$ rpki-client -vvf rpki.apnic.net/member_repository/A91D008B/49E62716D75F11EB9BD24B1DC4F9AE02/yC1GI7edxaBABywRKhur60QWBBw.mft File: yC1GI7edxaBABywRKhur60QWBBw.mft (raw, json) Hash identifier: bL+uJ3OVJTQ9dtl/1JDAt9LU7BVJ6u+Cxi/j0XEmH9M= Subject key identifier: B6:BF:93:65:2B:BC:CB:F4:56:B6:BD:33:9B:9C:B8:E4:30:D1:6F:CC Authority key identifier: C8:2D:46:23:B7:9D:C5:A0:40:07:2C:11:2A:1B:AB:EB:44:16:04:1C Certificate issuer: /CN=A91D008B/serialNumber=C82D4623B79DC5A040072C112A1BABEB4416041C Certificate serial: 056E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yC1GI7edxaBABywRKhur60QWBBw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D008B/49E62716D75F11EB9BD24B1DC4F9AE02/yC1GI7edxaBABywRKhur60QWBBw.mft Manifest number: 0569 Signing time: Wed 02 Apr 2025 23:19:39 +0000 Manifest this update: Wed 02 Apr 2025 23:19:39 +0000 Manifest next update: Wed 09 Apr 2025 23:19:39 +0000 Files and hashes: 1: yC1GI7edxaBABywRKhur60QWBBw.crl (hash: 58jVIfm1iP6JU+9rYEul6IwIO03wE0GO9ckVTGKZ5cU=) 2: 469C2676D76111EB97EB721DC4F9AE02.roa (hash: t00CflQYN/OyH00gO0h+rG8Clxsna4wLCpf4dxw1OLQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D008B/49E62716D75F11EB9BD24B1DC4F9AE02/yC1GI7edxaBABywRKhur60QWBBw.crl rsync://rpki.apnic.net/member_repository/A91D008B/49E62716D75F11EB9BD24B1DC4F9AE02/yC1GI7edxaBABywRKhur60QWBBw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yC1GI7edxaBABywRKhur60QWBBw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 23:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1390 (0x56e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D008B Validity Not Before: Apr 2 23:19:39 2025 GMT Not After : Apr 9 23:19:39 2025 GMT Subject: CN=67edc60b-a5f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:49:5a:04:23:8c:ef:84:00:1a:c7:29:04:a8: 78:2c:1a:90:e7:d1:2d:19:b6:a0:94:59:70:95:d7: e8:c8:ac:53:d2:54:03:1f:fb:52:ae:e4:bd:d0:f6: ce:74:ce:a4:40:bb:df:d2:a1:5d:d6:56:4a:a5:54: e0:97:7d:33:0e:98:6c:09:6c:5c:26:5a:d6:1b:3d: 3e:2e:14:f3:24:90:a7:e7:53:03:83:10:20:6e:66: 70:77:3c:c4:73:8c:29:e0:dc:27:8a:86:49:17:10: 9d:d9:1b:e9:fb:9e:46:bc:89:8b:bd:59:82:3b:2c: 6d:e3:eb:39:e3:a5:48:f9:95:9b:04:39:c6:fa:a9: 39:02:f3:59:ba:28:23:fb:bf:ee:5f:92:a5:b1:8f: 64:b5:aa:26:46:ef:cc:33:e5:8f:6b:c1:64:27:e6: 65:72:2d:54:68:ec:d7:49:c9:0d:d6:4d:f1:0f:8b: eb:24:ee:3a:09:3a:a4:3a:d7:ab:2a:d4:11:7d:f9: fe:5a:c3:ce:ef:29:c0:ec:e3:fe:bf:41:a0:bb:2d: cf:9e:3a:d1:dc:e3:49:bd:87:69:34:12:30:57:56: 1c:ba:82:5b:f4:66:3a:e3:4d:28:8e:39:f5:db:19: c8:5e:c1:bb:96:e6:0a:3c:b1:d6:6e:29:f6:ae:4a: c8:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:BF:93:65:2B:BC:CB:F4:56:B6:BD:33:9B:9C:B8:E4:30:D1:6F:CC X509v3 Authority Key Identifier: