$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBE2E/D8ABAFE8D0FB11ECA27AF22FC4F9AE02/hYony1wEyt-u_biTvwbhp7fZ8cE.mft File: hYony1wEyt-u_biTvwbhp7fZ8cE.mft (raw, json) Hash identifier: JupMlbOFdNlYYUvyowIEIaT1nnXCnRp2KJ8pSiP0HeI= Subject key identifier: 41:FA:FA:C5:45:33:2C:94:EF:28:DC:92:0F:64:B6:B4:8D:05:7E:C0 Authority key identifier: 85:8A:27:CB:5C:04:CA:DF:AE:FD:B8:93:BF:06:E1:A7:B7:D9:F1:C1 Certificate issuer: /CN=A91CBE2E/serialNumber=858A27CB5C04CADFAEFDB893BF06E1A7B7D9F1C1 Certificate serial: 0301 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYony1wEyt-u_biTvwbhp7fZ8cE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBE2E/D8ABAFE8D0FB11ECA27AF22FC4F9AE02/hYony1wEyt-u_biTvwbhp7fZ8cE.mft Manifest number: 02F8 Signing time: Sat 29 Mar 2025 01:34:09 +0000 Manifest this update: Sat 29 Mar 2025 01:34:08 +0000 Manifest next update: Sat 05 Apr 2025 01:34:08 +0000 Files and hashes: 1: hYony1wEyt-u_biTvwbhp7fZ8cE.crl (hash: Nvabd+BVtOiUhD5/qhcAkvmOvgUgGFTya75jxVCgNX0=) 2: A0879902F15711EC846A5F29C4F9AE02.roa (hash: 3vg65+dFIA+BeOKO6jxWCKMxKp60+BuPw8DF4AA/5hM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBE2E/D8ABAFE8D0FB11ECA27AF22FC4F9AE02/hYony1wEyt-u_biTvwbhp7fZ8cE.crl rsync://rpki.apnic.net/member_repository/A91CBE2E/D8ABAFE8D0FB11ECA27AF22FC4F9AE02/hYony1wEyt-u_biTvwbhp7fZ8cE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYony1wEyt-u_biTvwbhp7fZ8cE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 01:34:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 769 (0x301) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBE2E Validity Not Before: Mar 29 01:34:08 2025 GMT Not After : Apr 5 01:34:08 2025 GMT Subject: CN=67e74e10-946d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:68:d7:0c:ef:82:72:6e:82:b4:dc:da:63:a3: 03:25:82:90:13:1a:20:40:45:b1:1f:73:60:c1:90: 04:d7:53:4f:1b:2d:f7:ca:53:92:d6:b5:ac:c6:fd: 68:15:af:60:42:b4:6e:cd:d1:ac:9c:0a:cc:f0:af: 83:ae:09:8e:aa:c1:64:c7:a5:2a:99:37:e4:20:26: 68:bb:ee:a3:ed:06:e5:27:0c:5d:41:bd:e4:22:84: 04:18:aa:b1:fb:ab:3d:c4:b1:40:41:d1:e8:64:ff: ca:f8:49:4d:4e:03:6f:06:30:1d:f4:2e:a9:4d:05: 16:eb:10:34:82:3f:84:e3:4c:bf:4b:df:ae:67:69: 99:9a:37:f1:80:37:43:87:b5:89:7a:bc:2b:ab:f1: 9c:a1:51:3a:08:fe:f6:3e:2b:bb:6f:44:77:ed:73: e5:2f:99:71:d3:76:e0:21:cf:2f:37:a5:ca:0a:62: fc:46:93:7b:3b:39:4d:4f:b8:a2:91:be:52:1f:e4: bb:55:5c:0f:c0:09:bf:f8:cc:d2:06:b2:49:ef:18: be:79:cb:f5:2b:32:22:77:8f:d6:b2:a6:d1:2f:3d: d0:f4:09:17:00:5a:37:c1:cf:97:b3:8e:e7:b5:dc: 14:b1:44:d8:25:de:36:d2:14:cf:1f:9e:d6:cc:27: e9:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:FA:FA:C5:45:33:2C:94:EF:28:DC:92:0F:64:B6:B4:8D:05:7E:C0 X509v3 Authority Key Identifier: keyid:85:8A:27:CB:5C:04:CA:DF:AE:FD:B8:93:BF:06:E1:A7:B7:D9:F1:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBE2E/D8ABAFE8D0FB11ECA27AF22FC4F9AE02/hYony1wEyt-u_biTvwbhp7fZ8cE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYony1wEyt-u_biTvwbhp7fZ8cE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBE2E/D8ABAFE8D0FB11ECA27AF22FC4F9AE02/hYony1wEyt-u_biTvwbhp7fZ8cE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:30:b6:e2:28:39:d4:25:3b:35:18:01:fc:f1:6d:91:87:f9: 20:19:13:0f:16:12:58:af:9a:3b:f6:65:a8:6c:72:6c:70:d1: c9:c2:51:70:48:f2:dc:77:6a:a4:e0:ba:f4:6d:58:51:6a:6a: 66:71:42:7f:96:b1:aa:3e:ae:16:5d:6a:c5:a4:4a:9f:24:e7: 47:0c:64:37:99:7a:f7:07:dd:5b:42:1f:90:da:97:71:c2:d0: b3:c8:15:76:f8:45:b5:31:6e:17:a0:fc:7d:47:da:d5:c7:57: bf:ac:e1:ee:b9:be:8f:fc:31:2c:c2:37:89:d6:c0:16:0a:88: 9c:72:d9:7c:c6:5b:eb:1e:13:75:5b:52:09:74:76:ee:09:06: c8:db:f0:f0:ac:ab:4e:29:f9:29:a6:c3:69:b7:8a:dc:e0:77: 01:cd:26:ee:89:1d:85:e2:bc:81:80:52:22:fe:83:85:62:ab: 95:a6:c2:93:78:1f:4f:38:b8:94:da:2b:1a:bd:78:fc:3a:5c: 74:07:79:4a:d5:25:10:d5:73:0d:e6:54:43:43:c3:35:98:0a: 0e:a6:bc:c4:bc:7b:a7:bd:cc:bb:b0:e0:e6:41:4f:e3:19:3b: d3:6c:e4:df:c3:95:ff:23:93:d6:7e:47:10:f8:0c:e7:e3:87: d6:45:a1:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAwEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JFMkUxMTAvBgNVBAUTKDg1OEEyN0NCNUMwNENBREZBRUZEQjg5M0JGMDZFMUE3 QjdEOUYxQzEwHhcNMjUwMzI5MDEzNDA4WhcNMjUwNDA1MDEzNDA4WjAYMRYwFAYD VQQDEw02N2U3NGUxMC05NDZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs2jXDO+Ccm6CtNzaY6MDJYKQExogQEWxH3NgwZAE11NPGy33ylOS1rWsxv1o Fa9gQrRuzdGsnArM8K+DrgmOqsFkx6UqmTfkICZou+6j7QblJwxdQb3kIoQEGKqx +6s9xLFAQdHoZP/K+ElNTgNvBjAd9C6pTQUW6xA0gj+E40y/S9+uZ2mZmjfxgDdD h7WJerwrq/GcoVE6CP72Piu7b0R37XPlL5lx03bgIc8vN6XKCmL8RpN7OzlNT7ii kb5SH+S7VVwPwAm/+MzSBrJJ7xi+ecv1KzIid4/WsqbRLz3Q9AkXAFo3wc+Xs47n tdwUsUTYJd420hTPH57WzCfpSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEH6+sVF MyyU7yjckg9ktrSNBX7AMB8GA1UdIwQYMBaAFIWKJ8tcBMrfrv24k78G4ae32fHB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkUyRS9EOEFCQUZFOEQw RkIxMUVDQTI3QUYyMkZDNEY5QUUwMi9oWW9ueTF3RXl0LXVfYmlUdndiaHA3Zlo4 Y0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hZb255MXdFeXQtdV9iaVR2d2JocDdmWjhjRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkUyRS9EOEFCQUZFOEQwRkIxMUVDQTI3QUYyMkZDNEY5QUUwMi9oWW9ueTF3RXl0 LXVfYmlUdndiaHA3Zlo4Y0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxMLbiKDnUJTs1GAH88W2Rh/kgGRMPFhJYr5o79mWobHJscNHJwlFw SPLcd2qk4Lr0bVhRampmcUJ/lrGqPq4WXWrFpEqfJOdHDGQ3mXr3B91bQh+Q2pdx wtCzyBV2+EW1MW4XoPx9R9rVx1e/rOHuub6P/DEswjeJ1sAWCoicctl8xlvrHhN1 W1IJdHbuCQbI2/DwrKtOKfkppsNpt4rc4HcBzSbuiR2F4ryBgFIi/oOFYquVpsKT eB9POLiU2isavXj8Olx0B3lK1SUQ1XMN5lRDQ8M1mAoOprzEvHunvcy7sODmQU/j GTvTbOTfw5X/I5PWfkcQ+Azn44fWRaE6 -----END CERTIFICATE-----Generated at Fri Apr 4 21:54:06 2025 by rpki-client