$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft File: YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft (raw, json) Hash identifier: TunL/0wtG5C1nY3yEeyuz7ZtzPitZ/41cROGN1YndCQ= Subject key identifier: 1F:F1:9A:0C:F2:FC:E5:40:82:89:D5:0C:5A:7D:43:CE:1C:90:7E:4A Authority key identifier: 60:5B:DA:3D:7A:DC:C0:2D:AC:73:86:AE:39:14:7A:64:65:93:A8:9D Certificate issuer: /CN=A91FC01A/serialNumber=605BDA3D7ADCC02DAC7386AE39147A646593A89D Certificate serial: 0315 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YFvaPXrcwC2sc4auORR6ZGWTqJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft Manifest number: 0311 Signing time: Sat 31 May 2025 01:24:26 +0000 Manifest this update: Sat 31 May 2025 01:24:25 +0000 Manifest next update: Sat 07 Jun 2025 01:24:25 +0000 Files and hashes: 1: YFvaPXrcwC2sc4auORR6ZGWTqJ0.crl (hash: 0UjVyFBDfzKIoI/mtDvCNQPPIgEPcDc1ePLX3Qih/6o=) 2: 426D5CEAD12111ECBBAC1B7DC4F9AE02.roa (hash: PuEOajLEUChOIrthB/05mvECIB7cIWFQzgLmdVBLTBc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.crl rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YFvaPXrcwC2sc4auORR6ZGWTqJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:24:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 789 (0x315) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC01A, serialNumber=605BDA3D7ADCC02DAC7386AE39147A646593A89D Validity Not Before: May 31 01:24:25 2025 GMT Not After : Jun 7 01:24:25 2025 GMT Subject: CN=683a5a4a-6e36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:c6:97:42:9a:da:30:51:21:60:6d:5a:bb:31: ba:bd:05:b8:03:78:8d:f4:bd:59:c2:0f:e5:04:1c: c8:e0:b8:b2:7f:20:c4:55:ff:30:c5:ba:5c:a6:1c: 2f:1f:5d:5a:f3:9a:ea:a6:72:04:5e:67:03:5a:91: 93:97:af:cf:e7:cb:66:77:72:b2:5c:b9:85:b3:da: 46:a6:45:f9:25:8c:bb:68:2b:18:1e:81:1b:76:91: 5e:54:2a:fe:55:9b:d8:06:6d:b4:77:1c:f2:34:bb: a7:12:a0:3d:cb:bd:39:b3:12:3a:81:4b:64:cc:99: 54:90:dd:9c:ac:d4:56:45:cc:dc:66:39:2b:9d:e4: 06:de:99:22:38:74:5c:df:3c:08:27:f7:5a:79:11: 83:d6:32:ea:12:c0:a8:a0:96:b8:71:ef:9b:88:c4: 14:c2:dc:d3:c5:30:6d:08:4d:39:28:be:9b:85:4c: df:a0:69:cb:2c:4f:1d:6b:af:87:65:f8:42:4b:75: f7:5e:98:37:0a:b3:25:95:91:86:e4:ee:a3:b9:60: d2:f3:1c:0a:18:ef:e0:c1:89:93:16:c2:bd:b3:9b: eb:ea:26:f2:f2:d5:b3:cc:3d:3a:c9:25:6a:b3:64: 21:72:6d:47:44:c3:50:be:b9:56:56:3c:db:03:1e: ef:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:F1:9A:0C:F2:FC:E5:40:82:89:D5:0C:5A:7D:43:CE:1C:90:7E:4A X509v3 Authority Key Identifier: