$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft File: yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft (raw, json) Hash identifier: aIEKHCde8xa6Fx0xAGYZSLJS6FA9j0fmWaW+b8SQrxY= Subject key identifier: 3B:62:C5:41:56:34:43:32:E2:29:32:58:8C:92:4E:1E:44:E9:16:FD Authority key identifier: C8:E0:59:1E:7E:51:7D:41:9C:FC:86:17:1C:DC:A9:FD:E6:26:E8:F5 Certificate issuer: /CN=A91AB3E3/serialNumber=C8E0591E7E517D419CFC86171CDCA9FDE626E8F5 Certificate serial: 01A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft Manifest number: 01A2 Signing time: Thu 17 Apr 2025 02:20:00 +0000 Manifest this update: Thu 17 Apr 2025 02:19:59 +0000 Manifest next update: Thu 24 Apr 2025 02:19:59 +0000 Files and hashes: 1: yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl (hash: l6udWxQalYOrmO7Der6lzZ6RWGpJVyt6+u8qFP/PaTU=) 2: 1E7B7BB4996C11EDA107E666C4F9AE02.roa (hash: /ERrUArKmo0KgEQ70S3Uf+U0E1QNCp3+3kkOG/O7FLo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Apr 2025 02:19:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 421 (0x1a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB3E3, serialNumber=C8E0591E7E517D419CFC86171CDCA9FDE626E8F5 Validity Not Before: Apr 17 02:19:59 2025 GMT Not After : Apr 24 02:19:59 2025 GMT Subject: CN=68006550-ea62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ba:01:8f:25:ec:35:9a:6e:1e:7f:84:44:5e: 9b:06:20:d7:fd:8a:7d:75:26:4d:8b:e5:a8:c2:8a: af:1b:b2:73:80:2d:95:5f:35:61:4f:27:b5:ea:21: af:6b:10:5b:4c:c8:2b:9f:74:32:93:56:0f:6f:34: 67:12:ed:bf:d0:a9:3f:8e:90:78:91:14:0e:31:25: a2:cf:31:dc:e9:ee:b6:7f:d9:5e:79:1f:1b:f8:d5: 25:67:8e:f0:45:54:c1:c1:68:80:46:68:6a:31:bd: ac:1f:48:14:60:2d:cc:2f:e0:cd:bc:c9:8d:9b:0d: 66:e3:48:d8:c6:c1:75:5c:2a:69:36:bb:55:4a:5c: a6:21:1f:71:6b:5c:c2:c6:e3:af:2c:2e:68:2d:dc: 01:03:b6:f3:0c:58:3d:5c:14:ee:97:9c:58:86:57: 17:60:43:d6:8f:e9:4a:47:03:f0:7b:6b:d2:b1:eb: e9:1e:92:04:94:56:97:b9:6d:c4:91:03:46:d5:91: 22:e0:7e:50:eb:89:f8:f2:59:02:55:d4:bf:7a:69: 92:ae:08:e0:81:ba:8e:de:c4:15:c4:7b:0c:55:b0: ad:ee:8c:c3:b9:ad:18:60:d0:5c:03:04:e3:cd:3b: f1:00:9b:df:db:50:a2:d4:8b:03:c6:f3:72:e7:f7: f4:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:62:C5:41:56:34:43:32:E2:29:32:58:8C:92:4E:1E:44:E9:16:FD X509v3 Authority Key Identifier: keyid:C8:E0:59:1E:7E:51:7D:41:9C:FC:86:17:1C:DC:A9:FD:E6:26:E8:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:0a:3a:74:40:76:d7:a1:ce:59:5c:42:a6:06:45:01:f4:60: 