$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.mft File: ysNNxbjd0zsX7HVcldRdD3YlD6g.mft (raw, json) Hash identifier: JE6CWGLoaZWqHJ2vk95r3mTsx8S9INXHeBTqLuBsftM= Subject key identifier: B5:91:1B:2B:8F:4A:D2:7D:B7:9D:82:DE:5A:A2:2F:0A:F2:7E:3E:32 Authority key identifier: CA:C3:4D:C5:B8:DD:D3:3B:17:EC:75:5C:95:D4:5D:0F:76:25:0F:A8 Certificate issuer: /CN=A91C9B39/serialNumber=CAC34DC5B8DDD33B17EC755C95D45D0F76250FA8 Certificate serial: 01B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysNNxbjd0zsX7HVcldRdD3YlD6g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.mft Manifest number: 01AD Signing time: Sat 29 Mar 2025 02:45:46 +0000 Manifest this update: Sat 29 Mar 2025 02:45:45 +0000 Manifest next update: Sat 05 Apr 2025 02:45:45 +0000 Files and hashes: 1: ysNNxbjd0zsX7HVcldRdD3YlD6g.crl (hash: 5Cfxmeg2M84fIYlKybDpwIPbDjPTGOdOV1ibrFMjLq4=) 2: E21DEF607B5E11ED98247D60C4F9AE02.roa (hash: ADnEMa2Brj1gfAu5du2mdudMmrXS7wa9cPzXrkNiEN4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.crl rsync://rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysNNxbjd0zsX7HVcldRdD3YlD6g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 02:45:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 432 (0x1b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9B39 Validity Not Before: Mar 29 02:45:45 2025 GMT Not After : Apr 5 02:45:45 2025 GMT Subject: CN=67e75ed9-7f1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:93:be:4e:eb:ed:78:a4:9c:77:58:5c:07:b2: 21:42:c6:f2:db:68:03:af:19:69:98:40:ef:52:7d: 4a:9d:52:0d:aa:86:5a:8b:72:50:9c:f2:50:77:6a: 6a:ab:01:d7:dd:e0:ea:6f:da:f6:07:4b:f8:de:8a: c0:51:9b:14:f7:e9:74:48:dc:70:64:ed:42:a7:eb: d2:c5:d4:2d:55:29:56:3f:a5:1f:b4:7d:d7:c7:a0: a6:99:b7:41:0d:0b:7a:30:20:36:e4:dd:20:2a:29: 4b:86:11:dc:b3:53:a6:1f:ef:e6:7f:34:f7:b6:00: 0e:64:48:e9:ee:fe:4d:82:40:77:bc:43:4d:96:7a: b2:88:6f:9a:67:55:90:75:29:1e:eb:dc:7b:4e:99: 11:68:05:6e:4d:30:31:3a:cb:f5:4c:16:c3:7e:27: 35:e1:4d:fc:0d:0f:4d:1f:ae:e0:a2:df:6e:1f:0d: fb:f0:08:57:bc:cf:3d:46:71:ba:7f:51:2b:a2:e8: 71:f9:fc:24:be:bb:84:27:44:e0:dc:fa:65:f8:9a: 73:78:39:b3:7f:d3:9e:0c:a3:fa:d6:53:d8:1b:ce: fb:51:76:2c:d8:d4:c0:56:2a:5c:80:5d:1e:18:cf: 0c:7a:cb:69:7a:56:d0:55:88:79:20:f9:a0:3b:5e: 95:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:91:1B:2B:8F:4A:D2:7D:B7:9D:82:DE:5A:A2:2F:0A:F2:7E:3E:32 X509v3 Authority Key Identifier: keyid:CA:C3:4D:C5:B8:DD:D3:3B:17:EC:75:5C:95:D4:5D:0F:76:25:0F:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysNNxbjd0zsX7HVcldRdD3YlD6g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:a3:a1:81:0e:8a:9c:73:53:62:6f:f2:e0:dc:60:36:bc:a9: ca:ea:6f:d7:4f:e1:b4:b0:5f:18:24:0d:fd:78:4e:fe:b0:e0: 31:de:e7:c7:0f:66:c3:2b:26:5c:2d:65:44:60:5b:0a:e6:d8: 00:23:92:a3:d1:36:05:50:b9:0f:28:93:0d:76:69:19:34:c6: 3d:62:7a:7a:80:35:03:45:b2:4f:2c:55:91:7e:f2:48:18:61: 37:03:88:a9:4c:19:de:51:df:09:38:ce:68:66:88:96:2b:67: d8:f7:40:6b:b4:b7:cc:26:1a:b2:fd:76:d1:a1:77:ec:47:42: aa:92:9c:84:51:ee:6f:6f:08:a9:9b:25:d6:fb:e4:16:12:5a: 43:d1:fe:1b:36:16:be:28:f9:9c:44:70:42:3f:b1:c9:fb:ea: 76:9b:a6:1c:e3:39:46:8c:c8:74:cc:f2:a6:4e:d7:3f:7a:36: dc:d9:20:5b:3b:16:92:49:21:56:4d:4e:ff:4a:a7:63:9e:e0: b7:bb:06:2a:bb:49:96:d3:2b:23:52:dd:c0:9e:7a:85:09:5e: 3a:b7:e7:18:e4:94:92:c8:a4:9a:fb:66:5e:22:c1:a5:bd:65: 2c:0c:0e:54:5a:e3:9f:f4:2a:bc:98:c9:ec:c8:d5:af:1d:aa: db:6c:b8:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlCMzkxMTAvBgNVBAUTKENBQzM0REM1QjhEREQzM0IxN0VDNzU1Qzk1RDQ1RDBG NzYyNTBGQTgwHhcNMjUwMzI5MDI0NTQ1WhcNMjUwNDA1MDI0NTQ1WjAYMRYwFAYD VQQDEw02N2U3NWVkOS03ZjFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxpO+TuvteKScd1hcB7IhQsby22gDrxlpmEDvUn1KnVINqoZai3JQnPJQd2pq qwHX3eDqb9r2B0v43orAUZsU9+l0SNxwZO1Cp+vSxdQtVSlWP6UftH3Xx6CmmbdB DQt6MCA25N0gKilLhhHcs1OmH+/mfzT3tgAOZEjp7v5NgkB3vENNlnqyiG+aZ1WQ dSke69x7TpkRaAVuTTAxOsv1TBbDfic14U38DQ9NH67got9uHw378AhXvM89RnG6 f1Erouhx+fwkvruEJ0Tg3Ppl+JpzeDmzf9OeDKP61lPYG877UXYs2NTAVipcgF0e GM8MestpelbQVYh5IPmgO16VJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLWRGyuP StJ9t52C3lqiLwryfj4yMB8GA1UdIwQYMBaAFMrDTcW43dM7F+x1XJXUXQ92JQ+o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUIzOS9CNjE1RDBCQzdC NUExMUVEQTVFM0NBNjZDNEY5QUUwMi95c05OeGJqZDB6c1g3SFZjbGRSZEQzWWxE NmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lzTk54YmpkMHpzWDdIVmNsZFJkRDNZbEQ2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUIzOS9CNjE1RDBCQzdCNUExMUVEQTVFM0NBNjZDNEY5QUUwMi95c05OeGJqZDB6 c1g3SFZjbGRSZEQzWWxENmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCco6GBDoqcc1Nib/Lg3GA2vKnK6m/XT+G0sF8YJA39eE7+sOAx3ufH D2bDKyZcLWVEYFsK5tgAI5Kj0TYFULkPKJMNdmkZNMY9Ynp6gDUDRbJPLFWRfvJI GGE3A4ipTBneUd8JOM5oZoiWK2fY90BrtLfMJhqy/XbRoXfsR0KqkpyEUe5vbwip myXW++QWElpD0f4bNha+KPmcRHBCP7HJ++p2m6Yc4zlGjMh0zPKmTtc/ejbc2SBb OxaSSSFWTU7/SqdjnuC3uwYqu0mW0ysjUt3AnnqFCV46t+cY5JSSyKSa+2ZeIsGl vWUsDA5UWuOf9Cq8mMnsyNWvHarbbLjy -----END CERTIFICATE-----Generated at Fri Apr 4 22:02:00 2025 by rpki-client