$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.mft File: y1IFTj13aOoWtrColMdzon3qkho.mft (raw, json) Hash identifier: 8SoyVnSNtJkPwcWIQzTK77eNF2YDsc5JnTiqz7vhx2U= Subject key identifier: 2C:58:FB:31:D2:03:F3:85:08:E8:15:5C:CE:CA:93:18:B1:60:CE:B3 Authority key identifier: CB:52:05:4E:3D:77:68:EA:16:B6:B0:A8:94:C7:73:A2:7D:EA:92:1A Certificate issuer: /CN=A91EB6AC/serialNumber=CB52054E3D7768EA16B6B0A894C773A27DEA921A Certificate serial: 0BF5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1IFTj13aOoWtrColMdzon3qkho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.mft Manifest number: 0BED Signing time: Fri 30 May 2025 18:57:46 +0000 Manifest this update: Fri 30 May 2025 18:57:45 +0000 Manifest next update: Fri 06 Jun 2025 18:57:45 +0000 Files and hashes: 1: y1IFTj13aOoWtrColMdzon3qkho.crl (hash: i4XE0XF+GqQQdQvE9j5+f0aYlBx9N7iZdpHnuLcG46A=) 2: 65866C4815D111EABE986319C4F9AE02.roa (hash: ky275MRbaVtyIuJOfhdH9mQsA448nNjhkiKWj0SgjYE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.crl rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1IFTj13aOoWtrColMdzon3qkho.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:57:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3061 (0xbf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB6AC, serialNumber=CB52054E3D7768EA16B6B0A894C773A27DEA921A Validity Not Before: May 30 18:57:45 2025 GMT Not After : Jun 6 18:57:45 2025 GMT Subject: CN=6839ffaa-5ebd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:94:51:c9:60:23:ad:f0:22:37:ab:2a:e8:d4: 07:78:f0:91:b0:93:e9:95:9a:3d:c8:60:1f:0c:11: 28:55:45:33:07:c5:33:91:ca:0c:46:85:47:5a:3d: 55:c7:21:9b:a8:3d:20:d4:18:50:02:5d:cb:53:30: 45:9c:5a:b6:b2:35:5d:88:0c:17:20:36:a8:36:2b: 35:ec:4d:1c:b8:08:95:6e:54:17:d0:9f:a3:12:25: 9e:b0:64:3d:1f:d3:ae:5a:af:74:6f:9d:51:9d:d9: 30:4a:2a:7c:bc:a6:a3:fe:97:15:b2:43:93:00:43: 3b:22:02:20:82:a9:b7:65:4d:d3:f1:c6:ee:dd:31: a6:7e:7f:68:b0:34:bc:13:f8:9d:21:ff:4d:b9:24: fc:37:e0:4f:c9:9a:b0:17:48:f8:82:1a:bb:36:1d: 55:35:9c:58:f8:c3:a6:94:1b:90:f2:1b:e2:36:86: d9:5b:70:c5:eb:aa:07:cb:40:e4:f6:79:eb:a0:bb: 54:df:a8:65:4b:6c:ca:48:be:e9:ff:11:d2:f9:bd: 19:74:1e:19:5c:32:b6:43:9e:7c:79:e7:1f:9b:ec: 0b:3b:49:7c:a3:3e:54:a8:49:aa:43:ee:7b:80:06: a0:c8:39:a7:9c:f3:90:68:3a:fe:ed:02:16:4d:6d: d0:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:58:FB:31:D2:03:F3:85:08:E8:15:5C:CE:CA:93:18:B1:60:CE:B3 X509v3 Authority Key Identifier: