$ rpki-client -vvf rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft File: YG6ylYJUrJi2M26qQayAstyxnG4.mft (raw, json) Hash identifier: iGjKyl7lwfJBtB9iZs9aIoePa7y9PTSFOSikr0+QX/0= Subject key identifier: 30:50:0E:5B:7E:8D:5E:05:EA:2B:6F:5A:96:17:DC:E6:48:8D:31:D1 Authority key identifier: 60:6E:B2:95:82:54:AC:98:B6:33:6E:AA:41:AC:80:B2:DC:B1:9C:6E Certificate issuer: /CN=A9170D3E/serialNumber=606EB2958254AC98B6336EAA41AC80B2DCB19C6E Certificate serial: 5B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YG6ylYJUrJi2M26qQayAstyxnG4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft Manifest number: 5A Signing time: Sat 03 May 2025 06:27:12 +0000 Manifest this update: Sat 03 May 2025 06:27:11 +0000 Manifest next update: Sat 10 May 2025 06:27:11 +0000 Files and hashes: 1: YG6ylYJUrJi2M26qQayAstyxnG4.crl (hash: s5wTNAT3QC0Ikj0su6yHhPlVvPEUUqNkc8DGZCJn/xU=) 2: 181772049FD811EF8680B438C4F9AE02.roa (hash: kL8m2A2/eVPCA0J/9/iLQOKzk2RiAB33QgbmFjlKwTo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.crl rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YG6ylYJUrJi2M26qQayAstyxnG4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 06:27:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 91 (0x5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170D3E, serialNumber=606EB2958254AC98B6336EAA41AC80B2DCB19C6E Validity Not Before: May 3 06:27:11 2025 GMT Not After : May 10 06:27:11 2025 GMT Subject: CN=6815b740-056c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:0c:ce:21:92:cc:a4:ac:f5:f3:bd:4f:ff:1d: 86:1c:9e:0c:21:cf:6c:5c:96:88:71:37:b6:37:9d: 2d:25:4e:01:8e:e4:ec:ca:80:62:94:b1:cf:ae:b2: fe:60:4e:03:25:b3:3a:c3:00:22:39:03:79:cb:bd: 6d:53:e7:c6:dd:c5:89:3c:80:df:10:84:3b:18:c4: 66:27:41:c7:39:84:40:52:4c:e9:e8:a5:1a:af:0f: f6:13:33:cb:02:3b:37:a8:9b:5f:9a:07:f5:8e:73: dc:94:83:0f:d3:cb:09:bd:6c:46:92:5e:53:ca:81: 37:be:f8:83:6f:e4:5d:1b:66:2c:c0:95:2e:e9:64: fc:51:8e:cc:ac:10:16:f2:80:25:5a:99:a8:a4:4d: a7:d0:38:8d:90:54:39:33:e7:7e:3d:e8:18:16:14: a4:4a:3f:40:44:68:4d:aa:e9:88:70:67:19:9d:5f: f2:e4:f5:cc:26:cc:e4:58:cc:70:f5:bf:0e:d7:74: 14:b0:1b:fe:00:34:1c:64:91:c3:08:cf:51:bc:76: 5e:21:00:f4:d0:b0:b0:d8:de:97:5f:98:16:bd:f2: af:6c:0c:5f:00:1a:81:5b:3e:88:73:2d:a8:26:78: fe:fe:79:c1:00:d6:35:a5:47:d8:c1:7b:65:4c:d1: 5f:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:50:0E:5B:7E:8D:5E:05:EA:2B:6F:5A:96:17:DC:E6:48:8D:31:D1 X509v3 Authority Key Identifier: