$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.mft File: yOujNL19pukuZ8QIvQN4e66uDK0.mft (raw, json) Hash identifier: N6/HbrxvtaXl3Yk7b/uJIsZFToRIrxItt/cO3py+ptI= Subject key identifier: 98:C0:92:A5:3C:F6:6F:5E:53:E6:3A:FB:5F:3C:93:98:8B:28:FA:AB Authority key identifier: C8:EB:A3:34:BD:7D:A6:E9:2E:67:C4:08:BD:03:78:7B:AE:AE:0C:AD Certificate issuer: /CN=A91CFE07/serialNumber=C8EBA334BD7DA6E92E67C408BD03787BAEAE0CAD Certificate serial: 0D4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOujNL19pukuZ8QIvQN4e66uDK0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.mft Manifest number: 0D35 Signing time: Fri 04 Apr 2025 18:08:15 +0000 Manifest this update: Fri 04 Apr 2025 18:08:14 +0000 Manifest next update: Fri 11 Apr 2025 18:08:14 +0000 Files and hashes: 1: yOujNL19pukuZ8QIvQN4e66uDK0.crl (hash: Z5NAFNYLfO1/+f5Qmsp/rO0y/hnCPeFx/r/hgIvw9X4=) 2: A95EC0B2C9FA11EBB7F2E749C4F9AE02.roa (hash: h9Ek+uVHJkd43jpvXLhIeId4TZWOhn+0W2MAspUZuOw=) 3: A82C70A4C9FA11EBB7F2E749C4F9AE02.roa (hash: +QLq15+GCrbTMv3T/U18UwN/WHFJnfWgXMxuf5yq0ts=) 4: 226B7BC2AAC611EE9F22785DC4F9AE02.roa (hash: sy4Su4ASjc+OqwWE5jPxA/U7NJeDsxDapY34Q7SzDAE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.crl rsync://rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOujNL19pukuZ8QIvQN4e66uDK0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:08:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3402 (0xd4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFE07 Validity Not Before: Apr 4 18:08:14 2025 GMT Not After : Apr 11 18:08:14 2025 GMT Subject: CN=67f0200f-1f42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:30:03:ea:21:52:e6:1a:80:47:3c:9d:80:9c: 28:93:a9:98:14:9f:c0:8a:9c:0c:4e:c0:98:99:67: 1c:23:84:00:b9:ca:4f:8d:f1:b1:2d:83:3d:2f:62: 39:c9:bc:8c:59:69:b6:c8:3a:28:57:d2:e0:2c:2b: f3:72:d2:3b:b7:f5:48:17:0d:77:da:d5:fa:37:b0: df:43:76:02:c1:d2:24:a2:a8:61:8c:45:1f:82:8f: fa:dc:31:18:8a:87:56:6e:ba:47:12:ee:b7:b7:36: 61:d8:6d:d0:fc:d7:a2:e7:9b:89:0a:a2:9f:57:fd: 3a:29:ed:9e:fb:66:a6:ef:42:81:4c:15:fb:29:05: 09:75:c2:46:5c:7b:24:03:dd:82:f7:68:53:88:b7: 72:1c:e9:ba:dc:98:31:3e:34:80:fc:52:dc:d3:cc: 73:8f:1e:fc:84:7f:97:8d:f8:f0:b7:4e:f4:82:16: ea:57:ba:8e:23:2a:1d:dd:3c:03:0e:17:a6:ac:85: 98:75:28:99:ca:5b:9f:08:4a:d1:04:23:6b:2d:06: 94:5e:1c:15:b9:bb:3f:0e:52:ac:e1:7e:b6:f8:bb: 89:20:25:61:d5:a8:8d:ed:f9:da:2e:d9:fb:19:23: 5f:d8:63:e4:57:b7:cf:8c:9b:ce:f2:38:18:2c:2e: 16:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:C0:92:A5:3C:F6:6F:5E:53:E6:3A:FB:5F:3C:93:98:8B:28:FA:AB X509v3 Authority Key Identifier: