$ rpki-client -vvf rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.mft File: YZBA6DW609z1wgE5bYVxmVp6zFA.mft (raw, json) Hash identifier: iTuDwQ7SivZPwige99r4tGTej/ek65/srJh+Ahg8Yvw= Subject key identifier: 31:AB:FA:B1:93:B8:0F:50:79:16:E9:69:17:B1:4F:B1:40:74:01:C4 Authority key identifier: 61:90:40:E8:35:BA:D3:DC:F5:C2:01:39:6D:85:71:99:5A:7A:CC:50 Certificate issuer: /CN=A91FABEF/serialNumber=619040E835BAD3DCF5C201396D8571995A7ACC50 Certificate serial: F2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YZBA6DW609z1wgE5bYVxmVp6zFA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.mft Manifest number: EE Signing time: Thu 15 May 2025 04:43:07 +0000 Manifest this update: Thu 15 May 2025 04:43:06 +0000 Manifest next update: Thu 22 May 2025 04:43:06 +0000 Files and hashes: 1: YZBA6DW609z1wgE5bYVxmVp6zFA.crl (hash: de++kxvdTW8oqiT06fcS0kzaI8NZZf8B4D/vDVytgEw=) 2: 8045E9A4CEEC11EEAFFC5E36C4F9AE02.roa (hash: QQ0CP8HHmI7PCShWjhNg26xSyERliRPL6u4e6U+9a/k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.crl rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YZBA6DW609z1wgE5bYVxmVp6zFA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 04:43:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 242 (0xf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FABEF, serialNumber=619040E835BAD3DCF5C201396D8571995A7ACC50 Validity Not Before: May 15 04:43:06 2025 GMT Not After : May 22 04:43:06 2025 GMT Subject: CN=682570db-c7b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:98:ac:28:c8:b6:29:d2:3a:47:44:b4:eb:0f: 0b:49:c9:0b:f7:07:45:ab:2f:71:21:36:cb:5f:44: 00:11:dd:bd:1a:5e:15:6e:ba:4e:33:7b:1e:37:8e: 57:b4:62:1d:0c:a3:94:7c:fb:a5:0b:4a:71:4f:80: e1:54:f4:6b:ee:62:a1:ea:67:2a:a6:bd:be:b0:70: f0:d7:b4:6b:8a:19:f8:52:22:68:04:43:cc:97:9d: ab:78:f8:ca:f7:67:9f:84:88:04:4e:29:22:90:6b: e3:95:62:ba:67:2e:01:e1:77:b1:54:5c:50:08:38: 66:d1:b3:e8:4c:4f:34:ab:59:ff:43:ae:83:21:53: c2:43:39:24:03:b9:14:4a:a9:1a:91:1e:3e:58:8d: 6c:0f:bc:46:01:1e:31:ed:56:c3:6e:8b:94:34:82: a5:5f:36:b2:d6:db:d2:d7:98:b3:e8:2f:47:5f:c6: 50:f2:ad:0c:12:59:a1:50:2f:da:2f:35:8d:cd:72: fb:8d:fe:46:bb:d1:a5:10:f9:08:5c:80:fb:59:16: 6b:00:2b:5a:34:4f:23:b6:3d:4e:8b:9c:3f:61:5e: 39:b0:7a:3e:82:9a:65:cc:63:59:b4:28:db:86:d4: 62:a5:52:99:00:9f:b1:81:65:44:d3:34:48:15:b2: 4c:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:AB:FA:B1:93:B8:0F:50:79:16:E9:69:17:B1:4F:B1:40:74:01:C4 X509v3 Authority Key Identifier: