$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft File: YOVPYFHttB6nqVCJbNm71nASDWM.mft (raw, json) Hash identifier: El/GqVcG5yPnBxfqzKmu3laWAbumPgZfSlfGNmHxix0= Subject key identifier: 9E:8A:D3:BF:9A:41:55:C8:DF:04:3E:94:E0:7D:5D:A4:FA:11:E5:6D Authority key identifier: 60:E5:4F:60:51:ED:B4:1E:A7:A9:50:89:6C:D9:BB:D6:70:12:0D:63 Certificate issuer: /CN=A91FF89A/serialNumber=60E54F6051EDB41EA7A950896CD9BBD670120D63 Certificate serial: D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YOVPYFHttB6nqVCJbNm71nASDWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft Manifest number: D3 Signing time: Sat 31 May 2025 05:13:32 +0000 Manifest this update: Sat 31 May 2025 05:13:31 +0000 Manifest next update: Sat 07 Jun 2025 05:13:31 +0000 Files and hashes: 1: YOVPYFHttB6nqVCJbNm71nASDWM.crl (hash: Cgv29Ik0pU99cAmjr/bj+Kp1Uwr9/494Rsm+Mt84WGM=) 2: 99AA3580F88611EE8E9B3E71C4F9AE02.roa (hash: 5sqOGBsF1ucCZYwk5F1J19/8HxFnGjHNBCogN/tCysY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.crl rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YOVPYFHttB6nqVCJbNm71nASDWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:13:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF89A, serialNumber=60E54F6051EDB41EA7A950896CD9BBD670120D63 Validity Not Before: May 31 05:13:31 2025 GMT Not After : Jun 7 05:13:31 2025 GMT Subject: CN=683a8ffb-df3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:62:a6:fb:a0:d3:82:48:d4:41:e9:58:ff:0d: 8c:74:b5:68:21:04:43:96:90:50:10:c8:1e:95:b3: db:06:df:c3:38:58:05:d2:24:60:87:72:48:50:7d: 3f:01:1e:af:9f:11:b0:0b:f2:7a:11:d6:a3:05:46: aa:ba:77:10:b7:44:e8:ca:f1:aa:4c:7f:43:f9:d0: 97:9f:46:0d:a6:5b:69:ae:6b:8a:5e:ad:03:ef:8b: e9:26:08:60:63:4d:37:08:8e:75:43:4d:d4:7b:81: 04:dc:a3:7f:1e:ee:cb:db:69:48:21:b1:a7:3d:7f: 03:08:a0:05:41:73:03:cd:35:58:1b:d2:57:c9:28: d4:a1:7c:03:08:25:e1:55:31:40:d0:71:55:2b:fd: 06:98:96:93:80:fe:f7:44:78:c3:2e:24:27:ed:0e: 40:ca:ac:af:e1:16:f2:f5:9c:0b:fd:5f:da:16:80: cb:f5:19:29:30:88:30:93:7f:19:a4:d5:49:a2:e8: a5:39:30:14:be:8b:a8:61:e2:78:f6:9b:04:39:8c: 78:b3:13:26:53:77:19:e3:7e:63:da:e4:b9:65:48: ef:62:a2:dd:51:e1:18:82:c2:6c:1a:6d:e7:c7:ce: d1:43:cd:c9:a1:e3:4c:6c:23:53:82:97:35:60:b5: 7b:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:8A:D3:BF:9A:41:55:C8:DF:04:3E:94:E0:7D:5D:A4:FA:11:E5:6D X509v3 Authority Key Identifier: