$ rpki-client -vvf rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.mft File: Y1kwnvSbRF9utTMb3wqUxcbvw3s.mft (raw, json) Hash identifier: mlKN2oVRJqoH5vSs7tEo8WD9e8Xwt5Qkdil61RqwcdE= Subject key identifier: 17:D0:5B:E8:ED:60:52:6D:08:A0:1E:1D:EF:17:F8:C5:1B:4E:49:E9 Authority key identifier: 63:59:30:9E:F4:9B:44:5F:6E:B5:33:1B:DF:0A:94:C5:C6:EF:C3:7B Certificate issuer: /CN=A91A935D/serialNumber=6359309EF49B445F6EB5331BDF0A94C5C6EFC37B Certificate serial: 063C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1kwnvSbRF9utTMb3wqUxcbvw3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.mft Manifest number: 0635 Signing time: Mon 14 Apr 2025 22:21:28 +0000 Manifest this update: Mon 14 Apr 2025 22:21:27 +0000 Manifest next update: Mon 21 Apr 2025 22:21:27 +0000 Files and hashes: 1: Y1kwnvSbRF9utTMb3wqUxcbvw3s.crl (hash: eNfbFoYnZb5SURABt/CFVjiAEqiY9UzMtaZs5W+A42o=) 2: 47EB76428ABA11EB8A85C01BC4F9AE02.roa (hash: 1AEXU+7Y4PfWz8jQxA5HlFwuXkljqopTv6bNdtPTBW0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.crl rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1kwnvSbRF9utTMb3wqUxcbvw3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 21 Apr 2025 22:21:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1596 (0x63c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A935D, serialNumber=6359309EF49B445F6EB5331BDF0A94C5C6EFC37B Validity Not Before: Apr 14 22:21:27 2025 GMT Not After : Apr 21 22:21:27 2025 GMT Subject: CN=67fd8a68-e94b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ff:aa:8f:c7:8e:b1:80:1b:f3:3d:e3:1f:76: b3:ad:27:e5:5c:e6:22:c8:5a:89:6c:0c:d4:d0:fd: fa:c1:c6:6a:2f:ff:eb:74:8b:f4:e8:e5:df:17:09: f8:12:16:42:cb:d8:e7:9e:16:a7:0b:51:7a:c8:09: 11:8d:19:cf:74:03:98:25:75:a1:f4:96:1d:d2:70: e2:20:94:ce:0d:0b:30:57:1c:df:cd:42:e5:34:a3: 91:d0:c7:7d:58:f8:6a:c0:e5:42:33:4b:e0:b5:31: 57:c6:8f:5d:df:3c:f5:55:5e:8a:13:25:10:da:ba: 0f:8e:39:73:03:4a:43:99:1d:7a:60:18:f2:97:db: bd:52:01:4d:0d:25:99:50:6e:58:90:08:b1:20:58: c0:30:e2:50:37:0c:fd:fa:8b:99:d7:03:c8:f0:d8: eb:78:65:7e:c8:38:d2:3c:82:8f:58:cb:81:25:8e: ef:23:b8:61:0f:36:a4:40:75:07:11:5f:76:24:e9: 62:40:84:66:44:42:ca:81:95:8b:6d:7b:21:80:78: eb:82:aa:0a:4a:56:ff:bc:f6:e0:77:58:b5:d4:9f: fe:ae:88:8d:bd:42:92:e8:11:18:16:dc:5c:fd:62: d4:17:f0:37:91:fa:cc:24:72:1e:ef:17:c1:0e:1d: bb:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:D0:5B:E8:ED:60:52:6D:08:A0:1E:1D:EF:17:F8:C5:1B:4E:49:E9 X509v3 Authority Key Identifier: keyid:63:59:30:9E:F4:9B:44:5F:6E:B5:33:1B:DF:0A:94:C5:C6:EF:C3:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1kwnvSbRF9utTMb3wqUxcbvw3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:23:d3:9d:87:ff:1a:1e:e7:44:ad:3a:d9:a7:9a:53:b2:fb: ed:51:dd:29:3c:24:8d:b2:1e:8d:54:a6:c6:49:73:2c:f7:cf: 79:08:ab:1c:09:17:36:f0:20:b6:b5:6b:ce:38:a6:7d:cd:ef: 2a:42:27:ed:f2:b5:f1:0a:16:f8:f3:66:57:bb:e4:6a:2b:10: e2:a3:b2:b2:1f:fd:07:94:45:dc:5b:4e:8b:ed:69:c6:e5:c6: 17:ef:72:03:68:c7:4c:af:91:b6:a9:16:76:df:ae:b5:d1:86: ed:f2:57:b1:b4:30:51:da:14:c6:ec:13:e8:8a:97:cc:74:65: fa:f4:6c:14:fe:a6:e5:c8:1a:b3:66:85:26:2b:4f:fd:70:b8: 5f:a6:b0:4d:a9:4b:33:1d:ab:fd:bb:3f:a9:df:28:44:6b:38: a5:39:43:c9:c4:04:97:27:f0:d0:68:69:35:0b:7d:46:27:78: 02:d8:c7:29:6d:42:ac:3b:cf:fa:7b:07:1e:61:3b:7a:55:fa: ef:de:5b:fd:48:60:27:28:0a:81:bf:86:d7:ce:26:11:57:d3: 04:d1:3b:14:99:66:31:ac:2e:4a:fb:5c:53:ea:e6:75:85:aa: 94:81:6e:75:36:46:0a:0e:67:7f:9a:16:be:34:7e:05:5b:35: ff:3b:10:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkzNUQxMTAvBgNVBAUTKDYzNTkzMDlFRjQ5QjQ0NUY2RUI1MzMxQkRGMEE5NEM1 QzZFRkMzN0IwHhcNMjUwNDE0MjIyMTI3WhcNMjUwNDIxMjIyMTI3WjAYMRYwFAYD VQQDEw02N2ZkOGE2OC1lOTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr/+qj8eOsYAb8z3jH3azrSflXOYiyFqJbAzU0P36wcZqL//rdIv06OXfFwn4 EhZCy9jnnhanC1F6yAkRjRnPdAOYJXWh9JYd0nDiIJTODQswVxzfzULlNKOR0Md9 WPhqwOVCM0vgtTFXxo9d3zz1VV6KEyUQ2roPjjlzA0pDmR16YBjyl9u9UgFNDSWZ UG5YkAixIFjAMOJQNwz9+ouZ1wPI8NjreGV+yDjSPIKPWMuBJY7vI7hhDzakQHUH EV92JOliQIRmRELKgZWLbXshgHjrgqoKSlb/vPbgd1i11J/+roiNvUKS6BEYFtxc /WLUF/A3kfrMJHIe7xfBDh27eQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBfQW+jt YFJtCKAeHe8X+MUbTknpMB8GA1UdIwQYMBaAFGNZMJ70m0RfbrUzG98KlMXG78N7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTM1RC9GNTAwRjcyODhB QjgxMUVCODcwN0UxMUFDNEY5QUUwMi9ZMWt3bnZTYlJGOXV0VE1iM3dxVXhjYnZ3 M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kxa3dudlNiUkY5dXRUTWIzd3FVeGNidnczcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTM1RC9GNTAwRjcyODhBQjgxMUVCODcwN0UxMUFDNEY5QUUwMi9ZMWt3bnZTYlJG OXV0VE1iM3dxVXhjYnZ3M3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNI9Odh/8aHudErTrZp5pTsvvtUd0pPCSNsh6NVKbGSXMs9895CKsc CRc28CC2tWvOOKZ9ze8qQift8rXxChb482ZXu+RqKxDio7KyH/0HlEXcW06L7WnG 5cYX73IDaMdMr5G2qRZ236610Ybt8lextDBR2hTG7BPoipfMdGX69GwU/qblyBqz ZoUmK0/9cLhfprBNqUszHav9uz+p3yhEazilOUPJxASXJ/DQaGk1C31GJ3gC2Mcp bUKsO8/6ewceYTt6Vfrv3lv9SGAnKAqBv4bXziYRV9ME0TsUmWYxrC5K+1xT6uZ1 haqUgW51NkYKDmd/mha+NH4FWzX/OxDi -----END CERTIFICATE-----Generated at Wed Apr 16 17:15:23 2025 by rpki-client