$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft File: ySTN5BVFl0tvV4MubGA7zIlm2eA.mft (raw, json) Hash identifier: 8cJ9IsJ0rknW+vpmCB7afI8i5RZ7nRRgcxSN2TX3Egc= Subject key identifier: 76:7A:D0:C6:30:BE:A2:34:0C:A7:20:61:FA:83:6E:7D:44:47:16:41 Authority key identifier: C9:24:CD:E4:15:45:97:4B:6F:57:83:2E:6C:60:3B:CC:89:66:D9:E0 Certificate issuer: /CN=A91F2DDD/serialNumber=C924CDE41545974B6F57832E6C603BCC8966D9E0 Certificate serial: 0311 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft Manifest number: 1159 Signing time: Fri 30 May 2025 17:55:34 +0000 Manifest this update: Fri 30 May 2025 17:55:33 +0000 Manifest next update: Fri 06 Jun 2025 17:55:33 +0000 Files and hashes: 1: ySTN5BVFl0tvV4MubGA7zIlm2eA.crl (hash: 27NRMIJzEf7PzP6tsQacWHJsOircTkZqAJ/KGLK+liM=) 2: 2FBEB0B0D5B011EC90A8A031C4F9AE02.roa (hash: dTotqn1MA4iFciet41gKXuxTQQQVUzcSiuTmgAsBCPA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.crl rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:55:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 785 (0x311) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2DDD, serialNumber=C924CDE41545974B6F57832E6C603BCC8966D9E0 Validity Not Before: May 30 17:55:33 2025 GMT Not After : Jun 6 17:55:33 2025 GMT Subject: CN=6839f115-6547 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:8b:d4:05:50:52:87:cf:c2:ba:e5:60:83:e3: a4:1a:05:04:67:a5:10:af:ae:44:aa:a3:06:cb:31: 17:b9:a8:65:7d:15:ce:4e:72:65:19:23:1b:50:64: ec:b2:33:98:9d:8e:14:84:2b:e9:9d:9f:78:a3:d3: b1:1b:6d:a1:40:66:9f:14:ae:7f:00:4c:3e:d2:83: 2a:33:05:40:d2:7f:e3:ad:be:b4:8b:75:e2:80:eb: cd:8f:94:67:48:82:84:8c:ec:2b:2b:d2:53:01:58: dc:3a:e6:55:25:54:64:ea:e2:5a:93:8f:94:e9:ff: ad:2f:07:74:87:a6:ae:99:6f:2e:b8:ba:4c:8b:dc: 22:7f:48:f4:8a:ab:b7:53:17:fb:ce:0c:e8:3c:ae: e6:fb:68:82:c6:2c:b2:c1:ae:cd:ec:fb:e1:4f:f3: 4c:38:a3:05:fe:75:af:9c:ba:a5:57:75:04:85:89: 8d:f7:0f:8e:cb:63:c9:fb:14:5e:22:30:62:8a:2d: 96:ca:c0:0b:3a:e3:8c:20:76:11:b9:a7:e1:0a:5d: bc:31:96:ce:58:88:7b:3f:9f:a7:00:cb:c6:54:48: 21:c8:65:cd:3d:a3:ec:bb:e3:e9:10:36:71:81:09: 12:b8:78:a2:91:ef:e0:bf:4a:68:da:5a:0e:09:83: 82:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:7A:D0:C6:30:BE:A2:34:0C:A7:20:61:FA:83:6E:7D:44:47:16:41 X509v3 Authority Key Identifier: keyid:C9:24:CD:E4:15:45:97:4B:6F:57:83:2E:6C:60:3B:CC:89:66:D9:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:23:2e:a9:76:fd:66:a5:3a:ed:c8:b7:93:90:5c:42:38:e9: 