$ rpki-client -vvf rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.mft File: sYTDX2rtv7hd2kET8nUuDInKOpA.mft (raw, json) Hash identifier: DFvQrmyIDLx1bqhWkCzv4DFCQjN6byM2OZlSt9aGf3s= Subject key identifier: 8A:C1:59:4C:93:6C:67:DA:C8:F9:BF:66:6E:B3:60:FB:AB:EA:53:0F Authority key identifier: B1:84:C3:5F:6A:ED:BF:B8:5D:DA:41:13:F2:75:2E:0C:89:CA:3A:90 Certificate issuer: /CN=A91F88F4/serialNumber=B184C35F6AEDBFB85DDA4113F2752E0C89CA3A90 Certificate serial: 0AE8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sYTDX2rtv7hd2kET8nUuDInKOpA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.mft Manifest number: 0AE1 Signing time: Wed 14 May 2025 19:32:41 +0000 Manifest this update: Wed 14 May 2025 19:32:41 +0000 Manifest next update: Wed 21 May 2025 19:32:41 +0000 Files and hashes: 1: sYTDX2rtv7hd2kET8nUuDInKOpA.crl (hash: rk/7FlQJJthXzumcm53KF6MF/8Zbod38pkIiiDNfKzU=) 2: F9D16F1CC7D811EDB42DFF20C4F9AE02.roa (hash: CtRLKn6Ho9BgRI41OP+GfRuStv7HD0JEHEC66mznFgA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.crl rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sYTDX2rtv7hd2kET8nUuDInKOpA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 19:32:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2792 (0xae8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F88F4, serialNumber=B184C35F6AEDBFB85DDA4113F2752E0C89CA3A90 Validity Not Before: May 14 19:32:41 2025 GMT Not After : May 21 19:32:41 2025 GMT Subject: CN=6824efd9-de5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:4c:6b:d9:77:64:1e:c0:4b:2f:89:a8:b9:33: 5f:ec:b1:c8:6a:66:c4:ba:96:7f:0d:65:6e:5b:0e: 13:9d:a7:1d:ed:04:a2:d4:e7:b0:81:79:20:e2:a5: 70:b8:b2:6d:d8:7b:ba:1d:43:05:69:c3:ba:e8:0a: f7:ac:db:59:cc:bc:63:00:0d:4c:77:75:27:08:bc: 8a:10:a9:85:23:48:b7:82:de:aa:46:ec:b5:ec:4d: 5a:56:9b:d2:1a:20:d7:49:e5:b7:c6:09:13:be:ec: 95:f3:bc:91:cc:32:b6:52:b8:25:fa:02:cc:d5:0b: 59:12:84:f4:6a:51:c0:34:ab:da:93:47:81:d6:53: 1b:22:2d:0b:85:1a:98:fb:62:ee:96:71:76:f5:70: 60:98:ec:0b:e7:e0:ab:34:2c:35:6a:63:4a:9f:60: 37:ce:01:ac:1c:bf:50:70:75:f2:af:76:10:31:84: d8:f2:1d:f4:69:81:f9:0f:73:a2:4e:67:35:f5:67: 41:52:a6:82:72:72:15:9b:8c:b4:d0:12:40:94:91: 88:8c:36:d9:2b:2f:06:68:06:b0:65:d4:b6:0a:6b: 1c:7b:42:aa:af:f8:3d:30:37:bd:9c:29:84:96:34: 98:ee:9b:6a:aa:63:b5:86:72:fa:c5:b8:2b:aa:bf: 82:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:C1:59:4C:93:6C:67:DA:C8:F9:BF:66:6E:B3:60:FB:AB:EA:53:0F X509v3 Authority Key Identifier: keyid:B1:84:C3:5F:6A:ED:BF:B8:5D:DA:41:13:F2:75:2E:0C:89:CA:3A:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sYTDX2rtv7hd2kET8nUuDInKOpA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:46:99:cf:e4:db:56:cf:2e:fd:61:c9:99:90:5c:28:58:94: 40:a7:56:29:e6:65:af:13:29:8c:14:05:e6:aa:d8:05:45:8f: c9:6f:d7:59:99:8a:57:0e:e5:65:d8:8e:62:65:68:42:01:dd: d3:f1:6a:75:e6:14:94:e8:a0:b5:1a:56:65:27:c3:7f:49:57: cb:2e:aa:bc:f0:6f:69:f4:6a:ac:c1:f1:89:59:d0:43:05:e6: 51:77:12:5b:2b:01:74:37:4c:36:b4:90:b5:4d:68:ec:d7:63: 36:ca:63:13:7e:2f:16:17:fe:97:e5:2f:15:58:98:b4:15:e5: b6:59:c2:fc:4b:ce:80:24:6e:7d:33:1d:e2:e2:e2:03:09:ee: 45:aa:3c:a0:1c:bd:50:5a:11:dc:14:3f:6a:1b:f3:60:dc:38: df:cc:71:92:a8:8c:f9:41:48:d0:41:43:23:8e:65:d9:2d:4b: 29:3f:84:55:85:0c:ab:43:a5:b2:1c:83:bf:1d:a5:0d:dd:17: c6:99:10:e9:d4:fe:af:a7:60:d8:00:23:0f:72:47:68:1d:2a: d7:91:05:a3:96:ba:26:7b:d1:11:73:25:a7:e2:5c:f5:59:fa: d8:87:ae:be:ee:8d:f1:25:f9:48:04:83:28:26:c2:33:0e:d2: 6f:3a:85:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCugwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg4RjQxMTAvBgNVBAUTKEIxODRDMzVGNkFFREJGQjg1RERBNDExM0YyNzUyRTBD ODlDQTNBOTAwHhcNMjUwNTE0MTkzMjQxWhcNMjUwNTIxMTkzMjQxWjAYMRYwFAYD VQQDEw02ODI0ZWZkOS1kZTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Exr2XdkHsBLL4mouTNf7LHIambEupZ/DWVuWw4Tnacd7QSi1OewgXkg4qVw uLJt2Hu6HUMFacO66Ar3rNtZzLxjAA1Md3UnCLyKEKmFI0i3gt6qRuy17E1aVpvS GiDXSeW3xgkTvuyV87yRzDK2Urgl+gLM1QtZEoT0alHANKvak0eB1lMbIi0LhRqY +2LulnF29XBgmOwL5+CrNCw1amNKn2A3zgGsHL9QcHXyr3YQMYTY8h30aYH5D3Oi Tmc19WdBUqaCcnIVm4y00BJAlJGIjDbZKy8GaAawZdS2Cmsce0Kqr/g9MDe9nCmE ljSY7ptqqmO1hnL6xbgrqr+CvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIrBWUyT bGfayPm/Zm6zYPur6lMPMB8GA1UdIwQYMBaAFLGEw19q7b+4XdpBE/J1LgyJyjqQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODhGNC8wN0FFNzdDQzQ4 Q0MxMUVBQUVGNTAxNTFDNEY5QUUwMi9zWVREWDJydHY3aGQya0VUOG5VdURJbktP cEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NZVERYMnJ0djdoZDJrRVQ4blV1REluS09wQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODhGNC8wN0FFNzdDQzQ4Q0MxMUVBQUVGNTAxNTFDNEY5QUUwMi9zWVREWDJydHY3 aGQya0VUOG5VdURJbktPcEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCARpnP5NtWzy79YcmZkFwoWJRAp1Yp5mWvEymMFAXmqtgFRY/Jb9dZ mYpXDuVl2I5iZWhCAd3T8Wp15hSU6KC1GlZlJ8N/SVfLLqq88G9p9GqswfGJWdBD BeZRdxJbKwF0N0w2tJC1TWjs12M2ymMTfi8WF/6X5S8VWJi0FeW2WcL8S86AJG59 Mx3i4uIDCe5FqjygHL1QWhHcFD9qG/Ng3DjfzHGSqIz5QUjQQUMjjmXZLUspP4RV hQyrQ6WyHIO/HaUN3RfGmRDp1P6vp2DYACMPckdoHSrXkQWjlrome9ERcyWn4lz1 WfrYh66+7o3xJflIBIMoJsIzDtJvOoWP -----END CERTIFICATE-----Generated at Thu May 15 19:30:18 2025 by rpki-client