$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft File: YcuQhfAv-PpF5zL1gDQPQkngDKI.mft (raw, json) Hash identifier: 5qKzrJZ09ISnhBajsWSaEtXf2HzMt0zps8N3yz4NgG8= Subject key identifier: 68:08:EE:D1:DF:D0:44:A7:E8:D8:34:5D:D3:F1:36:86:01:77:D6:3A Authority key identifier: 61:CB:90:85:F0:2F:F8:FA:45:E7:32:F5:80:34:0F:42:49:E0:0C:A2 Certificate issuer: /CN=A91DCB25/serialNumber=61CB9085F02FF8FA45E732F580340F4249E00CA2 Certificate serial: 116A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YcuQhfAv-PpF5zL1gDQPQkngDKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft Manifest number: 1161 Signing time: Fri 04 Apr 2025 17:19:35 +0000 Manifest this update: Fri 04 Apr 2025 17:19:34 +0000 Manifest next update: Fri 11 Apr 2025 17:19:34 +0000 Files and hashes: 1: YcuQhfAv-PpF5zL1gDQPQkngDKI.crl (hash: QPDBMN23AC8PfwnWR8rfxSbABrb/W06S5ytxJF3js64=) 2: BDC1AB0AFDA611E88FA5E26DC4F9AE02.roa (hash: SB9Ipu4AFekvf7xWy+dJxrZfjpqZ4b1Xx/G1XVRpODY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.crl rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YcuQhfAv-PpF5zL1gDQPQkngDKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:19:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4458 (0x116a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCB25 Validity Not Before: Apr 4 17:19:34 2025 GMT Not After : Apr 11 17:19:34 2025 GMT Subject: CN=67f014a7-13a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:03:0c:0a:02:c8:52:4f:92:e8:20:3c:da:3d: 7f:e6:32:2f:9c:3c:e3:65:9b:a0:f2:cc:94:61:ab: 32:5b:61:37:78:d6:80:98:78:a4:19:dc:c9:be:3b: 54:10:54:5d:fa:79:01:90:fe:1d:42:27:d6:36:5e: 02:6e:8a:7a:30:1a:82:37:09:92:68:b6:f6:d6:80: e5:12:5e:d5:3f:e5:76:49:fb:ab:59:90:d2:ac:78: 28:a6:ab:c4:d4:68:af:75:6a:f1:7d:a0:10:38:bf: fe:bf:b7:df:2d:2b:6f:96:9c:08:74:6b:6f:67:84: 62:88:32:9a:89:1d:e5:a1:47:0f:a8:cc:6e:d6:f2: 62:59:87:3a:58:b6:3c:b6:f3:89:8a:db:45:cc:da: 73:af:20:cc:d9:9f:88:4b:ea:38:bd:1a:8c:25:4b: 67:89:49:10:a6:22:b5:20:f0:a0:4d:fc:75:72:9c: 96:07:68:ad:bc:47:0d:cd:29:cf:e6:68:76:cf:2e: f7:7e:d8:e5:e5:d4:b4:9b:c9:03:c5:8b:37:ba:36: cf:d5:1a:34:59:3e:09:47:2e:9e:26:38:e3:94:5f: 85:34:38:3c:cb:5d:31:59:ec:9c:66:9d:fc:ec:51: f5:0f:35:f6:8f:d6:0b:1e:2c:f6:fe:b9:9a:53:2f: 3f:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:08:EE:D1:DF:D0:44:A7:E8:D8:34:5D:D3:F1:36:86:01:77:D6:3A X509v3 Authority Key Identifier: