$ rpki-client -vvf rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.mft File: ry1FO-u_318ptjrBZ1THjRsPy4g.mft (raw, json) Hash identifier: PtiWdYhP2iPoRQCvRkkqaeyt0gwSONr4UTF67sgdM1U= Subject key identifier: D8:1A:72:1D:A0:34:01:23:6F:37:AD:65:CE:50:0E:43:A4:F0:9B:82 Authority key identifier: AF:2D:45:3B:EB:BF:DF:5F:29:B6:3A:C1:67:54:C7:8D:1B:0F:CB:88 Certificate issuer: /CN=A91557BA/serialNumber=AF2D453BEBBFDF5F29B63AC16754C78D1B0FCB88 Certificate serial: 0C46 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ry1FO-u_318ptjrBZ1THjRsPy4g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.mft Manifest number: 0C3D Signing time: Mon 12 May 2025 18:17:08 +0000 Manifest this update: Mon 12 May 2025 18:17:07 +0000 Manifest next update: Mon 19 May 2025 18:17:07 +0000 Files and hashes: 1: ry1FO-u_318ptjrBZ1THjRsPy4g.crl (hash: dXFGquH+r9ZFbaEc/agHZUV7epuL6ikC1isRFTgdDKU=) 2: 157A1BFC59EE11EBA398AA0AC4F9AE02.roa (hash: JpCVaZ9JZD1Afq3DjPUJqYLTP1v40h6qnEBodBPkfj4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.crl rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ry1FO-u_318ptjrBZ1THjRsPy4g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:17:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3142 (0xc46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91557BA, serialNumber=AF2D453BEBBFDF5F29B63AC16754C78D1B0FCB88 Validity Not Before: May 12 18:17:07 2025 GMT Not After : May 19 18:17:07 2025 GMT Subject: CN=68223b23-578c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:f9:45:72:64:bb:13:51:13:7b:17:52:92:ca: 31:4c:60:c3:8e:c8:62:97:4e:16:10:61:2a:e5:d2: dc:14:49:97:6d:51:70:f5:e8:33:37:d1:59:e1:de: 97:05:4a:23:27:cb:93:22:46:de:ff:98:85:c5:a9: 97:a1:0b:fb:11:f7:ab:a5:a0:1d:ef:53:94:5b:c2: 05:b5:78:67:88:27:40:25:65:52:f6:83:73:5f:0a: cd:4e:c5:1b:8c:62:3d:99:b1:33:7f:e8:a4:b1:b0: 97:b6:80:cd:64:03:be:9d:1e:c4:23:4a:4b:6c:76: 49:76:fc:36:24:61:38:66:3e:94:4b:25:bd:7a:2a: f2:99:0a:64:75:79:02:08:df:e8:3d:b0:c2:20:c2: 4a:0e:a2:df:58:50:cd:cb:2c:c0:b9:53:e6:cb:9a: 11:03:39:42:c3:1f:2b:7c:87:3e:0b:ab:e6:a9:0d: 2d:8a:f6:f7:c5:58:6f:de:60:10:e5:c8:39:ae:0d: 6f:ad:89:79:27:c4:b9:95:b8:68:81:df:03:b6:20: f3:4c:f6:52:bb:66:bb:cb:87:43:85:50:b4:f9:73: 79:fc:8b:e4:a8:96:d6:74:d2:ea:b2:c0:54:be:18: 71:65:8d:4f:4f:d3:20:bb:38:62:cd:a0:e6:68:c1: 96:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:1A:72:1D:A0:34:01:23:6F:37:AD:65:CE:50:0E:43:A4:F0:9B:82 X509v3 Authority Key Identifier: