$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2F8C/5E072AFE86E011EF9B6B177EC4F9AE02/YR4cFJUo8XoOx5nDnVYmGcmhUQA.mft File: YR4cFJUo8XoOx5nDnVYmGcmhUQA.mft (raw, json) Hash identifier: 556wLtxZHYm/7Di9KvOC/2ozVInIHwtgI/+h0erEVPo= Subject key identifier: B3:47:FA:74:E0:27:76:DC:14:43:5C:55:BC:2A:F4:DC:A0:63:AC:6F Authority key identifier: 61:1E:1C:14:95:28:F1:7A:0E:C7:99:C3:9D:56:26:19:C9:A1:51:00 Certificate issuer: /CN=A91C2F8C/serialNumber=611E1C149528F17A0EC799C39D562619C9A15100 Certificate serial: 64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YR4cFJUo8XoOx5nDnVYmGcmhUQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2F8C/5E072AFE86E011EF9B6B177EC4F9AE02/YR4cFJUo8XoOx5nDnVYmGcmhUQA.mft Manifest number: 64 Signing time: Sat 19 Apr 2025 06:03:37 +0000 Manifest this update: Sat 19 Apr 2025 06:03:37 +0000 Manifest next update: Sat 26 Apr 2025 06:03:37 +0000 Files and hashes: 1: YR4cFJUo8XoOx5nDnVYmGcmhUQA.crl (hash: dlUZhGaOuAeIsk/Q+K1Obqd68A6aLskAi9I9WyNAaNE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2F8C/5E072AFE86E011EF9B6B177EC4F9AE02/YR4cFJUo8XoOx5nDnVYmGcmhUQA.crl rsync://rpki.apnic.net/member_repository/A91C2F8C/5E072AFE86E011EF9B6B177EC4F9AE02/YR4cFJUo8XoOx5nDnVYmGcmhUQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YR4cFJUo8XoOx5nDnVYmGcmhUQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 06:03:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 100 (0x64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2F8C, serialNumber=611E1C149528F17A0EC799C39D562619C9A15100 Validity Not Before: Apr 19 06:03:37 2025 GMT Not After : Apr 26 06:03:37 2025 GMT Subject: CN=68033cb9-3cb3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:ef:0f:c3:d2:ae:9c:6a:70:c3:59:f2:3c:21: fb:98:64:fe:89:32:19:62:ac:1b:d4:66:d5:7f:2d: 81:c2:32:de:bd:28:e1:14:d9:12:a4:52:73:d1:c7: 02:2e:eb:e6:dc:0a:8a:69:08:fb:6e:e0:65:77:a2: 57:61:12:3e:12:bd:3d:8c:4e:a5:9d:97:e4:c1:bf: 45:35:f9:3d:35:3c:33:8a:0f:3b:e0:bc:de:12:fb: ef:8c:11:54:40:a5:c1:e8:12:3d:a7:58:db:a1:05: 86:8e:00:bc:6a:ef:53:d4:88:ee:1d:2a:ad:1c:1e: 54:8d:90:c8:1f:9b:d6:bd:44:ab:80:94:c7:6a:78: ed:d3:87:f2:8a:6f:5f:52:1e:0a:0f:fe:56:1a:9f: 43:c3:78:43:06:45:b1:9e:9c:14:e9:41:3a:ba:78: 6a:1c:a7:5a:f5:e5:40:ae:8f:6c:51:5c:c4:d9:3a: a8:0f:37:6d:66:d2:3d:c2:df:77:83:07:a0:ea:8c: e2:57:3f:0b:53:e8:c9:61:22:66:f6:88:6f:03:c4: 11:96:c5:63:e2:05:cd:d7:25:2a:50:d4:d5:0b:87: 5a:0b:c3:88:0c:a9:34:05:8a:39:10:5a:38:a3:36: c3:37:51:a8:68:45:32:a3:e2:13:18:8c:a1:ce:ec: be:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:47:FA:74:E0:27:76:DC:14:43:5C:55:BC:2A:F4:DC:A0:63:AC:6F X509v3 Authority Key Identifier: keyid:61:1E:1C:14:95:28:F1:7A:0E:C7:99:C3:9D:56:26:19:C9:A1:51:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2F8C/5E072AFE86E011EF9B6B177EC4F9AE02/YR4cFJUo8XoOx5nDnVYmGcmhUQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YR4cFJUo8XoOx5nDnVYmGcmhUQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2F8C/5E072AFE86E011EF9B6B177EC4F9AE02/YR4cFJUo8XoOx5nDnVYmGcmhUQA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:d9:70:53:be:16:a4:55:2d:26:8c:c0:9d:1b:7d:ac:b7:1d: ce:ec:ac:c5:8d:41:d0:b1:59:7b:3f:23:b5:74:46:b6:eb:e7: 9c:f6:b2:28:fe:49:8f:4e:12:e7:8a:97:b8:c5:6c:44:d3:ce: 74:b8:70:38:d7:5e:36:45:ab:91:dc:82:5e:87:bb:6f:cf:be: 71:05:df:31:28:e7:0a:3a:9e:89:7d:6c:c4:80:11:50:f4:1a: c3:51:32:1a:43:84:ab:7f:77:9e:09:53:f5:94:d1:c9:ac:0e: e0:30:2f:b8:56:49:73:5d:12:70:5f:bd:47:f9:df:7a:8b:a7: 28:4b:29:23:ee:e1:b1:72:32:c2:61:31:9b:09:bf:0d:75:ee: 12:04:7d:5c:bb:f1:07:0d:f4:8f:5e:21:9e:8c:8b:90:b4:ed: fa:4f:b8:8c:1b:e4:87:31:be:aa:72:f3:b0:02:71:44:9c:7a: b1:03:61:65:ea:6f:64:a6:e9:17:39:17:81:0b:c8:9d:4b:85: 9c:c9:02:96:d6:f7:de:64:18:5c:f5:90:87:f7:40:e3:28:e0: 69:98:f4:7b:ae:a6:ec:7b:78:68:d1:90:6e:12:cf:d0:1b:e2: 50:48:9a:62:0f:f2:2d:7d:c1:df:9c:ac:dd:79:8e:79:f6:1b: 17:f1:4d:b7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MkY4QzExMC8GA1UEBRMoNjExRTFDMTQ5NTI4RjE3QTBFQzc5OUMzOUQ1NjI2MTlD OUExNTEwMDAeFw0yNTA0MTkwNjAzMzdaFw0yNTA0MjYwNjAzMzdaMBgxFjAUBgNV BAMTDTY4MDMzY2I5LTNjYjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDt7w/D0q6canDDWfI8IfuYZP6JMhlirBvUZtV/LYHCMt69KOEU2RKkUnPRxwIu 6+bcCoppCPtu4GV3oldhEj4SvT2MTqWdl+TBv0U1+T01PDOKDzvgvN4S+++MEVRA pcHoEj2nWNuhBYaOALxq71PUiO4dKq0cHlSNkMgfm9a9RKuAlMdqeO3Th/KKb19S HgoP/lYan0PDeEMGRbGenBTpQTq6eGocp1r15UCuj2xRXMTZOqgPN21m0j3C33eD B6DqjOJXPwtT6MlhImb2iG8DxBGWxWPiBc3XJSpQ1NULh1oLw4gMqTQFijkQWjij NsM3UahoRTKj4hMYjKHO7L5fAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUs0f6dOAn dtwUQ1xVvCr03KBjrG8wHwYDVR0jBBgwFoAUYR4cFJUo8XoOx5nDnVYmGcmhUQAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMyRjhDLzVFMDcyQUZFODZF MDExRUY5QjZCMTc3RUM0RjlBRTAyL1lSNGNGSlVvOFhvT3g1bkRuVlltR2NtaFVR QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWVI0Y0ZKVW84WG9PeDVuRG5WWW1HY21oVVFBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMy RjhDLzVFMDcyQUZFODZFMDExRUY5QjZCMTc3RUM0RjlBRTAyL1lSNGNGSlVvOFhv T3g1bkRuVlltR2NtaFVRQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKDZcFO+FqRVLSaMwJ0bfay3Hc7srMWNQdCxWXs/I7V0Rrbr55z2sij+ SY9OEueKl7jFbETTznS4cDjXXjZFq5Hcgl6Hu2/PvnEF3zEo5wo6nol9bMSAEVD0 GsNRMhpDhKt/d54JU/WU0cmsDuAwL7hWSXNdEnBfvUf533qLpyhLKSPu4bFyMsJh MZsJvw117hIEfVy78QcN9I9eIZ6Mi5C07fpPuIwb5Icxvqpy87ACcUScerEDYWXq b2Sm6Rc5F4ELyJ1LhZzJApbW995kGFz1kIf3QOMo4GmY9Huupux7eGjRkG4Sz9Ab 4lBImmIP8i19wd+crN15jnn2GxfxTbc= -----END CERTIFICATE-----Generated at Sun Apr 20 03:30:01 2025 by rpki-client