$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7A69/8AF3D5B2C60311EC8B0D5D3DC4F9AE02/y51BptqW92pP8FhrXoqIn8AjVFc.mft File: y51BptqW92pP8FhrXoqIn8AjVFc.mft (raw, json) Hash identifier: D0Uw1lGrCPFrg4Z2iiyMsA0G0q0hJL/YHrUXse0+wFg= Subject key identifier: BE:A1:F3:39:68:25:C9:D1:9B:8B:B8:AE:C5:3C:CB:A2:D4:7B:2B:D3 Authority key identifier: CB:9D:41:A6:DA:96:F7:6A:4F:F0:58:6B:5E:8A:88:9F:C0:23:54:57 Certificate issuer: /CN=A91C7A69/serialNumber=CB9D41A6DA96F76A4FF0586B5E8A889FC0235457 Certificate serial: 0319 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y51BptqW92pP8FhrXoqIn8AjVFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7A69/8AF3D5B2C60311EC8B0D5D3DC4F9AE02/y51BptqW92pP8FhrXoqIn8AjVFc.mft Manifest number: 0313 Signing time: Thu 03 Apr 2025 01:11:56 +0000 Manifest this update: Thu 03 Apr 2025 01:11:56 +0000 Manifest next update: Thu 10 Apr 2025 01:11:56 +0000 Files and hashes: 1: y51BptqW92pP8FhrXoqIn8AjVFc.crl (hash: JKaSlM54NwCk32wl5M+3YrNHqMEjM/MrQFv5sA+V+a8=) 2: 94FE3AB6D55011EF8A1E1855C4F9AE02.roa (hash: gYpqfZKhxCcGgy3HXhq4upY/4aTqMhzYgAIN8Unlk1w=) 3: 4FF0079CC6CB11ECB185E43EC4F9AE02.roa (hash: p51YofghFqe/P1BWUf3vy05r4fDl5jSux9C8jQxGEcM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7A69/8AF3D5B2C60311EC8B0D5D3DC4F9AE02/y51BptqW92pP8FhrXoqIn8AjVFc.crl rsync://rpki.apnic.net/member_repository/A91C7A69/8AF3D5B2C60311EC8B0D5D3DC4F9AE02/y51BptqW92pP8FhrXoqIn8AjVFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y51BptqW92pP8FhrXoqIn8AjVFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 01:11:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 793 (0x319) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7A69 Validity Not Before: Apr 3 01:11:56 2025 GMT Not After : Apr 10 01:11:56 2025 GMT Subject: CN=67ede05c-8b05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:92:04:c5:42:f1:a5:76:20:84:b6:fb:da:47: be:06:88:08:44:52:8d:8f:57:7e:65:c9:7e:c0:d6: 76:bb:ab:a3:f4:3b:e3:64:cd:d8:6b:e9:71:f3:91: 9c:24:2a:51:85:ae:3f:99:d8:ce:95:75:92:56:64: cf:6d:42:3e:92:c1:b8:44:d8:0f:33:89:7e:ba:06: 3c:7d:e3:e2:0d:2f:94:71:ee:b9:e1:09:e2:53:b7: 7e:20:1d:fc:27:e3:ba:6c:00:f9:55:de:82:74:00: ef:f2:74:bd:dd:23:ad:3f:ff:7e:55:4b:cc:17:9d: f2:8f:45:25:c2:8b:f5:5c:87:8e:39:42:e9:dd:54: 38:52:76:f4:b6:9e:33:de:bb:ef:a8:c6:ad:05:4d: 11:79:0f:6d:c0:8e:49:b9:07:19:3a:4e:a4:44:b5: c3:a7:9d:d7:95:ad:7f:b1:59:b5:49:0b:23:5a:e9: 95:44:d9:0c:29:30:ea:cc:10:80:03:ee:36:61:96: ed:b7:9e:d6:36:a4:10:99:d4:47:87:b9:c1:9e:a6: b0:f9:c2:64:94:00:f1:37:59:26:bb:5b:8d:1f:14: ea:da:72:e4:1f:a8:52:38:3d:64:78:50:ed:ee:32: a1:50:db:09:18:e8:cf:07:cd:4f:21:0e:89:24:e2: e3:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:A1:F3:39:68:25:C9:D1:9B:8B:B8:AE:C5:3C:CB:A2:D4:7B:2B:D3 X509v3 Authority Key Identifier: