx4/ KnJh8ZhrrcDO45snuiQLiP+6UxM/rUSInMJrdFHtOCjv79bLw+eO19cFjP/OIGFa X1DrrbMgJ6LZSjjdFAWP0YteuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLOoLTJN NWXZSV8nDPGBxITp5IsCMB8GA1UdIwQYMBaAFGIu51Q21vLzn7I9LOsiM3GEVz3+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjQ2Qi80OTMxRUU0NjAw N0QxMUVBQjQ4OTEzMUJDNEY5QUUwMi9ZaTduVkRiVzh2T2ZzajBzNnlJemNZUlhQ ZjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lpN25WRGJXOHZPZnNqMHM2eUl6Y1lSWFBmNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjQ2Qi80OTMxRUU0NjAwN0QxMUVBQjQ4OTEzMUJDNEY5QUUwMi9ZaTduVkRiVzh2 T2ZzajBzNnlJemNZUlhQZjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGrkNyBzP1YLcrDkBLZgFwbaHzTUTpKO7Fr7AbJrXiZWFanmp75JfM ar9lRD7Wrmrx6etk8WlDWcDqLQPtzuKyI862sgTUYnlzgdxgwXtdfCuvr//063g9 uB3DvmEWk1devDS4dFCJHprAZ3kO6RAz9o+L5u408V13W4dnHsek2H5x9BmFE5Zd aDDMzDrOGAehaNFpWch0M7mvhLLcF2yP27FE7mPNZyxN3K77c2FB0wBlyVop+Kyw xtL6VrKnbzSt0BFy9L69iugXL8P7Qvt+Z/8zJ73EM2vR4nsTFP8B4lM95c43BAwF ioAa1j2jcvLC0X8t5GRCioQtwN6zXKVx -----END CERTIFICATE-----Generated at Sat May 31 16:27:52 2025 by rpki-client