keyid:CB:52:05:4E:3D:77:68:EA:16:B6:B0:A8:94:C7:73:A2:7D:EA:92:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1IFTj13aOoWtrColMdzon3qkho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:b8:7b:9e:9b:07:5d:25:c9:25:51:4e:11:96:10:f6:8d:03: 21:dd:4b:41:1b:f0:c2:69:d2:9e:cd:3a:44:12:17:12:55:69: e0:c4:f6:bf:6d:b9:7a:bf:23:8c:e1:46:e5:16:26:51:1e:f8: 41:35:7b:eb:ad:d0:a4:46:06:bb:8f:bb:ed:e8:f6:f1:72:30: 45:18:13:7d:6b:12:2c:75:69:1a:86:bf:d3:c6:2a:61:1d:40: a2:e0:82:0e:23:db:f2:83:6e:bd:55:5f:0e:d8:25:2d:bf:d4: 9a:4d:3e:c6:b4:3e:bd:90:f5:86:da:c7:f4:c5:0f:73:56:4a: 03:d2:4c:24:ad:9d:1c:db:b9:57:bd:a3:7d:b1:70:a1:eb:b2: e3:71:9b:05:20:a2:c9:27:d2:01:8d:32:a0:46:ea:79:fd:7f: 65:6f:ef:58:c3:aa:56:a5:ad:a0:f7:0b:62:2c:fc:6a:3a:05: 98:01:94:c9:67:dc:7a:0b:3e:e3:82:1d:d9:2d:2e:af:75:5a: 59:41:d6:37:b2:46:40:67:59:9e:d8:66:9c:c0:88:98:ec:91: 9e:fb:78:03:36:c9:70:b6:8d:7d:14:a6:26:12:2b:fa:89:82: 54:2f:c0:61:07:a5:e9:f7:5f:ed:74:3a:85:51:54:4c:d7:01: 70:c1:9b:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC/UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI2QUMxMTAvBgNVBAUTKENCNTIwNTRFM0Q3NzY4RUExNkI2QjBBODk0Qzc3M0Ey N0RFQTkyMUEwHhcNMjUwNTMwMTg1NzQ1WhcNMjUwNjA2MTg1NzQ1WjAYMRYwFAYD VQQDEw02ODM5ZmZhYS01ZWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqpRRyWAjrfAiN6sq6NQHePCRsJPplZo9yGAfDBEoVUUzB8UzkcoMRoVHWj1V xyGbqD0g1BhQAl3LUzBFnFq2sjVdiAwXIDaoNis17E0cuAiVblQX0J+jEiWesGQ9 H9OuWq90b51RndkwSip8vKaj/pcVskOTAEM7IgIggqm3ZU3T8cbu3TGmfn9osDS8 E/idIf9NuST8N+BPyZqwF0j4ghq7Nh1VNZxY+MOmlBuQ8hviNobZW3DF66oHy0Dk 9nnroLtU36hlS2zKSL7p/xHS+b0ZdB4ZXDK2Q558eecfm+wLO0l8oz5UqEmqQ+57 gAagyDmnnPOQaDr+7QIWTW3QoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCxY+zHS A/OFCOgVXM7KkxixYM6zMB8GA1UdIwQYMBaAFMtSBU49d2jqFrawqJTHc6J96pIa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjZBQy9EN0U5OEE2RTE1 RDAxMUVBOTNDQTBFMTlDNEY5QUUwMi95MUlGVGoxM2FPb1d0ckNvbE1kem9uM3Fr aG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kxSUZUajEzYU9vV3RyQ29sTWR6b24zcWtoby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjZBQy9EN0U5OEE2RTE1RDAxMUVBOTNDQTBFMTlDNEY5QUUwMi95MUlGVGoxM2FP b1d0ckNvbE1kem9uM3FraG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZuHuemwddJcklUU4RlhD2jQMh3UtBG/DCadKezTpEEhcSVWngxPa/ bbl6vyOM4UblFiZRHvhBNXvrrdCkRga7j7vt6PbxcjBFGBN9axIsdWkahr/Txiph HUCi4IIOI9vyg269VV8O2CUtv9SaTT7GtD69kPWG2sf0xQ9zVkoD0kwkrZ0c27lX vaN9sXCh67LjcZsFIKLJJ9IBjTKgRup5/X9lb+9Yw6pWpa2g9wtiLPxqOgWYAZTJ Z9x6Cz7jgh3ZLS6vdVpZQdY3skZAZ1me2GacwIiY7JGe+3gDNslwto19FKYmEiv6 iYJUL8BhB6Xp91/tdDqFUVRM1wFwwZtt -----END CERTIFICATE-----Generated at Sat May 31 14:53:18 2025 by rpki-client