$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/Y-ukhQJRE0C4JSYdXsIKkSevKV4.mft File: Y-ukhQJRE0C4JSYdXsIKkSevKV4.mft (raw, json) Hash identifier: CPVsPG3iyJP+TikWofqrdBEX3dPfPW2oFZDVYsCIM2Q= Subject key identifier: 5A:44:82:6F:BE:3D:2C:F5:F9:15:AB:71:83:30:0B:B8:DA:B9:2D:A8 Authority key identifier: 63:EB:A4:85:02:51:13:40:B8:25:26:1D:5E:C2:0A:91:27:AF:29:5E Certificate issuer: /CN=A91F7315/serialNumber=63EBA48502511340B825261D5EC20A9127AF295E Certificate serial: 0B5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-ukhQJRE0C4JSYdXsIKkSevKV4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/Y-ukhQJRE0C4JSYdXsIKkSevKV4.mft Manifest number: 13B3 Signing time: Fri 30 May 2025 19:18:27 +0000 Manifest this update: Fri 30 May 2025 19:18:26 +0000 Manifest next update: Fri 06 Jun 2025 19:18:26 +0000 Files and hashes: 1: Y-ukhQJRE0C4JSYdXsIKkSevKV4.crl (hash: MpoOvhBE1gTSTTz6T5OWUN8e2khobDduC/8Hk0g6CBk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/Y-ukhQJRE0C4JSYdXsIKkSevKV4.crl rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/Y-ukhQJRE0C4JSYdXsIKkSevKV4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-ukhQJRE0C4JSYdXsIKkSevKV4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:18:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2906 (0xb5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7315, serialNumber=63EBA48502511340B825261D5EC20A9127AF295E Validity Not Before: May 30 19:18:26 2025 GMT Not After : Jun 6 19:18:26 2025 GMT Subject: CN=683a0482-8768 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:b7:ec:a5:c7:cd:e7:6d:24:76:a3:d8:9b:a0: 8e:44:d3:87:0a:a3:f2:01:f3:1e:4a:ff:5b:69:59: 46:a7:0f:ed:08:c7:c8:de:7d:fe:b7:a9:cd:f5:37: 26:2c:3f:6d:f1:bf:70:df:74:cc:ce:16:d6:60:69: 9a:3f:c3:6f:27:53:98:ef:ac:99:ae:ac:9b:87:8c: d7:c3:5d:ce:ed:2c:3a:1e:5c:b9:67:5e:b5:3e:ee: 46:71:a3:63:86:c5:93:bc:0e:0a:36:71:03:a2:be: 4f:87:eb:e0:a5:7f:98:31:6c:6d:45:df:82:e9:dc: 4b:6e:81:7b:d5:b6:3a:02:3b:31:da:67:c2:26:a6: 54:f1:74:ce:5d:2a:cd:58:0f:cb:76:04:40:75:ed: ee:0a:50:00:3b:35:04:fc:be:14:c9:28:2d:6a:3e: f2:18:14:aa:9c:fe:af:ba:4e:a7:bc:64:60:4c:28: a5:db:e5:5c:33:6f:0c:d2:cc:77:6c:48:91:56:3a: 71:32:42:61:5f:b3:8a:1b:a4:33:43:36:5e:d7:b8: 47:a3:fb:25:60:c3:8d:a1:22:ae:93:dc:2c:8a:81: e1:16:5d:db:3a:76:99:aa:5f:ff:68:59:2b:66:17: b2:e1:a3:ca:e3:6f:0b:28:59:08:9a:43:03:bd:b3: db:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:44:82:6F:BE:3D:2C:F5:F9:15:AB:71:83:30:0B:B8:DA:B9:2D:A8 X509v3 Authority Key Identifier: