$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft File: rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft (raw, json) Hash identifier: V//w67q7WooKC5IDHfNyKIo/goAYFu84SdR5YGY36Tk= Subject key identifier: 52:31:2C:CF:F8:57:0B:C7:7A:36:9D:3F:9B:87:32:22:68:52:C3:74 Authority key identifier: AD:84:F4:BC:BE:B3:C9:36:5F:28:27:15:3B:A6:9C:ED:2A:99:12:E2 Certificate issuer: /CN=A91EF8B6/serialNumber=AD84F4BCBEB3C9365F2827153BA69CED2A9912E2 Certificate serial: 0B26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYT0vL6zyTZfKCcVO6ac7SqZEuI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft Manifest number: 0B1B Signing time: Fri 04 Apr 2025 19:21:41 +0000 Manifest this update: Fri 04 Apr 2025 19:21:40 +0000 Manifest next update: Fri 11 Apr 2025 19:21:40 +0000 Files and hashes: 1: rYT0vL6zyTZfKCcVO6ac7SqZEuI.crl (hash: 0pD4e53g+z1chQJQHQJFjaaeXZ9+Q2JdSrB1MJmzxS8=) 2: FB6D5292263C11EEB9F5DB43C4F9AE02.roa (hash: F4+ANWrgSV1BYAbYrEyoAC+HEYBZsl5dMdzlHwWIwy8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.crl rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYT0vL6zyTZfKCcVO6ac7SqZEuI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:21:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2854 (0xb26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF8B6 Validity Not Before: Apr 4 19:21:40 2025 GMT Not After : Apr 11 19:21:40 2025 GMT Subject: CN=67f03144-6233 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:24:29:ba:68:5a:30:11:ba:5c:b9:ae:de:2b: ed:00:4a:52:f1:82:db:dd:ad:64:cd:60:db:97:1e: 4d:a9:c2:4d:17:47:72:ae:a0:2c:fe:b6:e4:40:62: 47:5b:c4:f3:37:cd:d7:96:6f:23:62:df:52:0c:12: 4e:52:7e:e3:ee:d8:91:2f:01:fd:95:70:96:44:78: 88:ce:ec:45:17:6f:04:24:d3:a2:2d:e3:72:31:8b: 85:9b:32:79:0e:37:c2:d5:10:d0:75:65:50:27:83: 94:c3:b8:bc:46:c0:05:60:b0:bd:8d:92:ce:a2:5b: 4c:dc:b2:3b:dc:05:23:40:a2:87:96:e2:68:50:13: 84:5b:43:f2:aa:e1:b0:4f:b6:07:02:b4:d8:40:84: 62:af:0f:6e:ef:c3:62:a4:92:04:38:51:3c:5a:9b: 44:2e:9e:55:de:22:51:2a:83:0d:4f:12:50:9f:d5: 6a:dd:9f:a9:68:aa:a6:32:62:44:f6:c9:e1:5d:f4: 96:09:47:5d:2c:eb:be:bb:4c:89:59:a3:f8:e3:bc: 9f:b5:2c:de:59:e2:44:f5:87:11:22:42:a3:47:11: 8a:71:20:6c:d1:cb:f0:ac:8f:1e:5b:18:86:e7:19: d0:73:89:30:62:8d:95:6b:cb:26:24:2e:02:fa:cc: 28:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:31:2C:CF:F8:57:0B:C7:7A:36:9D:3F:9B:87:32:22:68:52:C3:74 X509v3 Authority Key Identifier: keyid:AD:84:F4:BC:BE:B3:C9:36:5F:28:27:15:3B:A6:9C:ED:2A:99:12:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYT0vL6zyTZfKCcVO6ac7SqZEuI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:7b:bd:a7:03:7b:9b:ab:6a:86:f9:1a:2c:2e:7b:a4:1e:1f: 3b:e4:93:5a:55:ae:7a:58:cd:2d:f9:9c:d4:6c:fe:7b:9b:9d: a3:66:6f:90:8c:b4:e5:f9:1b:35:9b:96:30:b4:de:ef:34:c1: 58:59:c6:a7:41:33:f9:50:63:40:f2:ca:53:1d:ca:4c:c7:e0: 2c:7d:ef:b7:96:ab:64:1d:4f:21:8f:b1:6e:91:2b:92:45:59: 2a:39:13:95:d9:b9:4a:aa:73:d9:bd:98:aa:13:76:3e:f5:15: cb:bf:a5:0a:c8:dd:b5:fe:bd:a5:c5:34:17:d8:b9:de:35:48: 59:88:fa:93:67:ca:7e:82:b3:c2:85:ef:d2:1e:2e:9c:b7:1b: 07:e3:46:40:61:68:8c:e9:23:e6:74:0d:7d:16:49:4c:8a:8f: 69:ba:39:e6:15:f6:57:1a:a0:79:e4:8b:4b:bd:1d:65:0a:9e: 69:9d:50:47:94:d5:5f:8e:ea:2e:e2:7e:f5:e5:fb:ab:0c:7e: 68:d9:99:5a:ca:00:c5:d8:8d:95:5c:61:29:d8:ed:db:73:b6: 77:34:a0:ac:ba:f2:40:61:14:da:3c:fa:14:41:65:b6:59:7b: 3f:b6:b3:9a:e0:5c:30:95:57:e0:25:7d:b7:66:4b:6b:31:7c: 6a:27:d5:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCyYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUY4QjYxMTAvBgNVBAUTKEFEODRGNEJDQkVCM0M5MzY1RjI4MjcxNTNCQTY5Q0VE MkE5OTEyRTIwHhcNMjUwNDA0MTkyMTQwWhcNMjUwNDExMTkyMTQwWjAYMRYwFAYD VQQDEw02N2YwMzE0NC02MjMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqyQpumhaMBG6XLmu3ivtAEpS8YLb3a1kzWDblx5NqcJNF0dyrqAs/rbkQGJH W8TzN83Xlm8jYt9SDBJOUn7j7tiRLwH9lXCWRHiIzuxFF28EJNOiLeNyMYuFmzJ5 DjfC1RDQdWVQJ4OUw7i8RsAFYLC9jZLOoltM3LI73AUjQKKHluJoUBOEW0PyquGw T7YHArTYQIRirw9u78NipJIEOFE8WptELp5V3iJRKoMNTxJQn9Vq3Z+paKqmMmJE 9snhXfSWCUddLOu+u0yJWaP447yftSzeWeJE9YcRIkKjRxGKcSBs0cvwrI8eWxiG 5xnQc4kwYo2Va8smJC4C+swo8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFIxLM/4 VwvHejadP5uHMiJoUsN0MB8GA1UdIwQYMBaAFK2E9Ly+s8k2XygnFTumnO0qmRLi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjhCNi80MEU3RkFCQTNB QTYxMUVBQUM4RjE4NzVDNEY5QUUwMi9yWVQwdkw2enlUWmZLQ2NWTzZhYzdTcVpF dUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JZVDB2TDZ6eVRaZktDY1ZPNmFjN1NxWkV1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjhCNi80MEU3RkFCQTNBQTYxMUVBQUM4RjE4NzVDNEY5QUUwMi9yWVQwdkw2enlU WmZLQ2NWTzZhYzdTcVpFdUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqe72nA3ubq2qG+RosLnukHh875JNaVa56WM0t+ZzUbP57m52jZm+Q jLTl+Rs1m5YwtN7vNMFYWcanQTP5UGNA8spTHcpMx+Asfe+3lqtkHU8hj7FukSuS RVkqOROV2blKqnPZvZiqE3Y+9RXLv6UKyN21/r2lxTQX2LneNUhZiPqTZ8p+grPC he/SHi6ctxsH40ZAYWiM6SPmdA19FklMio9pujnmFfZXGqB55ItLvR1lCp5pnVBH lNVfjuou4n715furDH5o2ZlaygDF2I2VXGEp2O3bc7Z3NKCsuvJAYRTaPPoUQWW2 WXs/trOa4FwwlVfgJX23ZktrMXxqJ9Wc -----END CERTIFICATE-----Generated at Sat Apr 5 11:40:09 2025 by rpki-client