keyid:61:CB:90:85:F0:2F:F8:FA:45:E7:32:F5:80:34:0F:42:49:E0:0C:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YcuQhfAv-PpF5zL1gDQPQkngDKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:52:fc:bf:36:3e:f5:cb:5f:0f:02:d2:81:9c:38:e7:89:cd: c8:91:24:6b:49:3c:b5:b6:27:42:87:c5:23:b4:9f:8e:32:c3: 1b:18:f5:cb:b6:d2:e7:d9:97:f3:1c:7d:56:82:f5:54:76:90: 79:21:ef:0b:f4:28:00:c9:01:69:bc:b5:d6:35:3f:48:c4:23: dd:d0:46:5b:ce:5b:fb:7e:d4:b4:4c:bd:7a:a0:62:56:c2:a6: 4f:4e:74:d7:ec:07:00:bb:af:2b:63:4e:94:2b:0e:dd:a8:02: 29:2b:1c:c4:35:b2:74:2d:50:f2:a5:da:e2:2b:69:1e:9f:c5: a6:c8:cc:55:66:91:65:9e:d0:ce:df:1e:3e:d3:66:cd:c8:6f: 98:29:d0:dd:1d:15:b2:71:3c:2b:c6:00:ea:31:7a:38:33:ac: e8:4b:2a:3c:96:d0:a3:47:98:10:87:db:0f:bd:b4:b6:95:69: e9:dc:4c:02:4e:1d:47:21:67:45:e7:9a:cc:36:44:dc:c9:ed: a1:a0:84:da:5e:ae:3b:4f:fa:cb:3f:11:a3:c5:c9:84:39:10: f3:79:ac:ab:06:e9:e5:01:0c:26:fb:9d:ae:17:cb:68:a2:98: fb:ea:e1:a3:f6:4a:34:08:9f:b6:1c:4b:04:c2:8f:a2:15:f5: 46:6c:68:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEWowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENCMjUxMTAvBgNVBAUTKDYxQ0I5MDg1RjAyRkY4RkE0NUU3MzJGNTgwMzQwRjQy NDlFMDBDQTIwHhcNMjUwNDA0MTcxOTM0WhcNMjUwNDExMTcxOTM0WjAYMRYwFAYD VQQDEw02N2YwMTRhNy0xM2E0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5AMMCgLIUk+S6CA82j1/5jIvnDzjZZug8syUYasyW2E3eNaAmHikGdzJvjtU EFRd+nkBkP4dQifWNl4Cbop6MBqCNwmSaLb21oDlEl7VP+V2SfurWZDSrHgopqvE 1GivdWrxfaAQOL/+v7ffLStvlpwIdGtvZ4RiiDKaiR3loUcPqMxu1vJiWYc6WLY8 tvOJittFzNpzryDM2Z+IS+o4vRqMJUtniUkQpiK1IPCgTfx1cpyWB2itvEcNzSnP 5mh2zy73ftjl5dS0m8kDxYs3ujbP1Ro0WT4JRy6eJjjjlF+FNDg8y10xWeycZp38 7FH1DzX2j9YLHiz2/rmaUy8/twIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGgI7tHf 0ESn6Ng0XdPxNoYBd9Y6MB8GA1UdIwQYMBaAFGHLkIXwL/j6Recy9YA0D0JJ4Ayi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0IyNS8yQzYwREZEOEZE QTUxMUU4ODg1OUMwNkJDNEY5QUUwMi9ZY3VRaGZBdi1QcEY1ekwxZ0RRUFFrbmdE S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ljdVFoZkF2LVBwRjV6TDFnRFFQUWtuZ0RLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Q0IyNS8yQzYwREZEOEZEQTUxMUU4ODg1OUMwNkJDNEY5QUUwMi9ZY3VRaGZBdi1Q cEY1ekwxZ0RRUFFrbmdES0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlUvy/Nj71y18PAtKBnDjnic3IkSRrSTy1tidCh8UjtJ+OMsMbGPXL ttLn2ZfzHH1WgvVUdpB5Ie8L9CgAyQFpvLXWNT9IxCPd0EZbzlv7ftS0TL16oGJW wqZPTnTX7AcAu68rY06UKw7dqAIpKxzENbJ0LVDypdriK2ken8WmyMxVZpFlntDO 3x4+02bNyG+YKdDdHRWycTwrxgDqMXo4M6zoSyo8ltCjR5gQh9sPvbS2lWnp3EwC Th1HIWdF55rMNkTcye2hoITaXq47T/rLPxGjxcmEORDzeayrBunlAQwm+52uF8to opj76uGj9ko0CJ+2HEsEwo+iFfVGbGh8 -----END CERTIFICATE-----Generated at Sat Apr 5 13:17:52 2025 by rpki-client