$ rpki-client -vvf rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.mft File: yil3R0MKG-s0C8o51iIv0mQZt9s.mft (raw, json) Hash identifier: oSJEYYYtW5zqpWZC3wpn3kCCAZgJUr8hymDb3mXIrPI= Subject key identifier: D7:77:BD:02:4A:79:57:13:39:52:EF:8E:F8:04:81:FC:20:68:0B:E7 Authority key identifier: CA:29:77:47:43:0A:1B:EB:34:0B:CA:39:D6:22:2F:D2:64:19:B7:DB Certificate issuer: /CN=A91417B0/serialNumber=CA297747430A1BEB340BCA39D6222FD26419B7DB Certificate serial: 42 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yil3R0MKG-s0C8o51iIv0mQZt9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.mft Manifest number: 40 Signing time: Sat 17 May 2025 07:00:02 +0000 Manifest this update: Sat 17 May 2025 07:00:01 +0000 Manifest next update: Sat 24 May 2025 07:00:01 +0000 Files and hashes: 1: yil3R0MKG-s0C8o51iIv0mQZt9s.crl (hash: FSF0XpV6auwpGxWo6TrLcc48r9jw4qOT6bsD58FkpI4=) 2: 5909D86203DB11F0B7D5DD29C4F9AE02.roa (hash: vXg2V9oSq+UecV6UR/hi4Z0CckYReJT3wpjl4H/MqsM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.crl rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yil3R0MKG-s0C8o51iIv0mQZt9s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66 (0x42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91417B0, serialNumber=CA297747430A1BEB340BCA39D6222FD26419B7DB Validity Not Before: May 17 07:00:01 2025 GMT Not After : May 24 07:00:01 2025 GMT Subject: CN=682833f2-de38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:e0:2a:8b:0c:92:00:66:94:77:c6:ba:16:16: 5d:ce:df:1b:72:b9:c5:ea:27:d0:0e:77:82:1c:4d: b9:a6:42:17:ed:08:74:c3:df:f5:3f:2b:75:21:af: fa:63:01:60:ec:1c:b9:1c:fc:ac:36:e6:6c:45:9f: e6:15:81:cf:5f:3a:ba:98:50:48:31:fb:37:fa:7a: 25:e9:a8:4d:ae:59:0d:0b:0c:ed:3c:8c:00:7a:4a: ab:ee:a3:f2:2c:43:99:46:6b:36:d3:4a:c3:fe:e5: 3e:c3:ec:a7:78:1b:bb:31:69:38:ad:cc:ea:2f:27: 5f:c1:f0:89:c0:f4:0a:b7:ca:50:45:00:e8:45:2e: f3:0e:60:0a:bc:f5:62:28:6d:73:ed:b8:04:10:42: e2:6f:f6:0e:00:81:bb:82:9e:89:2a:0b:9a:36:bd: 4d:dc:69:61:2f:c3:73:77:b7:31:41:73:ab:7b:c9: 96:4b:3c:77:0a:f8:31:c4:e5:7e:75:ba:45:36:4e: 19:23:4e:e8:7f:bc:f9:e7:f6:14:c9:68:cf:69:dd: 02:96:2f:c6:85:99:81:31:40:0e:a9:6f:97:2a:c0: 2c:04:4d:b4:9e:91:02:f8:e9:76:81:8e:44:0f:64: a2:a9:74:32:43:d0:fc:6a:2a:a5:fa:c2:e8:2d:7c: 87:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:77:BD:02:4A:79:57:13:39:52:EF:8E:F8:04:81:FC:20:68:0B:E7 X509v3 Authority Key Identifier: keyid:CA:29:77:47:43:0A:1B:EB:34:0B:CA:39:D6:22:2F:D2:64:19:B7:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yil3R0MKG-s0C8o51iIv0mQZt9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:dc:77:a7:d2:34:b6:95:ff:aa:58:bd:55:62:81:4c:27:57: d2:89:6a:32:66:54:51:1b:1f:7a:a6:67:c7:3b:ad:51:00:c6: 1d:d6:36:66:a4:c0:4e:85:c6:65:f6:96:27:49:2e:4b:32:3c: 44:50:cd:6d:70:8c:91:a3:3a:65:c6:02:bc:56:d7:94:65:44: 7a:c3:b4:f9:10:a8:fe:26:60:5a:83:8e:e7:32:8c:8f:6d:22: 52:e4:5f:53:a0:c8:b6:3c:0c:95:78:7b:75:f0:5e:5c:73:29: c6:be:92:e8:30:be:03:d6:bb:e9:ba:ab:92:c8:57:64:5d:d3: c2:1f:8f:76:d9:b4:b2:ff:ba:de:e4:0f:93:71:d7:1c:f4:58: 2e:9d:e8:ac:23:8c:4e:21:c6:de:4c:26:f2:99:9f:51:ad:79: a9:62:95:67:6f:0d:47:93:89:42:32:c4:c1:54:6f:84:f0:2f: bf:5a:96:40:f5:aa:52:61:c3:4c:98:26:a8:ae:db:9b:bf:5b: 82:35:c6:61:ce:68:65:84:dd:89:97:a4:53:68:b4:e5:5a:0d: e3:af:2d:c9:d1:09:8d:aa:fc:12:46:ee:cb:d3:7e:e2:59:f8: 81:e5:4e:90:e8:56:b0:9c:1d:99:bf:35:7d:00:b9:f7:4f:b1: f4:a4:7c:36 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MTdCMDExMC8GA1UEBRMoQ0EyOTc3NDc0MzBBMUJFQjM0MEJDQTM5RDYyMjJGRDI2 NDE5QjdEQjAeFw0yNTA1MTcwNzAwMDFaFw0yNTA1MjQwNzAwMDFaMBgxFjAUBgNV BAMTDTY4MjgzM2YyLWRlMzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC74CqLDJIAZpR3xroWFl3O3xtyucXqJ9AOd4IcTbmmQhftCHTD3/U/K3Uhr/pj AWDsHLkc/Kw25mxFn+YVgc9fOrqYUEgx+zf6eiXpqE2uWQ0LDO08jAB6Sqvuo/Is Q5lGazbTSsP+5T7D7Kd4G7sxaTitzOovJ1/B8InA9Aq3ylBFAOhFLvMOYAq89WIo bXPtuAQQQuJv9g4AgbuCnokqC5o2vU3caWEvw3N3tzFBc6t7yZZLPHcK+DHE5X51 ukU2ThkjTuh/vPnn9hTJaM9p3QKWL8aFmYExQA6pb5cqwCwETbSekQL46XaBjkQP ZKKpdDJD0PxqKqX6wugtfIdHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU13e9Akp5 VxM5Uu+O+ASB/CBoC+cwHwYDVR0jBBgwFoAUyil3R0MKG+s0C8o51iIv0mQZt9sw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQxN0IwL0UxQUM4MjEwRDg4 MzExRUY5NTRBM0Q3MEM0RjlBRTAyL3lpbDNSME1LRy1zMEM4bzUxaUl2MG1RWnQ5 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIveWlsM1IwTUtHLXMwQzhvNTFpSXYwbVFadDlzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQx N0IwL0UxQUM4MjEwRDg4MzExRUY5NTRBM0Q3MEM0RjlBRTAyL3lpbDNSME1LRy1z MEM4bzUxaUl2MG1RWnQ5cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKTcd6fSNLaV/6pYvVVigUwnV9KJajJmVFEbH3qmZ8c7rVEAxh3WNmak wE6FxmX2lidJLksyPERQzW1wjJGjOmXGArxW15RlRHrDtPkQqP4mYFqDjucyjI9t IlLkX1OgyLY8DJV4e3XwXlxzKca+kugwvgPWu+m6q5LIV2Rd08Ifj3bZtLL/ut7k D5Nx1xz0WC6d6KwjjE4hxt5MJvKZn1GtealilWdvDUeTiUIyxMFUb4TwL79alkD1 qlJhw0yYJqiu25u/W4I1xmHOaGWE3YmXpFNotOVaDeOvLcnRCY2q/BJG7svTfuJZ +IHlTpDoVrCcHZm/NX0AufdPsfSkfDY= -----END CERTIFICATE-----Generated at Sat May 17 10:01:47 2025 by rpki-client