keyid:60:5B:DA:3D:7A:DC:C0:2D:AC:73:86:AE:39:14:7A:64:65:93:A8:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YFvaPXrcwC2sc4auORR6ZGWTqJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:2c:91:61:e9:ff:de:71:d8:05:19:d7:9a:d6:c1:53:99:dd: 21:ab:fd:84:9b:64:20:fc:9c:ee:e0:63:61:37:fc:7c:91:1a: 3a:d7:00:88:e9:e8:8e:b0:71:9e:60:17:74:8f:38:a8:de:b4: 56:b2:29:35:44:60:e7:94:cb:6a:c2:16:e0:cf:3e:77:ad:0b: d9:d9:93:4f:23:42:0e:c9:74:5d:03:6d:41:0e:9c:23:50:8e: d9:da:4e:bc:21:59:0a:02:47:3a:ad:44:b9:aa:95:9b:d2:94: dd:77:9d:e1:05:55:3e:a3:78:d9:b6:38:fd:13:e5:52:32:93: e4:f9:00:ad:32:43:13:38:2d:ff:ac:0d:3c:35:0c:f5:12:d1: d1:67:a2:a4:fc:a2:6f:6e:30:15:2a:99:23:25:00:47:3d:f3: ff:ae:34:0d:a2:ed:d4:60:d1:aa:95:a9:da:98:77:6b:c7:fd: 29:0f:71:24:5e:03:72:6e:a9:45:95:a5:a0:df:77:71:1b:4a: 0f:e2:d0:2b:f7:df:cd:10:63:bb:1a:3b:43:06:a5:52:8f:6a: 2e:c1:6c:db:9c:ec:b5:3e:d0:85:6e:f4:df:6e:bd:84:d5:b5: 23:9c:d1:8a:cc:4f:2f:ab:00:7f:bd:29:f5:b6:f3:38:a8:45: 53:80:cd:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkMwMUExMTAvBgNVBAUTKDYwNUJEQTNEN0FEQ0MwMkRBQzczODZBRTM5MTQ3QTY0 NjU5M0E4OUQwHhcNMjUwNTMxMDEyNDI1WhcNMjUwNjA3MDEyNDI1WjAYMRYwFAYD VQQDEw02ODNhNWE0YS02ZTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoMaXQpraMFEhYG1auzG6vQW4A3iN9L1Zwg/lBBzI4LiyfyDEVf8wxbpcphwv H11a85rqpnIEXmcDWpGTl6/P58tmd3KyXLmFs9pGpkX5JYy7aCsYHoEbdpFeVCr+ VZvYBm20dxzyNLunEqA9y705sxI6gUtkzJlUkN2crNRWRczcZjkrneQG3pkiOHRc 3zwIJ/daeRGD1jLqEsCooJa4ce+biMQUwtzTxTBtCE05KL6bhUzfoGnLLE8da6+H ZfhCS3X3Xpg3CrMllZGG5O6juWDS8xwKGO/gwYmTFsK9s5vr6iby8tWzzD06ySVq s2Qhcm1HRMNQvrlWVjzbAx7vXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB/xmgzy /OVAgonVDFp9Q84ckH5KMB8GA1UdIwQYMBaAFGBb2j163MAtrHOGrjkUemRlk6id MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzAxQS8wRjg1MDE0Q0Qx MUQxMUVDODE2OTYzNjNDNEY5QUUwMi9ZRnZhUFhyY3dDMnNjNGF1T1JSNlpHV1Rx SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lGdmFQWHJjd0Myc2M0YXVPUlI2WkdXVHFKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzAxQS8wRjg1MDE0Q0QxMUQxMUVDODE2OTYzNjNDNEY5QUUwMi9ZRnZhUFhyY3dD MnNjNGF1T1JSNlpHV1RxSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPLJFh6f/ecdgFGdea1sFTmd0hq/2Em2Qg/Jzu4GNhN/x8kRo61wCI 6eiOsHGeYBd0jzio3rRWsik1RGDnlMtqwhbgzz53rQvZ2ZNPI0IOyXRdA21BDpwj UI7Z2k68IVkKAkc6rUS5qpWb0pTdd53hBVU+o3jZtjj9E+VSMpPk+QCtMkMTOC3/ rA08NQz1EtHRZ6Kk/KJvbjAVKpkjJQBHPfP/rjQNou3UYNGqlanamHdrx/0pD3Ek XgNybqlFlaWg33dxG0oP4tAr99/NEGO7GjtDBqVSj2ouwWzbnOy1PtCFbvTfbr2E 1bUjnNGKzE8vqwB/vSn1tvM4qEVTgM01 -----END CERTIFICATE-----Generated at Sat May 31 17:18:46 2025 by rpki-client