$ rpki-client -vvf rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.mft File: Y1kwnvSbRF9utTMb3wqUxcbvw3s.mft (raw, json) Hash identifier: OtsSjwtxIlhzoHm4QRztXg1gzoUHjEA6+lQOyZ86f6Y= Subject key identifier: EA:E3:FE:97:A4:33:7C:24:FB:99:AA:B4:21:FA:04:32:72:59:86:16 Authority key identifier: 63:59:30:9E:F4:9B:44:5F:6E:B5:33:1B:DF:0A:94:C5:C6:EF:C3:7B Certificate issuer: /CN=A91A935D/serialNumber=6359309EF49B445F6EB5331BDF0A94C5C6EFC37B Certificate serial: 0649 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1kwnvSbRF9utTMb3wqUxcbvw3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.mft Manifest number: 0642 Signing time: Sat 10 May 2025 22:11:53 +0000 Manifest this update: Sat 10 May 2025 22:11:52 +0000 Manifest next update: Sat 17 May 2025 22:11:52 +0000 Files and hashes: 1: Y1kwnvSbRF9utTMb3wqUxcbvw3s.crl (hash: KQkgtt+zYNwnYG4n31Uh/j9C+2w9vecRbHBp5x3ijE8=) 2: 47EB76428ABA11EB8A85C01BC4F9AE02.roa (hash: 1AEXU+7Y4PfWz8jQxA5HlFwuXkljqopTv6bNdtPTBW0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.crl rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1kwnvSbRF9utTMb3wqUxcbvw3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 22:11:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1609 (0x649) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A935D, serialNumber=6359309EF49B445F6EB5331BDF0A94C5C6EFC37B Validity Not Before: May 10 22:11:52 2025 GMT Not After : May 17 22:11:52 2025 GMT Subject: CN=681fcf29-435f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d8:f9:34:dc:7e:cb:7e:d0:93:13:aa:c8:25: e8:34:d7:49:ce:34:16:7a:0f:ed:36:8e:00:7c:bc: e2:e1:cb:45:5d:27:e0:0c:37:3c:f0:e6:68:5d:8a: 10:35:75:f7:ac:22:69:db:5a:f6:2b:92:0c:02:0b: 3b:88:10:d9:44:03:1a:f8:c2:2d:f3:51:f9:90:2b: 53:fe:bd:a0:91:e0:fc:e0:f2:56:58:08:05:45:4d: cf:8b:d8:cd:3a:58:00:50:2b:47:c6:40:49:7b:67: bf:c3:cd:f8:80:25:73:e2:35:a2:e1:e8:7c:da:67: 38:70:5b:be:a6:f5:e2:5e:72:48:84:f5:73:76:b3: 38:4c:e8:0d:bc:a0:61:ea:4e:b6:2c:3f:84:a0:e0: e2:bf:c3:d4:11:b1:03:22:cb:ec:ed:29:6d:3f:91: 65:a9:33:46:d3:c5:0a:dc:2e:73:bf:9d:c4:67:b5: cb:12:f2:36:72:07:ad:83:03:e6:d2:09:02:fb:71: 4c:d4:e6:9e:5a:83:a7:79:93:46:c1:bc:76:4c:70: 8a:cc:6e:ce:31:7c:dd:3b:1e:bb:14:f9:62:bd:d6: 57:69:b5:d0:d0:fd:59:93:af:3b:54:67:91:fe:70: fa:9a:e7:b1:57:93:4b:01:f2:92:88:e0:0d:16:ec: b9:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:E3:FE:97:A4:33:7C:24:FB:99:AA:B4:21:FA:04:32:72:59:86:16 X509v3 Authority Key Identifier: keyid:63:59:30:9E:F4:9B:44:5F:6E:B5:33:1B:DF:0A:94:C5:C6:EF:C3:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1kwnvSbRF9utTMb3wqUxcbvw3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:69:7e:7c:da:f0:71:3c:c5:7f:da:78:99:ba:e1:28:11:11: 52:a2:e6:aa:0f:4f:f2:5c:45:de:9b:c6:7e:b1:55:60:a6:49: 54:99:de:42:19:c3:2e:55:dd:ca:ec:a8:8d:aa:f2:52:68:75: be:cf:b1:c4:69:ae:90:90:6e:89:3b:69:c4:dd:1d:7b:6e:6e: fd:d0:03:a7:14:a1:58:87:d5:fb:b1:a5:5f:3f:57:8d:d2:a7: a6:82:30:59:09:b6:c3:54:71:76:0a:92:30:ee:d8:42:b4:5e: 45:9c:fd:e5:b3:a2:f2:36:8a:5c:70:76:23:fc:dc:8d:c0:ef: 6d:4a:6c:69:6a:1c:42:7e:08:78:5e:b0:98:c7:13:94:92:fc: a7:7c:82:6d:fd:30:df:6a:08:18:62:5a:7a:af:4b:a3:42:c3: 14:00:45:4f:62:7b:9d:5c:c5:e4:0f:d9:f3:2e:92:ef:a4:46: 9f:3a:c9:79:a4:c9:3a:04:e5:ac:01:28:26:ab:70:91:5f:94: b9:fb:02:ad:25:36:d2:ab:04:db:9b:bd:1a:06:23:20:69:9b: e5:1a:c5:8f:f2:0f:e1:ab:c0:6b:e5:29:e4:b5:e0:bc:6a:f8: 63:76:2a:2d:c1:1f:c5:1d:42:52:2b:d9:26:41:65:ce:0a:40: 56:aa:a7:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkzNUQxMTAvBgNVBAUTKDYzNTkzMDlFRjQ5QjQ0NUY2RUI1MzMxQkRGMEE5NEM1 QzZFRkMzN0IwHhcNMjUwNTEwMjIxMTUyWhcNMjUwNTE3MjIxMTUyWjAYMRYwFAYD VQQDEw02ODFmY2YyOS00MzVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxdj5NNx+y37QkxOqyCXoNNdJzjQWeg/tNo4AfLzi4ctFXSfgDDc88OZoXYoQ NXX3rCJp21r2K5IMAgs7iBDZRAMa+MIt81H5kCtT/r2gkeD84PJWWAgFRU3Pi9jN OlgAUCtHxkBJe2e/w834gCVz4jWi4eh82mc4cFu+pvXiXnJIhPVzdrM4TOgNvKBh 6k62LD+EoODiv8PUEbEDIsvs7SltP5FlqTNG08UK3C5zv53EZ7XLEvI2cgetgwPm 0gkC+3FM1OaeWoOneZNGwbx2THCKzG7OMXzdOx67FPlivdZXabXQ0P1Zk687VGeR /nD6muexV5NLAfKSiOANFuy5VwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOrj/pek M3wk+5mqtCH6BDJyWYYWMB8GA1UdIwQYMBaAFGNZMJ70m0RfbrUzG98KlMXG78N7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTM1RC9GNTAwRjcyODhB QjgxMUVCODcwN0UxMUFDNEY5QUUwMi9ZMWt3bnZTYlJGOXV0VE1iM3dxVXhjYnZ3 M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kxa3dudlNiUkY5dXRUTWIzd3FVeGNidnczcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTM1RC9GNTAwRjcyODhBQjgxMUVCODcwN0UxMUFDNEY5QUUwMi9ZMWt3bnZTYlJG OXV0VE1iM3dxVXhjYnZ3M3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlaX582vBxPMV/2niZuuEoERFSouaqD0/yXEXem8Z+sVVgpklUmd5C GcMuVd3K7KiNqvJSaHW+z7HEaa6QkG6JO2nE3R17bm790AOnFKFYh9X7saVfP1eN 0qemgjBZCbbDVHF2CpIw7thCtF5FnP3ls6LyNopccHYj/NyNwO9tSmxpahxCfgh4 XrCYxxOUkvynfIJt/TDfaggYYlp6r0ujQsMUAEVPYnudXMXkD9nzLpLvpEafOsl5 pMk6BOWsASgmq3CRX5S5+wKtJTbSqwTbm70aBiMgaZvlGsWP8g/hq8Br5SnkteC8 avhjdiotwR/FHUJSK9kmQWXOCkBWqqcf -----END CERTIFICATE-----Generated at Mon May 12 04:25:50 2025 by rpki-client