keyid:C8:EB:A3:34:BD:7D:A6:E9:2E:67:C4:08:BD:03:78:7B:AE:AE:0C:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOujNL19pukuZ8QIvQN4e66uDK0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:72:6f:5c:29:88:67:d1:be:1f:46:21:0c:08:d3:83:83:82: c5:f3:17:59:79:94:c6:6b:0e:87:5e:60:56:3f:c0:55:c9:0b: 50:b9:e6:34:7a:2d:f7:f1:16:c6:7e:e8:83:1a:9b:f1:ad:16: 44:b7:79:80:43:94:a5:dd:0e:8f:43:67:5b:e1:e9:4e:f2:b4: ee:dc:84:05:9d:e2:5e:ea:83:15:6c:99:93:1c:56:0c:d4:ec: f3:33:e0:c1:ba:ca:8e:49:45:8b:a6:ac:17:ac:29:b3:37:23: 8e:7b:a6:fe:1a:79:30:f2:ab:61:57:12:4e:dc:e3:f6:bc:19: 73:1c:f8:9f:81:58:9c:35:a5:4d:1b:7f:19:ab:90:a5:77:08: fd:03:9f:c9:f8:32:92:63:c1:93:3f:2c:c5:e1:e9:77:7c:b2: 79:24:b6:66:9e:49:58:38:56:2f:05:df:38:53:1f:fc:7f:68: 47:ee:d7:36:17:42:d7:35:76:e3:9e:1f:5d:56:e9:e7:82:fd: b6:91:07:37:18:e1:e1:96:a4:ff:2c:48:a8:43:99:fc:a9:12: ac:f9:54:83:4a:5f:a3:a1:34:cd:fd:37:62:1c:55:4a:84:8c: 87:02:63:bc:4e:13:87:ab:db:c5:fb:76:d4:f4:29:be:02:d6: 8b:6b:32:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZFMDcxMTAvBgNVBAUTKEM4RUJBMzM0QkQ3REE2RTkyRTY3QzQwOEJEMDM3ODdC QUVBRTBDQUQwHhcNMjUwNDA0MTgwODE0WhcNMjUwNDExMTgwODE0WjAYMRYwFAYD VQQDEw02N2YwMjAwZi0xZjQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3jAD6iFS5hqARzydgJwok6mYFJ/AipwMTsCYmWccI4QAucpPjfGxLYM9L2I5 ybyMWWm2yDooV9LgLCvzctI7t/VIFw132tX6N7DfQ3YCwdIkoqhhjEUfgo/63DEY iodWbrpHEu63tzZh2G3Q/Nei55uJCqKfV/06Ke2e+2am70KBTBX7KQUJdcJGXHsk A92C92hTiLdyHOm63JgxPjSA/FLc08xzjx78hH+Xjfjwt070ghbqV7qOIyod3TwD DhemrIWYdSiZylufCErRBCNrLQaUXhwVubs/DlKs4X62+LuJICVh1aiN7fnaLtn7 GSNf2GPkV7fPjJvO8jgYLC4WwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJjAkqU8 9m9eU+Y6+188k5iLKPqrMB8GA1UdIwQYMBaAFMjrozS9fabpLmfECL0DeHuurgyt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkUwNy85NjJDNEI3RUQy QkYxMUU5QTg0RDY2MjJDNEY5QUUwMi95T3VqTkwxOXB1a3VaOFFJdlFONGU2NnVE SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lPdWpOTDE5cHVrdVo4UUl2UU40ZTY2dURLMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkUwNy85NjJDNEI3RUQyQkYxMUU5QTg0RDY2MjJDNEY5QUUwMi95T3VqTkwxOXB1 a3VaOFFJdlFONGU2NnVESzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0cm9cKYhn0b4fRiEMCNODg4LF8xdZeZTGaw6HXmBWP8BVyQtQueY0 ei338RbGfuiDGpvxrRZEt3mAQ5Sl3Q6PQ2db4elO8rTu3IQFneJe6oMVbJmTHFYM 1OzzM+DBusqOSUWLpqwXrCmzNyOOe6b+Gnkw8qthVxJO3OP2vBlzHPifgVicNaVN G38Zq5Cldwj9A5/J+DKSY8GTPyzF4el3fLJ5JLZmnklYOFYvBd84Ux/8f2hH7tc2 F0LXNXbjnh9dVunngv22kQc3GOHhlqT/LEioQ5n8qRKs+VSDSl+joTTN/TdiHFVK hIyHAmO8ThOHq9vF+3bU9Cm+AtaLazIk -----END CERTIFICATE-----Generated at Sat Apr 5 13:47:42 2025 by rpki-client