$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.mft File: Y7ooHVb6T-blNbEl4W34AdEvgJk.mft (raw, json) Hash identifier: WweJhSXAAiXFF8CgesHkrzCdZUJvzOMsEwWHZchlxjo= Subject key identifier: F6:B2:83:40:35:B8:C9:5E:97:E2:07:F1:49:16:74:85:0A:1D:D5:1D Authority key identifier: 63:BA:28:1D:56:FA:4F:E6:E5:35:B1:25:E1:6D:F8:01:D1:2F:80:99 Certificate issuer: /CN=A91ECBD9/serialNumber=63BA281D56FA4FE6E535B125E16DF801D12F8099 Certificate serial: 8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y7ooHVb6T-blNbEl4W34AdEvgJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.mft Manifest number: 8D Signing time: Sat 31 May 2025 06:03:41 +0000 Manifest this update: Sat 31 May 2025 06:03:41 +0000 Manifest next update: Sat 07 Jun 2025 06:03:41 +0000 Files and hashes: 1: Y7ooHVb6T-blNbEl4W34AdEvgJk.crl (hash: y/e/0EfL3Grg7Cvp/X2Te2YDFRLsUAUOD4Z/NvuLW1k=) 2: 4E67247C681911EFA2640B43C4F9AE02.roa (hash: ucm8jiY7/TEfoe7vYt6Xy9WiiLrmTGt3Yko/V2TTwzI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.crl rsync://rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y7ooHVb6T-blNbEl4W34AdEvgJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:03:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 143 (0x8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECBD9, serialNumber=63BA281D56FA4FE6E535B125E16DF801D12F8099 Validity Not Before: May 31 06:03:41 2025 GMT Not After : Jun 7 06:03:41 2025 GMT Subject: CN=683a9bbd-d2bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:10:7f:fb:95:6d:c7:b7:75:70:87:3b:dc:b0: 12:0d:e8:14:51:ee:cc:fb:a8:a8:24:09:4c:9f:6c: a3:be:62:13:d4:5d:0f:2d:90:5d:1f:3a:5f:63:39: 29:74:3f:f4:db:d3:83:58:6b:5c:7c:0a:8e:6b:e4: 11:80:e8:28:a9:c3:3c:8d:c5:7c:6d:5c:be:a0:3e: 1f:25:d3:c1:58:de:3a:c5:13:46:38:b5:f2:1b:90: 8b:b4:dd:13:9b:9c:c0:d4:a4:81:20:cf:b5:0c:8c: e3:e0:31:a4:44:4e:fc:d6:f4:33:d9:c6:d4:2b:96: 95:93:fb:a2:14:c8:d4:28:a5:65:d2:af:a2:a7:6a: c5:70:81:70:00:f5:6b:8d:9d:a5:80:44:ac:3f:14: 55:85:58:70:cc:0f:4d:34:a9:db:57:50:13:03:fe: 7b:13:2a:34:d6:97:da:57:1f:3b:0d:d6:94:12:9d: 00:e6:bf:4e:aa:e3:2c:35:ac:fa:9e:f6:75:c1:39: b0:15:87:e7:2d:ec:fd:28:a5:f0:62:47:0c:62:c1: 8c:86:fb:8c:f8:27:8d:03:50:aa:e6:5b:ca:f0:ca: b0:ba:a2:56:ee:22:e1:97:31:38:4b:32:80:8c:01: eb:52:a6:e4:fe:0d:96:96:f9:b8:6f:23:31:0f:1f: f2:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:B2:83:40:35:B8:C9:5E:97:E2:07:F1:49:16:74:85:0A:1D:D5:1D X509v3 Authority Key Identifier: keyid:63:BA:28:1D:56:FA:4F:E6:E5:35:B1:25:E1:6D:F8:01:D1:2F:80:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y7ooHVb6T-blNbEl4W34AdEvgJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:df:07:06:8c:39:b3:af:97:57:72:93:cb:1e:94:40:61:7e: ca:a8:d6:a0:24:14:fb:73:23:a0:89:ac:ad:de:a5:56:50:3e: c4:82:77:94:76:1d:46:cf:79:d2:4e:fb:02:50:47:26:fe:03: ec:24:ce:25:ce:05:56:5c:50:1f:68:76:39:7a:84:c7:b5:b1: 20:40:23:a6:c8:23:d9:aa:20:70:bc:8a:12:dc:02:ad:08:af: b1:8d:7c:03:54:ed:bf:ba:98:95:11:28:7c:84:d5:db:36:6b: f0:56:88:c1:27:68:8f:4e:c2:83:3e:ed:a8:bd:18:cb:a7:61: 07:aa:59:0c:3d:55:23:60:a6:a4:6f:0b:d8:f5:fe:ad:0b:5d: 2f:bd:f3:04:c6:43:f4:4c:1c:d2:a4:1c:68:fb:66:0c:52:0d: 7d:11:83:62:d3:4f:d2:56:ff:f9:0c:7a:9a:c6:17:ef:f2:16: fc:06:ab:99:05:ec:9f:0a:0d:e8:48:97:59:72:99:b8:c7:f2: 05:2f:9c:b7:1f:13:0c:ec:38:7f:6d:cd:a5:f1:e1:2d:9f:27: 9d:6b:b9:d0:20:1c:83:38:52:5f:99:71:ca:b9:91:67:69:4f: 76:9a:9b:90:e4:d0:68:aa:7c:a3:6e:81:8b:e7:c3:dc:70:25: ab:36:5f:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNCRDkxMTAvBgNVBAUTKDYzQkEyODFENTZGQTRGRTZFNTM1QjEyNUUxNkRGODAx RDEyRjgwOTkwHhcNMjUwNTMxMDYwMzQxWhcNMjUwNjA3MDYwMzQxWjAYMRYwFAYD VQQDEw02ODNhOWJiZC1kMmJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuRB/+5Vtx7d1cIc73LASDegUUe7M+6ioJAlMn2yjvmIT1F0PLZBdHzpfYzkp dD/029ODWGtcfAqOa+QRgOgoqcM8jcV8bVy+oD4fJdPBWN46xRNGOLXyG5CLtN0T m5zA1KSBIM+1DIzj4DGkRE781vQz2cbUK5aVk/uiFMjUKKVl0q+ip2rFcIFwAPVr jZ2lgESsPxRVhVhwzA9NNKnbV1ATA/57Eyo01pfaVx87DdaUEp0A5r9OquMsNaz6 nvZ1wTmwFYfnLez9KKXwYkcMYsGMhvuM+CeNA1Cq5lvK8MqwuqJW7iLhlzE4SzKA jAHrUqbk/g2Wlvm4byMxDx/yewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPayg0A1 uMlel+IH8UkWdIUKHdUdMB8GA1UdIwQYMBaAFGO6KB1W+k/m5TWxJeFt+AHRL4CZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0JEOS9FMDQ2QjBCNjY4 MTgxMUVGOUE1M0U5MThDNEY5QUUwMi9ZN29vSFZiNlQtYmxOYkVsNFczNEFkRXZn SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1k3b29IVmI2VC1ibE5iRWw0VzM0QWRFdmdKay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Q0JEOS9FMDQ2QjBCNjY4MTgxMUVGOUE1M0U5MThDNEY5QUUwMi9ZN29vSFZiNlQt YmxOYkVsNFczNEFkRXZnSmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDD3wcGjDmzr5dXcpPLHpRAYX7KqNagJBT7cyOgiayt3qVWUD7EgneU dh1Gz3nSTvsCUEcm/gPsJM4lzgVWXFAfaHY5eoTHtbEgQCOmyCPZqiBwvIoS3AKt CK+xjXwDVO2/upiVESh8hNXbNmvwVojBJ2iPTsKDPu2ovRjLp2EHqlkMPVUjYKak bwvY9f6tC10vvfMExkP0TBzSpBxo+2YMUg19EYNi00/SVv/5DHqaxhfv8hb8BquZ BeyfCg3oSJdZcpm4x/IFL5y3HxMM7Dh/bc2l8eEtnyeda7nQIByDOFJfmXHKuZFn aU92mpuQ5NBoqnyjboGL58PccCWrNl8y -----END CERTIFICATE-----Generated at Sat May 31 17:17:27 2025 by rpki-client