keyid:60:E5:4F:60:51:ED:B4:1E:A7:A9:50:89:6C:D9:BB:D6:70:12:0D:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YOVPYFHttB6nqVCJbNm71nASDWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:f2:ef:f2:d7:e1:c8:24:8d:03:08:6e:49:b6:d2:fa:05:d7: 70:00:9e:6e:ec:89:7a:21:aa:10:ed:5b:6a:8e:50:76:6e:0c: d9:58:ae:f8:a8:bf:25:83:aa:c2:27:2b:60:a2:bf:3a:b6:cd: 22:db:a8:08:0d:16:6b:64:e7:6b:a8:67:61:5e:28:fa:01:77: 96:4a:ae:19:8a:fc:c5:36:b4:d2:b6:4a:b5:14:4d:f2:17:69: b4:24:15:47:ed:c2:63:6b:5b:e9:16:03:a0:b6:db:fa:85:93: 79:f7:8c:61:7b:06:a1:31:64:ed:b8:58:e6:00:16:66:e1:89: 24:68:bf:0c:96:99:51:11:83:68:73:ee:ae:63:26:8c:5d:bc: 71:0a:16:fd:82:7b:29:b1:11:cd:18:49:2f:25:84:b7:da:46: a0:31:37:5a:ca:fe:91:35:30:49:d5:88:6b:6e:41:8e:3f:d3: 5a:16:81:33:2e:06:4e:f2:16:0c:50:d4:8b:d2:20:9b:68:e9: 7f:46:a7:96:1b:b9:52:45:87:55:49:26:09:df:15:38:0e:d7: c2:3f:21:32:11:00:50:0b:0c:83:fa:fb:f6:9e:ee:01:29:c3: bd:23:4a:c1:f9:9d:85:67:8f:22:78:ce:c8:8b:27:46:7b:7a: ea:1e:87:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY4OUExMTAvBgNVBAUTKDYwRTU0RjYwNTFFREI0MUVBN0E5NTA4OTZDRDlCQkQ2 NzAxMjBENjMwHhcNMjUwNTMxMDUxMzMxWhcNMjUwNjA3MDUxMzMxWjAYMRYwFAYD VQQDEw02ODNhOGZmYi1kZjNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0WKm+6DTgkjUQelY/w2MdLVoIQRDlpBQEMgelbPbBt/DOFgF0iRgh3JIUH0/ AR6vnxGwC/J6EdajBUaquncQt0ToyvGqTH9D+dCXn0YNpltprmuKXq0D74vpJghg Y003CI51Q03Ue4EE3KN/Hu7L22lIIbGnPX8DCKAFQXMDzTVYG9JXySjUoXwDCCXh VTFA0HFVK/0GmJaTgP73RHjDLiQn7Q5Ayqyv4Rby9ZwL/V/aFoDL9RkpMIgwk38Z pNVJouilOTAUvouoYeJ49psEOYx4sxMmU3cZ435j2uS5ZUjvYqLdUeEYgsJsGm3n x87RQ83JoeNMbCNTgpc1YLV7CQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ6K07+a QVXI3wQ+lOB9XaT6EeVtMB8GA1UdIwQYMBaAFGDlT2BR7bQep6lQiWzZu9ZwEg1j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjg5QS84QzcwNDc0NEY4 ODQxMUVFQTdCM0E3NTBDNEY5QUUwMi9ZT1ZQWUZIdHRCNm5xVkNKYk5tNzFuQVNE V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lPVlBZRkh0dEI2bnFWQ0piTm03MW5BU0RXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Rjg5QS84QzcwNDc0NEY4ODQxMUVFQTdCM0E3NTBDNEY5QUUwMi9ZT1ZQWUZIdHRC Nm5xVkNKYk5tNzFuQVNEV00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB38u/y1+HIJI0DCG5JttL6BddwAJ5u7Il6IaoQ7VtqjlB2bgzZWK74 qL8lg6rCJytgor86ts0i26gIDRZrZOdrqGdhXij6AXeWSq4ZivzFNrTStkq1FE3y F2m0JBVH7cJja1vpFgOgttv6hZN594xhewahMWTtuFjmABZm4YkkaL8MlplREYNo c+6uYyaMXbxxChb9gnspsRHNGEkvJYS32kagMTdayv6RNTBJ1YhrbkGOP9NaFoEz LgZO8hYMUNSL0iCbaOl/RqeWG7lSRYdVSSYJ3xU4DtfCPyEyEQBQCwyD+vv2nu4B KcO9I0rB+Z2FZ48ieM7IiydGe3rqHof6 -----END CERTIFICATE-----Generated at Sat May 31 15:14:39 2025 by rpki-client