keyid:61:90:40:E8:35:BA:D3:DC:F5:C2:01:39:6D:85:71:99:5A:7A:CC:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YZBA6DW609z1wgE5bYVxmVp6zFA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:63:0b:f2:bc:40:8d:dc:d1:34:bd:6c:09:08:51:fd:bd:6a: 93:26:bb:fc:f4:e9:8f:d4:4d:9c:04:bb:f1:06:30:03:a9:ee: 28:e3:4b:51:68:8f:96:bb:e9:a9:17:75:b5:89:ce:cd:05:07: 00:68:74:4d:43:09:81:f2:70:59:0c:89:5d:01:40:83:66:08: 7e:5f:9b:5c:4c:27:32:3a:9f:0f:f5:a7:31:8e:09:ba:72:90: d6:65:ff:cf:dc:87:19:62:1e:92:9d:a5:d0:01:48:b3:b0:52: 82:f0:fe:39:da:5b:42:64:89:12:2f:4d:4f:6b:18:0f:05:3f: da:e7:2f:ec:76:5f:6c:83:41:1a:23:33:b1:20:95:38:b0:30: 2b:0e:ea:ae:a1:53:65:5a:14:ec:db:59:67:65:ff:f3:b5:a0: 30:a6:90:3a:f0:81:35:99:af:55:4e:69:2f:c0:00:9a:0b:a2: 0a:e5:6a:26:1a:22:e9:15:36:54:78:71:d7:78:78:90:fa:70: 28:98:71:7e:55:75:a9:6e:a9:47:79:97:00:0f:cd:2c:a8:22: bf:56:94:85:09:6d:d0:da:f9:93:39:fb:09:23:17:6e:f0:f3: 7b:07:fb:1d:bb:13:9d:d9:16:e8:60:8e:02:4a:9b:cf:93:0a: a4:58:7d:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFCRUYxMTAvBgNVBAUTKDYxOTA0MEU4MzVCQUQzRENGNUMyMDEzOTZEODU3MTk5 NUE3QUNDNTAwHhcNMjUwNTE1MDQ0MzA2WhcNMjUwNTIyMDQ0MzA2WjAYMRYwFAYD VQQDEw02ODI1NzBkYi1jN2I4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxZisKMi2KdI6R0S06w8LSckL9wdFqy9xITbLX0QAEd29Gl4VbrpOM3seN45X tGIdDKOUfPulC0pxT4DhVPRr7mKh6mcqpr2+sHDw17Rrihn4UiJoBEPMl52rePjK 92efhIgETikikGvjlWK6Zy4B4XexVFxQCDhm0bPoTE80q1n/Q66DIVPCQzkkA7kU SqkakR4+WI1sD7xGAR4x7VbDbouUNIKlXzay1tvS15iz6C9HX8ZQ8q0MElmhUC/a LzWNzXL7jf5Gu9GlEPkIXID7WRZrACtaNE8jtj1Oi5w/YV45sHo+gpplzGNZtCjb htRipVKZAJ+xgWVE0zRIFbJMtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDGr+rGT uA9QeRbpaRexT7FAdAHEMB8GA1UdIwQYMBaAFGGQQOg1utPc9cIBOW2FcZlaesxQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUJFRi9DMDc2NDU3MkNC MTkxMUVFODE1RkFCNjhDNEY5QUUwMi9ZWkJBNkRXNjA5ejF3Z0U1YllWeG1WcDZ6 RkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1laQkE2RFc2MDl6MXdnRTViWVZ4bVZwNnpGQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUJFRi9DMDc2NDU3MkNCMTkxMUVFODE1RkFCNjhDNEY5QUUwMi9ZWkJBNkRXNjA5 ejF3Z0U1YllWeG1WcDZ6RkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHYwvyvECN3NE0vWwJCFH9vWqTJrv89OmP1E2cBLvxBjADqe4o40tR aI+Wu+mpF3W1ic7NBQcAaHRNQwmB8nBZDIldAUCDZgh+X5tcTCcyOp8P9acxjgm6 cpDWZf/P3IcZYh6SnaXQAUizsFKC8P452ltCZIkSL01PaxgPBT/a5y/sdl9sg0Ea IzOxIJU4sDArDuquoVNlWhTs21lnZf/ztaAwppA68IE1ma9VTmkvwACaC6IK5Wom GiLpFTZUeHHXeHiQ+nAomHF+VXWpbqlHeZcAD80sqCK/VpSFCW3Q2vmTOfsJIxdu 8PN7B/sduxOd2RboYI4CSpvPkwqkWH3v -----END CERTIFICATE-----Generated at Thu May 15 09:10:15 2025 by rpki-client