$ rpki-client -vvf rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft File: YeT4YWtiQmYakffQErbNHkCTiQs.mft (raw, json) Hash identifier: M2C93v151a/3GAl1jQRt/wrmuIeSVHth81zCUVj89hg= Subject key identifier: F3:8F:2B:43:4D:F9:6E:36:3B:DA:A4:A7:E0:C1:F4:57:BA:CE:2C:86 Authority key identifier: 61:E4:F8:61:6B:62:42:66:1A:91:F7:D0:12:B6:CD:1E:40:93:89:0B Certificate issuer: /CN=A91605D7/serialNumber=61E4F8616B6242661A91F7D012B6CD1E4093890B Certificate serial: C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeT4YWtiQmYakffQErbNHkCTiQs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft Manifest number: C2 Signing time: Sat 29 Mar 2025 05:13:12 +0000 Manifest this update: Sat 29 Mar 2025 05:13:11 +0000 Manifest next update: Sat 05 Apr 2025 05:13:11 +0000 Files and hashes: 1: YeT4YWtiQmYakffQErbNHkCTiQs.crl (hash: G7D8Zk//viXG/yPFcrOBaI203gTqGaWQBJoF3+FYzIY=) 2: EA46D7ECE57F11EE96F8FB39C4F9AE02.roa (hash: yl/E8QHLka4/lwMsB6BevGouPJwrIPgnFEOjdbPwsG0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.crl rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeT4YWtiQmYakffQErbNHkCTiQs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 197 (0xc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91605D7 Validity Not Before: Mar 29 05:13:11 2025 GMT Not After : Apr 5 05:13:11 2025 GMT Subject: CN=67e78168-8faa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:da:3a:92:81:1d:20:e8:e6:1a:12:fd:a8:23: 49:2b:59:2c:1c:12:64:1d:c2:5f:92:65:6f:44:67: 05:89:cb:b5:ef:26:c3:43:3b:e9:f5:5a:30:79:e1: b1:86:06:e2:b6:62:ae:55:1d:ea:99:cf:45:61:5d: 2a:68:ae:89:12:fe:2d:c6:9f:0e:1f:4e:b0:37:d5: b8:4b:91:87:72:5f:41:d9:5b:3d:2f:89:81:75:56: d7:cf:c5:4d:7e:2d:85:4e:be:ba:80:7a:e8:e0:1d: 09:cf:6c:2a:ed:1b:4c:ed:56:d3:55:a7:9a:c1:ef: 14:ac:fb:aa:ee:44:1c:4a:56:1a:27:16:23:d9:60: 69:a3:35:74:4d:60:ee:ee:c7:e2:50:04:a4:30:db: dd:b7:19:02:82:69:5e:21:21:c7:1c:86:dd:99:e8: e2:14:24:51:3e:a9:c2:f9:5c:39:b4:af:a8:77:cf: 70:c6:cd:d1:4a:a8:50:0b:bc:d3:08:f7:17:38:8a: 46:c1:d7:79:38:a5:2e:fe:22:f4:6f:10:39:50:fa: a0:40:71:ef:5a:de:9f:ab:88:f8:35:81:22:94:84: e4:dc:54:63:c2:fe:56:12:ca:1c:65:bf:1f:91:38: 95:f2:84:a2:97:ed:0e:da:6a:50:0e:9f:32:b1:b6: a5:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:8F:2B:43:4D:F9:6E:36:3B:DA:A4:A7:E0:C1:F4:57:BA:CE:2C:86 X509v3 Authority Key Identifier: