$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.mft File: YRGAfoKKxPmEJpPThhGVLfA9ckc.mft (raw, json) Hash identifier: Twop+npujpC7VGIfWzHuwQESB7qM+e4oV2Jys+vZYzc= Subject key identifier: F6:64:4E:88:39:BF:1F:A7:68:74:38:CC:57:07:FC:9D:56:A6:0C:A9 Authority key identifier: 61:11:80:7E:82:8A:C4:F9:84:26:93:D3:86:11:95:2D:F0:3D:72:47 Certificate issuer: /CN=A91B5D92/serialNumber=6111807E828AC4F9842693D38611952DF03D7247 Certificate serial: 0159 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRGAfoKKxPmEJpPThhGVLfA9ckc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.mft Manifest number: 014D Signing time: Sun 11 May 2025 03:10:55 +0000 Manifest this update: Sun 11 May 2025 03:10:54 +0000 Manifest next update: Sun 18 May 2025 03:10:54 +0000 Files and hashes: 1: YRGAfoKKxPmEJpPThhGVLfA9ckc.crl (hash: 2oyFTtPncw8fW70MjQerz2ajfSTXIuuPrSKom65T0d8=) 2: C778D8FA402A11EEAC7DEF72C4F9AE02.roa (hash: g09v6jk8fn3awL6foCEfKGlvvvO5I0PHpOGz6LziEuA=) 3: 3AFA35E04B2E11EEA07FEE34C4F9AE02.roa (hash: rhIhi3I6SpyrkjjQ3cL8Mw2vXOogWSjfaZP+3P/2bFk=) 4: FBE34DB8538011EFB6264579C4F9AE02.roa (hash: qvUP6d81IdrzZbKdEjVG1snn+Y2Byr8jMGRCFKnK8TM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.crl rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRGAfoKKxPmEJpPThhGVLfA9ckc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 03:10:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 345 (0x159) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5D92, serialNumber=6111807E828AC4F9842693D38611952DF03D7247 Validity Not Before: May 11 03:10:54 2025 GMT Not After : May 18 03:10:54 2025 GMT Subject: CN=6820153e-8ee3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:be:95:8d:b1:0f:fd:e0:2f:f4:45:c8:e4:b9: ea:40:90:57:8c:b6:05:ba:17:09:8b:87:f3:50:00: f5:f2:d3:c5:fb:e6:e3:3b:4b:23:87:c8:41:81:ee: 60:f6:cc:99:2a:fa:42:12:44:d1:28:be:44:07:1b: 48:09:74:c2:56:1b:c7:c9:dd:f6:39:2a:42:a0:74: 11:9a:a2:fc:92:2d:06:11:0a:b1:4a:4c:3e:e3:0d: 94:c4:56:7e:b7:d0:6f:5e:2f:4c:e4:95:35:e3:5c: 19:ad:9d:87:df:34:b0:df:02:f6:de:ae:5a:4f:d8: db:e8:95:c1:28:ba:e0:9c:10:f4:0f:6e:0b:c8:37: b4:b1:6f:cf:e4:4e:cf:74:cc:47:3c:29:53:89:17: 96:37:07:61:a7:91:eb:6e:30:13:07:d2:25:c1:bd: 64:a6:e8:4e:a4:98:ec:5f:79:7e:c8:8d:54:3f:25: 7f:04:9b:31:87:00:3d:cc:3e:ec:e6:fb:de:63:42: 71:5a:3e:34:f2:64:bb:75:83:87:55:ff:4b:01:a9: 62:c0:0a:ab:19:d8:7b:33:51:46:b4:ff:14:40:65: 55:8c:d9:a2:7b:70:b9:19:60:45:5d:36:6a:ba:5f: e2:c6:ee:bd:8b:bb:65:01:e7:e7:cd:63:13:5f:bb: 44:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:64:4E:88:39:BF:1F:A7:68:74:38:CC:57:07:FC:9D:56:A6:0C:A9 