$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft File: YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft (raw, json) Hash identifier: xr/pZl4wW+hyV4nUgz4vrSOfj26WCDmcMFvcxIscc9w= Subject key identifier: 35:DA:9F:92:F1:27:75:C9:E4:79:F1:FD:77:EE:7D:12:31:25:09:7A Authority key identifier: 60:06:B9:65:83:13:D8:64:99:16:19:D6:97:9B:0F:7E:01:E4:B6:68 Certificate issuer: /CN=A91E5A08/serialNumber=6006B9658313D864991619D6979B0F7E01E4B668 Certificate serial: 016E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft Manifest number: 016B Signing time: Sat 29 Mar 2025 03:22:41 +0000 Manifest this update: Sat 29 Mar 2025 03:22:41 +0000 Manifest next update: Sat 05 Apr 2025 03:22:41 +0000 Files and hashes: 1: YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl (hash: Mim7EVhetxu2j2QAuSzbtIGGpSUZsG+3p80OhbJdiVQ=) 2: EC9A7C9EE26811EDBB19B85EC4F9AE02.roa (hash: b95mpJ4EM9DYq2FEBTGRF8becbveDJsLEHAflxFwbco=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 03:22:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 366 (0x16e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5A08 Validity Not Before: Mar 29 03:22:41 2025 GMT Not After : Apr 5 03:22:41 2025 GMT Subject: CN=67e76781-b26e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:00:7e:d0:86:8e:a4:6b:fe:9f:67:7f:0a:92: 01:85:3e:b1:c5:89:cb:e6:2f:56:8e:34:aa:93:c9: 7f:f0:15:7d:99:d5:df:c4:47:2a:05:aa:2b:cb:26: e5:f8:de:a0:a0:67:b2:e4:a9:2a:65:81:5a:e4:99: 7b:1f:cd:19:ce:97:fd:27:16:e1:43:50:3a:5e:b2: bd:dd:db:33:8b:02:0d:70:0c:09:7a:d8:99:5d:bf: f3:de:44:52:fa:b1:ab:aa:c7:5b:58:06:d0:da:25: f6:a0:5b:fc:d6:7a:dc:27:5b:bc:42:83:11:36:1d: 30:e8:58:b8:24:3a:de:d2:4e:8c:68:20:de:7f:f9: 81:d3:3d:80:0d:37:03:6a:47:db:c7:09:18:ad:36: 2b:20:3d:15:23:1d:3f:cc:7c:65:c6:f7:16:99:d7: 5c:42:71:76:b2:fc:2d:59:7b:9d:2c:43:37:fd:2d: 16:2b:a0:57:cb:19:16:3e:c0:f5:51:2b:86:e4:e3: 7a:59:c2:18:19:82:c0:0c:17:85:5e:a5:9d:4c:f8: 3d:bd:f0:f2:13:4b:49:b7:ae:be:e2:7b:50:83:0c: 27:41:d6:fc:e0:d2:c9:c0:9a:57:40:30:6c:1a:59: 77:c8:86:9c:f5:e5:20:d5:0a:83:73:e8:ef:9a:2f: 8b:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:DA:9F:92:F1:27:75:C9:E4:79:F1:FD:77:EE:7D:12:31:25:09:7A X509v3 Authority Key Identifier: keyid:60:06:B9:65:83:13:D8:64:99:16:19:D6:97:9B:0F:7E:01:E4:B6:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:79:b6:b8:8b:51:e4:72:bd:9b:60:98:57:13:44:66:24:38: 