$ rpki-client -vvf rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft File: YeT4YWtiQmYakffQErbNHkCTiQs.mft (raw, json) Hash identifier: BFQu6HZtu94LoaKSRu6AproeSmktYRgI44O4331B54A= Subject key identifier: 1C:03:3D:0D:8B:2A:F7:E4:75:58:6F:4B:EA:E5:73:2D:D8:C6:B5:61 Authority key identifier: 61:E4:F8:61:6B:62:42:66:1A:91:F7:D0:12:B6:CD:1E:40:93:89:0B Certificate issuer: /CN=A91605D7/serialNumber=61E4F8616B6242661A91F7D012B6CD1E4093890B Certificate serial: DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeT4YWtiQmYakffQErbNHkCTiQs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft Manifest number: D9 Signing time: Tue 13 May 2025 04:46:19 +0000 Manifest this update: Tue 13 May 2025 04:46:19 +0000 Manifest next update: Tue 20 May 2025 04:46:19 +0000 Files and hashes: 1: YeT4YWtiQmYakffQErbNHkCTiQs.crl (hash: 2VELE8NcAadTRpu9MhRkdA0eT4RSMVHkcM2g0TwhHUg=) 2: EA46D7ECE57F11EE96F8FB39C4F9AE02.roa (hash: yl/E8QHLka4/lwMsB6BevGouPJwrIPgnFEOjdbPwsG0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.crl rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeT4YWtiQmYakffQErbNHkCTiQs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 04:46:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 220 (0xdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91605D7, serialNumber=61E4F8616B6242661A91F7D012B6CD1E4093890B Validity Not Before: May 13 04:46:19 2025 GMT Not After : May 20 04:46:19 2025 GMT Subject: CN=6822ce9b-a8ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:53:f5:a5:fb:15:58:01:6c:a3:9a:22:50:99: f1:54:f2:7a:08:e9:91:dc:00:e1:8d:60:0a:d7:70: d0:1e:87:10:ad:24:ce:d9:2b:95:50:ff:8b:bc:d4: 63:c3:28:b5:a3:cd:08:31:5e:4c:ec:fe:a6:23:56: ff:42:d4:ab:43:69:97:21:8f:20:c1:d9:f1:11:71: 45:9c:00:45:3a:11:2e:65:5e:18:6b:d4:2f:74:50: 3b:6f:b2:9a:b0:76:4c:c1:3d:c6:42:de:2d:06:e9: e7:e1:2a:57:fd:b1:03:d7:95:9f:b8:51:9a:a9:4e: 00:65:73:00:9f:43:50:87:87:61:3b:57:69:d1:7c: 83:7e:d8:8d:08:3d:94:d3:b5:c2:37:87:f0:2c:e6: 6c:20:c2:4f:53:86:2c:25:7b:6b:6a:1b:e8:77:ba: 96:42:1e:96:dd:2b:76:15:4f:01:9b:62:29:25:5e: 18:5d:4a:60:3a:94:0f:9c:2d:71:b7:10:2c:0b:1e: fc:80:9e:aa:25:a3:43:6d:09:86:af:6d:86:9d:ed: f5:8b:97:3c:5f:7e:fa:b1:54:64:ab:aa:87:a7:d4: bf:ec:c5:a2:ff:16:59:3e:92:0a:60:98:a3:51:a5: aa:60:64:f2:55:fa:f9:7f:1d:eb:74:4c:f7:6e:57: 4e:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:03:3D:0D:8B:2A:F7:E4:75:58:6F:4B:EA:E5:73:2D:D8:C6:B5:61 X509v3 Authority Key Identifier: