$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA66B/142BCB96C4FA11ED9BDF3157C4F9AE02/YmfJfrSg3wHtvW-dQahqh54CeX8.mft File: YmfJfrSg3wHtvW-dQahqh54CeX8.mft (raw, json) Hash identifier: IuC9RYKkW4WFtMW2eC1OacMyunQdaEGswcBYFg4L90g= Subject key identifier: 65:CF:E1:21:C4:77:7F:A5:62:79:85:51:52:39:4D:B4:C6:35:4A:71 Authority key identifier: 62:67:C9:7E:B4:A0:DF:01:ED:BD:6F:9D:41:A8:6A:87:9E:02:79:7F Certificate issuer: /CN=A91FA66B/serialNumber=6267C97EB4A0DF01EDBD6F9D41A86A879E02797F Certificate serial: 01A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YmfJfrSg3wHtvW-dQahqh54CeX8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA66B/142BCB96C4FA11ED9BDF3157C4F9AE02/YmfJfrSg3wHtvW-dQahqh54CeX8.mft Manifest number: 019D Signing time: Thu 15 May 2025 02:53:14 +0000 Manifest this update: Thu 15 May 2025 02:53:13 +0000 Manifest next update: Thu 22 May 2025 02:53:13 +0000 Files and hashes: 1: YmfJfrSg3wHtvW-dQahqh54CeX8.crl (hash: BF+N9nSdhjfN6sGIRE8SveE8Pcb7YNAYcgStfPEMElo=) 2: B2DE2498C4FD11ED909F2770C4F9AE02.roa (hash: sz+mmIZs/29Io2xKT3w1Go850hnuQbV97uqO5OCD7zA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA66B/142BCB96C4FA11ED9BDF3157C4F9AE02/YmfJfrSg3wHtvW-dQahqh54CeX8.crl rsync://rpki.apnic.net/member_repository/A91FA66B/142BCB96C4FA11ED9BDF3157C4F9AE02/YmfJfrSg3wHtvW-dQahqh54CeX8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YmfJfrSg3wHtvW-dQahqh54CeX8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 02:53:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 416 (0x1a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA66B, serialNumber=6267C97EB4A0DF01EDBD6F9D41A86A879E02797F Validity Not Before: May 15 02:53:13 2025 GMT Not After : May 22 02:53:13 2025 GMT Subject: CN=6825571a-373e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:44:43:4c:fd:28:ed:1c:82:59:6a:ac:7c:c8: 17:28:f7:7b:e8:20:df:9c:4d:2c:ff:73:4a:93:96: 89:93:73:f0:fd:bb:59:81:1f:f5:16:f5:e4:97:78: c6:00:27:1e:0c:3f:07:f6:70:d2:12:9d:c1:3f:a2: 88:9f:ce:a0:58:01:e7:ca:aa:2e:a3:36:1b:a3:3e: bb:75:66:bd:f2:ae:d0:da:de:92:3c:d2:47:4e:2a: 2b:4f:82:f0:76:d7:1c:73:55:41:d2:70:91:46:41: 56:1a:d7:11:5e:d4:93:6f:b3:32:a8:8c:60:7f:be: 2f:51:c0:5d:87:e1:f2:0e:12:ef:c7:3f:14:be:7b: 04:f8:96:ff:6d:c1:f3:90:9e:19:2e:79:88:17:d6: d0:5c:e6:05:4e:7f:b6:62:a8:47:a3:92:4f:7f:15: 45:77:72:55:3b:7f:19:28:ab:77:2f:88:26:d5:5c: d2:ab:d3:05:ee:6f:7d:3d:50:65:b9:2a:d3:1d:31: d1:36:22:8f:30:a1:3d:ba:88:9e:82:4f:6e:cc:12: 55:42:63:34:37:c4:4c:c4:cd:d6:ad:d1:e8:53:23: 9b:8b:0f:b1:24:6a:f2:ac:2d:06:6a:db:ae:a6:b8: dc:18:72:d9:b0:1c:ca:68:62:71:c3:c3:7f:78:c5: 8a:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:CF:E1:21:C4:77:7F:A5:62:79:85:51:52:39:4D:B4:C6:35:4A:71 X509v3 Authority Key Identifier: keyid:62:67:C9:7E:B4:A0:DF:01:ED:BD:6F:9D:41:A8:6A:87:9E:02:79:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA66B/142BCB96C4FA11ED9BDF3157C4F9AE02/YmfJfrSg3wHtvW-dQahqh54CeX8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YmfJfrSg3wHtvW-dQahqh54CeX8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA66B/142BCB96C4FA11ED9BDF3157C4F9AE02/YmfJfrSg3wHtvW-dQahqh54CeX8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:6b:34:49:a1:ed:10:22:09:c5:c2:82:9e:cf:b2:34:dc:07: f1:74:8b:8b:9c:07:0c:0b:a0:39:14:85:52:60:d5:ed:f7:14: ee:27:3b:a7:0a:b4:9d:63:6e:54:09:c1:b9:5d:68:8a:ad:11: e6:41:96:d8:60:5e:91:d0:07:d5:a2:08:18:08:07:b6:22:19: d4:b9:c1:c0:e9:47:fd:d6:f4:0d:69:db:b9:2c:9c:9a:7f:c4: ba:9c:35:b8:09:34:74:14:c3:32:50:99:a4:64:d5:a5:9a:84: 6c:5a:1b:84:57:5d:fe:81:12:47:68:4f:7f:34:8b:b4:37:96: b3:08:7d:fe:3b:b8:78:a1:d9:9b:d7:2a:bd:dc:2e:f1:49:ab: 6f:6f:83:53:4f:f6:1b:17:59:fc:9c:d1:35:a2:ae:4d:05:51: fa:7b:f3:0b:64:0a:e9:d6:27:6e:9c:54:de:d2:b3:a8:66:f4: 7c:83:76:40:13:74:95:92:af:7b:d3:4e:bc:82:62:c3:4a:2d: dc:62:cf:92:b0:58:c6:c0:d8:a8:ca:69:4e:ec:3a:9e:85:10: 6f:1f:12:ab:7c:5d:5a:64:c7:a7:5e:d2:ce:75:db:91:a8:6e: 32:5a:cd:b0:4f:b8:26:cf:e4:a0:7b:67:e8:f8:b0:63:c2:88: b0:ac:0d:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE2NkIxMTAvBgNVBAUTKDYyNjdDOTdFQjRBMERGMDFFREJENkY5RDQxQTg2QTg3 OUUwMjc5N0YwHhcNMjUwNTE1MDI1MzEzWhcNMjUwNTIyMDI1MzEzWjAYMRYwFAYD VQQDEw02ODI1NTcxYS0zNzNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6kRDTP0o7RyCWWqsfMgXKPd76CDfnE0s/3NKk5aJk3Pw/btZgR/1FvXkl3jG ACceDD8H9nDSEp3BP6KIn86gWAHnyqouozYboz67dWa98q7Q2t6SPNJHTiorT4Lw dtccc1VB0nCRRkFWGtcRXtSTb7MyqIxgf74vUcBdh+HyDhLvxz8UvnsE+Jb/bcHz kJ4ZLnmIF9bQXOYFTn+2YqhHo5JPfxVFd3JVO38ZKKt3L4gm1VzSq9MF7m99PVBl uSrTHTHRNiKPMKE9uoiegk9uzBJVQmM0N8RMxM3WrdHoUyObiw+xJGryrC0Gatuu prjcGHLZsBzKaGJxw8N/eMWKbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGXP4SHE d3+lYnmFUVI5TbTGNUpxMB8GA1UdIwQYMBaAFGJnyX60oN8B7b1vnUGoaoeeAnl/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTY2Qi8xNDJCQ0I5NkM0 RkExMUVEOUJERjMxNTdDNEY5QUUwMi9ZbWZKZnJTZzN3SHR2Vy1kUWFocWg1NENl WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ltZkpmclNnM3dIdHZXLWRRYWhxaDU0Q2VYOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTY2Qi8xNDJCQ0I5NkM0RkExMUVEOUJERjMxNTdDNEY5QUUwMi9ZbWZKZnJTZzN3 SHR2Vy1kUWFocWg1NENlWDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQazRJoe0QIgnFwoKez7I03AfxdIuLnAcMC6A5FIVSYNXt9xTuJzun CrSdY25UCcG5XWiKrRHmQZbYYF6R0AfVoggYCAe2IhnUucHA6Uf91vQNadu5LJya f8S6nDW4CTR0FMMyUJmkZNWlmoRsWhuEV13+gRJHaE9/NIu0N5azCH3+O7h4odmb 1yq93C7xSatvb4NTT/YbF1n8nNE1oq5NBVH6e/MLZArp1idunFTe0rOoZvR8g3ZA E3SVkq970068gmLDSi3cYs+SsFjGwNioymlO7DqehRBvHxKrfF1aZMenXtLOdduR qG4yWs2wT7gmz+Sge2fo+LBjwoiwrA1S -----END CERTIFICATE-----Generated at Fri May 16 19:00:08 2025 by rpki-client