$ rpki-client -vvf rpki.apnic.net/member_repository/A914EED0/6EEB1150C2B311EAB4832750C4F9AE02/y-ExoIOkVjx8Q52webZLatEQGnw.mft File: y-ExoIOkVjx8Q52webZLatEQGnw.mft (raw, json) Hash identifier: iQaX/siesbEaATezfhcEyOg5rFgZaOzb3QLU796OoKo= Subject key identifier: 91:17:8F:AE:24:97:3F:95:E5:D5:23:BF:07:DB:49:E3:08:B4:41:AC Authority key identifier: CB:E1:31:A0:83:A4:56:3C:7C:43:9D:B0:79:B6:4B:6A:D1:10:1A:7C Certificate issuer: /CN=A914EED0/serialNumber=CBE131A083A4563C7C439DB079B64B6AD1101A7C Certificate serial: 0882 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-ExoIOkVjx8Q52webZLatEQGnw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EED0/6EEB1150C2B311EAB4832750C4F9AE02/y-ExoIOkVjx8Q52webZLatEQGnw.mft Manifest number: 086E Signing time: Sun 04 May 2025 20:26:30 +0000 Manifest this update: Sun 04 May 2025 20:26:30 +0000 Manifest next update: Sun 11 May 2025 20:26:30 +0000 Files and hashes: 1: y-ExoIOkVjx8Q52webZLatEQGnw.crl (hash: 4OYhSu7TJPYI7cUtaL4Ft+7pW0dMDxsEhMGvxmkPtk4=) 2: 90D4C28CC2BA11EA8A079767C4F9AE02.roa (hash: e+13EZAvpj9mc2IILMERDnSK9NszhBMUbUBC2BNslfY=) 3: F043A0CCC2B411EA9BAFF054C4F9AE02.roa (hash: NHcEruSqBuMj/IPzd/3S47VAhmXWgMgQYut3Slp0jA8=) 4: 91B81F1EC2BA11EA8A079767C4F9AE02.roa (hash: HnUSTDgiOASq4KYnjuG0nd8h+Pt87RrArwZX9gcI9gM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EED0/6EEB1150C2B311EAB4832750C4F9AE02/y-ExoIOkVjx8Q52webZLatEQGnw.crl rsync://rpki.apnic.net/member_repository/A914EED0/6EEB1150C2B311EAB4832750C4F9AE02/y-ExoIOkVjx8Q52webZLatEQGnw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-ExoIOkVjx8Q52webZLatEQGnw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 20:26:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2178 (0x882) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EED0, serialNumber=CBE131A083A4563C7C439DB079B64B6AD1101A7C Validity Not Before: May 4 20:26:30 2025 GMT Not After : May 11 20:26:30 2025 GMT Subject: CN=6817cd76-eb67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:16:9f:01:6d:28:3a:ba:c1:37:79:fb:3b:d0: 0b:e2:af:b9:9f:d9:4d:65:ee:88:f7:a1:ea:22:b4: 9e:5d:b9:15:5c:0e:55:d0:be:e6:13:54:4c:62:65: d0:9b:5b:75:86:d0:d1:39:57:ce:44:48:96:01:78: 61:69:7b:59:01:a3:ad:70:d2:ac:0c:67:d8:8f:ea: 28:39:55:35:02:b8:22:e2:05:13:cb:b2:90:9f:f9: 81:85:a1:30:f6:c9:8c:fe:f4:e8:3b:a7:62:82:70: c1:8f:2b:b9:e1:10:df:9c:50:fb:ad:56:df:94:35: 53:7b:7b:e5:ee:9e:c9:37:91:8e:6c:ec:16:89:ff: ed:9b:ab:59:11:26:e0:d2:72:9d:cc:2e:c7:6c:9d: ca:06:40:a4:5c:64:8e:a4:78:0b:6d:2e:13:6a:3f: 05:05:91:66:c5:95:0b:95:38:2d:90:bf:7e:9f:6d: d0:b5:e2:86:e6:5d:d1:1d:42:e5:6c:9d:75:aa:4c: c9:cc:c5:66:d0:ac:9e:b4:a7:b8:f0:fb:f2:1e:21: 90:d6:51:cc:55:1b:9b:5e:e0:29:91:c6:66:74:36: 48:c0:18:bc:06:42:f1:43:c6:9c:9d:95:a8:f7:60: 49:ce:bf:02:b6:cc:3d:66:36:f2:de:de:c3:42:90: 73:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:17:8F:AE:24:97:3F:95:E5:D5:23:BF:07:DB:49:E3:08:B4:41:AC