keyid:AF:2D:45:3B:EB:BF:DF:5F:29:B6:3A:C1:67:54:C7:8D:1B:0F:CB:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ry1FO-u_318ptjrBZ1THjRsPy4g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:ea:c3:b8:b0:80:ac:97:10:d6:38:32:aa:bd:33:fe:e7:63: 57:0a:cd:6f:b7:3d:57:b2:63:91:61:c0:b7:5a:fc:a0:cc:9f: 0b:c0:8e:10:ca:9d:44:93:63:53:b4:15:59:b3:36:d0:a6:51: 22:a2:b9:c2:c2:2e:fe:6b:81:aa:60:0d:9b:d8:bb:af:81:91: 9c:4c:92:87:c0:4a:94:0a:bf:81:80:48:f6:0f:69:95:4e:25: 49:76:68:90:04:c2:fd:ea:c5:4c:fd:7d:2c:b9:5d:5c:c0:b6: 00:f3:05:24:8f:36:bf:dd:2a:db:96:7e:3b:57:62:11:ae:0b: 0a:bc:38:08:36:fd:42:b2:d8:e6:cc:fb:63:c7:bb:6c:1c:01: 7a:38:44:87:de:58:4c:84:38:e8:d4:7f:e3:a0:3c:f3:33:e9: f5:22:17:9e:d2:f2:68:3d:11:65:db:ca:07:ca:6a:62:6a:77: d0:0e:b1:a7:25:9d:23:72:08:fa:17:96:04:a5:c3:39:48:1e: 96:c4:b6:d5:f4:4a:fe:58:98:1e:a8:40:2e:06:99:25:2c:7c: 9b:92:39:dd:db:2b:78:b7:a6:72:0d:55:7e:9c:de:df:1a:30: 93:98:30:fd:5e:2c:81:36:16:a6:e9:3a:fc:c5:49:7e:1f:ce: 4b:fc:7c:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU3QkExMTAvBgNVBAUTKEFGMkQ0NTNCRUJCRkRGNUYyOUI2M0FDMTY3NTRDNzhE MUIwRkNCODgwHhcNMjUwNTEyMTgxNzA3WhcNMjUwNTE5MTgxNzA3WjAYMRYwFAYD VQQDEw02ODIyM2IyMy01NzhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9PlFcmS7E1ETexdSksoxTGDDjshil04WEGEq5dLcFEmXbVFw9egzN9FZ4d6X BUojJ8uTIkbe/5iFxamXoQv7EferpaAd71OUW8IFtXhniCdAJWVS9oNzXwrNTsUb jGI9mbEzf+iksbCXtoDNZAO+nR7EI0pLbHZJdvw2JGE4Zj6USyW9eirymQpkdXkC CN/oPbDCIMJKDqLfWFDNyyzAuVPmy5oRAzlCwx8rfIc+C6vmqQ0tivb3xVhv3mAQ 5cg5rg1vrYl5J8S5lbhogd8DtiDzTPZSu2a7y4dDhVC0+XN5/IvkqJbWdNLqssBU vhhxZY1PT9MguzhizaDmaMGW4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNgach2g NAEjbzetZc5QDkOk8JuCMB8GA1UdIwQYMBaAFK8tRTvrv99fKbY6wWdUx40bD8uI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTdCQS82ODEyREY5MjA0 RUIxMUVBQTcyRkEzNjNDNEY5QUUwMi9yeTFGTy11XzMxOHB0anJCWjFUSGpSc1B5 NGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3J5MUZPLXVfMzE4cHRqckJaMVRIalJzUHk0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTdCQS82ODEyREY5MjA0RUIxMUVBQTcyRkEzNjNDNEY5QUUwMi9yeTFGTy11XzMx OHB0anJCWjFUSGpSc1B5NGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+6sO4sICslxDWODKqvTP+52NXCs1vtz1XsmORYcC3WvygzJ8LwI4Q yp1Ek2NTtBVZszbQplEiornCwi7+a4GqYA2b2LuvgZGcTJKHwEqUCr+BgEj2D2mV TiVJdmiQBML96sVM/X0suV1cwLYA8wUkjza/3Srbln47V2IRrgsKvDgINv1Cstjm zPtjx7tsHAF6OESH3lhMhDjo1H/joDzzM+n1Ihee0vJoPRFl28oHympianfQDrGn JZ0jcgj6F5YEpcM5SB6WxLbV9Er+WJgeqEAuBpklLHybkjnd2yt4t6ZyDVV+nN7f GjCTmDD9XiyBNham6Tr8xUl+H85L/Hz2 -----END CERTIFICATE-----Generated at Wed May 14 15:08:22 2025 by rpki-client