keyid:61:E4:F8:61:6B:62:42:66:1A:91:F7:D0:12:B6:CD:1E:40:93:89:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeT4YWtiQmYakffQErbNHkCTiQs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:e3:3b:9b:67:e4:f8:85:e1:5e:fb:ed:87:ae:5b:26:3e:a7: 9c:05:f6:c2:f6:91:3e:69:8d:52:f4:ef:2e:78:4c:97:b8:97: 08:79:8a:aa:13:ac:e2:61:d5:d9:f0:46:62:94:d0:ad:9d:e4: d3:3b:a8:9f:06:c1:0c:70:5a:ee:e9:c7:77:73:55:a6:a5:45: 50:97:22:a6:e3:6b:ce:79:0e:71:e5:43:25:9c:43:1d:b5:cf: 46:b1:0f:d2:22:68:89:87:1b:52:68:8e:f5:63:ce:47:e6:1c: 1d:17:b8:cc:92:2f:15:a0:db:ab:f8:e3:a9:e4:4a:ee:31:30: 02:43:55:05:23:b2:f1:f9:e5:e5:55:52:3f:c9:e8:95:a6:9d: 3d:40:15:5d:fc:c8:44:a1:c6:bd:0f:0e:e4:06:2e:00:f5:91: be:67:ed:e9:5f:5a:e0:36:9c:2d:06:03:7a:6a:90:81:42:86: 00:37:e8:6b:03:39:ac:63:61:25:20:c3:fe:d2:9c:73:f3:30: 61:31:ab:db:74:ba:34:20:79:f8:6e:78:d9:20:e3:e1:c3:85: a3:b4:a1:cc:72:31:a7:18:d4:aa:a8:59:46:d1:09:92:90:42: 95:18:2b:07:f4:83:3e:1a:ef:50:1b:68:8a:07:f3:ea:b7:49: 36:17:43:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA1RDcxMTAvBgNVBAUTKDYxRTRGODYxNkI2MjQyNjYxQTkxRjdEMDEyQjZDRDFF NDA5Mzg5MEIwHhcNMjUwMzI5MDUxMzExWhcNMjUwNDA1MDUxMzExWjAYMRYwFAYD VQQDEw02N2U3ODE2OC04ZmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzdo6koEdIOjmGhL9qCNJK1ksHBJkHcJfkmVvRGcFicu17ybDQzvp9VoweeGx hgbitmKuVR3qmc9FYV0qaK6JEv4txp8OH06wN9W4S5GHcl9B2Vs9L4mBdVbXz8VN fi2FTr66gHro4B0Jz2wq7RtM7VbTVaeawe8UrPuq7kQcSlYaJxYj2WBpozV0TWDu 7sfiUASkMNvdtxkCgmleISHHHIbdmejiFCRRPqnC+Vw5tK+od89wxs3RSqhQC7zT CPcXOIpGwdd5OKUu/iL0bxA5UPqgQHHvWt6fq4j4NYEilITk3FRjwv5WEsocZb8f kTiV8oSil+0O2mpQDp8ysbalBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPOPK0NN +W42O9qkp+DB9Fe6ziyGMB8GA1UdIwQYMBaAFGHk+GFrYkJmGpH30BK2zR5Ak4kL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDVENy8zQjUwRjEzMkU1 N0YxMUVFQUYxRDI5MUJDNEY5QUUwMi9ZZVQ0WVd0aVFtWWFrZmZRRXJiTkhrQ1Rp UXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1llVDRZV3RpUW1ZYWtmZlFFcmJOSGtDVGlRcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDVENy8zQjUwRjEzMkU1N0YxMUVFQUYxRDI5MUJDNEY5QUUwMi9ZZVQ0WVd0aVFt WWFrZmZRRXJiTkhrQ1RpUXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDB4zubZ+T4heFe++2HrlsmPqecBfbC9pE+aY1S9O8ueEyXuJcIeYqq E6ziYdXZ8EZilNCtneTTO6ifBsEMcFru6cd3c1WmpUVQlyKm42vOeQ5x5UMlnEMd tc9GsQ/SImiJhxtSaI71Y85H5hwdF7jMki8VoNur+OOp5EruMTACQ1UFI7Lx+eXl VVI/yeiVpp09QBVd/MhEoca9Dw7kBi4A9ZG+Z+3pX1rgNpwtBgN6apCBQoYAN+hr AzmsY2ElIMP+0pxz8zBhMavbdLo0IHn4bnjZIOPhw4WjtKHMcjGnGNSqqFlG0QmS kEKVGCsH9IM+Gu9QG2iKB/Pqt0k2F0OU -----END CERTIFICATE-----Generated at Fri Apr 4 22:13:28 2025 by rpki-client