$ rpki-client -vvf rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.mft File: YRy1Vsh7wEmlpD6x8pcQfv8beUA.mft (raw, json) Hash identifier: PSnCbWVu4wnKnRu6UlPdFVR0fwZyu8+fM0+5zxzyvhc= Subject key identifier: 20:56:36:05:D9:F7:54:E7:DD:71:63:D8:ED:95:BB:70:C0:84:7D:B2 Authority key identifier: 61:1C:B5:56:C8:7B:C0:49:A5:A4:3E:B1:F2:97:10:7E:FF:1B:79:40 Certificate issuer: /CN=A914F7F0/serialNumber=611CB556C87BC049A5A43EB1F297107EFF1B7940 Certificate serial: 97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRy1Vsh7wEmlpD6x8pcQfv8beUA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.mft Manifest number: 93 Signing time: Sun 11 May 2025 05:11:42 +0000 Manifest this update: Sun 11 May 2025 05:11:41 +0000 Manifest next update: Sun 18 May 2025 05:11:41 +0000 Files and hashes: 1: YRy1Vsh7wEmlpD6x8pcQfv8beUA.crl (hash: ZFCjfzuPxzDvBT/zCGy/6gxDIuzy/I17UtlOHOykohQ=) 2: 9A826D9059D611EF814F004DC4F9AE02.roa (hash: 3aT0muq2AP76fHDV6M45dsCuBJOlUCEA5kwKeP8ww7o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.crl rsync://rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRy1Vsh7wEmlpD6x8pcQfv8beUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 05:11:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 151 (0x97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F7F0, serialNumber=611CB556C87BC049A5A43EB1F297107EFF1B7940 Validity Not Before: May 11 05:11:41 2025 GMT Not After : May 18 05:11:41 2025 GMT Subject: CN=6820318e-ed8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:9a:02:14:15:6e:3d:2f:7e:88:42:7c:1c:48: 62:9c:e3:ad:64:93:14:08:6f:bc:92:85:0f:d2:21: de:72:3f:5c:a5:ec:ad:51:d7:60:4a:b4:51:a3:fb: 73:5c:11:a3:44:de:e5:22:b0:4b:53:03:fc:98:a8: a1:d1:a0:60:af:50:0e:8d:c1:89:b0:f1:df:73:27: 26:39:e7:a8:18:6b:5b:19:00:e0:d6:31:b4:88:d3: a5:51:39:fd:4c:aa:f7:f5:6a:37:f7:56:59:b9:5f: af:ad:04:12:aa:7c:7f:26:ca:db:d3:b8:17:81:60: 98:6a:47:0c:82:ee:ca:1d:b6:49:06:e3:bc:9b:5a: c4:c6:05:cd:c5:92:3e:bb:ca:c8:25:48:fa:79:4e: d0:be:6b:85:76:af:38:4a:f3:09:b2:8c:ff:a6:36: 72:f8:50:d8:78:0e:c2:81:07:88:61:cf:ed:aa:8d: 46:b5:bb:c3:73:08:26:00:79:d6:91:26:8a:5b:1f: 94:3a:73:c9:d7:42:a7:c1:60:be:09:4b:dc:5d:e6: 70:b3:dd:39:be:2f:f8:8b:c8:c8:4a:35:67:68:e0: 65:d9:e8:ad:6c:99:09:24:35:6c:6b:14:0c:f8:01: e3:59:d5:7f:d7:bc:8c:bf:59:40:7c:d8:ab:4a:ac: 62:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:56:36:05:D9:F7:54:E7:DD:71:63:D8:ED:95:BB:70:C0:84:7D:B2 X509v3 Authority Key Identifier: