$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0DAC/0CE1964E4FCA11E9B38BA22BC4F9AE02/ySd_ApwVszeVNmb3S5x-bLOQf0Q.mft File: ySd_ApwVszeVNmb3S5x-bLOQf0Q.mft (raw, json) Hash identifier: +VCvAaJypqz3wkHx9tDodSKaQFztUr3MWW90AVizCRM= Subject key identifier: C2:60:D6:28:22:83:23:38:1C:7A:8C:1C:64:5D:5C:BC:BE:EB:DA:EE Authority key identifier: C9:27:7F:02:9C:15:B3:37:95:36:66:F7:4B:9C:7E:6C:B3:90:7F:44 Certificate issuer: /CN=A91F0DAC/serialNumber=C9277F029C15B337953666F74B9C7E6CB3907F44 Certificate serial: 1012 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySd_ApwVszeVNmb3S5x-bLOQf0Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0DAC/0CE1964E4FCA11E9B38BA22BC4F9AE02/ySd_ApwVszeVNmb3S5x-bLOQf0Q.mft Manifest number: 0FF7 Signing time: Fri 30 May 2025 17:38:48 +0000 Manifest this update: Fri 30 May 2025 17:38:48 +0000 Manifest next update: Fri 06 Jun 2025 17:38:48 +0000 Files and hashes: 1: ySd_ApwVszeVNmb3S5x-bLOQf0Q.crl (hash: ASiuhDZ77iqiLObGxIgz1PjeAZQe9cLsrZL+dO04nL8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0DAC/0CE1964E4FCA11E9B38BA22BC4F9AE02/ySd_ApwVszeVNmb3S5x-bLOQf0Q.crl rsync://rpki.apnic.net/member_repository/A91F0DAC/0CE1964E4FCA11E9B38BA22BC4F9AE02/ySd_ApwVszeVNmb3S5x-bLOQf0Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySd_ApwVszeVNmb3S5x-bLOQf0Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:38:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4114 (0x1012) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0DAC, serialNumber=C9277F029C15B337953666F74B9C7E6CB3907F44 Validity Not Before: May 30 17:38:48 2025 GMT Not After : Jun 6 17:38:48 2025 GMT Subject: CN=6839ed28-55d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:c5:7d:7f:46:b7:91:76:b8:28:5c:70:5d:78: de:d8:c1:7c:78:dd:69:07:e4:af:52:9b:ee:a9:9c: 57:61:5d:a2:e5:23:49:65:11:5a:67:d8:ed:e9:a5: ab:80:e5:40:c9:2d:9c:b6:2a:bc:16:90:26:7a:d4: 03:2b:3a:33:ab:56:85:a3:65:98:fc:4f:dd:93:cf: 31:5d:24:ba:49:d8:ad:7d:7b:d6:55:f7:e9:4d:be: 93:32:9a:e0:2e:74:f8:c9:43:a7:44:21:9e:fb:db: a7:94:45:1d:7e:4e:76:92:e3:66:6a:1f:a4:37:9b: 6c:da:17:f8:46:cb:f2:fd:3e:1b:22:64:37:84:16: ea:b8:41:01:e2:1c:1a:63:f8:1e:b3:0e:4e:16:fd: a3:78:44:20:66:8a:e2:fd:85:ab:20:9a:37:eb:2c: 02:b8:36:c1:c1:bc:8e:f7:33:a1:1b:00:4c:be:29: 19:50:85:cc:ec:30:b5:42:cf:10:06:cf:5b:bb:25: d9:d2:fd:3a:95:47:9d:48:eb:da:25:f5:f0:ff:55: b1:c3:04:44:ac:01:81:45:11:57:3f:81:c8:c3:24: 02:ea:c2:10:47:ae:d1:03:a2:30:f0:ce:74:5e:ee: 60:81:bf:ce:73:59:44:f5:3c:5c:8c:59:2d:71:7b: 9d:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:60:D6:28:22:83:23:38:1C:7A:8C:1C:64:5D:5C:BC:BE:EB:DA:EE X509v3 Authority Key Identifier: