$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft File: y_Kp2oisCPjVEG3svXLW-gnIGOk.mft (raw, json) Hash identifier: Oms7Pn0MSuuEed6pBZkl35J/kUsqxsbYeei85B/7vFI= Subject key identifier: 4E:71:00:7C:47:7B:2D:D4:B2:0E:64:E2:99:F1:F3:98:5A:BA:61:F0 Authority key identifier: CB:F2:A9:DA:88:AC:08:F8:D5:10:6D:EC:BD:72:D6:FA:09:C8:18:E9 Certificate issuer: /CN=A91D5C25/serialNumber=CBF2A9DA88AC08F8D5106DECBD72D6FA09C818E9 Certificate serial: 0F1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft Manifest number: 0F13 Signing time: Fri 16 May 2025 17:53:14 +0000 Manifest this update: Fri 16 May 2025 17:53:14 +0000 Manifest next update: Fri 23 May 2025 17:53:14 +0000 Files and hashes: 1: y_Kp2oisCPjVEG3svXLW-gnIGOk.crl (hash: J/Oyt+1joziL0ASHoioPUqoBBjdftQQwo8XgMN1A5Ws=) 2: 4ECF0A4C765C11E9A01A6E34C4F9AE02.roa (hash: pLwEgd+VwWLgIg3V6a+yYMrZGmHsHcB345LFbQql9+8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.crl rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 17:53:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3868 (0xf1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5C25, serialNumber=CBF2A9DA88AC08F8D5106DECBD72D6FA09C818E9 Validity Not Before: May 16 17:53:14 2025 GMT Not After : May 23 17:53:14 2025 GMT Subject: CN=68277b8a-61d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:39:0b:f7:84:33:fa:ec:2c:72:bf:fc:f4:6d: c7:f4:03:82:70:45:79:25:be:30:2e:be:b8:8e:a7: 1b:7c:b8:69:d3:bd:34:0f:b0:14:f4:36:ed:7a:b1: 08:ec:d4:45:26:52:e6:10:fc:28:e4:32:fd:96:65: 69:4a:69:f9:73:e6:f2:dc:84:d0:c0:b3:45:f5:0a: da:d1:80:67:65:8b:88:26:51:2e:57:31:69:68:16: 26:1b:eb:7d:0d:1e:fe:36:54:18:4d:a2:70:4f:79: 8a:de:62:20:01:34:e5:22:55:b7:7e:a6:4e:c3:df: ff:22:71:67:90:a4:23:2e:39:cd:b0:f4:69:9c:a2: 43:85:e5:90:e5:5b:42:fe:17:4a:2b:f3:cb:97:10: 58:60:c7:9d:a9:4a:58:4f:44:67:f0:81:a2:b5:90: 56:b7:90:82:d7:85:ba:77:cb:24:2a:f6:e3:a7:d3: fd:cc:34:ea:43:cd:e4:d5:49:05:96:0a:9e:8f:45: f6:72:07:10:c6:95:cc:e3:e3:dd:f7:a5:ae:c8:b3: 52:ae:fa:b9:52:c8:2e:0a:76:5a:da:8a:00:d3:36: e2:ba:7b:9e:1c:07:81:c6:63:cf:60:8f:09:ce:81: aa:94:1e:6d:fd:ef:4f:80:08:0e:6c:2c:d5:b6:ea: 9a:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:71:00:7C:47:7B:2D:D4:B2:0E:64:E2:99:F1:F3:98:5A:BA:61:F0 X509v3 Authority Key Identifier: keyid:CB:F2:A9:DA:88:AC:08:F8:D5:10:6D:EC:BD:72:D6:FA:09:C8:18:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:36:69:1a:75:b3:1f:58:89:dd:36:20:5c:82:9d:ef:d4:99: 