$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3A74/7CB4A056FD3A11E486F8675FC4F9AE02/y3uNtCSCTHGocDu_uUKjFSkVQ2M.mft File: y3uNtCSCTHGocDu_uUKjFSkVQ2M.mft (raw, json) Hash identifier: uMKbVC6x15q+hYgEe+xJ7WkwkbTWAo3s81G0MxP9yXM= Subject key identifier: BD:89:84:8C:44:85:90:90:2C:50:37:CF:65:56:74:7B:06:2B:AF:F6 Authority key identifier: CB:7B:8D:B4:24:82:4C:71:A8:70:3B:BF:B9:42:A3:15:29:15:43:63 Certificate issuer: /CN=A91C3A74/serialNumber=CB7B8DB424824C71A8703BBFB942A31529154363 Certificate serial: 25F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y3uNtCSCTHGocDu_uUKjFSkVQ2M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3A74/7CB4A056FD3A11E486F8675FC4F9AE02/y3uNtCSCTHGocDu_uUKjFSkVQ2M.mft Manifest number: 25E1 Signing time: Sat 12 Apr 2025 15:40:20 +0000 Manifest this update: Sat 12 Apr 2025 15:40:20 +0000 Manifest next update: Sat 19 Apr 2025 15:40:20 +0000 Files and hashes: 1: y3uNtCSCTHGocDu_uUKjFSkVQ2M.crl (hash: 9CdPF/fnlTEZFNYIIh6HZDOCCtWJuNv+tvPtQ5zON5c=) 2: 767655BE561A11E79F98831DC4F9AE02.roa (hash: bf73yAvc50YmZ9DwhowT9EQ5/Cgl8VLGPJbD30MABw0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3A74/7CB4A056FD3A11E486F8675FC4F9AE02/y3uNtCSCTHGocDu_uUKjFSkVQ2M.crl rsync://rpki.apnic.net/member_repository/A91C3A74/7CB4A056FD3A11E486F8675FC4F9AE02/y3uNtCSCTHGocDu_uUKjFSkVQ2M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y3uNtCSCTHGocDu_uUKjFSkVQ2M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 15:40:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9720 (0x25f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3A74, serialNumber=CB7B8DB424824C71A8703BBFB942A31529154363 Validity Not Before: Apr 12 15:40:20 2025 GMT Not After : Apr 19 15:40:20 2025 GMT Subject: CN=67fa8964-6682 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:52:cc:13:2b:19:04:62:40:28:28:0a:d9:63: cc:b4:55:3b:6f:0d:52:33:70:0b:79:8e:73:44:dd: 5b:88:b2:04:4e:d3:bf:5d:5a:6f:45:48:bb:c0:ab: d8:fc:de:b4:2a:d8:ef:d2:6b:92:b5:83:97:73:70: 09:84:b8:b9:00:12:bc:d8:ff:8a:a7:c7:71:bf:bd: 69:2e:0d:59:ad:16:a0:2e:26:f5:d1:a5:fa:c3:17: 4d:5a:c3:f0:13:8a:63:de:5c:bb:93:87:01:d1:49: d6:6d:16:27:7a:92:c0:f9:14:11:c0:5b:c3:67:0d: 26:2b:2c:09:d4:02:00:2b:70:21:0d:04:9d:5d:87: d3:12:3c:8c:06:9c:c1:ce:63:d8:52:d4:f5:d4:7a: 33:de:bb:f1:0e:bc:8f:47:23:05:04:e0:2e:c6:81: 9b:d0:b6:44:65:47:bf:c3:30:a3:0f:7b:fa:bf:39: dd:c9:a3:66:e5:64:a7:99:dc:29:fa:f3:d0:ca:b5: 24:4c:e0:89:88:43:54:2c:7b:97:06:eb:7f:ca:b4: ec:87:a7:5a:3d:b2:8a:27:e8:60:52:0d:64:e9:18: ae:bf:0a:76:33:a7:0a:34:de:08:0b:68:15:d1:70: bf:94:8a:90:d3:25:b3:bc:37:95:73:48:fe:15:2d: de:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:89:84:8C:44:85:90:90:2C:50:37:CF:65:56:74:7B:06:2B:AF:F6 X509v3 Authority Key Identifier: keyid:CB:7B:8D:B4:24:82:4C:71:A8:70:3B:BF:B9:42:A3:15:29:15:43:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3A74/7CB4A056FD3A11E486F8675FC4F9AE02/y3uNtCSCTHGocDu_uUKjFSkVQ2M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y3uNtCSCTHGocDu_uUKjFSkVQ2M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3A74/7CB4A056FD3A11E486F8675FC4F9AE02/y3uNtCSCTHGocDu_uUKjFSkVQ2M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:13:c5:a7:66:28:42:c7:2c:34:00:6e:10:39:92:25:6c:8d: 0a:10:0d:3a:da:cd:83:27:1e:52:a0:7c:cc:91:1b:ca:14:89: 4b:3e:fc:47:f5:71:c7:04:32:74:16:e9:29:bb:d0:a9:06:17: 6c:44:80:37:03:f4:1d:60:c8:61:fe:47:47:d6:f8:ad:9d:95: ad:76:80:ef:79:4b:5a:9e:3a:c0:9d:c3:e4:c8:01:02:b9:44: 09:05:f0:24:bc:43:00:6c:5c:1b:f8:ac:06:c4:2d:bb:d2:12: 8d:73:de:ed:f9:5d:9d:20:5b:91:aa:c2:0d:52:2c:53:06:89: b8:bf:5c:3d:af:80:18:e3:26:31:f5:03:49:9b:f7:f8:a9:cd: 5c:61:a4:68:86:e4:29:86:2d:10:20:f3:da:b1:2e:b4:a9:a9: 5d:02:9a:d9:f3:7f:4b:92:10:65:96:b7:76:7e:57:fe:a0:97: 68:e3:84:b9:16:ba:de:5e:b4:8c:af:e5:e9:d0:26:15:f8:5a: a9:17:8e:7e:19:71:7d:df:18:5e:d3:d8:8e:f1:26:b3:3e:fd: 59:fc:39:5c:e7:37:4a:e3:5f:4d:ba:5c:8c:41:dc:a2:fb:40: fd:d2:8e:35:74:fb:4b:26:3c:6c:12:3c:da:df:62:98:0d:67: d5:3a:7e:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJfgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzNBNzQxMTAvBgNVBAUTKENCN0I4REI0MjQ4MjRDNzFBODcwM0JCRkI5NDJBMzE1 MjkxNTQzNjMwHhcNMjUwNDEyMTU0MDIwWhcNMjUwNDE5MTU0MDIwWjAYMRYwFAYD VQQDEw02N2ZhODk2NC02NjgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmlLMEysZBGJAKCgK2WPMtFU7bw1SM3ALeY5zRN1biLIETtO/XVpvRUi7wKvY /N60Ktjv0muStYOXc3AJhLi5ABK82P+Kp8dxv71pLg1ZrRagLib10aX6wxdNWsPw E4pj3ly7k4cB0UnWbRYnepLA+RQRwFvDZw0mKywJ1AIAK3AhDQSdXYfTEjyMBpzB zmPYUtT11Hoz3rvxDryPRyMFBOAuxoGb0LZEZUe/wzCjD3v6vzndyaNm5WSnmdwp +vPQyrUkTOCJiENULHuXBut/yrTsh6daPbKKJ+hgUg1k6Riuvwp2M6cKNN4IC2gV 0XC/lIqQ0yWzvDeVc0j+FS3e6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL2JhIxE hZCQLFA3z2VWdHsGK6/2MB8GA1UdIwQYMBaAFMt7jbQkgkxxqHA7v7lCoxUpFUNj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDM0E3NC83Q0I0QTA1NkZE M0ExMUU0ODZGODY3NUZDNEY5QUUwMi95M3VOdENTQ1RIR29jRHVfdVVLakZTa1ZR Mk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kzdU50Q1NDVEhHb2NEdV91VUtqRlNrVlEyTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD M0E3NC83Q0I0QTA1NkZEM0ExMUU0ODZGODY3NUZDNEY5QUUwMi95M3VOdENTQ1RI R29jRHVfdVVLakZTa1ZRMk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBE8WnZihCxyw0AG4QOZIlbI0KEA062s2DJx5SoHzMkRvKFIlLPvxH 9XHHBDJ0Fukpu9CpBhdsRIA3A/QdYMhh/kdH1vitnZWtdoDveUtanjrAncPkyAEC uUQJBfAkvEMAbFwb+KwGxC270hKNc97t+V2dIFuRqsINUixTBom4v1w9r4AY4yYx 9QNJm/f4qc1cYaRohuQphi0QIPPasS60qaldAprZ839LkhBllrd2flf+oJdo44S5 FrreXrSMr+Xp0CYV+FqpF45+GXF93xhe09iO8SazPv1Z/Dlc5zdK419NulyMQdyi +0D90o41dPtLJjxsEjza32KYDWfVOn6d -----END CERTIFICATE-----Generated at Sun Apr 13 00:24:50 2025 by rpki-client