$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft File: Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft (raw, json) Hash identifier: W2LcI34axr/LfsIIWj48gM0DCb49VqKjcpEN8W3/Wmw= Subject key identifier: 9B:F5:68:41:78:68:BB:43:CA:37:8E:84:0B:8E:CA:AC:23:E1:30:39 Authority key identifier: 63:49:73:59:04:E1:BC:0D:65:BD:59:4A:07:76:2B:B5:29:9C:03:8A Certificate issuer: /CN=A91AFB4C/serialNumber=6349735904E1BC0D65BD594A07762BB5299C038A Certificate serial: 0198 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft Manifest number: 0193 Signing time: Thu 03 Apr 2025 02:50:33 +0000 Manifest this update: Thu 03 Apr 2025 02:50:33 +0000 Manifest next update: Thu 10 Apr 2025 02:50:33 +0000 Files and hashes: 1: Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl (hash: Xwt71ECKh1eeGg6A1Sv1qtsRz3RD5pI5WWKQGVMSbvI=) 2: AD286018B29C11EDB216812EC4F9AE02.roa (hash: ck7frHwbdvA8vLLhGdgsJbIt8cpEwUyRbFKBDEFTB8E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 02:50:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 408 (0x198) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFB4C Validity Not Before: Apr 3 02:50:33 2025 GMT Not After : Apr 10 02:50:33 2025 GMT Subject: CN=67edf779-a87d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:d1:78:58:d8:15:57:97:d9:8b:e4:55:05:c9: 33:70:cd:68:a6:a3:fa:1f:5d:5f:87:1e:27:a6:50: dc:ff:18:0f:b1:a4:06:d7:c3:6a:6e:37:7e:70:fe: 8b:20:91:1d:b7:15:77:f6:1a:60:ac:35:31:0d:27: af:c1:97:83:d8:cc:00:3a:81:ab:d4:25:29:98:54: 7c:a4:26:f7:17:f3:d3:5e:56:14:11:59:52:72:63: 94:e5:c4:4e:46:ed:eb:a8:c8:ad:8c:f4:d1:b9:9b: f9:3d:ce:c8:a6:a0:89:7e:f2:fb:57:89:d9:8f:4e: 2d:5c:19:8e:a5:ca:2d:5c:09:a1:96:fa:91:4d:31: e3:cc:63:3c:ab:c6:08:5a:48:6f:e9:14:46:1c:ad: 62:b2:25:72:a3:4d:9a:9a:ce:5b:7f:e7:5a:59:b2: 71:18:fa:02:26:34:42:b2:2f:91:9c:1d:0b:6f:38: 72:7d:31:3e:c1:ef:6d:f9:c9:4a:be:7f:57:66:68: 14:49:8c:10:1c:c5:b4:88:9f:8a:df:04:d7:fe:a0: 49:ec:23:ca:8a:3d:dc:ac:11:b2:da:ab:41:78:20: 88:0b:ff:f3:c4:f4:9d:0c:cd:48:f1:a9:3b:e2:af: 3e:f8:f1:1a:47:18:43:d2:de:cd:be:c0:bb:d4:76: 5f:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:F5:68:41:78:68:BB:43:CA:37:8E:84:0B:8E:CA:AC:23:E1:30:39 X509v3 Authority Key Identifier: keyid:63:49:73:59:04:E1:BC:0D:65:BD:59:4A:07:76:2B:B5:29:9C:03:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:ba:b4:fa:12:4d:f8:2b:82:47:ee:73:15:9e:33:f2:4a:e2: d1:27:bd:2b:95:1e:1b:06:49:a3:4f:99:0e:06:3c:77:6e:10: 06:48:9f:b0:3f:ea:0f:77:2c:d9:ec:f6:4a:20:7b:9f:87:61: f9:90:7d:4c:aa:0a:a4:c3:3a:e8:c1:54:35:d6:17:35:89:d4: ed:9a:5a:1e:8f:18:10:5d:79:12:e5:20:4b:c6:7c:2b:39:d2: d0:4c:61:10:43:c1:6d:60:0d:92:89:ba:34:8d:9a:83:b8:75: 09:83:dc:bb:d2:59:60:50:15:77:60:4e:c8:ce:f9:51:0f:26: 70:ca:47:62:71:fd:37:9c:dd:26:e5:81:12:94:96:0d:fe:10: 61:e9:81:09:cd:9f:fc:bc:ec:2e:f1:e3:e5:4b:a8:f5:2f:cd: 77:45:bb:38:a2:c4:30:0f:eb:e1:4d:ff:a8:44:db:aa:d7:c8: 75:78:33:2f:71:b2:23:5f:17:a0:74:20:7e:74:3e:ae:01:2a: 11:88:1d:7c:eb:94:10:2e:96:77:8f:eb:b2:1c:dc:34:d8:6c: 1d:87:63:75:9e:88:47:95:e7:e9:f9:23:01:fd:0a:ed:9a:a4: dc:08:55:0f:0b:65:a0:59:71:48:6f:ec:f2:ad:f5:5a:b1:82: e1:6c:52:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZCNEMxMTAvBgNVBAUTKDYzNDk3MzU5MDRFMUJDMEQ2NUJENTk0QTA3NzYyQkI1 Mjk5QzAzOEEwHhcNMjUwNDAzMDI1MDMzWhcNMjUwNDEwMDI1MDMzWjAYMRYwFAYD VQQDEw02N2VkZjc3OS1hODdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr9F4WNgVV5fZi+RVBckzcM1opqP6H11fhx4nplDc/xgPsaQG18Nqbjd+cP6L IJEdtxV39hpgrDUxDSevwZeD2MwAOoGr1CUpmFR8pCb3F/PTXlYUEVlScmOU5cRO Ru3rqMitjPTRuZv5Pc7IpqCJfvL7V4nZj04tXBmOpcotXAmhlvqRTTHjzGM8q8YI Wkhv6RRGHK1isiVyo02ams5bf+daWbJxGPoCJjRCsi+RnB0LbzhyfTE+we9t+clK vn9XZmgUSYwQHMW0iJ+K3wTX/qBJ7CPKij3crBGy2qtBeCCIC//zxPSdDM1I8ak7 4q8++PEaRxhD0t7NvsC71HZfnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJv1aEF4 aLtDyjeOhAuOyqwj4TA5MB8GA1UdIwQYMBaAFGNJc1kE4bwNZb1ZSgd2K7UpnAOK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkI0Qy9DNDcwQjIyQUIy OTcxMUVEOTRFRjA5MjZDNEY5QUUwMi9ZMGx6V1FUaHZBMWx2VmxLQjNZcnRTbWNB NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kwbHpXUVRodkExbHZWbEtCM1lydFNtY0E0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RkI0Qy9DNDcwQjIyQUIyOTcxMUVEOTRFRjA5MjZDNEY5QUUwMi9ZMGx6V1FUaHZB MWx2VmxLQjNZcnRTbWNBNG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqurT6Ek34K4JH7nMVnjPySuLRJ70rlR4bBkmjT5kOBjx3bhAGSJ+w P+oPdyzZ7PZKIHufh2H5kH1MqgqkwzrowVQ11hc1idTtmloejxgQXXkS5SBLxnwr OdLQTGEQQ8FtYA2Sibo0jZqDuHUJg9y70llgUBV3YE7IzvlRDyZwykdicf03nN0m 5YESlJYN/hBh6YEJzZ/8vOwu8ePlS6j1L813Rbs4osQwD+vhTf+oRNuq18h1eDMv cbIjXxegdCB+dD6uASoRiB1865QQLpZ3j+uyHNw02Gwdh2N1nohHlefp+SMB/Qrt mqTcCFUPC2WgWXFIb+zyrfVasYLhbFKB -----END CERTIFICATE-----Generated at Fri Apr 4 21:55:44 2025 by rpki-client