keyid:60:6E:B2:95:82:54:AC:98:B6:33:6E:AA:41:AC:80:B2:DC:B1:9C:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YG6ylYJUrJi2M26qQayAstyxnG4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:87:7b:27:76:96:84:92:c0:9e:1b:82:ef:da:26:a4:f4:e7: ce:b4:64:ec:68:50:8c:00:5a:e1:51:19:33:69:07:5c:49:44: 9b:e2:64:9e:e4:db:9a:22:ce:62:e8:a4:a4:2d:9d:72:da:5b: a2:e3:2f:8d:59:27:8e:be:42:f1:4a:eb:06:60:aa:23:b3:90: 2a:17:a0:84:40:aa:61:d5:94:7b:a0:cd:18:38:a0:a6:0c:0c: 2a:32:d7:19:d6:42:87:25:0b:6e:2b:da:7e:36:60:9a:01:3a: bc:04:d6:c1:2a:13:93:86:18:0f:7a:c9:2c:70:7a:4f:4c:7a: bb:6f:66:b5:36:28:73:82:54:2a:b1:c8:09:1d:bc:15:85:32: 16:1c:5e:8a:f3:69:5c:06:4a:05:a8:3a:b9:41:d4:f5:f0:1a: ce:d7:c4:9d:11:54:57:70:72:db:8d:1e:b3:11:4c:aa:d8:23: 65:5a:65:10:81:59:cd:9b:7c:17:8d:05:16:e0:1a:dd:4f:91: 79:35:d8:4f:44:94:ba:d8:0e:1a:57:65:a9:01:30:e7:22:3e: 65:a3:ef:48:32:2d:e7:d4:91:bf:54:5d:87:b2:c8:a3:b2:82: 88:fc:b2:4c:4b:30:5d:bd:42:09:19:d4:74:bb:4b:2a:5e:7e: 97:93:21:d2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MEQzRTExMC8GA1UEBRMoNjA2RUIyOTU4MjU0QUM5OEI2MzM2RUFBNDFBQzgwQjJE Q0IxOUM2RTAeFw0yNTA1MDMwNjI3MTFaFw0yNTA1MTAwNjI3MTFaMBgxFjAUBgNV BAMTDTY4MTViNzQwLTA1NmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTDM4hksykrPXzvU//HYYcngwhz2xclohxN7Y3nS0lTgGO5OzKgGKUsc+usv5g TgMlszrDACI5A3nLvW1T58bdxYk8gN8QhDsYxGYnQcc5hEBSTOnopRqvD/YTM8sC Ozeom1+aB/WOc9yUgw/Tywm9bEaSXlPKgTe++INv5F0bZizAlS7pZPxRjsysEBby gCVamaikTafQOI2QVDkz53496BgWFKRKP0BEaE2q6YhwZxmdX/Lk9cwmzORYzHD1 vw7XdBSwG/4ANBxkkcMIz1G8dl4hAPTQsLDY3pdfmBa98q9sDF8AGoFbPohzLagm eP7+ecEA1jWlR9jBe2VM0V/XAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUMFAOW36N XgXqK29alhfc5kiNMdEwHwYDVR0jBBgwFoAUYG6ylYJUrJi2M26qQayAstyxnG4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwRDNFL0I1REZDOEMwOUZE NzExRUY5RTM4QTgzN0M0RjlBRTAyL1lHNnlsWUpVckppMk0yNnFRYXlBc3R5eG5H NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWUc2eWxZSlVySmkyTTI2cVFheUFzdHl4bkc0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcw RDNFL0I1REZDOEMwOUZENzExRUY5RTM4QTgzN0M0RjlBRTAyL1lHNnlsWUpVckpp Mk0yNnFRYXlBc3R5eG5HNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHeHeyd2loSSwJ4bgu/aJqT05860ZOxoUIwAWuFRGTNpB1xJRJviZJ7k 25oizmLopKQtnXLaW6LjL41ZJ46+QvFK6wZgqiOzkCoXoIRAqmHVlHugzRg4oKYM DCoy1xnWQoclC24r2n42YJoBOrwE1sEqE5OGGA96ySxwek9MertvZrU2KHOCVCqx yAkdvBWFMhYcXorzaVwGSgWoOrlB1PXwGs7XxJ0RVFdwctuNHrMRTKrYI2VaZRCB Wc2bfBeNBRbgGt1PkXk12E9ElLrYDhpXZakBMOciPmWj70gyLefUkb9UXYeyyKOy goj8skxLMF29QgkZ1HS7SypefpeTIdI= -----END CERTIFICATE-----Generated at Mon May 5 06:38:42 2025 by rpki-client