$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.mft File: yDkkRRVKIRRXRo3JJnXGsrycRIs.mft (raw, json) Hash identifier: hI1awNbalG7GuvclwWqWTaitBClsC/aly7OULBm+fMo= Subject key identifier: C7:F7:05:D7:6D:3F:41:30:B0:31:DA:01:77:E7:A0:45:F8:EA:B3:80 Authority key identifier: C8:39:24:45:15:4A:21:14:57:46:8D:C9:26:75:C6:B2:BC:9C:44:8B Certificate issuer: /CN=A91A7890/serialNumber=C8392445154A211457468DC92675C6B2BC9C448B Certificate serial: 0179 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yDkkRRVKIRRXRo3JJnXGsrycRIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.mft Manifest number: 0175 Signing time: Mon 07 Apr 2025 02:46:13 +0000 Manifest this update: Mon 07 Apr 2025 02:46:13 +0000 Manifest next update: Mon 14 Apr 2025 02:46:13 +0000 Files and hashes: 1: yDkkRRVKIRRXRo3JJnXGsrycRIs.crl (hash: 3DI0lCrxyDmRVkSR/u3T7ARGc+vuH+LgPmxM4FD0ugM=) 2: EC8CA72CDAE311EDA0A6B03DC4F9AE02.roa (hash: zBXFPWfaswR6Z/aWy5q3A7gzOnqOgIOIPnKiNURo3D0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.crl rsync://rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yDkkRRVKIRRXRo3JJnXGsrycRIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 02:46:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 377 (0x179) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7890 Validity Not Before: Apr 7 02:46:13 2025 GMT Not After : Apr 14 02:46:13 2025 GMT Subject: CN=67f33c75-9305 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c3:c6:24:72:f8:aa:65:ef:39:a8:b3:28:3c: 93:95:f8:59:94:bd:b0:63:b1:c5:b4:c4:b5:2b:58: 3f:81:b1:17:af:8b:bc:43:28:6b:99:6a:23:e6:be: 12:fd:b0:21:b7:6b:e4:e1:df:2b:24:67:d5:13:9d: 22:6b:14:a3:d0:e8:fa:eb:33:1e:51:e0:08:f5:92: f0:20:29:d4:74:04:d4:8f:fd:08:54:62:f9:b9:b7: 1d:cf:60:af:52:b5:22:cd:b8:a6:5c:35:36:0e:fd: b3:d8:3f:3b:ac:ea:28:6c:e2:70:74:12:48:11:95: aa:e6:35:90:ad:c0:b8:06:0c:d5:52:b3:46:20:bc: 41:f9:d0:60:64:0f:15:7d:28:ee:63:f3:c8:4e:6e: 15:98:55:c6:86:b8:ed:0d:51:c9:82:ba:29:81:1d: d4:2f:ab:21:f6:07:b0:4e:d8:bd:10:bd:ea:79:2a: 71:8d:23:da:54:b5:d5:01:14:32:5e:07:33:ca:69: b3:bb:7a:ea:91:3c:d4:d2:95:6b:3f:c8:ce:af:e9: d3:c2:30:9e:34:09:6b:e3:e2:12:8e:e7:01:cb:77: c8:c5:25:bf:f5:0e:59:43:62:80:0b:47:4a:24:5a: 7a:b1:dd:28:9e:b8:13:75:f2:55:77:84:bf:80:92: 63:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:F7:05:D7:6D:3F:41:30:B0:31:DA:01:77:E7:A0:45:F8:EA:B3:80 X509v3 Authority Key Identifier: keyid:C8:39:24:45:15:4A:21:14:57:46:8D:C9:26:75:C6:B2:BC:9C:44:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yDkkRRVKIRRXRo3JJnXGsrycRIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:d8:10:4c:bc:e6:fb:f9:cb:02:c6:77:f3:3b:68:9d:83:c3: 5e:c1:cb:a9:b7:0d:07:99:18:90:6a:44:99:58:30:3f:eb:20: 8a:65:f8:a9:b1:c4:39:6b:15:7a:47:54:3a:4d:86:fb:fd:11: 4a:72:d6:e9:58:26:0f:2b:3a:0e:9b:dd:61:3c:2b:42:f8:fd: d0:78:48:77:d7:72:48:c2:24:7a:7c:31:50:86:bf:a4:f0:d7: 57:ef:26:14:e6:1b:b5:5d:c3:e2:32:11:25:5d:a2:92:37:4d: b9:77:0e:d5:96:be:cd:f0:2e:ef:57:58:32:55:68:ab:89:54: 35:f5:fe:3e:b7:bf:37:1f:58:44:7b:47:a6:b3:4d:98:41:71: 0e:d0:a4:25:af:6d:25:ac:ed:0a:52:ac:d7:68:0b:63:ca:e5: 9a:ff:f3:85:0e:04:e3:8b:76:05:13:85:cb:f3:61:c1:88:37: 57:57:48:3a:3e:1a:d7:f8:21:30:8d:c0:47:a8:0d:02:6c:d0: c7:0f:ef:2d:eb:2a:4f:cb:fd:4c:9b:40:59:24:a1:3a:c8:b1: 26:29:10:09:83:0f:50:f1:ff:f9:dc:88:60:cc:6e:e6:00:85: 3c:f0:5f:e3:d7:28:56:60:8b:c8:1c:bd:0d:27:9b:54:51:cc: 11:75:ee:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc4OTAxMTAvBgNVBAUTKEM4MzkyNDQ1MTU0QTIxMTQ1NzQ2OERDOTI2NzVDNkIy QkM5QzQ0OEIwHhcNMjUwNDA3MDI0NjEzWhcNMjUwNDE0MDI0NjEzWjAYMRYwFAYD VQQDEw02N2YzM2M3NS05MzA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwMPGJHL4qmXvOaizKDyTlfhZlL2wY7HFtMS1K1g/gbEXr4u8QyhrmWoj5r4S /bAht2vk4d8rJGfVE50iaxSj0Oj66zMeUeAI9ZLwICnUdATUj/0IVGL5ubcdz2Cv UrUizbimXDU2Dv2z2D87rOoobOJwdBJIEZWq5jWQrcC4BgzVUrNGILxB+dBgZA8V fSjuY/PITm4VmFXGhrjtDVHJgropgR3UL6sh9gewTti9EL3qeSpxjSPaVLXVARQy Xgczymmzu3rqkTzU0pVrP8jOr+nTwjCeNAlr4+ISjucBy3fIxSW/9Q5ZQ2KAC0dK JFp6sd0onrgTdfJVd4S/gJJjhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMf3Bddt P0EwsDHaAXfnoEX46rOAMB8GA1UdIwQYMBaAFMg5JEUVSiEUV0aNySZ1xrK8nESL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzg5MC9BREUxMzE4NkRB REYxMUVEQjFGOUQ3MTlDNEY5QUUwMi95RGtrUlJWS0lSUlhSbzNKSm5YR3NyeWNS SXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lEa2tSUlZLSVJSWFJvM0pKblhHc3J5Y1JJcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Nzg5MC9BREUxMzE4NkRBREYxMUVEQjFGOUQ3MTlDNEY5QUUwMi95RGtrUlJWS0lS UlhSbzNKSm5YR3NyeWNSSXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCN2BBMvOb7+csCxnfzO2idg8Newcuptw0HmRiQakSZWDA/6yCKZfip scQ5axV6R1Q6TYb7/RFKctbpWCYPKzoOm91hPCtC+P3QeEh313JIwiR6fDFQhr+k 8NdX7yYU5hu1XcPiMhElXaKSN025dw7Vlr7N8C7vV1gyVWiriVQ19f4+t783H1hE e0ems02YQXEO0KQlr20lrO0KUqzXaAtjyuWa//OFDgTji3YFE4XL82HBiDdXV0g6 PhrX+CEwjcBHqA0CbNDHD+8t6ypPy/1Mm0BZJKE6yLEmKRAJgw9Q8f/53IhgzG7m AIU88F/j1yhWYIvIHL0NJ5tUUcwRde48 -----END CERTIFICATE-----Generated at Wed Apr 9 01:16:51 2025 by rpki-client