75:5e:a9:d0:a1:47:56:fb:46:f7:b0:60:1b:e7:b3:50:f4:ec: 88:a1:0c:90:36:2d:7c:ef:63:8f:3b:6c:97:10:23:06:8e:62: 1e:dd:6f:67:6b:85:89:30:b3:26:33:4b:b2:96:62:62:4c:62: 0b:91:1c:a4:47:27:b6:be:1e:e7:7a:7e:ad:da:cb:ff:9a:2f: 11:74:30:99:a4:a5:6c:dd:3a:03:e0:96:85:29:50:a5:fc:ce: 24:6e:e4:bb:9f:a3:e3:a3:a2:5c:59:7e:80:67:62:17:a0:b1: fc:0b:22:f4:73:f4:18:ab:02:22:a2:aa:81:3e:2a:ac:e3:84: 8e:1a:82:8e:24:a6:6f:af:b7:70:ba:6d:bf:71:e5:2f:41:ad: c4:28:df:05:d3:38:da:02:61:09:62:4d:4d:45:ad:10:12:35: c3:19:49:49:a0:22:3c:9d:5d:5b:23:a2:f5:a4:85:e3:ff:50: 1f:97:8a:ee:ab:b1:0a:ed:c1:14:4b:19:84:90:8b:7e:50:36: 1b:67:38:52:b6:a6:e9:2f:d5:6b:d5:06:26:a0:43:3a:61:03: 53:86:ae:aa:f5:f0:78:73:d2:a5:17:e5:b3:4c:68:b7:23:6b: 6a:82:6c:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIzRTMxMTAvBgNVBAUTKEM4RTA1OTFFN0U1MTdENDE5Q0ZDODYxNzFDRENBOUZE RTYyNkU4RjUwHhcNMjUwNDE3MDIxOTU5WhcNMjUwNDI0MDIxOTU5WjAYMRYwFAYD VQQDEw02ODAwNjU1MC1lYTYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr7oBjyXsNZpuHn+ERF6bBiDX/Yp9dSZNi+WowoqvG7JzgC2VXzVhTye16iGv axBbTMgrn3Qyk1YPbzRnEu2/0Kk/jpB4kRQOMSWizzHc6e62f9leeR8b+NUlZ47w RVTBwWiARmhqMb2sH0gUYC3ML+DNvMmNmw1m40jYxsF1XCppNrtVSlymIR9xa1zC xuOvLC5oLdwBA7bzDFg9XBTul5xYhlcXYEPWj+lKRwPwe2vSsevpHpIElFaXuW3E kQNG1ZEi4H5Q64n48lkCVdS/emmSrgjggbqO3sQVxHsMVbCt7ozDua0YYNBcAwTj zTvxAJvf21Ci1IsDxvNy5/f0IwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDtixUFW NEMy4ikyWIySTh5E6Rb9MB8GA1UdIwQYMBaAFMjgWR5+UX1BnPyGFxzcqf3mJuj1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjNFMy9BOTQ2MjRCNDk5 NjgxMUVEQjE2MkY4NjFDNEY5QUUwMi95T0JaSG41UmZVR2NfSVlYSE55cF9lWW02 UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lPQlpIbjVSZlVHY19JWVhITnlwX2VZbTZQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjNFMy9BOTQ2MjRCNDk5NjgxMUVEQjE2MkY4NjFDNEY5QUUwMi95T0JaSG41UmZV R2NfSVlYSE55cF9lWW02UFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8Cjp0QHbXoc5ZXEKmBkUB9GB1XqnQoUdW+0b3sGAb57NQ9OyIoQyQ Ni1872OPO2yXECMGjmIe3W9na4WJMLMmM0uylmJiTGILkRykRye2vh7nen6t2sv/ mi8RdDCZpKVs3ToD4JaFKVCl/M4kbuS7n6Pjo6JcWX6AZ2IXoLH8CyL0c/QYqwIi oqqBPiqs44SOGoKOJKZvr7dwum2/ceUvQa3EKN8F0zjaAmEJYk1NRa0QEjXDGUlJ oCI8nV1bI6L1pIXj/1Afl4ruq7EK7cEUSxmEkIt+UDYbZzhStqbpL9Vr1QYmoEM6 YQNThq6q9fB4c9KlF+WzTGi3I2tqgmy9 -----END CERTIFICATE-----Generated at Thu Apr 17 22:49:55 2025 by rpki-client