$ rpki-client -vvf rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft File: YNExg9Od5pVlYCMefgMX5py8bA8.mft (raw, json) Hash identifier: ZFFHoVf9kLTwtYrWaWxRsmQWIqa03Y5KOfBu56e5vZ4= Subject key identifier: 40:B4:08:F1:59:78:0F:C7:8D:37:EF:1C:D6:04:5F:7F:C7:E3:A0:5F Authority key identifier: 60:D1:31:83:D3:9D:E6:95:65:60:23:1E:7E:03:17:E6:9C:BC:6C:0F Certificate issuer: /CN=A9131D31/serialNumber=60D13183D39DE6956560231E7E0317E69CBC6C0F Certificate serial: 10CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft Manifest number: 10BB Signing time: Mon 12 May 2025 17:15:03 +0000 Manifest this update: Mon 12 May 2025 17:15:03 +0000 Manifest next update: Mon 19 May 2025 17:15:03 +0000 Files and hashes: 1: YNExg9Od5pVlYCMefgMX5py8bA8.crl (hash: Q/hMxMf5FsKzkIjQHQpVjB8MNsdIuAG/UkKwRiRCpfM=) 2: 1F8D757623B811E9971D8168C4F9AE02.roa (hash: teyprXUhhu0eQN/HT8J3s42u5imFw2AiXDxoE1lRwMQ=) 3: BA310DEC23B611E98E5E6062C4F9AE02.roa (hash: Z2LA9kyLWJ5DSZqXR4GtE8WTNPkiU6v9mRONlsKS1tk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.crl rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 17:15:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4300 (0x10cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131D31, serialNumber=60D13183D39DE6956560231E7E0317E69CBC6C0F Validity Not Before: May 12 17:15:03 2025 GMT Not After : May 19 17:15:03 2025 GMT Subject: CN=68222c97-50ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:7d:72:ac:a7:bc:b9:c6:5b:8e:6a:19:db:b2: 41:aa:d7:9b:66:e1:1f:a4:c8:5f:50:9e:ee:53:b1: 5f:e5:bf:cc:35:dc:da:28:f5:52:5d:83:c8:18:9a: ab:26:c0:db:ac:b1:88:23:cd:3f:a0:67:9e:cf:8e: 7d:ad:21:82:72:53:cd:74:9c:b2:60:cd:cf:99:6d: 1f:92:50:26:4c:b0:a4:fa:2e:d9:53:03:c0:07:dc: e5:69:8c:58:86:99:0f:60:6d:16:f1:f3:3e:01:7e: 5d:e1:d6:69:6f:f2:59:c3:e7:42:e5:5a:49:de:14: e0:c1:33:28:34:3b:1e:bd:da:4b:b1:07:b6:66:4d: 52:7b:9b:ab:80:77:ae:0a:29:eb:3a:2b:41:d1:c4: fe:e4:1e:68:fe:89:74:1a:3b:3d:fc:10:af:c7:9c: 1d:a7:ec:41:66:c3:f1:df:c0:9c:37:8b:b8:b4:c4: 77:7f:f9:97:67:3a:e4:8f:b1:57:1d:c4:60:3d:2f: 14:8d:3c:2d:0d:ab:fd:a9:79:ae:ec:06:e2:b0:22: 5b:f7:14:38:47:93:c2:3b:bd:cd:8e:56:ca:a1:06: 4e:24:ca:eb:ea:88:f2:c0:26:1e:ab:09:10:44:a8: 5b:fa:d4:bf:09:b0:80:9e:d7:e8:0e:a7:34:a0:ed: 5b:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:B4:08:F1:59:78:0F:C7:8D:37:EF:1C:D6:04:5F:7F:C7:E3:A0:5F X509v3 Authority Key Identifier: keyid:60:D1:31:83:D3:9D:E6:95:65:60:23:1E:7E:03:17:E6:9C:BC:6C:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:45:92:62:b0:68:f1:78:b9:6a:4b:a3:18:41:36:05:1a:3c: 20:64:aa:c3:ad:d2:24:63:b4:2e:7f:46:5a:03:d0:81:05:f4: 06:12:47:27:9d:e1:85:7f:5b:81:76:82:c4:be:98:5a:3f:0f: 6b:ea:78:ad:be:94:fa:8b:58:fb:6e:b9:8d:d5:8f:5a:18:58: fd:aa:98:58:49:d0:a4:7c:8b:09:e4:ab:92:17:0d:40:55:4d: aa:c0:60:1d:ba:9a:81:28:ba:8b:66:ff:c3:27:ad:24:96:7e: 79:66:88:68:a2:12:60:d9:0c:be:81:81:2e:48:d8:62:59:04: 27:e6:30:fb:95:0b:ae:a1:bb:68:8e:ea:67:4a:39:4c:a0:ae: fd:cd:c5:40:cf:ff:e0:38:93:6d:1f:5a:05:d1:cd:6c:9f:96: 8e:30:09:c6:bd:58:3c:21:03:6b:c0:16:b2:2b:6b:4e:41:18: bd:2c:8a:e6:1a:e5:c9:6c:66:52:d5:c4:74:3b:bf:a9:20:79: 4a:6f:33:30:ed:5d:ed:1f:78:85:f5:1a:28:9a:ec:05:7f:be: de:d2:ab:33:f2:1f:a2:f0:d6:3f:ec:a3:2d:6d:3e:81:fb:29: ba:bf:5e:7f:c6:0a:a6:47:38:1f:00:b1:69:4a:18:b9:f9:2d: 3d:54:bc:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFEMzExMTAvBgNVBAUTKDYwRDEzMTgzRDM5REU2OTU2NTYwMjMxRTdFMDMxN0U2 OUNCQzZDMEYwHhcNMjUwNTEyMTcxNTAzWhcNMjUwNTE5MTcxNTAzWjAYMRYwFAYD VQQDEw02ODIyMmM5Ny01MGNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA031yrKe8ucZbjmoZ27JBqtebZuEfpMhfUJ7uU7Ff5b/MNdzaKPVSXYPIGJqr JsDbrLGII80/oGeez459rSGCclPNdJyyYM3PmW0fklAmTLCk+i7ZUwPAB9zlaYxY hpkPYG0W8fM+AX5d4dZpb/JZw+dC5VpJ3hTgwTMoNDsevdpLsQe2Zk1Se5urgHeu CinrOitB0cT+5B5o/ol0Gjs9/BCvx5wdp+xBZsPx38CcN4u4tMR3f/mXZzrkj7FX HcRgPS8UjTwtDav9qXmu7AbisCJb9xQ4R5PCO73NjlbKoQZOJMrr6ojywCYeqwkQ RKhb+tS/CbCAntfoDqc0oO1bpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEC0CPFZ eA/HjTfvHNYEX3/H46BfMB8GA1UdIwQYMBaAFGDRMYPTneaVZWAjHn4DF+acvGwP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUQzMS82NUVGMjk2QTIz MTMxMUU5QTI5QkIxNzRDNEY5QUUwMi9ZTkV4ZzlPZDVwVmxZQ01lZmdNWDVweThi QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lORXhnOU9kNXBWbFlDTWVmZ01YNXB5OGJBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUQzMS82NUVGMjk2QTIzMTMxMUU5QTI5QkIxNzRDNEY5QUUwMi9ZTkV4ZzlPZDVw VmxZQ01lZmdNWDVweThiQTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlRZJisGjxeLlqS6MYQTYFGjwgZKrDrdIkY7Quf0ZaA9CBBfQGEkcn neGFf1uBdoLEvphaPw9r6nitvpT6i1j7brmN1Y9aGFj9qphYSdCkfIsJ5KuSFw1A VU2qwGAdupqBKLqLZv/DJ60kln55ZohoohJg2Qy+gYEuSNhiWQQn5jD7lQuuobto jupnSjlMoK79zcVAz//gOJNtH1oF0c1sn5aOMAnGvVg8IQNrwBayK2tOQRi9LIrm GuXJbGZS1cR0O7+pIHlKbzMw7V3tH3iF9RoomuwFf77e0qsz8h+i8NY/7KMtbT6B +ym6v15/xgqmRzgfALFpShi5+S09VLxW -----END CERTIFICATE-----Generated at Wed May 14 16:33:21 2025 by rpki-client