keyid:C9:27:7F:02:9C:15:B3:37:95:36:66:F7:4B:9C:7E:6C:B3:90:7F:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0DAC/0CE1964E4FCA11E9B38BA22BC4F9AE02/ySd_ApwVszeVNmb3S5x-bLOQf0Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySd_ApwVszeVNmb3S5x-bLOQf0Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0DAC/0CE1964E4FCA11E9B38BA22BC4F9AE02/ySd_ApwVszeVNmb3S5x-bLOQf0Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:8f:14:e4:a3:b7:46:83:44:ff:cc:2e:a3:b0:f2:63:b3:94: 58:03:24:1d:04:ed:9c:35:28:67:d2:a9:92:61:80:84:bb:71: 49:77:5c:8f:f7:17:cb:4c:63:28:bf:22:71:b4:b6:4e:ee:4f: fa:e7:30:6b:13:35:f8:1a:e7:4d:24:8f:12:3f:f5:d9:9c:62: e7:6f:b0:85:db:68:60:e6:22:e8:92:a2:77:d3:65:4b:8a:ff: 20:00:7d:18:39:9e:e0:9e:38:aa:49:27:b1:70:5b:6d:7b:64: 11:90:aa:70:7f:6f:56:c8:ea:fa:7e:2c:a1:ba:f5:e9:03:b3: 1b:29:0c:44:b7:78:2e:06:94:2e:cc:50:c2:f4:e8:39:e0:a2: ff:3b:a3:44:4d:2d:9c:02:71:63:fb:d2:0c:b8:66:30:06:c8: 09:c9:72:3c:23:59:d9:ea:8e:0a:54:61:1d:8b:0a:fe:16:68: 20:10:6b:43:20:63:cb:0a:40:1d:a3:5e:d5:4b:50:a8:52:c5: 17:b0:a3:7f:9e:0e:35:01:7e:aa:05:97:3e:7d:6d:35:23:31: f9:3f:3d:fb:53:1a:31:d2:86:08:ff:f0:20:02:b4:66:eb:c2: 4c:ee:ee:54:59:6a:be:c3:0c:fe:17:29:50:42:e6:cf:13:7d: cc:26:71:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEBIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBEQUMxMTAvBgNVBAUTKEM5Mjc3RjAyOUMxNUIzMzc5NTM2NjZGNzRCOUM3RTZD QjM5MDdGNDQwHhcNMjUwNTMwMTczODQ4WhcNMjUwNjA2MTczODQ4WjAYMRYwFAYD VQQDEw02ODM5ZWQyOC01NWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzsV9f0a3kXa4KFxwXXje2MF8eN1pB+SvUpvuqZxXYV2i5SNJZRFaZ9jt6aWr gOVAyS2ctiq8FpAmetQDKzozq1aFo2WY/E/dk88xXSS6SditfXvWVffpTb6TMprg LnT4yUOnRCGe+9unlEUdfk52kuNmah+kN5ts2hf4Rsvy/T4bImQ3hBbquEEB4hwa Y/gesw5OFv2jeEQgZori/YWrIJo36ywCuDbBwbyO9zOhGwBMvikZUIXM7DC1Qs8Q Bs9buyXZ0v06lUedSOvaJfXw/1WxwwRErAGBRRFXP4HIwyQC6sIQR67RA6Iw8M50 Xu5ggb/Oc1lE9TxcjFktcXudaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMJg1igi gyM4HHqMHGRdXLy+69ruMB8GA1UdIwQYMBaAFMknfwKcFbM3lTZm90ucfmyzkH9E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMERBQy8wQ0UxOTY0RTRG Q0ExMUU5QjM4QkEyMkJDNEY5QUUwMi95U2RfQXB3VnN6ZVZObWIzUzV4LWJMT1Fm MFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lTZF9BcHdWc3plVk5tYjNTNXgtYkxPUWYwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MERBQy8wQ0UxOTY0RTRGQ0ExMUU5QjM4QkEyMkJDNEY5QUUwMi95U2RfQXB3VnN6 ZVZObWIzUzV4LWJMT1FmMFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARjxTko7dGg0T/zC6jsPJjs5RYAyQdBO2cNShn0qmSYYCEu3FJd1yP 9xfLTGMovyJxtLZO7k/65zBrEzX4GudNJI8SP/XZnGLnb7CF22hg5iLokqJ302VL iv8gAH0YOZ7gnjiqSSexcFtte2QRkKpwf29WyOr6fiyhuvXpA7MbKQxEt3guBpQu zFDC9Og54KL/O6NETS2cAnFj+9IMuGYwBsgJyXI8I1nZ6o4KVGEdiwr+FmggEGtD IGPLCkAdo17VS1CoUsUXsKN/ng41AX6qBZc+fW01IzH5Pz37Uxox0oYI//AgArRm 68JM7u5UWWq+wwz+FylQQubPE33MJnE2 -----END CERTIFICATE-----Generated at Sat May 31 16:59:21 2025 by rpki-client