34:6d:51:a2:95:4a:8e:34:21:4d:fa:2d:ba:58:2c:a9:a4:ec: a6:80:09:0c:0a:32:e6:8d:7a:6a:34:9e:94:c4:75:35:bc:91: 06:57:27:af:5f:40:5d:26:1a:5d:4a:39:73:11:6e:06:1a:56: 3d:34:7d:2e:5c:38:8b:76:09:52:b7:f1:f5:c7:e9:90:62:fc: c4:8f:0e:41:f0:09:f3:86:f9:11:ae:8e:bc:f7:94:2e:c7:f7: 5b:20:21:e6:d8:bb:0a:50:35:1c:42:68:4f:bf:f0:38:b5:49: 3d:db:aa:68:65:d5:cd:e3:cb:a1:c3:ef:96:e5:67:00:03:b2: 7e:95:9a:88:b4:cc:31:ed:0a:1e:b1:50:f6:9e:72:62:2c:e5: 16:b9:c0:1c:11:02:c8:ea:36:54:61:4d:57:76:69:be:23:76: 4c:0b:75:d4:58:3b:8e:06:6c:91:8f:79:28:35:0f:49:27:30: 1d:5a:01:8c:77:34:29:c6:d5:ad:10:19:70:47:3c:79:24:dc: 52:61:a4:34:af:fa:75:44:08:73:a5:7b:b5:37:dd:4b:dd:3f: a7:f4:60:78:03:8f:c4:24:d4:78:f3:04:dc:4e:55:b9:15:43: e6:a9:02:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJEREQxMTAvBgNVBAUTKEM5MjRDREU0MTU0NTk3NEI2RjU3ODMyRTZDNjAzQkND ODk2NkQ5RTAwHhcNMjUwNTMwMTc1NTMzWhcNMjUwNjA2MTc1NTMzWjAYMRYwFAYD VQQDEw02ODM5ZjExNS02NTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1IvUBVBSh8/CuuVgg+OkGgUEZ6UQr65EqqMGyzEXuahlfRXOTnJlGSMbUGTs sjOYnY4UhCvpnZ94o9OxG22hQGafFK5/AEw+0oMqMwVA0n/jrb60i3XigOvNj5Rn SIKEjOwrK9JTAVjcOuZVJVRk6uJak4+U6f+tLwd0h6aumW8uuLpMi9wif0j0iqu3 Uxf7zgzoPK7m+2iCxiyywa7N7PvhT/NMOKMF/nWvnLqlV3UEhYmN9w+Oy2PJ+xRe IjBiii2WysALOuOMIHYRuafhCl28MZbOWIh7P5+nAMvGVEghyGXNPaPsu+PpEDZx gQkSuHiike/gv0po2loOCYOClwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHZ60MYw vqI0DKcgYfqDbn1ERxZBMB8GA1UdIwQYMBaAFMkkzeQVRZdLb1eDLmxgO8yJZtng MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkRERC9CNEEyODM2MjlF MUIxMUU5OEUxRTRFNUVDNEY5QUUwMi95U1RONUJWRmwwdHZWNE11YkdBN3pJbG0y ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lTVE41QlZGbDB0dlY0TXViR0E3eklsbTJlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkRERC9CNEEyODM2MjlFMUIxMUU5OEUxRTRFNUVDNEY5QUUwMi95U1RONUJWRmww dHZWNE11YkdBN3pJbG0yZUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUIy6pdv1mpTrtyLeTkFxCOOk0bVGilUqONCFN+i26WCyppOymgAkM CjLmjXpqNJ6UxHU1vJEGVyevX0BdJhpdSjlzEW4GGlY9NH0uXDiLdglSt/H1x+mQ YvzEjw5B8AnzhvkRro6895Qux/dbICHm2LsKUDUcQmhPv/A4tUk926poZdXN48uh w++W5WcAA7J+lZqItMwx7QoesVD2nnJiLOUWucAcEQLI6jZUYU1Xdmm+I3ZMC3XU WDuOBmyRj3koNQ9JJzAdWgGMdzQpxtWtEBlwRzx5JNxSYaQ0r/p1RAhzpXu1N91L 3T+n9GB4A4/EJNR48wTcTlW5FUPmqQIM -----END CERTIFICATE-----Generated at Sat May 31 17:26:17 2025 by rpki-client