keyid:61:E4:F8:61:6B:62:42:66:1A:91:F7:D0:12:B6:CD:1E:40:93:89:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeT4YWtiQmYakffQErbNHkCTiQs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:35:d3:f2:83:a3:56:82:3b:7d:89:bb:53:8c:ce:c0:7c:3e: 82:a1:1a:ac:07:f4:44:01:17:57:59:e1:2f:52:2d:5f:13:83: ac:b2:4e:23:98:24:14:fe:df:2a:33:9c:c3:a2:a0:47:ae:07: c8:13:c9:3b:cc:8c:58:1c:8f:21:2a:a8:d0:36:4d:31:d1:2c: bc:ee:5e:9f:d0:95:cd:8f:6c:be:5b:fb:9e:da:62:95:ac:bd: 21:da:99:54:87:2d:cf:f8:28:ad:a9:9d:95:80:7c:3c:af:3b: 73:0f:18:7f:ad:0f:c0:23:a9:49:4e:d9:53:3f:9b:d4:26:eb: 13:04:9a:27:62:e9:44:9e:0b:f0:1d:ee:52:09:c1:82:87:de: 99:2a:2b:c6:3b:05:a9:6d:40:a8:20:8b:58:2f:ca:42:2f:7f: 86:a1:a5:c4:ae:be:b9:9e:01:26:49:28:a0:ee:06:3b:c3:0e: 01:40:b3:71:2b:83:0e:0c:ff:42:55:a1:61:a3:44:8a:c5:cc: 83:02:22:e0:2c:45:9f:79:52:08:8c:d8:69:07:db:c4:cd:20: 23:04:34:c4:f5:97:ab:ad:c3:59:7f:62:06:59:68:35:89:44: 6d:e4:2f:c4:be:8d:04:93:9c:9c:c8:c8:ed:50:24:bf:ae:15: c3:93:15:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA1RDcxMTAvBgNVBAUTKDYxRTRGODYxNkI2MjQyNjYxQTkxRjdEMDEyQjZDRDFF NDA5Mzg5MEIwHhcNMjUwNTEzMDQ0NjE5WhcNMjUwNTIwMDQ0NjE5WjAYMRYwFAYD VQQDEw02ODIyY2U5Yi1hOGFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnFP1pfsVWAFso5oiUJnxVPJ6COmR3ADhjWAK13DQHocQrSTO2SuVUP+LvNRj wyi1o80IMV5M7P6mI1b/QtSrQ2mXIY8gwdnxEXFFnABFOhEuZV4Ya9QvdFA7b7Ka sHZMwT3GQt4tBunn4SpX/bED15WfuFGaqU4AZXMAn0NQh4dhO1dp0XyDftiNCD2U 07XCN4fwLOZsIMJPU4YsJXtrahvod7qWQh6W3St2FU8Bm2IpJV4YXUpgOpQPnC1x txAsCx78gJ6qJaNDbQmGr22Gne31i5c8X376sVRkq6qHp9S/7MWi/xZZPpIKYJij UaWqYGTyVfr5fx3rdEz3bldOdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBwDPQ2L KvfkdVhvS+rlcy3YxrVhMB8GA1UdIwQYMBaAFGHk+GFrYkJmGpH30BK2zR5Ak4kL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDVENy8zQjUwRjEzMkU1 N0YxMUVFQUYxRDI5MUJDNEY5QUUwMi9ZZVQ0WVd0aVFtWWFrZmZRRXJiTkhrQ1Rp UXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1llVDRZV3RpUW1ZYWtmZlFFcmJOSGtDVGlRcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDVENy8zQjUwRjEzMkU1N0YxMUVFQUYxRDI5MUJDNEY5QUUwMi9ZZVQ0WVd0aVFt WWFrZmZRRXJiTkhrQ1RpUXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgNdPyg6NWgjt9ibtTjM7AfD6CoRqsB/REARdXWeEvUi1fE4Ossk4j mCQU/t8qM5zDoqBHrgfIE8k7zIxYHI8hKqjQNk0x0Sy87l6f0JXNj2y+W/ue2mKV rL0h2plUhy3P+CitqZ2VgHw8rztzDxh/rQ/AI6lJTtlTP5vUJusTBJonYulEngvw He5SCcGCh96ZKivGOwWpbUCoIItYL8pCL3+GoaXErr65ngEmSSig7gY7ww4BQLNx K4MODP9CVaFho0SKxcyDAiLgLEWfeVIIjNhpB9vEzSAjBDTE9ZerrcNZf2IGWWg1 iURt5C/Evo0Ek5ycyMjtUCS/rhXDkxVJ -----END CERTIFICATE-----Generated at Wed May 14 08:22:10 2025 by rpki-client