$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft File: ySTN5BVFl0tvV4MubGA7zIlm2eA.mft (raw, json) Hash identifier: HxCD6A/pVpqdFDG2I3/pyYTkfcokyotZTxY8zdi2YJc= Subject key identifier: BC:77:F8:0C:14:AF:7A:B4:A2:D6:BD:A6:98:04:B1:08:95:A9:B3:92 Authority key identifier: C9:24:CD:E4:15:45:97:4B:6F:57:83:2E:6C:60:3B:CC:89:66:D9:E0 Certificate issuer: /CN=A91F2DDD/serialNumber=C924CDE41545974B6F57832E6C603BCC8966D9E0 Certificate serial: 030A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft Manifest number: 114B Signing time: Wed 14 May 2025 17:53:05 +0000 Manifest this update: Wed 14 May 2025 17:53:05 +0000 Manifest next update: Wed 21 May 2025 17:53:05 +0000 Files and hashes: 1: ySTN5BVFl0tvV4MubGA7zIlm2eA.crl (hash: GZBnD0KZcvT5v16vfKDpJq6HHc3fr/sKmpvsII2YKPg=) 2: 2FBEB0B0D5B011EC90A8A031C4F9AE02.roa (hash: dTotqn1MA4iFciet41gKXuxTQQQVUzcSiuTmgAsBCPA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.crl rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 17:53:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 778 (0x30a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2DDD, serialNumber=C924CDE41545974B6F57832E6C603BCC8966D9E0 Validity Not Before: May 14 17:53:05 2025 GMT Not After : May 21 17:53:05 2025 GMT Subject: CN=6824d881-029e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:ec:51:32:e2:87:41:a2:63:8e:39:44:18:cd: 84:cb:bb:a1:65:4e:cd:cb:b8:ee:be:79:f7:a1:a5: 3a:86:41:c6:18:5f:8f:f5:ee:cc:99:79:da:e2:ee: 7a:fd:42:3a:73:d5:01:be:27:06:25:b2:7e:88:c1: 79:98:38:9c:c0:c4:1c:c8:a6:7c:59:60:17:8d:6f: ce:b8:54:21:ec:9e:6a:3e:a6:3b:aa:d4:16:4a:0c: ee:8a:b7:af:3c:65:49:b2:ac:9f:26:6c:eb:4b:b2: 1c:9c:e8:51:ff:02:57:a3:02:55:64:da:94:07:14: b3:09:bd:56:aa:c1:49:90:ac:e7:1c:6c:e6:c2:f0: 55:5c:68:be:79:38:87:f9:24:3d:0b:14:7c:fd:e4: 76:cf:9d:c4:7e:b0:4c:2a:2a:8f:16:85:a9:41:f9: 96:31:7c:76:f5:c1:f8:68:93:76:3a:0f:91:a0:f2: fc:2b:7d:e1:60:b3:3c:f2:5f:44:66:fe:2c:60:44: f2:4e:aa:24:92:6f:59:c0:98:ec:e5:67:4e:56:0a: e2:1f:b7:eb:93:7a:ee:40:17:d1:6e:46:f1:fa:96: c4:2c:3f:25:4b:45:06:83:56:c5:6c:ae:e3:51:b8: bf:85:25:ee:22:1d:0d:03:94:42:e3:ad:8b:d8:47: 9b:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:77:F8:0C:14:AF:7A:B4:A2:D6:BD:A6:98:04:B1:08:95:A9:B3:92 X509v3 Authority Key Identifier: keyid:C9:24:CD:E4:15:45:97:4B:6F:57:83:2E:6C:60:3B:CC:89:66:D9:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:7c:c1:39:e6:53:c0:c4:3d:b5:eb:30:fe:cb:39:34:11:1a: b9:89:3e:00:8e:6b:93:d3:9f:da:1d:4f:3f:56:eb:af:c1:09: 33:5a:06:a9:e6:54:32:71:dc:52:a1:1a:ff:75:18:c9:ba:98: ad:8b:d6:0d:f2:20:c9:6d:73:18:3c:3a:d7:03:d7:c1:7e:7c: 03:4b:81:03:7c:bc:4d:e0:1d:ab:27:25:ab:22:77:fe:3f:78: ab:93:3f:60:6e:cb:f3:6a:91:c9:e2:e7:d7:e9:62:4b:e2:f0: 24:b3:88:30:95:2b:2f:4c:1d:6d:c6:0d:81:bf:32:3b:c1:42: 20:63:67:b8:da:11:1d:1a:5b:76:51:f5:7b:d9:c1:b4:7a:61: 43:f2:60:7b:0a:9c:7b:df:5a:91:99:ba:f0:61:10:4d:bf:98: 6d:97:78:60:14:60:04:44:41:1d:86:2f:fa:d0:ba:2a:91:1f: 68:d1:dc:8b:51:db:96:67:f3:9b:04:14:6f:f4:cb:f4:14:dd: 1c:7b:0f:03:b8:89:4b:33:13:b1:e4:ae:23:fa:74:be:89:72: 65:3d:31:09:aa:c7:94:28:fc:dd:cd:50:48:30:91:57:79:c2: 78:22:19:4e:43:3f:f3:bd:e1:c6:c7:a0:3d:fd:c2:fe:04:11: c0:7c:3e:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAwowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJEREQxMTAvBgNVBAUTKEM5MjRDREU0MTU0NTk3NEI2RjU3ODMyRTZDNjAzQkND ODk2NkQ5RTAwHhcNMjUwNTE0MTc1MzA1WhcNMjUwNTIxMTc1MzA1WjAYMRYwFAYD VQQDEw02ODI0ZDg4MS0wMjllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4OxRMuKHQaJjjjlEGM2Ey7uhZU7Ny7juvnn3oaU6hkHGGF+P9e7MmXna4u56 /UI6c9UBvicGJbJ+iMF5mDicwMQcyKZ8WWAXjW/OuFQh7J5qPqY7qtQWSgzuirev PGVJsqyfJmzrS7IcnOhR/wJXowJVZNqUBxSzCb1WqsFJkKznHGzmwvBVXGi+eTiH +SQ9CxR8/eR2z53EfrBMKiqPFoWpQfmWMXx29cH4aJN2Og+RoPL8K33hYLM88l9E Zv4sYETyTqokkm9ZwJjs5WdOVgriH7frk3ruQBfRbkbx+pbELD8lS0UGg1bFbK7j Ubi/hSXuIh0NA5RC462L2EebywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLx3+AwU r3q0ota9ppgEsQiVqbOSMB8GA1UdIwQYMBaAFMkkzeQVRZdLb1eDLmxgO8yJZtng MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkRERC9CNEEyODM2MjlF MUIxMUU5OEUxRTRFNUVDNEY5QUUwMi95U1RONUJWRmwwdHZWNE11YkdBN3pJbG0y ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lTVE41QlZGbDB0dlY0TXViR0E3eklsbTJlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkRERC9CNEEyODM2MjlFMUIxMUU5OEUxRTRFNUVDNEY5QUUwMi95U1RONUJWRmww dHZWNE11YkdBN3pJbG0yZUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOfME55lPAxD216zD+yzk0ERq5iT4AjmuT05/aHU8/VuuvwQkzWgap 5lQycdxSoRr/dRjJupiti9YN8iDJbXMYPDrXA9fBfnwDS4EDfLxN4B2rJyWrInf+ P3irkz9gbsvzapHJ4ufX6WJL4vAks4gwlSsvTB1txg2BvzI7wUIgY2e42hEdGlt2 UfV72cG0emFD8mB7Cpx731qRmbrwYRBNv5htl3hgFGAEREEdhi/60LoqkR9o0dyL UduWZ/ObBBRv9Mv0FN0cew8DuIlLMxOx5K4j+nS+iXJlPTEJqseUKPzdzVBIMJFX ecJ4IhlOQz/zveHGx6A9/cL+BBHAfD7q -----END CERTIFICATE-----Generated at Thu May 15 00:04:02 2025 by rpki-client