X509v3 Authority Key Identifier: keyid:CB:E1:31:A0:83:A4:56:3C:7C:43:9D:B0:79:B6:4B:6A:D1:10:1A:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EED0/6EEB1150C2B311EAB4832750C4F9AE02/y-ExoIOkVjx8Q52webZLatEQGnw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-ExoIOkVjx8Q52webZLatEQGnw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EED0/6EEB1150C2B311EAB4832750C4F9AE02/y-ExoIOkVjx8Q52webZLatEQGnw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:e7:18:78:c1:1d:8a:11:05:c1:28:90:a2:50:6b:ba:ff:44: c5:1a:ce:2c:8c:6a:55:b5:40:b0:19:01:27:ef:cc:63:05:dd: 72:08:f3:0d:79:b3:b7:e0:78:bf:ad:c2:9a:9a:e9:c9:12:58: 33:75:c2:c5:70:79:d5:23:34:49:19:a0:0f:7a:e7:bb:49:3c: 83:4c:92:3d:5c:a8:de:20:c6:a8:41:8d:15:ab:f9:56:11:38: 32:25:9a:17:c4:c3:d7:92:b2:ed:be:bb:e2:46:b9:23:d9:1e: 85:86:0d:d8:ef:7a:8d:c2:b2:fc:8a:7a:c6:dc:26:a5:bb:8e: c4:55:85:9a:df:93:d3:8d:b1:2b:47:f0:eb:8c:e3:88:88:57: 05:f3:54:31:b4:5e:a9:fc:6a:22:b7:d3:7d:13:f9:10:13:4b: 9d:bc:84:0e:5d:c5:b0:c0:85:4b:57:38:b6:7d:89:4f:9b:78: 3c:fd:dd:d5:2d:ff:52:40:9c:91:ff:71:13:1e:52:93:66:ff: da:3f:c5:79:32:3a:af:4d:d4:56:fc:ec:df:ea:de:2b:72:8c: 92:6a:9e:00:53:a7:1f:fd:b0:6d:50:e2:38:38:90:3d:cd:5b: 9a:e1:85:01:75:af:0b:f5:44:50:e8:dc:40:b0:c6:cd:f0:6e: 7b:27:da:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVFRDAxMTAvBgNVBAUTKENCRTEzMUEwODNBNDU2M0M3QzQzOURCMDc5QjY0QjZB RDExMDFBN0MwHhcNMjUwNTA0MjAyNjMwWhcNMjUwNTExMjAyNjMwWjAYMRYwFAYD VQQDEw02ODE3Y2Q3Ni1lYjY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0RafAW0oOrrBN3n7O9AL4q+5n9lNZe6I96HqIrSeXbkVXA5V0L7mE1RMYmXQ m1t1htDROVfOREiWAXhhaXtZAaOtcNKsDGfYj+ooOVU1Argi4gUTy7KQn/mBhaEw 9smM/vToO6dignDBjyu54RDfnFD7rVbflDVTe3vl7p7JN5GObOwWif/tm6tZESbg 0nKdzC7HbJ3KBkCkXGSOpHgLbS4Taj8FBZFmxZULlTgtkL9+n23QteKG5l3RHULl bJ11qkzJzMVm0KyetKe48PvyHiGQ1lHMVRubXuApkcZmdDZIwBi8BkLxQ8acnZWo 92BJzr8Ctsw9Zjby3t7DQpBzwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJEXj64k lz+V5dUjvwfbSeMItEGsMB8GA1UdIwQYMBaAFMvhMaCDpFY8fEOdsHm2S2rREBp8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUVEMC82RUVCMTE1MEMy QjMxMUVBQjQ4MzI3NTBDNEY5QUUwMi95LUV4b0lPa1ZqeDhRNTJ3ZWJaTGF0RVFH bncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ktRXhvSU9rVmp4OFE1MndlYlpMYXRFUUdudy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUVEMC82RUVCMTE1MEMyQjMxMUVBQjQ4MzI3NTBDNEY5QUUwMi95LUV4b0lPa1Zq eDhRNTJ3ZWJaTGF0RVFHbncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAn5xh4wR2KEQXBKJCiUGu6/0TFGs4sjGpVtUCwGQEn78xjBd1yCPMN ebO34Hi/rcKamunJElgzdcLFcHnVIzRJGaAPeue7STyDTJI9XKjeIMaoQY0Vq/lW ETgyJZoXxMPXkrLtvrviRrkj2R6Fhg3Y73qNwrL8inrG3Calu47EVYWa35PTjbEr R/DrjOOIiFcF81QxtF6p/Goit9N9E/kQE0udvIQOXcWwwIVLVzi2fYlPm3g8/d3V Lf9SQJyR/3ETHlKTZv/aP8V5MjqvTdRW/Ozf6t4rcoySap4AU6cf/bBtUOI4OJA9 zVua4YUBda8L9URQ6NxAsMbN8G57J9oL -----END CERTIFICATE-----Generated at Mon May 5 03:32:44 2025 by rpki-client