$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft File: YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft (raw, json) Hash identifier: 1+o+N8lKyYbVf3LZRpIv4vtWdOFgijvJogbX+5TrvOc= Subject key identifier: 9A:7A:03:15:DF:CA:1D:89:11:60:E9:85:94:67:27:18:BD:43:1A:45 Authority key identifier: 60:06:B9:65:83:13:D8:64:99:16:19:D6:97:9B:0F:7E:01:E4:B6:68 Certificate issuer: /CN=A91E5A08/serialNumber=6006B9658313D864991619D6979B0F7E01E4B668 Certificate serial: 0185 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft Manifest number: 0182 Signing time: Tue 13 May 2025 02:53:04 +0000 Manifest this update: Tue 13 May 2025 02:53:03 +0000 Manifest next update: Tue 20 May 2025 02:53:03 +0000 Files and hashes: 1: YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl (hash: gS9YjuC/bHG9/VZzNAK6oLYcDA5SkdFNi0QWWCxmS7g=) 2: EC9A7C9EE26811EDBB19B85EC4F9AE02.roa (hash: b95mpJ4EM9DYq2FEBTGRF8becbveDJsLEHAflxFwbco=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 02:53:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 389 (0x185) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5A08, serialNumber=6006B9658313D864991619D6979B0F7E01E4B668 Validity Not Before: May 13 02:53:03 2025 GMT Not After : May 20 02:53:03 2025 GMT Subject: CN=6822b410-a30d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:36:11:ee:20:77:9b:58:c3:8b:ae:dc:25:24: ae:d0:3f:25:87:63:76:25:8d:6c:ae:66:91:67:d5: 63:b9:c0:54:d1:b5:b2:fb:5d:cb:6d:88:30:ea:7d: 3c:7c:0b:7d:73:b6:68:3b:98:bf:03:bb:32:32:1f: a4:27:d2:2c:54:6b:ef:94:e5:d1:e5:f8:b7:9d:0b: 8e:a1:57:40:7c:70:12:8c:9d:27:8c:63:d9:55:f9: ce:ab:5a:35:4f:45:9a:5b:e3:8b:4c:3f:61:68:36: 5e:e8:e8:83:97:02:91:45:04:1e:52:45:17:b9:c0: 04:90:d0:40:44:1a:8d:a9:87:71:fb:e5:78:78:e9: fc:3f:2b:aa:f8:4f:ba:6d:2b:ca:42:3e:b6:f0:ec: bd:20:f0:fd:72:08:14:c6:89:f5:c9:d0:76:b2:0f: 45:9a:1d:52:52:0d:d9:89:53:7f:64:cb:19:5e:d6: b4:3b:6a:a7:da:e2:c8:bc:c1:0a:e3:47:cc:f1:64: 89:a8:8f:2f:0d:32:d4:fd:6f:af:cd:f5:9b:d9:74: 18:f3:0a:84:27:1b:6e:15:6e:d2:f8:6f:f2:1b:b9: f9:4e:4b:cd:69:8f:67:51:5e:84:c6:39:92:7e:73: 0b:61:f0:97:b1:b7:1a:13:80:1b:28:4e:2e:50:a8: b4:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:7A:03:15:DF:CA:1D:89:11:60:E9:85:94:67:27:18:BD:43:1A:45 X509v3 Authority Key Identifier: keyid:60:06:B9:65:83:13:D8:64:99:16:19:D6:97:9B:0F:7E:01:E4:B6:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:4c:d7:28:12:f8:62:5f:1e:c1:3a:7f:da:3b:3a:00:dd:6f: 