X509v3 Authority Key Identifier: keyid:61:11:80:7E:82:8A:C4:F9:84:26:93:D3:86:11:95:2D:F0:3D:72:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRGAfoKKxPmEJpPThhGVLfA9ckc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:d3:01:8d:07:0e:38:01:6a:01:04:d8:9a:c5:d6:76:31:29: 65:61:c3:3b:d3:21:ec:2a:35:ba:14:f9:c9:e3:cf:2e:12:bb: 03:54:bf:80:7d:67:ff:b1:bb:e8:6f:24:c6:35:f0:06:71:98: 19:b6:cf:3d:a0:11:96:98:ec:ee:dd:d6:77:db:00:c5:45:5d: 00:a4:83:a2:5d:c9:47:5f:84:65:ec:83:de:c6:e2:1c:9b:5e: 53:b7:77:ca:4b:23:46:c4:f6:5c:94:cd:ca:a1:ff:7a:9c:ba: 01:02:b7:99:69:75:70:cd:24:c5:c1:73:a0:28:72:1c:3e:47: 0d:a8:16:b3:35:15:df:71:38:2b:8a:6b:84:2b:e9:d9:55:a6: 2c:69:44:9e:73:83:e3:8f:e7:4d:ea:3b:cf:5e:a6:ad:07:bc: 78:32:5f:00:85:a2:ba:30:50:75:6b:29:52:87:77:e8:ac:fc: c6:b8:df:f1:b3:36:05:0a:10:ee:f8:21:f2:89:ca:a4:46:ed: 04:2f:5c:a3:5c:f1:10:76:ea:d9:7e:35:24:e8:9b:ab:e9:9e: 53:04:27:d8:ca:b0:9c:7e:f3:31:db:52:04:f3:61:05:52:0b: f8:1d:6c:2a:c7:54:e7:42:a4:72:a8:6e:61:83:7b:1c:ef:6c: 70:f6:56:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVEOTIxMTAvBgNVBAUTKDYxMTE4MDdFODI4QUM0Rjk4NDI2OTNEMzg2MTE5NTJE RjAzRDcyNDcwHhcNMjUwNTExMDMxMDU0WhcNMjUwNTE4MDMxMDU0WjAYMRYwFAYD VQQDEw02ODIwMTUzZS04ZWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAur6VjbEP/eAv9EXI5LnqQJBXjLYFuhcJi4fzUAD18tPF++bjO0sjh8hBge5g 9syZKvpCEkTRKL5EBxtICXTCVhvHyd32OSpCoHQRmqL8ki0GEQqxSkw+4w2UxFZ+ t9BvXi9M5JU141wZrZ2H3zSw3wL23q5aT9jb6JXBKLrgnBD0D24LyDe0sW/P5E7P dMxHPClTiReWNwdhp5HrbjATB9Ilwb1kpuhOpJjsX3l+yI1UPyV/BJsxhwA9zD7s 5vveY0JxWj408mS7dYOHVf9LAaliwAqrGdh7M1FGtP8UQGVVjNmie3C5GWBFXTZq ul/ixu69i7tlAefnzWMTX7tERwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPZkTog5 vx+naHQ4zFcH/J1WpgypMB8GA1UdIwQYMBaAFGERgH6CisT5hCaT04YRlS3wPXJH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUQ5Mi8zNTc3OThCMDQw MkExMUVFQTcxNjE4NzJDNEY5QUUwMi9ZUkdBZm9LS3hQbUVKcFBUaGhHVkxmQTlj a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lSR0Fmb0tLeFBtRUpwUFRoaEdWTGZBOWNrYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUQ5Mi8zNTc3OThCMDQwMkExMUVFQTcxNjE4NzJDNEY5QUUwMi9ZUkdBZm9LS3hQ bUVKcFBUaGhHVkxmQTlja2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBH0wGNBw44AWoBBNiaxdZ2MSllYcM70yHsKjW6FPnJ488uErsDVL+A fWf/sbvobyTGNfAGcZgZts89oBGWmOzu3dZ32wDFRV0ApIOiXclHX4Rl7IPexuIc m15Tt3fKSyNGxPZclM3Kof96nLoBAreZaXVwzSTFwXOgKHIcPkcNqBazNRXfcTgr imuEK+nZVaYsaUSec4Pjj+dN6jvPXqatB7x4Ml8AhaK6MFB1aylSh3forPzGuN/x szYFChDu+CHyicqkRu0EL1yjXPEQdurZfjUk6Jur6Z5TBCfYyrCcfvMx21IE82EF Ugv4HWwqx1TnQqRyqG5hg3sc72xw9lao -----END CERTIFICATE-----Generated at Mon May 12 22:04:26 2025 by rpki-client