$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft File: YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft (raw, json) Hash identifier: ezRBIwGti+MoxLMXJeq2+PUCo63rIdMJo7ThBPJub+s= Subject key identifier: 39:02:08:14:8F:4A:7E:09:48:1D:CA:C3:A4:B0:9C:3F:9A:F3:2F:70 Authority key identifier: 60:6E:E8:5D:C3:C4:67:FC:46:4A:89:4E:D4:7A:9F:1B:D3:21:B4:41 Certificate issuer: /CN=A91AF3C6/serialNumber=606EE85DC3C467FC464A894ED47A9F1BD321B441 Certificate serial: 07CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YG7oXcPEZ_xGSolO1HqfG9MhtEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft Manifest number: 07C5 Signing time: Wed 16 Apr 2025 20:52:37 +0000 Manifest this update: Wed 16 Apr 2025 20:52:36 +0000 Manifest next update: Wed 23 Apr 2025 20:52:36 +0000 Files and hashes: 1: YG7oXcPEZ_xGSolO1HqfG9MhtEE.crl (hash: rt78fvUcqQgs7v0RSKH91E3hGRqkmVeBEO6uSUcNh4Q=) 2: F7F2D20ABCE911EFB7786B63C4F9AE02.roa (hash: YDClsqxDW8aE74OivD5RPpVA+CxjmhxOOqfYIEgfLpM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.crl rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YG7oXcPEZ_xGSolO1HqfG9MhtEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 20:52:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1999 (0x7cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF3C6, serialNumber=606EE85DC3C467FC464A894ED47A9F1BD321B441 Validity Not Before: Apr 16 20:52:36 2025 GMT Not After : Apr 23 20:52:36 2025 GMT Subject: CN=68001894-9095 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:94:32:1b:bf:cb:29:6e:86:37:07:eb:32:a4: ef:fb:b8:b7:30:7d:ba:18:33:da:a3:2d:d8:95:d1: 5f:a7:69:60:1f:ad:ed:a3:a8:70:32:6b:66:ab:08: f3:f3:37:5b:01:8c:13:04:fc:8e:4d:b8:51:dc:d8: 99:81:9a:bc:86:0c:0b:6f:64:a6:38:6a:b4:a0:31: b9:5a:7b:8f:69:59:0a:78:ef:32:e1:10:4d:f1:e7: 56:4d:da:1d:9d:a0:6e:73:08:5b:ae:c1:2d:21:8f: a1:02:ec:61:92:f5:52:e7:48:83:01:66:9c:04:4b: 49:12:60:b2:a7:09:9e:b1:56:8d:29:55:18:b7:3e: 31:40:91:8d:b3:ae:61:59:f2:8e:e8:af:27:97:38: 08:3e:30:8a:9d:eb:15:a3:b1:1a:94:00:57:d8:21: fe:24:48:97:a8:33:b6:db:ba:7b:d1:9d:ad:a4:db: 3a:a2:30:3d:29:9d:a0:99:4a:52:da:85:f9:a7:85: 80:e8:5f:95:08:60:28:d6:c2:af:d0:96:0f:61:cf: ce:c1:c7:17:20:e7:6c:62:7b:0c:0e:f8:fa:fa:1d: 07:66:4c:3b:b2:09:97:b9:73:cf:93:18:88:9f:47: 89:7b:c4:40:c0:78:46:ef:80:26:11:76:5a:66:2e: 36:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:02:08:14:8F:4A:7E:09:48:1D:CA:C3:A4:B0:9C:3F:9A:F3:2F:70 X509v3 Authority Key Identifier: keyid:60:6E:E8:5D:C3:C4:67:FC:46:4A:89:4E:D4:7A:9F:1B:D3:21:B4:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YG7oXcPEZ_xGSolO1HqfG9MhtEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:0b:c8:cb:07:9c:a0:18:9c:7e:55:5b:ea:60:a9:2f:25:90: 3a:29:b3:23:59:aa:a3:56:04:af:b0:fa:68:aa:87:d3:ce:d9: a5:8e:9f:3b:d1:da:e8:d5:07:54:78:4d:df:82:0c:9f:74:15: 15:19:0b:2d:4b:a2:97:8c:b3:1d:1c:96:2d:3a:83:78:16:66: 2a:3e:9f:8f:bb:6d:86:c8:23:0b:04:67:02:1b:93:d6:48:77: f8:c2:01:a5:fc:35:ef:9a:29:78:c6:28:d9:8f:be:d6:0d:e0: 87:f4:6b:c1:a4:a4:61:3c:f5:b3:b1:63:9c:ca:3a:4f:ed:97: 28:c1:1f:80:aa:b9:50:ab:d3:2a:a5:9c:2f:ad:e9:8c:03:34: 1f:9c:90:83:dd:e3:59:af:d9:e6:20:e4:ee:4a:85:3b:5e:98: ac:5a:8b:ff:c3:1a:c8:13:d1:56:79:e1:8e:c3:48:90:f1:66: f4:94:3f:47:4e:be:95:c2:2c:ce:7e:30:19:65:22:fd:9a:58: c2:9b:89:9d:de:e8:69:dc:f9:78:f8:f6:68:8c:99:4b:bf:58: 32:0c:6d:9d:96:70:fa:2c:ca:6b:ba:9a:08:1b:67:ce:be:b9: 2b:f7:cd:c4:0c:90:b2:86:04:b5:07:a9:f7:8c:6f:a3:fd:ed: 52:15:bd:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB88wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYzQzYxMTAvBgNVBAUTKDYwNkVFODVEQzNDNDY3RkM0NjRBODk0RUQ0N0E5RjFC RDMyMUI0NDEwHhcNMjUwNDE2MjA1MjM2WhcNMjUwNDIzMjA1MjM2WjAYMRYwFAYD VQQDEw02ODAwMTg5NC05MDk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmZQyG7/LKW6GNwfrMqTv+7i3MH26GDPaoy3YldFfp2lgH63to6hwMmtmqwjz 8zdbAYwTBPyOTbhR3NiZgZq8hgwLb2SmOGq0oDG5WnuPaVkKeO8y4RBN8edWTdod naBucwhbrsEtIY+hAuxhkvVS50iDAWacBEtJEmCypwmesVaNKVUYtz4xQJGNs65h WfKO6K8nlzgIPjCKnesVo7EalABX2CH+JEiXqDO227p70Z2tpNs6ojA9KZ2gmUpS 2oX5p4WA6F+VCGAo1sKv0JYPYc/OwccXIOdsYnsMDvj6+h0HZkw7sgmXuXPPkxiI n0eJe8RAwHhG74AmEXZaZi42kQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDkCCBSP Sn4JSB3Kw6SwnD+a8y9wMB8GA1UdIwQYMBaAFGBu6F3DxGf8RkqJTtR6nxvTIbRB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjNDNi82MzFDQzE2MEYz MzgxMUVBQTYzRDQxNTRDNEY5QUUwMi9ZRzdvWGNQRVpfeEdTb2xPMUhxZkc5TWh0 RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lHN29YY1BFWl94R1NvbE8xSHFmRzlNaHRFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjNDNi82MzFDQzE2MEYzMzgxMUVBQTYzRDQxNTRDNEY5QUUwMi9ZRzdvWGNQRVpf eEdTb2xPMUhxZkc5TWh0RUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjC8jLB5ygGJx+VVvqYKkvJZA6KbMjWaqjVgSvsPpoqofTztmljp87 0dro1QdUeE3fggyfdBUVGQstS6KXjLMdHJYtOoN4FmYqPp+Pu22GyCMLBGcCG5PW SHf4wgGl/DXvmil4xijZj77WDeCH9GvBpKRhPPWzsWOcyjpP7ZcowR+AqrlQq9Mq pZwvremMAzQfnJCD3eNZr9nmIOTuSoU7XpisWov/wxrIE9FWeeGOw0iQ8Wb0lD9H Tr6VwizOfjAZZSL9mljCm4md3uhp3Pl4+PZojJlLv1gyDG2dlnD6LMprupoIG2fO vrkr983EDJCyhgS1B6n3jG+j/e1SFb3K -----END CERTIFICATE-----Generated at Thu Apr 17 15:59:09 2025 by rpki-client