$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA52B/28CBFB145C3211E9AB624580C4F9AE02/Yb6mqjOAZskOtcsyQAxq52BciKQ.mft File: Yb6mqjOAZskOtcsyQAxq52BciKQ.mft (raw, json) Hash identifier: k1ARAyCbDWECLbS6biZpQzdcLaljPC4hK4dXPGAgfsg= Subject key identifier: 9B:48:1A:54:E9:3A:81:14:1A:12:69:B0:0F:6C:78:0D:FD:47:6D:69 Authority key identifier: 61:BE:A6:AA:33:80:66:C9:0E:B5:CB:32:40:0C:6A:E7:60:5C:88:A4 Certificate issuer: /CN=A91FA52B/serialNumber=61BEA6AA338066C90EB5CB32400C6AE7605C88A4 Certificate serial: 0FA1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb6mqjOAZskOtcsyQAxq52BciKQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA52B/28CBFB145C3211E9AB624580C4F9AE02/Yb6mqjOAZskOtcsyQAxq52BciKQ.mft Manifest number: 0F9A Signing time: Fri 30 May 2025 17:43:22 +0000 Manifest this update: Fri 30 May 2025 17:43:21 +0000 Manifest next update: Fri 06 Jun 2025 17:43:21 +0000 Files and hashes: 1: Yb6mqjOAZskOtcsyQAxq52BciKQ.crl (hash: 2/N3lDKjpmJQctcY5xVkYfWLaWQYRVca9riXAP+Yf/E=) 2: ECB38BAA5C3211E9816E7981C4F9AE02.roa (hash: cCIRQV7ckuHtyIWMyZbPGhi3IsjwZT86WZjPdbGRO6M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA52B/28CBFB145C3211E9AB624580C4F9AE02/Yb6mqjOAZskOtcsyQAxq52BciKQ.crl rsync://rpki.apnic.net/member_repository/A91FA52B/28CBFB145C3211E9AB624580C4F9AE02/Yb6mqjOAZskOtcsyQAxq52BciKQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb6mqjOAZskOtcsyQAxq52BciKQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:43:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4001 (0xfa1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA52B, serialNumber=61BEA6AA338066C90EB5CB32400C6AE7605C88A4 Validity Not Before: May 30 17:43:21 2025 GMT Not After : Jun 6 17:43:21 2025 GMT Subject: CN=6839ee39-6278 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:f1:ec:bd:41:59:1a:2b:ce:01:cb:c6:2a:fe: 35:5c:98:0c:f7:a2:0b:ad:dd:cc:66:24:4e:a1:82: b6:8d:fb:31:e8:90:80:4b:02:ce:18:ca:40:0d:78: 27:8e:86:d6:8f:1e:c6:d6:23:73:45:88:53:7f:fb: 44:50:40:70:62:17:85:bd:07:c9:df:b0:88:32:c0: e6:07:95:34:90:82:33:b3:bf:88:b5:81:f3:41:94: 39:03:b5:d8:89:b8:52:d2:46:49:9a:09:b3:e5:9a: 6a:fa:15:63:be:75:e3:8e:24:7f:73:25:73:71:a2: e9:d7:a7:1d:72:0a:0e:75:62:3d:16:b0:cb:4d:a6: 78:db:4a:42:d5:c8:29:68:01:99:29:f2:47:21:1c: a1:de:47:5c:dc:48:5d:10:84:f5:af:80:84:53:cd: 3d:79:75:68:c9:44:c5:97:05:22:0f:12:b9:36:8a: 11:e7:11:4a:00:32:b5:89:a5:59:0c:bf:3a:1d:80: 88:66:16:97:7c:36:91:2c:63:bf:c5:64:38:24:6a: db:56:5d:bf:df:ad:46:cd:35:20:03:68:38:14:0d: e6:99:eb:d8:ad:03:37:13:8d:a1:d2:5a:77:3e:b1: 94:90:b8:3f:f0:bc:a1:96:12:23:d7:f5:a4:26:97: 2e:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:48:1A:54:E9:3A:81:14:1A:12:69:B0:0F:6C:78:0D:FD:47:6D:69 X509v3 Authority Key Identifier: