$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft File: ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft (raw, json) Hash identifier: YG+mpMjpNk3WCvSqyo1MMdb3U6kg7KZbxQUk+YBVY8o= Subject key identifier: 74:06:93:48:E3:5A:D0:14:27:7F:6E:1C:08:58:10:B1:7A:55:0C:8E Authority key identifier: C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB Certificate issuer: /CN=A91D2ACF/serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Certificate serial: 0A0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft Manifest number: 0A03 Signing time: Mon 12 May 2025 19:40:55 +0000 Manifest this update: Mon 12 May 2025 19:40:55 +0000 Manifest next update: Mon 19 May 2025 19:40:55 +0000 Files and hashes: 1: ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl (hash: b/hBo4qhx33yBc2eg0H+1bxM2lYsjW0Auhtmp8d2+fI=) 2: F22D283A9B3B11EBA5C76B80C4F9AE02.roa (hash: egvdAkYLzu5gxxKonGYdt5g+UPStKzivhdsfzC6knl8=) 3: 3A851EE273E411EA9572F76EC4F9AE02.roa (hash: vR/hsH9Zhb8FIZHjA0oIM8YiJ7UXh8ADZ/D+wU+8mAM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 19:40:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2575 (0xa0f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2ACF, serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Validity Not Before: May 12 19:40:55 2025 GMT Not After : May 19 19:40:55 2025 GMT Subject: CN=68224ec7-db2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:4d:47:c8:e8:4d:ef:07:5b:fb:16:84:5b:c9: b4:e3:70:79:a6:86:c6:1b:1b:c6:7a:4c:f2:73:5b: d4:8c:d6:5a:91:31:a7:37:2b:83:83:75:5b:7a:ce: e3:69:28:d3:ef:e9:c4:e5:bf:51:bc:4b:ae:22:9e: 71:49:9e:78:12:8c:e8:26:c8:a8:0a:73:a6:a7:19: a5:11:4b:0b:f4:eb:05:52:e5:24:8a:f8:ed:c1:2c: 5b:a4:4e:b9:42:b7:9a:62:a8:7e:c4:d9:7a:fd:6c: a9:82:41:83:81:b0:12:7c:11:7f:f9:05:1d:b8:73: b3:8a:ea:d2:a4:49:41:54:ae:5d:ea:8b:89:04:94: a9:4d:bb:e7:25:fd:1b:8d:98:0a:b4:4a:9c:bf:15: 1b:70:91:2c:28:27:66:a3:81:30:23:84:e9:1b:5a: 15:2d:2e:b7:8c:b0:4c:ab:be:88:ca:95:86:fe:10: 08:73:20:be:5a:63:3a:87:28:c2:b9:f2:42:86:0f: 05:5c:54:a1:be:11:b0:36:cd:5d:d2:17:cf:96:ce: 51:f7:69:c5:13:c2:65:eb:d6:69:2b:7a:22:8f:0f: 27:b3:e1:b2:d8:2c:a3:05:97:5d:09:b6:cd:89:8c: fc:bd:2c:00:aa:ad:a6:be:9c:43:ae:69:73:11:79: 7a:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:06:93:48:E3:5A:D0:14:27:7F:6E:1C:08:58:10:B1:7A:55:0C:8E X509v3 Authority Key Identifier: keyid:C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:d5:31:4f:be:69:9d:1a:73:39:5a:7a:43:31:48:1d:c6:88: 