$ rpki-client -vvf rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft File: YDUU_FCDUUDwM--oQ87pOWOWol0.mft (raw, json) Hash identifier: hzXhbgUKaAKGEVfS7ivxc1TiT46uwey9wB2ZV0AosBE= Subject key identifier: 7E:2F:AA:4A:F4:88:E5:95:EB:43:F0:4A:F8:86:07:98:79:42:A5:1F Authority key identifier: 60:35:14:FC:50:83:51:40:F0:33:EF:A8:43:CE:E9:39:63:96:A2:5D Certificate issuer: /CN=A91118FA/serialNumber=603514FC50835140F033EFA843CEE9396396A25D Certificate serial: 0AF7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDUU_FCDUUDwM--oQ87pOWOWol0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft Manifest number: 0AF1 Signing time: Wed 02 Apr 2025 19:19:16 +0000 Manifest this update: Wed 02 Apr 2025 19:19:16 +0000 Manifest next update: Wed 09 Apr 2025 19:19:16 +0000 Files and hashes: 1: YDUU_FCDUUDwM--oQ87pOWOWol0.crl (hash: 5s1Pw1MAWMe0Yzd+ERcQp3ZVq0koahUj6M3FPHZLKHM=) 2: 42EE36A240EC11EA875BC545C4F9AE02.roa (hash: YIrw4KxM8ISIt1Ah1KvT99pW3vrO49ALdJTT54SyTO8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.crl rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDUU_FCDUUDwM--oQ87pOWOWol0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 19:19:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2807 (0xaf7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91118FA Validity Not Before: Apr 2 19:19:16 2025 GMT Not After : Apr 9 19:19:16 2025 GMT Subject: CN=67ed8db4-1c09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:8c:bb:1e:4a:a9:04:2c:ae:10:85:67:f3:23: 0d:6b:87:ba:ea:cc:bb:ed:c8:b3:8c:df:d2:58:92: e6:59:f1:1e:9b:2d:57:12:6b:70:40:c9:78:61:16: 75:35:2d:88:e1:85:cb:97:75:d4:c6:3b:10:ce:d3: 9e:c4:ef:01:cf:da:de:45:bc:47:70:2a:2e:c8:bd: a7:3a:96:03:17:fc:42:2f:bc:26:2b:8c:60:7b:bb: fb:30:8c:07:6e:88:3f:24:7e:75:71:36:61:80:ed: 9a:29:d6:cd:06:94:34:7f:fe:ea:a8:18:12:1a:2b: e1:4e:b8:a9:99:a8:0f:73:dd:92:6e:27:a5:98:a4: 5c:01:f5:aa:69:2b:4b:12:9e:e6:89:9d:06:ae:b4: 12:02:33:31:0c:bb:24:e0:06:a0:22:05:ef:69:c2: 29:73:0f:52:51:ef:1b:2b:a3:fb:b8:3e:9b:54:99: c5:36:4a:f1:08:2a:d1:4e:60:94:c3:a3:b9:27:1f: ef:e2:14:97:77:d1:8b:16:ff:e8:13:81:fb:f4:42: d8:90:cc:5e:5a:f9:5e:1a:0a:71:12:93:cb:f3:67: f7:1d:46:63:f0:49:0d:7b:95:5e:1e:0c:cf:1f:4a: 25:e4:05:48:5d:3a:92:f9:1b:53:54:19:08:b9:ca: 32:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:2F:AA:4A:F4:88:E5:95:EB:43:F0:4A:F8:86:07:98:79:42:A5:1F X509v3 Authority Key Identifier: keyid:60:35:14:FC:50:83:51:40:F0:33:EF:A8:43:CE:E9:39:63:96:A2:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDUU_FCDUUDwM--oQ87pOWOWol0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:34:0d:02:42:03:1e:e4:a8:47:18:b0:e4:b4:d3:4f:f3:1c: d7:73:16:06:cb:7f:74:1d:77:b1:dc:d5:61:b8:21:8c:75:af: cc:31:15:a8:90:c1:53:4e:25:1e:a3:d8:6e:0d:6d:f9:6d:de: 1c:0c:f2:95:de:30:06:83:b6:eb:67:35:3b:70:81:6b:aa:80: 04:74:17:b2:5a:64:60:3e:23:78:f5:86:ab:91:31:4c:e3:a2: 0f:bf:bc:a1:11:78:58:1a:c5:b9:dc:96:91:46:f2:b9:17:d5: 19:d2:19:67:f9:00:97:d4:b7:5d:09:e1:a2:46:d6:31:6d:2c: 58:6e:be:81:78:9e:d5:04:e9:65:ea:6b:b3:27:75:26:6a:5d: 7c:49:67:69:52:80:42:c3:3b:7c:2e:a1:82:3b:13:1d:10:c7: 2e:99:a3:04:2d:d4:f9:c2:58:e8:88:21:00:27:6e:b9:86:8c: 32:18:36:35:04:2c:08:be:3b:bd:7a:c7:42:f5:91:7f:3e:d7: c9:1d:58:1c:15:01:97:87:50:0c:9a:34:57:de:ca:25:8d:03: 9c:fd:8f:46:33:bf:b7:91:21:15:1b:4b:04:d7:03:b0:64:e5: 80:74:fd:89:24:a2:eb:fd:38:7e:20:15:92:0c:3b:c0:e7:27: 91:ac:5c:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTE4RkExMTAvBgNVBAUTKDYwMzUxNEZDNTA4MzUxNDBGMDMzRUZBODQzQ0VFOTM5 NjM5NkEyNUQwHhcNMjUwNDAyMTkxOTE2WhcNMjUwNDA5MTkxOTE2WjAYMRYwFAYD VQQDEw02N2VkOGRiNC0xYzA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxoy7HkqpBCyuEIVn8yMNa4e66sy77cizjN/SWJLmWfEemy1XEmtwQMl4YRZ1 NS2I4YXLl3XUxjsQztOexO8Bz9reRbxHcCouyL2nOpYDF/xCL7wmK4xge7v7MIwH bog/JH51cTZhgO2aKdbNBpQ0f/7qqBgSGivhTripmagPc92SbielmKRcAfWqaStL Ep7miZ0GrrQSAjMxDLsk4AagIgXvacIpcw9SUe8bK6P7uD6bVJnFNkrxCCrRTmCU w6O5Jx/v4hSXd9GLFv/oE4H79ELYkMxeWvleGgpxEpPL82f3HUZj8EkNe5VeHgzP H0ol5AVIXTqS+RtTVBkIucoy6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH4vqkr0 iOWV60PwSviGB5h5QqUfMB8GA1UdIwQYMBaAFGA1FPxQg1FA8DPvqEPO6TljlqJd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMThGQS85ODQyNDQ5QzQw RUExMUVBQkIwMUJENDJDNEY5QUUwMi9ZRFVVX0ZDRFVVRHdNLS1vUTg3cE9XT1dv bDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lEVVVfRkNEVVVEd00tLW9RODdwT1dPV29sMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MThGQS85ODQyNDQ5QzQwRUExMUVBQkIwMUJENDJDNEY5QUUwMi9ZRFVVX0ZDRFVV RHdNLS1vUTg3cE9XT1dvbDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4NA0CQgMe5KhHGLDktNNP8xzXcxYGy390HXex3NVhuCGMda/MMRWo kMFTTiUeo9huDW35bd4cDPKV3jAGg7brZzU7cIFrqoAEdBeyWmRgPiN49YarkTFM 46IPv7yhEXhYGsW53JaRRvK5F9UZ0hln+QCX1LddCeGiRtYxbSxYbr6BeJ7VBOll 6muzJ3Umal18SWdpUoBCwzt8LqGCOxMdEMcumaMELdT5wljoiCEAJ265howyGDY1 BCwIvju9esdC9ZF/PtfJHVgcFQGXh1AMmjRX3soljQOc/Y9GM7+3kSEVG0sE1wOw ZOWAdP2JJKLr/Th+IBWSDDvA5yeRrFwd -----END CERTIFICATE-----Generated at Fri Apr 4 18:35:51 2025 by rpki-client