$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.mft File: Y7ooHVb6T-blNbEl4W34AdEvgJk.mft (raw, json) Hash identifier: 9pi3OwXUwR7KmHRPQqNY6xc3mTGb54kQ+wk7upoyNIE= Subject key identifier: 23:35:BE:0D:9E:55:1D:03:AA:45:31:16:0E:DE:71:F1:30:67:62:F5 Authority key identifier: 63:BA:28:1D:56:FA:4F:E6:E5:35:B1:25:E1:6D:F8:01:D1:2F:80:99 Certificate issuer: /CN=A91ECBD9/serialNumber=63BA281D56FA4FE6E535B125E16DF801D12F8099 Certificate serial: 87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y7ooHVb6T-blNbEl4W34AdEvgJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.mft Manifest number: 85 Signing time: Tue 13 May 2025 05:46:53 +0000 Manifest this update: Tue 13 May 2025 05:46:52 +0000 Manifest next update: Tue 20 May 2025 05:46:52 +0000 Files and hashes: 1: Y7ooHVb6T-blNbEl4W34AdEvgJk.crl (hash: NvxjDjFkot68kAEklvDjEi8IdQnzDi2XdfHSq2YWtXs=) 2: 4E67247C681911EFA2640B43C4F9AE02.roa (hash: ucm8jiY7/TEfoe7vYt6Xy9WiiLrmTGt3Yko/V2TTwzI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.crl rsync://rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y7ooHVb6T-blNbEl4W34AdEvgJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 05:46:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECBD9, serialNumber=63BA281D56FA4FE6E535B125E16DF801D12F8099 Validity Not Before: May 13 05:46:52 2025 GMT Not After : May 20 05:46:52 2025 GMT Subject: CN=6822dccd-481b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:e5:ba:ed:b6:6d:18:29:c1:34:34:8e:21:17: da:10:ed:00:87:38:c7:a9:92:3f:a4:6f:2e:60:49: d6:e2:2a:3f:86:55:bf:be:a1:36:c5:45:6d:c7:e9: c0:09:a9:00:46:c1:4a:2a:76:5a:d3:61:e9:cc:e0: 36:ad:b9:40:7c:2a:3e:76:14:b8:13:10:12:96:fa: e8:27:ca:3f:d0:f8:b4:a6:b8:7d:33:83:f6:b5:15: 1b:f6:0d:0c:eb:9e:66:72:cc:cc:b3:49:3f:4c:f6: 61:f5:17:d4:4d:ae:ac:7b:a1:e0:ec:46:2f:69:e4: df:2b:32:24:09:82:d1:1f:96:41:53:19:72:5a:37: 02:d1:96:d3:19:d7:db:e3:b6:32:1f:df:55:82:52: 8f:89:ca:dc:49:cc:f6:97:e2:90:71:e8:a7:77:43: d9:cc:80:a7:f9:29:34:4e:0e:f8:00:1e:4b:4d:2a: da:32:f4:07:47:fd:46:c0:8b:2d:a6:5b:f7:a7:61: 89:17:2e:a6:14:a8:34:63:26:4e:ac:c8:81:4e:41: b4:ce:cc:f1:a3:d0:7f:21:9e:0d:c4:5c:34:f7:43: 77:96:08:06:bf:24:cd:59:c5:f1:88:e2:fd:b4:74: c2:77:21:a4:ab:ae:6a:30:ec:68:7f:cf:09:f7:e5: c7:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:35:BE:0D:9E:55:1D:03:AA:45:31:16:0E:DE:71:F1:30:67:62:F5 X509v3 Authority Key Identifier: keyid:63:BA:28:1D:56:FA:4F:E6:E5:35:B1:25:E1:6D:F8:01:D1:2F:80:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y7ooHVb6T-blNbEl4W34AdEvgJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:12:29:2d:35:db:75:7a:25:4f:b2:40:94:21:6c:14:31:ef: 1b:ae:19:db:4b:2f:1f:d2:83:8e:2a:8f:5b:f1:e5:6b:0a:f8: 2a:af:e7:1d:a8:51:8f:25:5c:21:53:68:0f:41:0c:7d:68:b2: ac:24:f5:2f:85:31:0a:57:90:fe:f6:90:db:30:9d:9a:ff:c1: 2b:20:2b:fb:4e:bd:5f:3f:59:8a:77:e4:52:25:06:93:94:37: 80:42:63:91:d3:21:f3:55:12:ac:dc:8a:3e:ae:5a:f5:9d:3e: b6:0f:13:0e:0c:42:55:8d:e5:93:b1:bb:2a:2a:48:c8:2c:0f: c6:29:d3:78:72:29:03:b8:b0:54:e5:3e:a1:c4:4e:04:d6:e6: 3c:38:f5:03:fc:db:28:fa:d3:bd:f4:53:78:b5:91:f4:7d:69: a1:91:49:c5:89:59:91:d2:79:0e:0d:e4:e7:67:5d:af:b8:b5: 63:b6:4c:e8:5e:17:c3:01:2b:c7:c4:98:46:9e:2b:da:7c:c0: d6:9e:f3:e4:22:8a:f5:5e:a6:17:4a:ed:29:7a:83:a3:75:3a: 55:fd:4c:99:d8:0a:b3:c1:e1:29:ba:c6:65:1d:81:bf:55:21: 7a:5f:ff:8e:05:36:dd:67:04:ae:9d:bf:97:49:16:56:ae:a9: 52:bf:e2:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNCRDkxMTAvBgNVBAUTKDYzQkEyODFENTZGQTRGRTZFNTM1QjEyNUUxNkRGODAx RDEyRjgwOTkwHhcNMjUwNTEzMDU0NjUyWhcNMjUwNTIwMDU0NjUyWjAYMRYwFAYD VQQDEw02ODIyZGNjZC00ODFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmuW67bZtGCnBNDSOIRfaEO0AhzjHqZI/pG8uYEnW4io/hlW/vqE2xUVtx+nA CakARsFKKnZa02HpzOA2rblAfCo+dhS4ExASlvroJ8o/0Pi0prh9M4P2tRUb9g0M 655mcszMs0k/TPZh9RfUTa6se6Hg7EYvaeTfKzIkCYLRH5ZBUxlyWjcC0ZbTGdfb 47YyH99VglKPicrcScz2l+KQceind0PZzICn+Sk0Tg74AB5LTSraMvQHR/1GwIst plv3p2GJFy6mFKg0YyZOrMiBTkG0zszxo9B/IZ4NxFw090N3lggGvyTNWcXxiOL9 tHTCdyGkq65qMOxof88J9+XHVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCM1vg2e VR0DqkUxFg7ecfEwZ2L1MB8GA1UdIwQYMBaAFGO6KB1W+k/m5TWxJeFt+AHRL4CZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0JEOS9FMDQ2QjBCNjY4 MTgxMUVGOUE1M0U5MThDNEY5QUUwMi9ZN29vSFZiNlQtYmxOYkVsNFczNEFkRXZn SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1k3b29IVmI2VC1ibE5iRWw0VzM0QWRFdmdKay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Q0JEOS9FMDQ2QjBCNjY4MTgxMUVGOUE1M0U5MThDNEY5QUUwMi9ZN29vSFZiNlQt YmxOYkVsNFczNEFkRXZnSmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGEiktNdt1eiVPskCUIWwUMe8brhnbSy8f0oOOKo9b8eVrCvgqr+cd qFGPJVwhU2gPQQx9aLKsJPUvhTEKV5D+9pDbMJ2a/8ErICv7Tr1fP1mKd+RSJQaT lDeAQmOR0yHzVRKs3Io+rlr1nT62DxMODEJVjeWTsbsqKkjILA/GKdN4cikDuLBU 5T6hxE4E1uY8OPUD/Nso+tO99FN4tZH0fWmhkUnFiVmR0nkODeTnZ12vuLVjtkzo XhfDASvHxJhGnivafMDWnvPkIor1XqYXSu0peoOjdTpV/UyZ2AqzweEpusZlHYG/ VSF6X/+OBTbdZwSunb+XSRZWrqlSv+IJ -----END CERTIFICATE-----Generated at Wed May 14 10:12:28 2025 by rpki-client