keyid:61:BE:A6:AA:33:80:66:C9:0E:B5:CB:32:40:0C:6A:E7:60:5C:88:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA52B/28CBFB145C3211E9AB624580C4F9AE02/Yb6mqjOAZskOtcsyQAxq52BciKQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb6mqjOAZskOtcsyQAxq52BciKQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA52B/28CBFB145C3211E9AB624580C4F9AE02/Yb6mqjOAZskOtcsyQAxq52BciKQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:69:8d:21:fc:42:ab:6f:73:c4:1c:96:e0:60:80:8e:93:2c: 6f:cf:00:ff:42:5a:b9:2e:14:cf:ec:4c:67:d6:56:af:2d:d8: 86:94:db:41:d8:c9:67:7b:cc:15:22:17:b2:af:09:0e:c5:3c: af:25:07:b9:da:64:b3:76:c9:ad:24:d2:bd:3a:d0:00:65:a3: f8:9b:4a:fa:1b:4f:a1:57:94:af:ba:90:39:13:60:d2:d6:54: c3:5b:58:2d:49:aa:2d:45:19:e0:cf:73:f3:8a:ab:2e:20:fe: f8:dc:5e:46:9b:69:29:3c:b9:ac:75:92:1b:22:d8:55:a1:88: 08:de:92:ae:47:db:1f:44:42:ae:3e:bb:97:f6:2e:27:df:62: 8a:4b:15:ca:9f:98:85:29:c1:6e:ff:d5:ac:2d:37:9f:cc:fa: ab:93:6e:ea:61:91:46:ae:22:0e:35:37:56:67:91:1c:5c:22: 61:6f:19:13:35:d5:a9:27:e9:bf:a8:ce:44:bc:1a:a3:57:aa: f2:e0:7a:61:0b:65:2e:07:08:46:e9:86:9c:7b:07:d4:c0:b2: ab:77:40:a0:4c:93:a5:f5:b4:dd:9d:dd:25:c7:72:e7:ff:20: c3:6f:20:9b:1a:16:17:5e:2c:6e:12:72:b4:3c:5b:c2:84:67: e7:cf:43:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD6EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE1MkIxMTAvBgNVBAUTKDYxQkVBNkFBMzM4MDY2QzkwRUI1Q0IzMjQwMEM2QUU3 NjA1Qzg4QTQwHhcNMjUwNTMwMTc0MzIxWhcNMjUwNjA2MTc0MzIxWjAYMRYwFAYD VQQDEw02ODM5ZWUzOS02Mjc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8PHsvUFZGivOAcvGKv41XJgM96ILrd3MZiROoYK2jfsx6JCASwLOGMpADXgn jobWjx7G1iNzRYhTf/tEUEBwYheFvQfJ37CIMsDmB5U0kIIzs7+ItYHzQZQ5A7XY ibhS0kZJmgmz5Zpq+hVjvnXjjiR/cyVzcaLp16cdcgoOdWI9FrDLTaZ420pC1cgp aAGZKfJHIRyh3kdc3EhdEIT1r4CEU809eXVoyUTFlwUiDxK5NooR5xFKADK1iaVZ DL86HYCIZhaXfDaRLGO/xWQ4JGrbVl2/361GzTUgA2g4FA3mmevYrQM3E42h0lp3 PrGUkLg/8LyhlhIj1/WkJpcuNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJtIGlTp OoEUGhJpsA9seA39R21pMB8GA1UdIwQYMBaAFGG+pqozgGbJDrXLMkAMaudgXIik MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTUyQi8yOENCRkIxNDVD MzIxMUU5QUI2MjQ1ODBDNEY5QUUwMi9ZYjZtcWpPQVpza090Y3N5UUF4cTUyQmNp S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liNm1xak9BWnNrT3Rjc3lRQXhxNTJCY2lLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTUyQi8yOENCRkIxNDVDMzIxMUU5QUI2MjQ1ODBDNEY5QUUwMi9ZYjZtcWpPQVpz a090Y3N5UUF4cTUyQmNpS1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXaY0h/EKrb3PEHJbgYICOkyxvzwD/Qlq5LhTP7Exn1lavLdiGlNtB 2Mlne8wVIheyrwkOxTyvJQe52mSzdsmtJNK9OtAAZaP4m0r6G0+hV5SvupA5E2DS 1lTDW1gtSaotRRngz3PziqsuIP743F5Gm2kpPLmsdZIbIthVoYgI3pKuR9sfREKu PruX9i4n32KKSxXKn5iFKcFu/9WsLTefzPqrk27qYZFGriIONTdWZ5EcXCJhbxkT NdWpJ+m/qM5EvBqjV6ry4HphC2UuBwhG6YacewfUwLKrd0CgTJOl9bTdnd0lx3Ln /yDDbyCbGhYXXixuEnK0PFvChGfnz0PC -----END CERTIFICATE-----Generated at Sat May 31 17:51:33 2025 by rpki-client