$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2706/04D457C2330611EBA282D30AC4F9AE02/Y5I5BjkX7pLAmeRq02lsLsp8UQo.mft File: Y5I5BjkX7pLAmeRq02lsLsp8UQo.mft (raw, json) Hash identifier: whibGfegpIjoCUylfPCbVCk/+pjmzHeujKA6fp4Vkao= Subject key identifier: 5E:A5:E7:1A:A1:BA:7D:F8:9A:24:E2:00:6D:58:ED:28:71:92:27:43 Authority key identifier: 63:92:39:06:39:17:EE:92:C0:99:E4:6A:D3:69:6C:2E:CA:7C:51:0A Certificate issuer: /CN=A91D2706/serialNumber=639239063917EE92C099E46AD3696C2ECA7C510A Certificate serial: 0717 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y5I5BjkX7pLAmeRq02lsLsp8UQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2706/04D457C2330611EBA282D30AC4F9AE02/Y5I5BjkX7pLAmeRq02lsLsp8UQo.mft Manifest number: 0711 Signing time: Fri 04 Apr 2025 22:00:59 +0000 Manifest this update: Fri 04 Apr 2025 22:00:59 +0000 Manifest next update: Fri 11 Apr 2025 22:00:59 +0000 Files and hashes: 1: Y5I5BjkX7pLAmeRq02lsLsp8UQo.crl (hash: YStqynYzRIN9R1qlEvN05RMbZTqtEVp2HUsBxJmWZME=) 2: 35D4363E330711EB9D3AA60BC4F9AE02.roa (hash: M4Gqzd39PMwr7C0nKPOIDqHHsIaRLfcCY3hCq+E40tY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2706/04D457C2330611EBA282D30AC4F9AE02/Y5I5BjkX7pLAmeRq02lsLsp8UQo.crl rsync://rpki.apnic.net/member_repository/A91D2706/04D457C2330611EBA282D30AC4F9AE02/Y5I5BjkX7pLAmeRq02lsLsp8UQo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y5I5BjkX7pLAmeRq02lsLsp8UQo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 22:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1815 (0x717) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2706 Validity Not Before: Apr 4 22:00:59 2025 GMT Not After : Apr 11 22:00:59 2025 GMT Subject: CN=67f0569b-349d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:cd:88:b3:a8:6f:72:e7:1a:fb:a6:16:2d:1a: 3a:f9:f9:31:dc:c3:1c:7a:36:16:79:43:5b:66:8c: 4b:23:cb:54:da:b5:3a:7a:9f:50:b4:98:a3:dd:8f: 82:ef:85:f4:a3:9e:7c:6d:9a:15:39:05:d9:10:45: d2:0a:56:7a:67:84:88:cf:74:c5:4f:db:d0:2b:2a: 3d:e1:22:dc:1e:9f:f7:0a:c6:75:d0:3c:50:10:89: fb:df:b9:32:91:21:47:1c:27:5e:1d:be:cd:e0:59: b5:13:a3:6d:4d:03:93:ad:76:8f:ce:f0:a1:d3:b8: 1d:a6:ca:d3:09:ad:24:01:4f:66:70:f9:dc:59:8c: 3d:73:26:b5:b8:72:fb:d0:89:fa:ca:8f:a2:4d:a6: 71:50:b3:9b:08:39:fb:ff:f3:67:a9:85:42:1e:02: 01:21:c8:e7:e1:0e:81:a9:a5:0f:c9:cd:a3:45:3a: cc:89:92:87:99:a1:3a:ef:79:79:fe:91:ee:bf:0b: 39:22:5d:87:b8:e5:06:0a:3e:d6:a6:80:dc:52:61: d2:f6:1a:55:97:f3:18:dc:de:f5:62:cc:b9:7d:f0: 22:1c:ab:3c:9f:76:a9:97:9a:7d:f7:10:8d:d8:76: b0:ba:d9:90:e5:cf:4c:65:f9:ae:40:79:56:b0:72: 55:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:A5:E7:1A:A1:BA:7D:F8:9A:24:E2:00:6D:58:ED:28:71:92:27:43 X509v3 Authority Key Identifier: keyid:63:92:39:06:39:17:EE:92:C0:99:E4:6A:D3:69:6C:2E:CA:7C:51:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2706/04D457C2330611EBA282D30AC4F9AE02/Y5I5BjkX7pLAmeRq02lsLsp8UQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y5I5BjkX7pLAmeRq02lsLsp8UQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2706/04D457C2330611EBA282D30AC4F9AE02/Y5I5BjkX7pLAmeRq02lsLsp8UQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:98:df:78:e5:5f:d8:14:5a:c1:87:c9:a9:a4:cc:6c:76:14: 7e:26:90:46:be:76:08:65:c3:a7:2e:e0:45:1b:37:93:5e:65: 8a:f4:98:1f:bb:6c:77:01:ec:8a:32:18:bd:59:19:4f:b2:b5: c8:db:c0:1f:81:6e:2e:f9:f6:3d:47:6d:ae:8d:8b:fe:03:f5: f3:83:d5:20:78:53:74:50:47:06:38:10:48:03:1f:21:ea:c1: ef:19:cd:ee:0f:47:7a:ac:fc:79:c7:df:3b:60:02:57:9e:a3: 52:26:bf:a5:35:d0:e7:e3:64:d2:9a:95:93:86:b7:a6:df:24: 9c:bc:12:89:37:ca:2f:ce:ec:b5:e0:37:fc:80:7b:11:ef:f0: dc:ee:84:fe:dd:eb:96:40:83:b1:a6:e8:d7:a6:04:18:7f:8e: 8b:e5:dd:60:39:a8:9e:1c:60:0b:41:dd:2a:59:c9:92:e9:f8: e9:b6:e9:df:bf:d3:33:d4:69:ac:b9:8d:b7:31:74:ea:2d:d1: fc:02:89:de:81:a2:37:61:40:38:96:6f:e7:5c:64:2e:cf:69: 78:7f:f7:3f:0e:39:ba:8b:50:61:9f:9f:04:6c:03:39:ad:ce: 55:11:2f:90:4e:b8:36:7f:c2:67:90:0f:10:5a:9e:49:fa:08: d7:80:43:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI3MDYxMTAvBgNVBAUTKDYzOTIzOTA2MzkxN0VFOTJDMDk5RTQ2QUQzNjk2QzJF Q0E3QzUxMEEwHhcNMjUwNDA0MjIwMDU5WhcNMjUwNDExMjIwMDU5WjAYMRYwFAYD VQQDEw02N2YwNTY5Yi0zNDlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzc2Is6hvcuca+6YWLRo6+fkx3MMcejYWeUNbZoxLI8tU2rU6ep9QtJij3Y+C 74X0o558bZoVOQXZEEXSClZ6Z4SIz3TFT9vQKyo94SLcHp/3CsZ10DxQEIn737ky kSFHHCdeHb7N4Fm1E6NtTQOTrXaPzvCh07gdpsrTCa0kAU9mcPncWYw9cya1uHL7 0In6yo+iTaZxULObCDn7//NnqYVCHgIBIcjn4Q6BqaUPyc2jRTrMiZKHmaE673l5 /pHuvws5Il2HuOUGCj7WpoDcUmHS9hpVl/MY3N71Ysy5ffAiHKs8n3apl5p99xCN 2HawutmQ5c9MZfmuQHlWsHJVJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF6l5xqh un34miTiAG1Y7ShxkidDMB8GA1UdIwQYMBaAFGOSOQY5F+6SwJnkatNpbC7KfFEK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjcwNi8wNEQ0NTdDMjMz MDYxMUVCQTI4MkQzMEFDNEY5QUUwMi9ZNUk1QmprWDdwTEFtZVJxMDJsc0xzcDhV UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1k1STVCamtYN3BMQW1lUnEwMmxzTHNwOFVRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjcwNi8wNEQ0NTdDMjMzMDYxMUVCQTI4MkQzMEFDNEY5QUUwMi9ZNUk1QmprWDdw TEFtZVJxMDJsc0xzcDhVUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABmN945V/YFFrBh8mppMxsdhR+JpBGvnYIZcOnLuBFGzeTXmWK9Jgf u2x3AeyKMhi9WRlPsrXI28AfgW4u+fY9R22ujYv+A/Xzg9UgeFN0UEcGOBBIAx8h 6sHvGc3uD0d6rPx5x987YAJXnqNSJr+lNdDn42TSmpWThrem3yScvBKJN8ovzuy1 4Df8gHsR7/Dc7oT+3euWQIOxpujXpgQYf46L5d1gOaieHGALQd0qWcmS6fjptunf v9Mz1GmsuY23MXTqLdH8AonegaI3YUA4lm/nXGQuz2l4f/c/Djm6i1Bhn58EbAM5 rc5VES+QTrg2f8JnkA8QWp5J+gjXgEOd -----END CERTIFICATE-----Generated at Sat Apr 5 23:35:33 2025 by rpki-client