77:7a:4f:cb:67:c6:bb:96:ab:a8:6d:69:63:d0:5d:7d:1e:da: 56:c8:f0:3c:60:ec:9d:57:1a:ad:71:a2:b6:55:d9:95:8a:ae: 75:28:03:32:ad:61:50:56:ff:dc:e2:ad:fa:7d:6f:ff:8d:3e: 3b:7e:a8:56:90:c8:8a:2d:8d:be:62:4f:7a:5a:8b:84:d0:36: 33:d4:7f:78:d8:f9:d8:41:e2:d1:cd:ad:39:de:a6:a3:bf:c6: 17:e4:48:25:16:a7:76:4a:e8:9d:fb:f6:ea:2f:ad:ec:66:6c: c3:dc:6c:75:d6:cd:6e:e9:50:88:cd:99:0c:35:73:9e:47:a2: 17:58:4a:d6:7a:fd:8e:ee:c0:f2:78:22:d3:55:0a:42:bf:bf: 61:c7:f7:1b:c8:bc:ab:b1:ef:d7:ff:d8:c9:5a:13:27:d0:40: 87:42:0e:0d:55:49:cc:ce:02:7a:ce:9a:47:81:c1:ad:ae:86: 87:9d:54:41:13:30:eb:51:0e:96:df:48:bd:c1:29:45:f5:83: 46:ae:38:ae:ef:ee:3e:31:6e:b2:a9:36:89:38:39:24:f2:d8: 8b:cb:ce:bb:c6:a9:3c:24:10:54:75:ac:c2:25:7f:d0:6e:97: 91:15:d3:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCg8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJBQ0YxMTAvBgNVBAUTKEM5RUQ0Qjc2NzZFM0Y1QTVCMUY4QTZBMEREN0UyMjFC NjNFNTM0QUIwHhcNMjUwNTEyMTk0MDU1WhcNMjUwNTE5MTk0MDU1WjAYMRYwFAYD VQQDEw02ODIyNGVjNy1kYjJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApE1HyOhN7wdb+xaEW8m043B5pobGGxvGekzyc1vUjNZakTGnNyuDg3Vbes7j aSjT7+nE5b9RvEuuIp5xSZ54EozoJsioCnOmpxmlEUsL9OsFUuUkivjtwSxbpE65 QreaYqh+xNl6/WypgkGDgbASfBF/+QUduHOziurSpElBVK5d6ouJBJSpTbvnJf0b jZgKtEqcvxUbcJEsKCdmo4EwI4TpG1oVLS63jLBMq76IypWG/hAIcyC+WmM6hyjC ufJChg8FXFShvhGwNs1d0hfPls5R92nFE8Jl69ZpK3oijw8ns+Gy2CyjBZddCbbN iYz8vSwAqq2mvpxDrmlzEXl6YQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHQGk0jj WtAUJ39uHAhYELF6VQyOMB8GA1UdIwQYMBaAFMntS3Z24/WlsfimoN1+Ihtj5TSr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkFDRi81QUM2MkIyQTcz RTMxMUVBOUI1OTQzNkVDNEY5QUUwMi95ZTFMZG5iajlhV3gtS2FnM1g0aUcyUGxO S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3llMUxkbmJqOWFXeC1LYWczWDRpRzJQbE5Lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkFDRi81QUM2MkIyQTczRTMxMUVBOUI1OTQzNkVDNEY5QUUwMi95ZTFMZG5iajlh V3gtS2FnM1g0aUcyUGxOS3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCS1TFPvmmdGnM5WnpDMUgdxoh3ek/LZ8a7lquobWlj0F19HtpWyPA8 YOydVxqtcaK2VdmViq51KAMyrWFQVv/c4q36fW//jT47fqhWkMiKLY2+Yk96WouE 0DYz1H942PnYQeLRza053qajv8YX5EglFqd2Suid+/bqL63sZmzD3Gx11s1u6VCI zZkMNXOeR6IXWErWev2O7sDyeCLTVQpCv79hx/cbyLyrse/X/9jJWhMn0ECHQg4N VUnMzgJ6zppHgcGtroaHnVRBEzDrUQ6W30i9wSlF9YNGrjiu7+4+MW6yqTaJODkk 8tiLy867xqk8JBBUdazCJX/QbpeRFdNb -----END CERTIFICATE-----Generated at Wed May 14 08:03:39 2025 by rpki-client