keyid:61:1C:B5:56:C8:7B:C0:49:A5:A4:3E:B1:F2:97:10:7E:FF:1B:79:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRy1Vsh7wEmlpD6x8pcQfv8beUA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:f9:ca:3e:18:8c:2a:2e:dc:40:81:96:20:b0:cf:5f:7f:ab: 61:e3:8f:08:5a:4c:ae:fe:0a:ff:8e:3f:a7:c4:1b:61:39:a8: ab:21:f4:96:fd:5d:04:18:e9:5c:66:92:60:cd:9d:18:a4:28: 14:f1:39:11:ed:74:56:b1:b5:0a:a7:a8:02:47:f0:6b:2c:ca: a9:2d:9c:b2:6d:dd:49:75:7d:03:e4:61:85:32:d6:7f:61:f3: 61:46:ee:8c:7c:33:35:e0:7d:ed:75:62:d9:4b:95:06:1c:8a: ff:0f:be:ed:0c:db:9e:1d:aa:e1:cd:dd:a8:9c:fa:9d:d7:d7: c4:7d:80:c6:f3:1d:37:24:ad:9a:46:4c:56:dc:d6:93:46:34: 02:10:95:79:9b:c8:3f:79:06:8c:37:21:fe:c8:de:ef:c6:c9: 97:da:38:17:d8:68:69:3e:3d:79:2f:de:50:ad:7e:3e:e8:23: 48:91:3e:b4:03:8c:af:5e:19:40:6d:ec:40:f2:ea:68:cc:f4: bd:03:58:5c:1f:c1:44:9e:06:9c:56:e3:ef:c2:c2:47:45:c0: fd:fb:20:ee:a6:cb:b9:46:0b:c3:c6:29:f6:12:a0:c6:58:c4: 65:06:65:4a:96:76:17:59:bc:55:be:4f:14:4b:91:fa:a4:fc: 6d:5d:93:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY3RjAxMTAvBgNVBAUTKDYxMUNCNTU2Qzg3QkMwNDlBNUE0M0VCMUYyOTcxMDdF RkYxQjc5NDAwHhcNMjUwNTExMDUxMTQxWhcNMjUwNTE4MDUxMTQxWjAYMRYwFAYD VQQDEw02ODIwMzE4ZS1lZDhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArZoCFBVuPS9+iEJ8HEhinOOtZJMUCG+8koUP0iHecj9cpeytUddgSrRRo/tz XBGjRN7lIrBLUwP8mKih0aBgr1AOjcGJsPHfcycmOeeoGGtbGQDg1jG0iNOlUTn9 TKr39Wo391ZZuV+vrQQSqnx/Jsrb07gXgWCYakcMgu7KHbZJBuO8m1rExgXNxZI+ u8rIJUj6eU7QvmuFdq84SvMJsoz/pjZy+FDYeA7CgQeIYc/tqo1GtbvDcwgmAHnW kSaKWx+UOnPJ10KnwWC+CUvcXeZws905vi/4i8jISjVnaOBl2eitbJkJJDVsaxQM +AHjWdV/17yMv1lAfNirSqxiOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCBWNgXZ 91Tn3XFj2O2Vu3DAhH2yMB8GA1UdIwQYMBaAFGEctVbIe8BJpaQ+sfKXEH7/G3lA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjdGMC9DNzRFQjY5QTU5 RDUxMUVGODNEMjhCNEJDNEY5QUUwMi9ZUnkxVnNoN3dFbWxwRDZ4OHBjUWZ2OGJl VUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lSeTFWc2g3d0VtbHBENng4cGNRZnY4YmVVQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjdGMC9DNzRFQjY5QTU5RDUxMUVGODNEMjhCNEJDNEY5QUUwMi9ZUnkxVnNoN3dF bWxwRDZ4OHBjUWZ2OGJlVUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCa+co+GIwqLtxAgZYgsM9ff6th448IWkyu/gr/jj+nxBthOairIfSW /V0EGOlcZpJgzZ0YpCgU8TkR7XRWsbUKp6gCR/BrLMqpLZyybd1JdX0D5GGFMtZ/ YfNhRu6MfDM14H3tdWLZS5UGHIr/D77tDNueHarhzd2onPqd19fEfYDG8x03JK2a RkxW3NaTRjQCEJV5m8g/eQaMNyH+yN7vxsmX2jgX2GhpPj15L95QrX4+6CNIkT60 A4yvXhlAbexA8upozPS9A1hcH8FEngacVuPvwsJHRcD9+yDupsu5RgvDxin2EqDG WMRlBmVKlnYXWbxVvk8US5H6pPxtXZOQ -----END CERTIFICATE-----Generated at Mon May 12 15:53:25 2025 by rpki-client