$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9AF0/F162DA4E9F9711E59488860FC4F9AE02/USYZ3gwdG7Pld5lO4MX_MNSRzQ4.mft File: USYZ3gwdG7Pld5lO4MX_MNSRzQ4.mft (raw, json) Hash identifier: 0WKkElcX6+vAgtAbhRmazmZNfZzDGV2uFXl9Jj004C8= Subject key identifier: 95:3A:BF:B9:A6:6D:22:89:E2:CB:E2:46:8D:0A:D8:9F:09:E2:01:50 Authority key identifier: 51:26:19:DE:0C:1D:1B:B3:E5:77:99:4E:E0:C5:FF:30:D4:91:CD:0E Certificate issuer: /CN=A91B9AF0/serialNumber=512619DE0C1D1BB3E577994EE0C5FF30D491CD0E Certificate serial: 06D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USYZ3gwdG7Pld5lO4MX_MNSRzQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9AF0/F162DA4E9F9711E59488860FC4F9AE02/USYZ3gwdG7Pld5lO4MX_MNSRzQ4.mft Manifest number: 2286 Signing time: Mon 14 Apr 2025 15:53:06 +0000 Manifest this update: Mon 14 Apr 2025 15:53:06 +0000 Manifest next update: Mon 21 Apr 2025 15:53:06 +0000 Files and hashes: 1: USYZ3gwdG7Pld5lO4MX_MNSRzQ4.crl (hash: DU0evgzWDZFZB57Hgp9nPkIqqmtt4zjFrelL8z7pyug=) 2: CCC98C06516B11EBB8942876C4F9AE02.roa (hash: oQ+XeX3QPr5MKR/Pv82IWUhiWxAkN4R4paMHXTKKeg8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9AF0/F162DA4E9F9711E59488860FC4F9AE02/USYZ3gwdG7Pld5lO4MX_MNSRzQ4.crl rsync://rpki.apnic.net/member_repository/A91B9AF0/F162DA4E9F9711E59488860FC4F9AE02/USYZ3gwdG7Pld5lO4MX_MNSRzQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USYZ3gwdG7Pld5lO4MX_MNSRzQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 21 Apr 2025 15:53:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1753 (0x6d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9AF0, serialNumber=512619DE0C1D1BB3E577994EE0C5FF30D491CD0E Validity Not Before: Apr 14 15:53:06 2025 GMT Not After : Apr 21 15:53:06 2025 GMT Subject: CN=67fd2f62-4080 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:8f:71:ba:d7:75:5a:a1:1f:3a:b6:31:e4:e4: bb:c8:01:48:a7:86:77:3d:f5:08:85:ed:d7:22:cc: d9:7f:0a:59:44:80:ba:d6:20:76:d0:8e:2c:2b:3c: ff:74:85:3f:f0:dc:f4:0f:ca:79:e0:55:fd:85:c0: 21:b7:da:a5:d7:98:64:af:0d:dd:1c:b4:3a:2e:dd: bd:ff:58:1c:ee:50:ec:03:41:d7:9b:f2:91:f7:db: 27:6a:d0:f0:90:36:37:c9:d2:27:de:32:20:61:a8: 53:d9:ed:88:76:e6:29:22:22:36:46:43:93:80:db: 49:3b:cb:fd:9d:6e:d6:6b:fd:b2:e4:39:b5:a4:0e: bb:76:0d:35:2b:ed:16:27:55:c7:64:f1:07:9b:84: c1:c4:b8:e4:2c:5c:b9:b2:66:fe:62:e5:2b:e1:93: 2d:3a:0d:e6:5b:98:a8:84:74:c5:a3:19:15:b7:66: af:a0:f7:62:55:be:b3:cd:60:27:16:90:48:70:b5: c8:66:ac:21:51:d8:bd:81:59:43:c6:5c:de:17:f1: ce:b7:33:d8:40:48:96:ce:88:bf:65:01:76:ce:51: 7a:6b:19:a4:76:7c:0d:93:85:5a:d3:50:21:3c:03: 8e:e3:c2:c5:02:ef:8e:39:c5:8d:0f:47:bc:3d:30: 0e:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:3A:BF:B9:A6:6D:22:89:E2:CB:E2:46:8D:0A:D8:9F:09:E2:01:50 X509v3 Authority Key Identifier: keyid:51:26:19:DE:0C:1D:1B:B3:E5:77:99:4E:E0:C5:FF:30:D4:91:CD:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9AF0/F162DA4E9F9711E59488860FC4F9AE02/USYZ3gwdG7Pld5lO4MX_MNSRzQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USYZ3gwdG7Pld5lO4MX_MNSRzQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9AF0/F162DA4E9F9711E59488860FC4F9AE02/USYZ3gwdG7Pld5lO4MX_MNSRzQ4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:d5:c9:ad:c0:ca:b8:a8:b4:2f:dc:3c:5d:3d:7f:80:0c:bf: db:89:d3:56:88:7b:3f:e3:47:69:03:c8:35:dd:d6:0b:e7:49: 6d:ec:07:08:18:76:5d:28:09:84:27:05:d0:f9:44:71:3a:f7: f2:ee:34:16:62:ce:35:6a:68:c0:9d:c7:83:43:ac:02:7d:a7: dd:8c:22:94:45:3d:a5:e6:a9:a8:86:10:87:30:dd:bc:73:c9: 4a:1f:7b:aa:3b:30:4e:e0:cf:dd:a5:c6:83:0a:85:88:3b:35: f8:11:1b:6b:16:1f:3e:69:8e:ba:97:30:b1:a4:b5:18:22:33: 21:3b:13:40:56:78:bc:f2:f9:c7:7f:c1:53:85:de:d8:28:86: d6:0a:a3:59:49:79:2d:88:bf:51:05:41:4e:9d:1e:50:1a:63: c6:87:0d:28:38:32:d4:d9:54:ed:b4:e6:e2:83:c8:3f:27:6b: 2c:bd:04:c3:88:21:f1:10:48:d7:22:f3:d7:1d:96:c0:0a:32: 43:8e:8b:9c:21:41:ae:57:3d:3a:6b:08:0c:a8:25:a5:30:61: b1:ee:09:b1:f2:2a:78:74:41:25:e0:6b:27:66:98:e3:0f:21: 88:9c:17:2b:0c:6f:c3:16:6c:88:e4:94:3b:b8:b8:00:0c:e7: 68:ad:7d:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlBRjAxMTAvBgNVBAUTKDUxMjYxOURFMEMxRDFCQjNFNTc3OTk0RUUwQzVGRjMw RDQ5MUNEMEUwHhcNMjUwNDE0MTU1MzA2WhcNMjUwNDIxMTU1MzA2WjAYMRYwFAYD VQQDEw02N2ZkMmY2Mi00MDgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAro9xutd1WqEfOrYx5OS7yAFIp4Z3PfUIhe3XIszZfwpZRIC61iB20I4sKzz/ dIU/8Nz0D8p54FX9hcAht9ql15hkrw3dHLQ6Lt29/1gc7lDsA0HXm/KR99snatDw kDY3ydIn3jIgYahT2e2IduYpIiI2RkOTgNtJO8v9nW7Wa/2y5Dm1pA67dg01K+0W J1XHZPEHm4TBxLjkLFy5smb+YuUr4ZMtOg3mW5iohHTFoxkVt2avoPdiVb6zzWAn FpBIcLXIZqwhUdi9gVlDxlzeF/HOtzPYQEiWzoi/ZQF2zlF6axmkdnwNk4Va01Ah PAOO48LFAu+OOcWND0e8PTAOPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJU6v7mm bSKJ4sviRo0K2J8J4gFQMB8GA1UdIwQYMBaAFFEmGd4MHRuz5XeZTuDF/zDUkc0O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUFGMC9GMTYyREE0RTlG OTcxMUU1OTQ4ODg2MEZDNEY5QUUwMi9VU1laM2d3ZEc3UGxkNWxPNE1YX01OU1J6 UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VTWVozZ3dkRzdQbGQ1bE80TVhfTU5TUnpRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUFGMC9GMTYyREE0RTlGOTcxMUU1OTQ4ODg2MEZDNEY5QUUwMi9VU1laM2d3ZEc3 UGxkNWxPNE1YX01OU1J6UTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBC1cmtwMq4qLQv3DxdPX+ADL/bidNWiHs/40dpA8g13dYL50lt7AcI GHZdKAmEJwXQ+URxOvfy7jQWYs41amjAnceDQ6wCfafdjCKURT2l5qmohhCHMN28 c8lKH3uqOzBO4M/dpcaDCoWIOzX4ERtrFh8+aY66lzCxpLUYIjMhOxNAVni88vnH f8FThd7YKIbWCqNZSXktiL9RBUFOnR5QGmPGhw0oODLU2VTttObig8g/J2ssvQTD iCHxEEjXIvPXHZbACjJDjoucIUGuVz06awgMqCWlMGGx7gmx8ip4dEEl4GsnZpjj DyGInBcrDG/DFmyI5JQ7uLgADOdorX1g -----END CERTIFICATE-----Generated at Wed Apr 16 02:31:09 2025 by rpki-client