keyid:C8:2D:46:23:B7:9D:C5:A0:40:07:2C:11:2A:1B:AB:EB:44:16:04:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D008B/49E62716D75F11EB9BD24B1DC4F9AE02/yC1GI7edxaBABywRKhur60QWBBw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yC1GI7edxaBABywRKhur60QWBBw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D008B/49E62716D75F11EB9BD24B1DC4F9AE02/yC1GI7edxaBABywRKhur60QWBBw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:ba:00:6d:c5:62:f1:c6:62:91:24:60:1e:47:fb:0c:40:21: 57:6a:3d:5c:7d:f5:47:96:8a:3d:b5:53:5e:46:84:3d:c8:8e: 8d:fb:eb:dc:65:f4:7b:5b:c1:09:3a:2b:47:a1:42:74:69:15: 82:96:f3:26:36:ff:c6:49:3a:39:d8:57:11:74:28:a8:60:13: c4:e3:a2:c3:2c:3e:5f:88:0c:9f:66:f3:3c:ea:78:cf:d9:e5: 5f:9d:d7:30:88:17:eb:01:4f:ef:26:78:27:85:89:5b:09:8e: ff:e3:31:bc:e0:82:09:58:e0:5a:a7:fc:9e:62:d1:e0:c7:f7: a3:0b:57:f3:c5:91:51:b9:01:21:ed:e5:65:bc:64:6c:6c:cd: ad:3f:90:21:c1:5e:4b:8e:a5:4a:b7:41:ac:ea:66:ae:87:5a: 22:02:8e:67:f0:d5:58:96:ba:fc:aa:24:14:de:11:12:ef:f7: 1c:f5:60:87:f4:16:e8:9c:f9:de:cc:90:ac:f1:37:39:de:c4: 0b:87:ed:52:29:06:f0:7a:7b:45:81:42:b7:45:03:82:5a:95: 0b:a7:91:82:df:44:60:cb:42:cd:f2:ef:0a:8e:14:61:e3:de: 81:b8:a7:83:38:ee:4b:e6:20:5e:49:0c:5f:21:0f:68:5d:57: cf:74:e2:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBW4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDAwOEIxMTAvBgNVBAUTKEM4MkQ0NjIzQjc5REM1QTA0MDA3MkMxMTJBMUJBQkVC NDQxNjA0MUMwHhcNMjUwNDAyMjMxOTM5WhcNMjUwNDA5MjMxOTM5WjAYMRYwFAYD VQQDEw02N2VkYzYwYi1hNWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy0laBCOM74QAGscpBKh4LBqQ59EtGbaglFlwldfoyKxT0lQDH/tSruS90PbO dM6kQLvf0qFd1lZKpVTgl30zDphsCWxcJlrWGz0+LhTzJJCn51MDgxAgbmZwdzzE c4wp4NwnioZJFxCd2Rvp+55GvImLvVmCOyxt4+s546VI+ZWbBDnG+qk5AvNZuigj +7/uX5KlsY9ktaomRu/MM+WPa8FkJ+Zlci1UaOzXSckN1k3xD4vrJO46CTqkOter KtQRffn+WsPO7ynA7OP+v0Gguy3PnjrR3ONJvYdpNBIwV1YcuoJb9GY6400ojjn1 2xnIXsG7luYKPLHWbin2rkrIawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLa/k2Ur vMv0Vra9M5ucuOQw0W/MMB8GA1UdIwQYMBaAFMgtRiO3ncWgQAcsESobq+tEFgQc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDA4Qi80OUU2MjcxNkQ3 NUYxMUVCOUJEMjRCMURDNEY5QUUwMi95QzFHSTdlZHhhQkFCeXdSS2h1cjYwUVdC QncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lDMUdJN2VkeGFCQUJ5d1JLaHVyNjBRV0JCdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MDA4Qi80OUU2MjcxNkQ3NUYxMUVCOUJEMjRCMURDNEY5QUUwMi95QzFHSTdlZHhh QkFCeXdSS2h1cjYwUVdCQncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuugBtxWLxxmKRJGAeR/sMQCFXaj1cffVHloo9tVNeRoQ9yI6N++vc ZfR7W8EJOitHoUJ0aRWClvMmNv/GSTo52FcRdCioYBPE46LDLD5fiAyfZvM86njP 2eVfndcwiBfrAU/vJngnhYlbCY7/4zG84IIJWOBap/yeYtHgx/ejC1fzxZFRuQEh 7eVlvGRsbM2tP5AhwV5LjqVKt0Gs6mauh1oiAo5n8NVYlrr8qiQU3hES7/cc9WCH 9BbonPnezJCs8Tc53sQLh+1SKQbwentFgUK3RQOCWpULp5GC30Rgy0LN8u8KjhRh 496BuKeDOO5L5iBeSQxfIQ9oXVfPdOKx -----END CERTIFICATE-----Generated at Fri Apr 4 22:24:53 2025 by rpki-client