$ rpki-client -vvf rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.mft File: yil3R0MKG-s0C8o51iIv0mQZt9s.mft (raw, json) Hash identifier: GsXV4/of43872b++BrlaTOXi79MxETXGxJHx3SZOVOw= Subject key identifier: 15:0C:11:53:BF:C0:18:11:1D:F4:F2:12:E2:B8:B5:07:54:D3:E4:80 Authority key identifier: CA:29:77:47:43:0A:1B:EB:34:0B:CA:39:D6:22:2F:D2:64:19:B7:DB Certificate issuer: /CN=A91417B0/serialNumber=CA297747430A1BEB340BCA39D6222FD26419B7DB Certificate serial: 2F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yil3R0MKG-s0C8o51iIv0mQZt9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.mft Manifest number: 2D Signing time: Wed 09 Apr 2025 06:34:38 +0000 Manifest this update: Wed 09 Apr 2025 06:34:37 +0000 Manifest next update: Wed 16 Apr 2025 06:34:37 +0000 Files and hashes: 1: yil3R0MKG-s0C8o51iIv0mQZt9s.crl (hash: EgkD8Z5XoJxBojdcwdXx5Rz5+ecNPxJfpzdolntgnmY=) 2: 5909D86203DB11F0B7D5DD29C4F9AE02.roa (hash: vXg2V9oSq+UecV6UR/hi4Z0CckYReJT3wpjl4H/MqsM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.crl rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yil3R0MKG-s0C8o51iIv0mQZt9s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 06:34:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47 (0x2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91417B0 Validity Not Before: Apr 9 06:34:37 2025 GMT Not After : Apr 16 06:34:37 2025 GMT Subject: CN=67f614fd-9105 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:7f:c8:63:98:ab:44:21:7d:93:7f:9b:46:b6: 89:01:6b:24:40:3c:67:d3:9c:ae:61:90:0f:a6:cf: 68:d0:99:b7:13:a7:3f:cf:8b:01:ef:a1:52:06:ea: b5:2c:c0:87:63:26:28:89:f8:f4:4d:a9:71:15:a5: 95:2f:d9:ea:77:e4:77:11:be:78:3d:c5:26:66:34: 4e:ac:c2:ca:49:b3:69:35:f1:f8:3d:10:f2:ac:2a: cb:16:45:ae:3e:88:2e:93:8b:f7:6a:83:a9:39:b5: 87:e8:2e:2d:7c:10:47:33:01:9d:c6:51:7c:4a:ec: 9e:dd:d4:b8:d6:1e:03:40:97:72:2c:ee:02:f5:55: f1:fd:8e:08:86:7c:aa:c0:b0:b5:02:e3:28:de:f6: 7a:3e:7f:bb:5e:38:6a:b2:38:4a:a4:74:43:39:3e: c3:3a:3d:7e:1f:ff:8b:3c:82:ac:24:f7:92:68:74: 9f:d4:eb:99:e9:02:0f:f8:10:14:2c:42:bd:80:1e: 82:bc:cb:02:8e:72:14:70:e3:b7:9f:d8:66:fb:d8: cd:61:6c:5b:b3:b2:8f:ab:7d:9d:be:52:a5:07:0d: c2:51:b5:51:16:cf:6b:91:50:04:5b:56:ff:95:30: f7:27:12:d5:e8:e9:ce:a7:fc:81:f2:76:f9:a1:bb: 04:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:0C:11:53:BF:C0:18:11:1D:F4:F2:12:E2:B8:B5:07:54:D3:E4:80 X509v3 Authority Key Identifier: keyid:CA:29:77:47:43:0A:1B:EB:34:0B:CA:39:D6:22:2F:D2:64:19:B7:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yil3R0MKG-s0C8o51iIv0mQZt9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:01:ff:de:80:13:0b:ae:c5:01:1d:ab:2f:9f:07:92:91:c0: 9e:ff:68:70:1d:7f:81:e2:3a:1a:1f:10:4a:7d:bb:00:a0:3e: 1d:e0:6a:60:4a:89:20:06:8f:61:0b:83:d0:3d:fa:48:82:8d: 21:20:11:f4:9d:f1:d7:d7:4d:c6:b4:90:e2:96:2e:28:65:d8: 22:8c:8c:2d:3b:f1:73:d2:d6:e2:1a:3a:65:7f:6f:46:2f:8a: 55:68:b4:10:b0:c6:5e:e7:ed:9c:20:35:31:c4:0a:bf:16:6d: b9:3b:ef:88:ee:bd:8e:fd:bd:a0:4e:04:50:95:23:23:34:b1: 38:e5:4e:32:35:7c:7b:02:6b:26:f6:e4:d2:a2:7e:8c:34:d7: e3:04:88:e2:86:83:aa:21:d2:03:41:9f:42:d9:85:ab:35:d0: 03:cc:00:27:ba:32:c4:6d:a0:9f:3a:2b:c0:96:08:d1:9f:fa: e2:66:ad:ec:0c:01:ef:6c:6b:35:f0:66:ab:32:62:ca:30:77: f4:a3:ae:37:35:37:8b:f2:d2:98:a0:d0:86:24:b5:91:02:8c: dd:15:ea:c7:97:19:96:32:5d:5d:10:7d:fe:25:60:be:36:31: af:3d:f3:79:2f:f1:37:7f:04:ae:48:66:c6:41:b2:94:e3:20: 07:12:a7:e6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MTdCMDExMC8GA1UEBRMoQ0EyOTc3NDc0MzBBMUJFQjM0MEJDQTM5RDYyMjJGRDI2 NDE5QjdEQjAeFw0yNTA0MDkwNjM0MzdaFw0yNTA0MTYwNjM0MzdaMBgxFjAUBgNV BAMTDTY3ZjYxNGZkLTkxMDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTf8hjmKtEIX2Tf5tGtokBayRAPGfTnK5hkA+mz2jQmbcTpz/PiwHvoVIG6rUs wIdjJiiJ+PRNqXEVpZUv2ep35HcRvng9xSZmNE6swspJs2k18fg9EPKsKssWRa4+ iC6Ti/dqg6k5tYfoLi18EEczAZ3GUXxK7J7d1LjWHgNAl3Is7gL1VfH9jgiGfKrA sLUC4yje9no+f7teOGqyOEqkdEM5PsM6PX4f/4s8gqwk95JodJ/U65npAg/4EBQs Qr2AHoK8ywKOchRw47ef2Gb72M1hbFuzso+rfZ2+UqUHDcJRtVEWz2uRUARbVv+V MPcnEtXo6c6n/IHydvmhuwTBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUFQwRU7/A GBEd9PIS4ri1B1TT5IAwHwYDVR0jBBgwFoAUyil3R0MKG+s0C8o51iIv0mQZt9sw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQxN0IwL0UxQUM4MjEwRDg4 MzExRUY5NTRBM0Q3MEM0RjlBRTAyL3lpbDNSME1LRy1zMEM4bzUxaUl2MG1RWnQ5 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIveWlsM1IwTUtHLXMwQzhvNTFpSXYwbVFadDlzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQx N0IwL0UxQUM4MjEwRDg4MzExRUY5NTRBM0Q3MEM0RjlBRTAyL3lpbDNSME1LRy1z MEM4bzUxaUl2MG1RWnQ5cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBANAB/96AEwuuxQEdqy+fB5KRwJ7/aHAdf4HiOhofEEp9uwCgPh3gamBK iSAGj2ELg9A9+kiCjSEgEfSd8dfXTca0kOKWLihl2CKMjC078XPS1uIaOmV/b0Yv ilVotBCwxl7n7ZwgNTHECr8Wbbk774juvY79vaBOBFCVIyM0sTjlTjI1fHsCayb2 5NKifow01+MEiOKGg6oh0gNBn0LZhas10APMACe6MsRtoJ86K8CWCNGf+uJmrewM Ae9sazXwZqsyYsowd/Sjrjc1N4vy0pig0IYktZECjN0V6seXGZYyXV0Qff4lYL42 Ma8983kv8Td/BK5IZsZBspTjIAcSp+Y= -----END CERTIFICATE-----Generated at Fri Apr 11 00:01:59 2025 by rpki-client