33:b2:4d:d0:39:76:5d:28:f9:ef:c3:ee:33:e2:ff:b1:66:d2: 28:ba:ee:b5:1b:1e:1e:10:06:7c:46:2c:b8:90:fe:62:f1:75: 91:e5:24:18:c3:91:04:6d:c5:cf:78:eb:e9:16:51:f6:38:d7: 42:d7:8d:37:e0:24:36:f8:49:0f:e7:33:72:18:72:ac:b2:ce: f5:78:bd:38:b6:3e:b1:3c:f3:39:df:e1:b6:12:04:10:79:1d: 55:6b:d7:03:5a:9b:74:13:d3:40:50:fd:81:6f:b4:24:33:3a: 95:42:71:4b:9d:2d:8e:14:0a:13:29:08:1c:86:a6:cb:fa:87: 39:68:e7:59:01:59:3f:a9:ec:45:90:9f:31:69:93:e7:fc:4f: 3e:12:dc:e7:33:ba:c2:f4:5e:66:7a:ae:cf:db:29:79:2b:7e: eb:bd:da:87:b7:b9:82:8e:c9:3e:1b:df:22:af:d1:aa:00:09: 54:9a:47:17:10:2d:a1:da:bb:a8:07:a6:52:81:c8:ff:37:cb: 8b:d4:29:ee:dc:8c:8c:ae:65:07:53:88:ba:90:ac:fd:38:fd: ad:0c:9d:3a:8a:4a:ce:0e:5d:fb:e3:fb:a4:a4:89:f8:08:e0: 5b:6b:10:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAW4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVBMDgxMTAvBgNVBAUTKDYwMDZCOTY1ODMxM0Q4NjQ5OTE2MTlENjk3OUIwRjdF MDFFNEI2NjgwHhcNMjUwMzI5MDMyMjQxWhcNMjUwNDA1MDMyMjQxWjAYMRYwFAYD VQQDEw02N2U3Njc4MS1iMjZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvwB+0IaOpGv+n2d/CpIBhT6xxYnL5i9WjjSqk8l/8BV9mdXfxEcqBaoryybl +N6goGey5KkqZYFa5Jl7H80Zzpf9JxbhQ1A6XrK93dsziwINcAwJetiZXb/z3kRS +rGrqsdbWAbQ2iX2oFv81nrcJ1u8QoMRNh0w6Fi4JDre0k6MaCDef/mB0z2ADTcD akfbxwkYrTYrID0VIx0/zHxlxvcWmddcQnF2svwtWXudLEM3/S0WK6BXyxkWPsD1 USuG5ON6WcIYGYLADBeFXqWdTPg9vfDyE0tJt66+4ntQgwwnQdb84NLJwJpXQDBs Gll3yIac9eUg1QqDc+jvmi+LvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDXan5Lx J3XJ5Hnx/XfufRIxJQl6MB8GA1UdIwQYMBaAFGAGuWWDE9hkmRYZ1pebD34B5LZo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUEwOC9CMDYwQ0M1NEUy NjUxMUVEODUwQ0RFNTRDNEY5QUUwMi9ZQWE1WllNVDJHU1pGaG5XbDVzUGZnSGt0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lBYTVaWU1UMkdTWkZobldsNXNQZmdIa3RtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUEwOC9CMDYwQ0M1NEUyNjUxMUVEODUwQ0RFNTRDNEY5QUUwMi9ZQWE1WllNVDJH U1pGaG5XbDVzUGZnSGt0bWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCleba4i1Hkcr2bYJhXE0RmJDgzsk3QOXZdKPnvw+4z4v+xZtIouu61 Gx4eEAZ8Riy4kP5i8XWR5SQYw5EEbcXPeOvpFlH2ONdC14034CQ2+EkP5zNyGHKs ss71eL04tj6xPPM53+G2EgQQeR1Va9cDWpt0E9NAUP2Bb7QkMzqVQnFLnS2OFAoT KQgchqbL+oc5aOdZAVk/qexFkJ8xaZPn/E8+EtznM7rC9F5meq7P2yl5K37rvdqH t7mCjsk+G98ir9GqAAlUmkcXEC2h2ruoB6ZSgcj/N8uL1Cnu3IyMrmUHU4i6kKz9 OP2tDJ06ikrODl374/ukpIn4COBbaxB6 -----END CERTIFICATE-----Generated at Fri Apr 4 22:15:13 2025 by rpki-client