$ rpki-client -vvf rpki.apnic.net/member_repository/A91D008B/49E62716D75F11EB9BD24B1DC4F9AE02/yC1GI7edxaBABywRKhur60QWBBw.mft File: yC1GI7edxaBABywRKhur60QWBBw.mft (raw, json) Hash identifier: JI2D0scpO7CRIvVYmuv9WXnYt5t+7XVoOrsJagsmhRk= Subject key identifier: 87:8A:8A:25:E8:26:0F:B0:89:34:6E:2F:5B:9F:12:48:D8:EE:DF:7A Authority key identifier: C8:2D:46:23:B7:9D:C5:A0:40:07:2C:11:2A:1B:AB:EB:44:16:04:1C Certificate issuer: /CN=A91D008B/serialNumber=C82D4623B79DC5A040072C112A1BABEB4416041C Certificate serial: 0583 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yC1GI7edxaBABywRKhur60QWBBw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D008B/49E62716D75F11EB9BD24B1DC4F9AE02/yC1GI7edxaBABywRKhur60QWBBw.mft Manifest number: 057E Signing time: Wed 14 May 2025 23:18:17 +0000 Manifest this update: Wed 14 May 2025 23:18:17 +0000 Manifest next update: Wed 21 May 2025 23:18:17 +0000 Files and hashes: 1: yC1GI7edxaBABywRKhur60QWBBw.crl (hash: 5GqqnKaPmng7QQ07yEcjEcrycK+MMYDR2+f/6DJnHFI=) 2: 469C2676D76111EB97EB721DC4F9AE02.roa (hash: t00CflQYN/OyH00gO0h+rG8Clxsna4wLCpf4dxw1OLQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D008B/49E62716D75F11EB9BD24B1DC4F9AE02/yC1GI7edxaBABywRKhur60QWBBw.crl rsync://rpki.apnic.net/member_repository/A91D008B/49E62716D75F11EB9BD24B1DC4F9AE02/yC1GI7edxaBABywRKhur60QWBBw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yC1GI7edxaBABywRKhur60QWBBw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 23:18:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1411 (0x583) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D008B, serialNumber=C82D4623B79DC5A040072C112A1BABEB4416041C Validity Not Before: May 14 23:18:17 2025 GMT Not After : May 21 23:18:17 2025 GMT Subject: CN=682524b9-339d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:e0:8c:f5:37:4f:8a:9d:b3:04:5e:8c:95:91: 5e:f7:06:29:75:f3:53:40:fb:8d:c5:99:8d:bf:b6: 93:2c:ad:27:cc:30:16:61:37:71:3b:3d:e0:f8:d7: c5:38:76:14:aa:8e:15:bc:b1:a3:5b:76:09:95:fd: 47:af:a0:39:f4:44:1c:a3:98:6a:d8:55:f9:3d:83: cc:51:d7:98:06:17:3b:49:d4:3b:23:7c:81:9d:72: 4e:13:31:0e:de:35:ad:96:19:5a:a0:d9:f6:f8:7e: 75:a6:ff:9f:82:be:54:8a:84:a6:ae:92:9f:95:9a: 57:63:ab:31:04:3b:de:4a:b4:1c:5a:52:7b:8d:99: 33:75:1a:d3:9e:01:2d:d4:d8:cd:46:dd:cd:3e:d7: 26:44:d1:b0:98:48:23:40:11:f4:45:24:43:34:78: 3f:17:1a:5b:4b:7f:45:7b:60:71:17:a5:04:cc:23: bb:61:8a:48:3d:17:75:43:60:98:2c:fe:3b:71:c8: 32:30:96:e3:9d:b9:b1:1a:7c:ec:61:b6:26:5b:23: cc:a7:45:67:92:b7:8b:e6:3c:db:57:80:5b:12:e3: c4:9c:a6:f8:ba:eb:1b:b4:2e:2b:65:9b:ad:bf:40: b5:3e:61:d9:a5:23:f1:ee:52:34:3a:36:48:ca:c0: b4:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:8A:8A:25:E8:26:0F:B0:89:34:6E:2F:5B:9F:12:48:D8:EE:DF:7A X509v3 Authority Key Identifier: keyid:C8:2D:46:23:B7:9D:C5:A0:40:07:2C:11:2A:1B:AB:EB:44:16:04:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D008B/49E62716D75F11EB9BD24B1DC4F9AE02/yC1GI7edxaBABywRKhur60QWBBw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yC1GI7edxaBABywRKhur60QWBBw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D008B/49E62716D75F11EB9BD24B1DC4F9AE02/yC1GI7edxaBABywRKhur60QWBBw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:13:46:e5:07:8e:cb:64:ba:a8:57:bf:b8:de:d8:b7:3d:c2: d9:54:76:0f:87:84:33:7d:ae:48:be:8a:9f:69:45:67:87:cf: 57:03:3a:28:e1:69:2f:7d:77:c5:15:43:f5:eb:fa:5c:e6:f2: 87:4a:fa:ae:a4:cc:34:65:5d:46:f9:c8:76:d2:fa:19:65:97: 0c:91:a7:e5:4c:91:66:c1:7e:8a:1b:a7:ef:58:07:b5:19:ce: a6:39:96:eb:4f:95:4b:28:4e:83:1e:cf:13:dc:fa:84:ad:c8: 48:4d:54:46:14:d8:aa:39:d3:27:a8:33:e0:7a:e1:35:9e:53: fc:3c:c5:f8:e9:a6:40:83:46:a3:ce:c9:bf:81:38:93:7c:75: b7:9b:e6:0b:0d:94:47:73:e2:70:5f:6c:57:73:5e:ef:18:fa: e7:a3:8b:f1:d3:cb:6f:36:a2:9b:66:7a:ac:ce:dc:75:79:9e: ca:ea:7b:5d:c6:d7:bf:c0:05:22:c8:cb:c1:e4:a5:50:2f:98: f1:f4:b2:7e:8d:de:d8:57:da:dd:bf:e5:7f:00:28:b6:8a:31: 82:b0:d8:e4:df:10:0c:23:ff:71:48:a5:67:a0:13:b1:37:69: 48:b6:b3:73:9f:d9:5d:76:7c:e6:95:01:a0:e3:5e:41:3a:5d: a7:14:c8:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDAwOEIxMTAvBgNVBAUTKEM4MkQ0NjIzQjc5REM1QTA0MDA3MkMxMTJBMUJBQkVC NDQxNjA0MUMwHhcNMjUwNTE0MjMxODE3WhcNMjUwNTIxMjMxODE3WjAYMRYwFAYD VQQDEw02ODI1MjRiOS0zMzlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqOCM9TdPip2zBF6MlZFe9wYpdfNTQPuNxZmNv7aTLK0nzDAWYTdxOz3g+NfF OHYUqo4VvLGjW3YJlf1Hr6A59EQco5hq2FX5PYPMUdeYBhc7SdQ7I3yBnXJOEzEO 3jWtlhlaoNn2+H51pv+fgr5UioSmrpKflZpXY6sxBDveSrQcWlJ7jZkzdRrTngEt 1NjNRt3NPtcmRNGwmEgjQBH0RSRDNHg/FxpbS39Fe2BxF6UEzCO7YYpIPRd1Q2CY LP47ccgyMJbjnbmxGnzsYbYmWyPMp0VnkreL5jzbV4BbEuPEnKb4uusbtC4rZZut v0C1PmHZpSPx7lI0OjZIysC0HQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIeKiiXo Jg+wiTRuL1ufEkjY7t96MB8GA1UdIwQYMBaAFMgtRiO3ncWgQAcsESobq+tEFgQc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDA4Qi80OUU2MjcxNkQ3 NUYxMUVCOUJEMjRCMURDNEY5QUUwMi95QzFHSTdlZHhhQkFCeXdSS2h1cjYwUVdC QncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lDMUdJN2VkeGFCQUJ5d1JLaHVyNjBRV0JCdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MDA4Qi80OUU2MjcxNkQ3NUYxMUVCOUJEMjRCMURDNEY5QUUwMi95QzFHSTdlZHhh QkFCeXdSS2h1cjYwUVdCQncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTE0blB47LZLqoV7+43ti3PcLZVHYPh4Qzfa5IvoqfaUVnh89XAzoo 4WkvfXfFFUP16/pc5vKHSvqupMw0ZV1G+ch20voZZZcMkaflTJFmwX6KG6fvWAe1 Gc6mOZbrT5VLKE6DHs8T3PqErchITVRGFNiqOdMnqDPgeuE1nlP8PMX46aZAg0aj zsm/gTiTfHW3m+YLDZRHc+JwX2xXc17vGPrno4vx08tvNqKbZnqsztx1eZ7K6ntd xte/wAUiyMvB5KVQL5jx9LJ+jd7YV9rdv+V/ACi2ijGCsNjk3xAMI/9xSKVnoBOx N2lItrNzn9lddnzmlQGg415BOl2nFMjG -----END CERTIFICATE-----Generated at Thu May 15 18:17:16 2025 by rpki-client