82:10:77:6d:2b:bc:ad:96:12:f0:59:3b:f6:67:e9:8b:64:4d: 1d:e3:6b:7e:3e:e2:2e:26:4c:84:65:6e:dc:f8:be:ea:78:44: 96:de:17:16:34:63:00:0f:6e:60:56:1a:7e:cb:f5:cf:37:d7: ad:ac:64:d6:82:44:d1:1a:ef:c2:14:b0:46:67:78:a8:3d:b2: 4d:89:2b:d7:ab:60:7d:ad:b5:6b:3c:e6:a0:e1:9a:aa:2e:9a: af:4f:df:fc:d4:f4:97:26:8f:2c:58:45:8e:86:54:dc:06:92: 8a:b2:56:c2:14:71:73:f5:74:cd:66:9a:c6:62:96:8f:b0:55: fb:eb:9f:3f:bf:64:8a:e9:2d:57:02:f5:49:d1:a5:17:ff:e1: c7:32:77:7b:59:bf:77:13:58:4b:16:42:c1:71:35:22:95:51: 3e:a7:e9:a3:4c:d0:ee:31:e1:ab:5f:eb:25:13:29:4f:3a:de: 7c:09:79:b6:3e:85:a1:29:ca:1e:b2:22:2a:b2:90:54:d1:92: ec:64:c9:b0:84:f7:33:2e:80:85:97:12:21:40:d3:6a:0f:7c: 7a:66:ef:72:cf:1b:86:5b:dd:56:7d:16:4a:22:c7:8c:8d:37: 57:5f:6f:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVBMDgxMTAvBgNVBAUTKDYwMDZCOTY1ODMxM0Q4NjQ5OTE2MTlENjk3OUIwRjdF MDFFNEI2NjgwHhcNMjUwNTEzMDI1MzAzWhcNMjUwNTIwMDI1MzAzWjAYMRYwFAYD VQQDEw02ODIyYjQxMC1hMzBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuDYR7iB3m1jDi67cJSSu0D8lh2N2JY1srmaRZ9VjucBU0bWy+13LbYgw6n08 fAt9c7ZoO5i/A7syMh+kJ9IsVGvvlOXR5fi3nQuOoVdAfHASjJ0njGPZVfnOq1o1 T0WaW+OLTD9haDZe6OiDlwKRRQQeUkUXucAEkNBARBqNqYdx++V4eOn8Pyuq+E+6 bSvKQj628Oy9IPD9cggUxon1ydB2sg9Fmh1SUg3ZiVN/ZMsZXta0O2qn2uLIvMEK 40fM8WSJqI8vDTLU/W+vzfWb2XQY8wqEJxtuFW7S+G/yG7n5TkvNaY9nUV6ExjmS fnMLYfCXsbcaE4AbKE4uUKi0+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJp6AxXf yh2JEWDphZRnJxi9QxpFMB8GA1UdIwQYMBaAFGAGuWWDE9hkmRYZ1pebD34B5LZo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUEwOC9CMDYwQ0M1NEUy NjUxMUVEODUwQ0RFNTRDNEY5QUUwMi9ZQWE1WllNVDJHU1pGaG5XbDVzUGZnSGt0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lBYTVaWU1UMkdTWkZobldsNXNQZmdIa3RtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUEwOC9CMDYwQ0M1NEUyNjUxMUVEODUwQ0RFNTRDNEY5QUUwMi9ZQWE1WllNVDJH U1pGaG5XbDVzUGZnSGt0bWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCTNcoEvhiXx7BOn/aOzoA3W+CEHdtK7ytlhLwWTv2Z+mLZE0d42t+ PuIuJkyEZW7c+L7qeESW3hcWNGMAD25gVhp+y/XPN9etrGTWgkTRGu/CFLBGZ3io PbJNiSvXq2B9rbVrPOag4ZqqLpqvT9/81PSXJo8sWEWOhlTcBpKKslbCFHFz9XTN ZprGYpaPsFX7658/v2SK6S1XAvVJ0aUX/+HHMnd7Wb93E1hLFkLBcTUilVE+p+mj TNDuMeGrX+slEylPOt58CXm2PoWhKcoesiIqspBU0ZLsZMmwhPczLoCFlxIhQNNq D3x6Zu9yzxuGW91WfRZKIseMjTdXX29l -----END CERTIFICATE-----Generated at Wed May 14 11:21:04 2025 by rpki-client