$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft File: ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft (raw, json) Hash identifier: QHY2PMX7foKvmtdbgt5xJHaeLKWiACcmVR1FkQqdQSE= Subject key identifier: EF:9B:53:8E:F1:AD:33:6D:EA:6A:BC:D3:D8:12:38:25:62:4F:E1:EA Authority key identifier: 93:2E:C2:E6:E5:2B:5A:F6:C7:B0:3C:41:50:20:ED:E2:72:AA:A1:45 Certificate issuer: /CN=A91CEF3E/serialNumber=932EC2E6E52B5AF6C7B03C415020EDE272AAA145 Certificate serial: 0E6E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft Manifest number: 0E5D Signing time: Tue 08 Apr 2025 17:44:19 +0000 Manifest this update: Tue 08 Apr 2025 17:44:18 +0000 Manifest next update: Tue 15 Apr 2025 17:44:18 +0000 Files and hashes: 1: ky7C5uUrWvbHsDxBUCDt4nKqoUU.crl (hash: lQxcZ9H7fWegaFlh+R3ZBTMdRnSCb/+NqZC+IBdKs2o=) 2: 5C154406988911E991B10838C4F9AE02.roa (hash: rlBKToBwc/S7CrTJwY8L3fa6c6H9ms0SKbG322SWU2g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.crl rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 17:44:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3694 (0xe6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEF3E Validity Not Before: Apr 8 17:44:18 2025 GMT Not After : Apr 15 17:44:18 2025 GMT Subject: CN=67f56072-9534 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:7c:c5:bb:c4:6c:2b:62:b0:b2:38:b7:3e:2c: 49:bd:39:23:d2:4d:7d:f9:02:95:d7:97:e4:70:d9: fb:30:c7:21:5a:4b:62:52:97:da:2a:5e:f0:aa:5d: 4a:e1:de:1a:60:3c:50:cd:25:a0:80:c3:e9:1d:eb: 77:d7:ed:4f:19:e6:e9:dd:0b:57:d8:9b:54:92:43: 26:09:a9:60:49:1b:8a:49:ce:73:fb:a6:3a:be:9c: d1:02:d8:66:53:5a:df:3d:52:97:50:b7:c1:36:70: bd:61:39:22:3e:c9:1b:66:42:24:05:b4:24:43:bb: 46:e3:75:93:41:7c:70:f1:16:a9:a8:85:a1:b7:e5: d7:ea:31:00:21:5a:5e:c6:50:8d:5b:8d:97:c4:8a: 04:d5:82:fb:56:45:d5:48:65:2c:5f:96:9b:26:5c: a7:f8:ab:b6:e3:71:d7:2e:01:29:35:34:3d:84:cf: 97:8c:ed:05:b7:da:3b:c9:69:78:08:12:e9:10:d7: 47:74:c5:d9:93:6f:26:75:9e:ea:9f:f5:7e:ba:31: 16:a0:6f:d1:c0:37:b8:01:df:25:d8:dd:8f:c2:48: 2f:ed:07:1f:29:9d:5c:3c:66:aa:b6:94:39:6d:f3: 35:e3:fe:a7:43:49:25:cc:f0:7d:dd:2e:65:3e:f3: 32:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:9B:53:8E:F1:AD:33:6D:EA:6A:BC:D3:D8:12:38:25:62:4F:E1:EA X509v3 Authority Key Identifier: keyid:93:2E:C2:E6:E5:2B:5A:F6:C7:B0:3C:41:50:20:ED:E2:72:AA:A1:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:16:d7:3e:6e:94:cd:cf:78:f0:96:60:10:ba:da:32:b3:35: b0:6e:1f:d6:e4:b9:fc:e3:57:37:31:5c:1c:d9:58:f2:2b:93: 0c:3f:23:00:a2:01:d7:33:84:a7:69:f2:60:a4:ef:79:eb:fa: 35:18:4b:20:5a:86:86:eb:a8:9e:29:50:fe:94:18:da:b4:66: 35:11:5d:08:a6:cb:10:05:a2:47:a1:3b:69:be:47:b0:40:45: 22:2d:14:0e:45:47:73:aa:8a:99:77:10:e8:5b:76:07:ea:ee: cc:f3:f3:99:23:46:81:3d:b3:e4:c0:aa:3e:c1:54:f9:58:0b: 43:10:5f:34:af:bf:8b:48:80:a8:54:56:90:b0:d9:8e:b1:2c: f4:f3:5c:67:e6:7b:82:d9:ce:eb:e6:e1:17:83:44:2c:d7:97: d1:92:94:b2:2a:f0:ce:92:a4:35:7f:e8:e4:fe:c5:8b:6e:bf: a6:ed:3b:b6:ea:bf:ce:f0:6d:03:ac:2a:88:35:05:2b:10:87: 90:a9:3d:eb:12:57:d7:02:91:6b:4a:86:a2:65:3a:3f:99:75: c7:c6:82:d7:35:e2:a0:eb:0d:fe:51:50:47:6f:62:08:7e:6a: b1:51:8f:e2:f9:e7:8e:10:67:f0:c1:d8:29:43:fb:7e:d7:c2: f2:ed:76:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDm4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VGM0UxMTAvBgNVBAUTKDkzMkVDMkU2RTUyQjVBRjZDN0IwM0M0MTUwMjBFREUy NzJBQUExNDUwHhcNMjUwNDA4MTc0NDE4WhcNMjUwNDE1MTc0NDE4WjAYMRYwFAYD VQQDEw02N2Y1NjA3Mi05NTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyXzFu8RsK2Kwsji3PixJvTkj0k19+QKV15fkcNn7MMchWktiUpfaKl7wql1K 4d4aYDxQzSWggMPpHet31+1PGebp3QtX2JtUkkMmCalgSRuKSc5z+6Y6vpzRAthm U1rfPVKXULfBNnC9YTkiPskbZkIkBbQkQ7tG43WTQXxw8RapqIWht+XX6jEAIVpe xlCNW42XxIoE1YL7VkXVSGUsX5abJlyn+Ku243HXLgEpNTQ9hM+XjO0Ft9o7yWl4 CBLpENdHdMXZk28mdZ7qn/V+ujEWoG/RwDe4Ad8l2N2Pwkgv7QcfKZ1cPGaqtpQ5 bfM14/6nQ0klzPB93S5lPvMy5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO+bU47x rTNt6mq809gSOCViT+HqMB8GA1UdIwQYMBaAFJMuwublK1r2x7A8QVAg7eJyqqFF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUYzRS9DQjc0Q0Y2RTk4 N0IxMUU5ODNFQ0NGMTNDNEY5QUUwMi9reTdDNXVVcld2YkhzRHhCVUNEdDRuS3Fv VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2t5N0M1dVVyV3ZiSHNEeEJVQ0R0NG5LcW9VVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUYzRS9DQjc0Q0Y2RTk4N0IxMUU5ODNFQ0NGMTNDNEY5QUUwMi9reTdDNXVVcld2 YkhzRHhCVUNEdDRuS3FvVVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEFtc+bpTNz3jwlmAQutoyszWwbh/W5Ln841c3MVwc2VjyK5MMPyMA ogHXM4SnafJgpO956/o1GEsgWoaG66ieKVD+lBjatGY1EV0IpssQBaJHoTtpvkew QEUiLRQORUdzqoqZdxDoW3YH6u7M8/OZI0aBPbPkwKo+wVT5WAtDEF80r7+LSICo VFaQsNmOsSz081xn5nuC2c7r5uEXg0Qs15fRkpSyKvDOkqQ1f+jk/sWLbr+m7Tu2 6r/O8G0DrCqINQUrEIeQqT3rElfXApFrSoaiZTo/mXXHxoLXNeKg6w3+UVBHb2II fmqxUY/i+eeOEGfwwdgpQ/t+18Ly7XYy -----END CERTIFICATE-----Generated at Thu Apr 10 23:47:33 2025 by rpki-client