keyid:CB:9D:41:A6:DA:96:F7:6A:4F:F0:58:6B:5E:8A:88:9F:C0:23:54:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7A69/8AF3D5B2C60311EC8B0D5D3DC4F9AE02/y51BptqW92pP8FhrXoqIn8AjVFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y51BptqW92pP8FhrXoqIn8AjVFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7A69/8AF3D5B2C60311EC8B0D5D3DC4F9AE02/y51BptqW92pP8FhrXoqIn8AjVFc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:9e:b2:48:43:62:47:10:b1:8e:98:86:13:19:f2:23:b4:b1: f5:83:d5:f2:e7:cd:26:45:ad:4e:47:ff:26:04:de:a4:46:f4: 18:00:ac:56:69:ea:57:2e:44:e7:36:44:13:4f:65:70:ac:3e: 23:aa:16:07:b0:39:24:dd:d1:3f:d8:7b:17:f9:a7:9e:58:84: 90:98:69:ec:33:ff:48:f3:17:fd:9f:ce:03:6a:41:6c:bc:62: e2:12:3d:15:67:90:17:c8:f5:81:99:32:46:4b:57:40:54:d2: f7:8a:34:b9:c3:fd:70:8e:75:6e:12:73:f8:ea:ed:0b:9b:c4: 3a:f4:28:a4:95:94:bb:50:e3:7e:57:ce:19:dc:c7:52:34:dd: 29:45:6d:91:33:d5:24:9b:98:e3:8d:11:e4:f1:aa:a6:c3:8a: cc:c6:c8:58:27:6e:ae:44:ca:6e:b2:63:de:c2:bb:62:04:ee: c6:53:df:2c:c9:24:3b:b3:78:de:08:00:4b:9e:5a:fc:9c:c4: 6b:1d:5d:11:93:d0:d3:9f:ff:f4:0b:a9:82:c8:ce:b8:52:89: 12:f0:ba:e8:24:de:26:03:3b:c5:03:27:6e:6a:12:db:5e:f8: d6:a0:5a:99:61:3c:06:52:7f:67:95:17:b2:0f:13:4b:2e:b5: f2:2a:09:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdBNjkxMTAvBgNVBAUTKENCOUQ0MUE2REE5NkY3NkE0RkYwNTg2QjVFOEE4ODlG QzAyMzU0NTcwHhcNMjUwNDAzMDExMTU2WhcNMjUwNDEwMDExMTU2WjAYMRYwFAYD VQQDEw02N2VkZTA1Yy04YjA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA25IExULxpXYghLb72ke+BogIRFKNj1d+Zcl+wNZ2u6uj9DvjZM3Ya+lx85Gc JCpRha4/mdjOlXWSVmTPbUI+ksG4RNgPM4l+ugY8fePiDS+Uce654QniU7d+IB38 J+O6bAD5Vd6CdADv8nS93SOtP/9+VUvMF53yj0Ulwov1XIeOOULp3VQ4Unb0tp4z 3rvvqMatBU0ReQ9twI5JuQcZOk6kRLXDp53Xla1/sVm1SQsjWumVRNkMKTDqzBCA A+42YZbtt57WNqQQmdRHh7nBnqaw+cJklADxN1kmu1uNHxTq2nLkH6hSOD1keFDt 7jKhUNsJGOjPB81PIQ6JJOLj6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL6h8zlo JcnRm4u4rsU8y6LUeyvTMB8GA1UdIwQYMBaAFMudQabalvdqT/BYa16KiJ/AI1RX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0E2OS84QUYzRDVCMkM2 MDMxMUVDOEIwRDVEM0RDNEY5QUUwMi95NTFCcHRxVzkycFA4RmhyWG9xSW44QWpW RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3k1MUJwdHFXOTJwUDhGaHJYb3FJbjhBalZGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD N0E2OS84QUYzRDVCMkM2MDMxMUVDOEIwRDVEM0RDNEY5QUUwMi95NTFCcHRxVzky cFA4RmhyWG9xSW44QWpWRmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMnrJIQ2JHELGOmIYTGfIjtLH1g9Xy580mRa1OR/8mBN6kRvQYAKxW aepXLkTnNkQTT2VwrD4jqhYHsDkk3dE/2HsX+aeeWISQmGnsM/9I8xf9n84DakFs vGLiEj0VZ5AXyPWBmTJGS1dAVNL3ijS5w/1wjnVuEnP46u0Lm8Q69CiklZS7UON+ V84Z3MdSNN0pRW2RM9Ukm5jjjRHk8aqmw4rMxshYJ26uRMpusmPewrtiBO7GU98s ySQ7s3jeCABLnlr8nMRrHV0Rk9DTn//0C6mCyM64UokS8LroJN4mAzvFAyduahLb XvjWoFqZYTwGUn9nlReyDxNLLrXyKgm9 -----END CERTIFICATE-----Generated at Fri Apr 4 21:52:01 2025 by rpki-client