keyid:63:EB:A4:85:02:51:13:40:B8:25:26:1D:5E:C2:0A:91:27:AF:29:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/Y-ukhQJRE0C4JSYdXsIKkSevKV4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-ukhQJRE0C4JSYdXsIKkSevKV4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/Y-ukhQJRE0C4JSYdXsIKkSevKV4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:2c:08:fc:d0:4c:f1:b8:bc:fd:93:ff:62:23:63:90:ee:2c: c4:b2:5a:63:3a:d9:b1:7d:c0:ca:64:30:32:f6:6d:0c:ef:c2: ef:d2:10:45:64:33:86:37:bb:64:ba:03:c9:27:14:03:a0:3d: c9:e3:4c:38:37:81:7f:44:26:bd:6f:ae:ad:cb:14:fb:4b:9d: e2:35:16:b2:3e:47:9d:7d:4e:f4:49:fa:70:19:54:e5:02:d2: 97:6b:bb:02:9a:4c:b2:a4:8a:ef:cb:eb:b5:ed:4a:c2:21:ad: 39:70:b8:ab:72:be:5e:ed:c8:b6:50:2d:5c:5c:90:83:eb:2c: 38:97:82:f7:fb:3c:1b:50:df:0e:51:9f:07:ed:45:5c:99:37: 71:b2:b3:03:c2:5a:40:36:f7:2c:16:2f:46:0a:3b:1b:17:b6: 85:03:1e:45:ea:d7:df:d2:77:10:f7:12:3b:be:bb:06:29:56: a7:c6:99:df:8f:89:c7:bc:76:93:f8:c8:bc:29:4d:d9:f4:20: c3:eb:2a:cc:97:f4:d5:30:c6:75:08:4e:2e:04:86:86:83:63: 8a:68:65:aa:54:f9:50:bd:93:78:47:5f:d6:20:a8:d0:a7:e0: a5:17:9a:c1:e4:8d:29:73:c1:d9:1e:a1:4d:ff:b8:00:f5:ec: a8:9c:18:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC1owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjczMTUxMTAvBgNVBAUTKDYzRUJBNDg1MDI1MTEzNDBCODI1MjYxRDVFQzIwQTkx MjdBRjI5NUUwHhcNMjUwNTMwMTkxODI2WhcNMjUwNjA2MTkxODI2WjAYMRYwFAYD VQQDEw02ODNhMDQ4Mi04NzY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzrfspcfN520kdqPYm6CORNOHCqPyAfMeSv9baVlGpw/tCMfI3n3+t6nN9Tcm LD9t8b9w33TMzhbWYGmaP8NvJ1OY76yZrqybh4zXw13O7Sw6Hly5Z161Pu5GcaNj hsWTvA4KNnEDor5Ph+vgpX+YMWxtRd+C6dxLboF71bY6Ajsx2mfCJqZU8XTOXSrN WA/LdgRAde3uClAAOzUE/L4UySgtaj7yGBSqnP6vuk6nvGRgTCil2+VcM28M0sx3 bEiRVjpxMkJhX7OKG6QzQzZe17hHo/slYMONoSKuk9wsioHhFl3bOnaZql//aFkr Zhey4aPK428LKFkImkMDvbPbUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFpEgm++ PSz1+RWrcYMwC7jauS2oMB8GA1UdIwQYMBaAFGPrpIUCURNAuCUmHV7CCpEnryle MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzMxNS84MjA2RjgzMjMy RTIxMUVBOTlBNDNFNjRDNEY5QUUwMi9ZLXVraFFKUkUwQzRKU1lkWHNJS2tTZXZL VjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ktdWtoUUpSRTBDNEpTWWRYc0lLa1NldktWNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzMxNS84MjA2RjgzMjMyRTIxMUVBOTlBNDNFNjRDNEY5QUUwMi9ZLXVraFFKUkUw QzRKU1lkWHNJS2tTZXZLVjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXLAj80EzxuLz9k/9iI2OQ7izEslpjOtmxfcDKZDAy9m0M78Lv0hBF ZDOGN7tkugPJJxQDoD3J40w4N4F/RCa9b66tyxT7S53iNRayPkedfU70SfpwGVTl AtKXa7sCmkyypIrvy+u17UrCIa05cLircr5e7ci2UC1cXJCD6yw4l4L3+zwbUN8O UZ8H7UVcmTdxsrMDwlpANvcsFi9GCjsbF7aFAx5F6tff0ncQ9xI7vrsGKVanxpnf j4nHvHaT+Mi8KU3Z9CDD6yrMl/TVMMZ1CE4uBIaGg2OKaGWqVPlQvZN4R1/WIKjQ p+ClF5rB5I0pc8HZHqFN/7gA9eyonBjQ -----END CERTIFICATE-----Generated at Sat May 31 17:39:16 2025 by rpki-client