$ rpki-client -vvf rpki.apnic.net/member_repository/A91BECBA/583E2B9A6B6511EFA857E80CC4F9AE02/jYqA7HIK5-1T_SED6OachVWtD4Y.mft File: jYqA7HIK5-1T_SED6OachVWtD4Y.mft (raw, json) Hash identifier: xVC9A/VA630PrYxAjTE2OrpKEwsX/ExWLgTB5y/BMfY= Subject key identifier: 09:84:EB:D4:58:64:00:31:29:CC:8B:08:EF:F9:7F:D4:E8:F9:52:39 Authority key identifier: 8D:8A:80:EC:72:0A:E7:ED:53:FD:21:03:E8:E6:9C:85:55:AD:0F:86 Certificate issuer: /CN=A91BECBA/serialNumber=8D8A80EC720AE7ED53FD2103E8E69C8555AD0F86 Certificate serial: 74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jYqA7HIK5-1T_SED6OachVWtD4Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BECBA/583E2B9A6B6511EFA857E80CC4F9AE02/jYqA7HIK5-1T_SED6OachVWtD4Y.mft Manifest number: 72 Signing time: Wed 09 Apr 2025 05:41:22 +0000 Manifest this update: Wed 09 Apr 2025 05:41:21 +0000 Manifest next update: Wed 16 Apr 2025 05:41:21 +0000 Files and hashes: 1: jYqA7HIK5-1T_SED6OachVWtD4Y.crl (hash: LyrideYd/noPkukfHmbzqR0iPt3/TCu2ydLAZI/LO00=) 2: A0142C706B6611EF88C61580C4F9AE02.roa (hash: WL6knuhT+IT7g3hW2IRpH1KnEWqyPmGpIe/IXLQK6so=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BECBA/583E2B9A6B6511EFA857E80CC4F9AE02/jYqA7HIK5-1T_SED6OachVWtD4Y.crl rsync://rpki.apnic.net/member_repository/A91BECBA/583E2B9A6B6511EFA857E80CC4F9AE02/jYqA7HIK5-1T_SED6OachVWtD4Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jYqA7HIK5-1T_SED6OachVWtD4Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 05:41:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 116 (0x74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BECBA Validity Not Before: Apr 9 05:41:21 2025 GMT Not After : Apr 16 05:41:21 2025 GMT Subject: CN=67f60881-7bfd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:bf:10:14:d2:b4:cf:ae:40:d0:b9:ab:4c:18: 9e:81:44:cf:92:be:ec:75:81:7c:c9:5c:69:6e:82: 4c:2a:f3:6b:dc:db:1f:52:93:fe:28:4d:65:3c:e5: 60:d4:af:7b:03:7b:6d:5e:38:3b:af:8a:ec:7f:24: 7c:82:ce:07:da:e5:a9:a1:d0:fc:78:4a:52:04:1d: fd:7a:e9:79:65:55:4b:54:a9:78:02:dd:85:ba:45: c9:3c:b7:77:dc:f8:ef:b2:f6:b6:dd:99:06:a9:29: 53:2f:78:17:ec:0c:3a:93:44:2a:1b:f2:86:2a:73: 74:ff:e9:9e:ba:56:b7:9f:aa:e8:a7:a3:65:da:bb: d8:4e:72:4a:39:0f:d8:af:41:6d:5c:86:8f:8a:5d: 7e:e4:21:82:a1:b8:8f:d7:4e:c9:45:85:08:ea:49: c6:83:83:4a:d6:94:3a:52:14:d2:17:c6:35:90:8c: 27:22:76:c4:e6:b2:00:58:15:0b:b6:35:95:ea:c6: d4:1f:0a:f3:12:f2:06:d7:90:22:fa:4e:0f:95:2f: 75:96:9c:88:9f:fb:38:fd:ac:18:7c:df:13:e9:23: eb:66:f3:ec:d2:8d:25:0a:9d:9c:07:4a:e2:b7:75: 49:37:00:dd:60:40:04:74:d6:cb:c9:ba:58:fc:0b: b9:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:84:EB:D4:58:64:00:31:29:CC:8B:08:EF:F9:7F:D4:E8:F9:52:39 X509v3 Authority Key Identifier: keyid:8D:8A:80:EC:72:0A:E7:ED:53:FD:21:03:E8:E6:9C:85:55:AD:0F:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BECBA/583E2B9A6B6511EFA857E80CC4F9AE02/jYqA7HIK5-1T_SED6OachVWtD4Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jYqA7HIK5-1T_SED6OachVWtD4Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BECBA/583E2B9A6B6511EFA857E80CC4F9AE02/jYqA7HIK5-1T_SED6OachVWtD4Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:04:8d:75:54:c8:d8:e0:9c:b3:c9:23:f5:26:a8:e2:15:2f: 76:4b:24:22:ef:32:85:e7:02:ff:5d:11:b3:61:b2:00:2e:e0: d2:11:ad:0c:28:16:dd:6c:b8:29:d4:94:01:7a:a7:d6:46:a6: 23:f5:04:51:04:b8:93:33:10:b4:0e:ea:d4:13:52:a7:76:8a: b3:b2:85:6b:48:b5:c5:b2:5c:58:a1:60:fe:a5:0a:79:48:1b: 02:f4:7e:51:3e:fa:b2:bd:d2:11:20:93:52:25:0e:35:fa:89: 09:fb:26:d2:89:b7:6c:b3:54:4d:3a:ee:59:36:41:26:da:f3: f8:dc:fb:96:cb:30:fd:9b:63:60:5a:e6:99:3b:d3:e9:d1:90: 8e:d7:07:d8:ef:4f:09:3c:fa:4e:75:9f:3a:f7:3d:5f:6e:61: e8:89:5e:73:4c:6c:b8:a8:29:c3:3a:dd:fd:aa:e3:f3:dc:71: 30:7f:a0:22:af:8c:18:e3:d2:60:63:a6:7b:3a:d0:8f:02:ba: 6b:fc:b3:a0:7f:83:30:bd:57:79:0d:06:44:1a:92:b6:08:59: a1:43:af:ff:3a:f5:5e:f4:2d:3d:e4:8c:35:e5:1e:76:ba:6e: ea:40:17:f3:a5:b3:ce:df:a1:ac:ab:cc:c8:d8:03:0b:8e:e0: 04:c9:48:4a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RUNCQTExMC8GA1UEBRMoOEQ4QTgwRUM3MjBBRTdFRDUzRkQyMTAzRThFNjlDODU1 NUFEMEY4NjAeFw0yNTA0MDkwNTQxMjFaFw0yNTA0MTYwNTQxMjFaMBgxFjAUBgNV BAMTDTY3ZjYwODgxLTdiZmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCUvxAU0rTPrkDQuatMGJ6BRM+Svux1gXzJXGlugkwq82vc2x9Sk/4oTWU85WDU r3sDe21eODuviux/JHyCzgfa5amh0Px4SlIEHf166XllVUtUqXgC3YW6Rck8t3fc +O+y9rbdmQapKVMveBfsDDqTRCob8oYqc3T/6Z66Vrefquino2Xau9hOcko5D9iv QW1cho+KXX7kIYKhuI/XTslFhQjqScaDg0rWlDpSFNIXxjWQjCcidsTmsgBYFQu2 NZXqxtQfCvMS8gbXkCL6Tg+VL3WWnIif+zj9rBh83xPpI+tm8+zSjSUKnZwHSuK3 dUk3AN1gQAR01svJulj8C7lXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUCYTr1Fhk ADEpzIsI7/l/1Oj5UjkwHwYDVR0jBBgwFoAUjYqA7HIK5+1T/SED6OachVWtD4Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJFQ0JBLzU4M0UyQjlBNkI2 NTExRUZBODU3RTgwQ0M0RjlBRTAyL2pZcUE3SElLNS0xVF9TRUQ2T2FjaFZXdEQ0 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvallxQTdISUs1LTFUX1NFRDZPYWNoVld0RDRZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJF Q0JBLzU4M0UyQjlBNkI2NTExRUZBODU3RTgwQ0M0RjlBRTAyL2pZcUE3SElLNS0x VF9TRUQ2T2FjaFZXdEQ0WS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAC8EjXVUyNjgnLPJI/UmqOIVL3ZLJCLvMoXnAv9dEbNhsgAu4NIRrQwo Ft1suCnUlAF6p9ZGpiP1BFEEuJMzELQO6tQTUqd2irOyhWtItcWyXFihYP6lCnlI GwL0flE++rK90hEgk1IlDjX6iQn7JtKJt2yzVE067lk2QSba8/jc+5bLMP2bY2Ba 5pk70+nRkI7XB9jvTwk8+k51nzr3PV9uYeiJXnNMbLioKcM63f2q4/PccTB/oCKv jBjj0mBjpns60I8Cumv8s6B/gzC9V3kNBkQakrYIWaFDr/869V70LT3kjDXlHna6 bupAF/Ols87foayrzMjYAwuO4ATJSEo= -----END CERTIFICATE-----Generated at Fri Apr 11 05:26:47 2025 by rpki-client