$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft File: y2yF51LVad_PHekEycvnHkg-9fI.mft (raw, json) Hash identifier: R5EOyRiSkySK04dDSKaZAaWZOVxmt0k2ZGVFgiDqKkg= Subject key identifier: 1D:29:AC:19:AA:14:A4:D4:D4:AC:68:4A:8F:01:A9:76:D3:AC:DC:39 Authority key identifier: CB:6C:85:E7:52:D5:69:DF:CF:1D:E9:04:C9:CB:E7:1E:48:3E:F5:F2 Certificate issuer: /CN=A91BC039/serialNumber=CB6C85E752D569DFCF1DE904C9CBE71E483EF5F2 Certificate serial: 04B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2yF51LVad_PHekEycvnHkg-9fI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft Manifest number: 04AE Signing time: Sat 29 Mar 2025 00:10:24 +0000 Manifest this update: Sat 29 Mar 2025 00:10:23 +0000 Manifest next update: Sat 05 Apr 2025 00:10:23 +0000 Files and hashes: 1: y2yF51LVad_PHekEycvnHkg-9fI.crl (hash: P+AKbtlo3SVL3/4suatPlfDb+PVs8/9vRxvJmxFNpGc=) 2: B0A2E01225C411EC88466E59C4F9AE02.roa (hash: 8z4FQ3P4ffexi4IqxjF16x9Xr0QlwFMb8TffrA8dnxw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.crl rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2yF51LVad_PHekEycvnHkg-9fI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 00:10:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1204 (0x4b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC039 Validity Not Before: Mar 29 00:10:23 2025 GMT Not After : Apr 5 00:10:23 2025 GMT Subject: CN=67e73a6f-5bd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:2e:3c:b9:44:a2:3b:40:a7:ea:6d:a9:b7:9e: 3b:b7:1f:9c:21:a1:25:8c:43:6e:9b:f0:4f:ad:fc: a3:c8:32:b0:7a:99:64:bd:fc:2b:3e:3c:83:2c:3b: d6:91:63:1e:41:f3:bf:bf:f4:ea:7d:7c:83:60:5c: 8b:88:6b:00:41:d1:f1:f3:30:7d:9c:27:a6:ef:f5: f7:02:2d:76:97:7b:34:ae:9a:a9:0f:66:50:22:db: 11:a9:64:de:eb:fb:51:5a:18:7b:28:80:db:ca:fb: c8:d5:a1:5a:07:97:58:36:4f:fc:68:26:43:8b:b4: 19:dd:11:4b:0f:6d:2c:8d:ab:6a:27:cc:0f:b6:cd: 5a:12:24:b5:73:f3:4c:0b:10:4e:00:71:0d:69:ef: 5a:b1:f9:3c:e5:35:31:8d:5c:94:bd:aa:83:d5:e0: 3e:55:cc:fb:fb:60:7c:c8:22:6d:02:c6:97:6a:46: 02:dc:db:6f:35:22:42:72:85:2b:30:4d:66:77:2d: 1b:56:29:7b:e6:64:70:d8:26:3d:48:2e:03:94:91: 20:cc:42:53:1c:6c:9b:36:82:4e:7b:f1:7b:66:4a: 8f:8b:b0:50:fd:2d:25:44:61:2a:34:6e:ef:45:5f: 43:bf:22:48:46:88:94:c7:86:17:f9:6e:42:ac:ee: 66:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:29:AC:19:AA:14:A4:D4:D4:AC:68:4A:8F:01:A9:76:D3:AC:DC:39 X509v3 Authority Key Identifier: keyid:CB:6C:85:E7:52:D5:69:DF:CF:1D:E9:04:C9:CB:E7:1E:48:3E:F5:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2yF51LVad_PHekEycvnHkg-9fI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:a9:67:5e:7f:3f:5d:15:36:77:71:a6:df:82:63:3d:55:d7: c0:3d:40:7b:71:7d:64:75:ee:83:0d:40:f5:e3:b1:52:a9:0e: 57:0f:75:fc:96:c8:c8:31:00:fd:de:3f:e2:18:e4:9b:65:03: 4a:80:68:68:c8:11:e8:34:e6:15:a4:0b:d2:ae:15:61:28:75: df:22:ff:ba:63:ed:ba:7c:de:38:46:9a:9e:54:84:cf:46:05: 66:8f:28:9c:33:e9:f0:9f:c8:1a:b9:20:0b:72:64:df:b7:3f: a0:87:62:e8:dd:23:7f:3b:75:51:c4:f1:a5:2e:63:11:4d:de: 42:ca:f5:66:2e:3f:32:bb:63:70:e9:50:45:57:f0:8f:34:13: bd:8c:c1:85:f1:7e:dc:59:7b:04:b3:ed:fb:4e:c6:b0:94:44: 20:bc:30:36:52:f9:09:dc:ba:3b:82:54:62:c0:76:56:f9:9a: 6c:cd:57:11:ab:c6:88:29:75:85:fc:7f:a1:e8:4e:f1:22:ea: b2:83:f9:f7:41:f2:9f:91:d5:77:6e:1e:0d:83:c8:d2:e3:f5: a9:a0:65:29:c3:07:e1:90:5e:1e:a0:d8:db:61:0c:cf:18:b1: ff:e5:53:0f:68:bf:c8:56:ba:15:95:4e:e1:e9:81:55:b4:7f: 50:83:82:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMwMzkxMTAvBgNVBAUTKENCNkM4NUU3NTJENTY5REZDRjFERTkwNEM5Q0JFNzFF NDgzRUY1RjIwHhcNMjUwMzI5MDAxMDIzWhcNMjUwNDA1MDAxMDIzWjAYMRYwFAYD VQQDEw02N2U3M2E2Zi01YmQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqi48uUSiO0Cn6m2pt547tx+cIaEljENum/BPrfyjyDKweplkvfwrPjyDLDvW kWMeQfO/v/TqfXyDYFyLiGsAQdHx8zB9nCem7/X3Ai12l3s0rpqpD2ZQItsRqWTe 6/tRWhh7KIDbyvvI1aFaB5dYNk/8aCZDi7QZ3RFLD20sjatqJ8wPts1aEiS1c/NM CxBOAHENae9asfk85TUxjVyUvaqD1eA+Vcz7+2B8yCJtAsaXakYC3NtvNSJCcoUr ME1mdy0bVil75mRw2CY9SC4DlJEgzEJTHGybNoJOe/F7ZkqPi7BQ/S0lRGEqNG7v RV9DvyJIRoiUx4YX+W5CrO5mSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB0prBmq FKTU1KxoSo8BqXbTrNw5MB8GA1UdIwQYMBaAFMtshedS1Wnfzx3pBMnL5x5IPvXy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzAzOS9CQjUzMjNFODI1 QzIxMUVDQjQ5OUQxNThDNEY5QUUwMi95MnlGNTFMVmFkX1BIZWtFeWN2bkhrZy05 ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kyeUY1MUxWYWRfUEhla0V5Y3ZuSGtnLTlmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzAzOS9CQjUzMjNFODI1QzIxMUVDQjQ5OUQxNThDNEY5QUUwMi95MnlGNTFMVmFk X1BIZWtFeWN2bkhrZy05ZkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtqWdefz9dFTZ3cabfgmM9VdfAPUB7cX1kde6DDUD147FSqQ5XD3X8 lsjIMQD93j/iGOSbZQNKgGhoyBHoNOYVpAvSrhVhKHXfIv+6Y+26fN44RpqeVITP RgVmjyicM+nwn8gauSALcmTftz+gh2Lo3SN/O3VRxPGlLmMRTd5CyvVmLj8yu2Nw 6VBFV/CPNBO9jMGF8X7cWXsEs+37TsawlEQgvDA2UvkJ3Lo7glRiwHZW+ZpszVcR q8aIKXWF/H+h6E7xIuqyg/n3QfKfkdV3bh4Ng8jS4/WpoGUpwwfhkF4eoNjbYQzP GLH/5VMPaL/IVroVlU7h6YFVtH9Qg4KJ -----END CERTIFICATE-----Generated at Fri Apr 4 18:27:41 2025 by rpki-client