49:38:69:ce:44:85:51:07:86:a8:fe:3c:0d:32:6d:ca:db:8a: 77:b3:f3:2b:f9:2c:e8:91:d5:5d:c5:fe:ff:d4:77:b3:fe:61: 05:e7:e3:18:98:33:1c:66:01:cc:39:d9:2e:7c:27:3f:60:7b: 8e:9b:b7:87:0c:d5:15:88:3a:00:a5:8c:98:50:84:c1:d3:b5: c2:a6:27:b1:a6:36:28:ef:81:a9:a1:97:45:4a:ea:70:d0:0e: 3a:07:8b:d3:e0:a9:8b:1a:62:13:93:6f:2a:d6:7b:bb:23:9e: a5:33:e3:95:46:25:94:dc:2d:f8:ab:04:91:8e:f1:fb:76:85: f9:9a:2b:d1:09:08:10:f0:b5:dc:a7:81:0b:d6:19:56:27:31: 1f:84:ca:18:33:fe:46:5f:cb:cb:d8:02:3e:3e:35:75:a1:7e: 76:25:54:66:8a:32:4b:a9:6a:af:40:bf:8c:20:fa:e4:ff:84: 0d:3f:b3:07:98:29:7e:6e:5d:0e:29:ff:43:39:8e:d5:b9:df: b2:85:5e:1b:fa:8c:46:89:06:e5:eb:fb:d1:ee:d0:26:26:49: 37:b0:28:09:46:65:58:2e:6f:e4:7a:98:ae:73:2f:93:86:1a: 47:3a:d6:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDxwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVDMjUxMTAvBgNVBAUTKENCRjJBOURBODhBQzA4RjhENTEwNkRFQ0JENzJENkZB MDlDODE4RTkwHhcNMjUwNTE2MTc1MzE0WhcNMjUwNTIzMTc1MzE0WjAYMRYwFAYD VQQDEw02ODI3N2I4YS02MWQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8jkL94Qz+uwscr/89G3H9AOCcEV5Jb4wLr64jqcbfLhp0700D7AU9DbterEI 7NRFJlLmEPwo5DL9lmVpSmn5c+by3ITQwLNF9Qra0YBnZYuIJlEuVzFpaBYmG+t9 DR7+NlQYTaJwT3mK3mIgATTlIlW3fqZOw9//InFnkKQjLjnNsPRpnKJDheWQ5VtC /hdKK/PLlxBYYMedqUpYT0Rn8IGitZBWt5CC14W6d8skKvbjp9P9zDTqQ83k1UkF lgqej0X2cgcQxpXM4+Pd96WuyLNSrvq5UsguCnZa2ooA0zbiunueHAeBxmPPYI8J zoGqlB5t/e9PgAgObCzVtuqadwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE5xAHxH ey3Usg5k4pnx85haumHwMB8GA1UdIwQYMBaAFMvyqdqIrAj41RBt7L1y1voJyBjp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUMyNS82ODdBMTBBNjc2 NUExMUU5OUQwMUU0MkVDNEY5QUUwMi95X0twMm9pc0NQalZFRzNzdlhMVy1nbklH T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lfS3Ayb2lzQ1BqVkVHM3N2WExXLWduSUdPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUMyNS82ODdBMTBBNjc2NUExMUU5OUQwMUU0MkVDNEY5QUUwMi95X0twMm9pc0NQ alZFRzNzdlhMVy1nbklHT2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGNmkadbMfWIndNiBcgp3v1JlJOGnORIVRB4ao/jwNMm3K24p3s/Mr +SzokdVdxf7/1Hez/mEF5+MYmDMcZgHMOdkufCc/YHuOm7eHDNUViDoApYyYUITB 07XCpiexpjYo74GpoZdFSupw0A46B4vT4KmLGmITk28q1nu7I56lM+OVRiWU3C34 qwSRjvH7doX5mivRCQgQ8LXcp4EL1hlWJzEfhMoYM/5GX8vL2AI+PjV1oX52JVRm ijJLqWqvQL+MIPrk/4QNP7MHmCl+bl0OKf9DOY7Vud+yhV4b+oxGiQbl6/vR7tAm Jkk3sCgJRmVYLm/kepiucy+ThhpHOtbT -----END CERTIFICATE-----Generated at Sat May 17 11:33:05 2025 by rpki-client