$ rpki-client -vvf rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.mft File: 0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.mft (raw, json) Hash identifier: OaBHJsou0vAqn8JmvppEjxpNJYF+g/Ome0nOv+Yb/co= Subject key identifier: 35:8E:CA:8F:11:E7:72:AE:40:AB:AB:73:16:6F:84:8F:FE:37:2B:39 Authority key identifier: D1:8F:98:A4:1C:0A:DC:8C:81:84:B8:26:A7:1F:3E:F2:7F:19:53:23 Certificate issuer: /CN=A91F1B39/serialNumber=D18F98A41C0ADC8C8184B826A71F3EF27F195323 Certificate serial: 01DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.mft Manifest number: 01DA Signing time: Thu 17 Apr 2025 01:45:50 +0000 Manifest this update: Thu 17 Apr 2025 01:45:50 +0000 Manifest next update: Thu 24 Apr 2025 01:45:49 +0000 Files and hashes: 1: 0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.crl (hash: xudvTrXMWGRFzkzgGv0sarFjEPd7Ma6y9Z3SsQ6y5zg=) 2: C18E7856446C11EDA55DB951C4F9AE02.roa (hash: AKVXd/DH9YanLRhXJZMqC5LiMXYq5bZo14nqm8XdwR0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.crl rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Apr 2025 01:45:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 477 (0x1dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F1B39, serialNumber=D18F98A41C0ADC8C8184B826A71F3EF27F195323 Validity Not Before: Apr 17 01:45:50 2025 GMT Not After : Apr 24 01:45:49 2025 GMT Subject: CN=68005d4e-e773 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:53:d9:c1:28:56:01:a9:18:07:3d:17:20:5f: 2b:ad:c2:21:7b:7f:7f:a3:bf:2d:95:25:71:98:d5: 55:ba:76:01:d7:f4:35:37:19:1f:a2:ed:4a:d2:ac: a5:ed:b4:63:2d:e6:26:90:e7:ba:fe:e4:54:29:d8: 88:83:28:e0:44:a6:f8:49:70:44:5f:b2:d7:da:6a: 41:ad:d8:79:aa:f7:77:17:24:fe:d1:8d:aa:53:78: 35:8c:30:2b:2f:f1:e5:28:41:57:a3:ec:ec:8b:dc: ba:67:3c:e6:41:02:43:34:fc:9c:25:0f:28:78:2b: e6:74:a0:e4:81:76:74:60:fa:0d:47:f1:fd:6e:98: c5:df:bf:2f:06:e8:a9:6f:e5:a4:31:12:6d:8f:a1: 3a:e1:66:4b:6c:20:75:1d:89:ea:8b:3d:35:0a:ed: e7:f7:92:80:49:6c:ba:84:28:2b:00:72:a3:e7:2a: bf:02:31:26:fc:c6:38:10:fd:46:47:73:7a:99:72: fe:bb:ff:22:16:5d:8a:26:c2:c9:dd:9b:7a:20:3a: 09:b0:a8:db:c8:ee:49:fa:75:09:6f:73:de:3a:e4: 2f:e2:63:cf:ce:ee:5b:8f:a6:7c:8d:4b:4b:35:4d: 38:aa:c7:41:02:c2:34:44:c2:e1:b2:10:2f:a0:29: 02:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:8E:CA:8F:11:E7:72:AE:40:AB:AB:73:16:6F:84:8F:FE:37:2B:39 X509v3 Authority Key Identifier: keyid:D1:8F:98:A4:1C:0A:DC:8C:81:84:B8:26:A7:1F:3E:F2:7F:19:53:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:a3:e6:9f:f3:68:75:ec:2d:0a:f6:4d:ed:36:8e:ce:30:57: 17:3e:d3:51:69:09:77:ef:f8:6b:85:fd:57:fd:7a:26:a1:8f: dd:2a:ba:cc:6c:6c:94:1e:fa:5a:5d:29:82:df:85:58:35:1d: a2:38:ed:69:28:9a:31:61:54:00:da:5a:a7:ab:87:a3:ca:fe: 77:96:d1:27:01:c3:da:3a:c3:46:59:91:f9:36:de:0b:b4:01: 28:6d:73:d7:6f:9b:bb:af:b7:f5:e0:e9:0e:0f:5c:b1:da:74: 09:ce:96:a4:cb:a3:e7:1b:27:28:dc:77:6a:4f:7f:35:b4:98: e8:7c:e7:4c:9e:97:ca:0d:ed:3f:94:d8:25:7e:28:2a:01:2f: 85:43:8b:2a:71:80:ee:fc:95:2f:be:5a:58:70:72:22:e8:d4: ff:7d:87:af:8d:81:e1:bb:9e:8f:62:5a:c4:81:b6:ed:06:e9: 25:c6:69:51:67:87:9b:a3:b0:70:fe:7c:d4:f8:47:c2:e1:df: 9a:ef:26:51:50:01:83:b0:0c:1e:d6:09:c1:e4:28:cf:48:dd: 49:43:a0:ae:a9:a3:5e:9c:90:cb:7e:0b:23:66:31:d4:7d:c2: 96:eb:28:e0:1f:72:11:af:59:4b:37:ce:f2:75:11:08:e9:77: 07:b2:84:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAd0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjFCMzkxMTAvBgNVBAUTKEQxOEY5OEE0MUMwQURDOEM4MTg0QjgyNkE3MUYzRUYy N0YxOTUzMjMwHhcNMjUwNDE3MDE0NTUwWhcNMjUwNDI0MDE0NTQ5WjAYMRYwFAYD VQQDEw02ODAwNWQ0ZS1lNzczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8VPZwShWAakYBz0XIF8rrcIhe39/o78tlSVxmNVVunYB1/Q1Nxkfou1K0qyl 7bRjLeYmkOe6/uRUKdiIgyjgRKb4SXBEX7LX2mpBrdh5qvd3FyT+0Y2qU3g1jDAr L/HlKEFXo+zsi9y6ZzzmQQJDNPycJQ8oeCvmdKDkgXZ0YPoNR/H9bpjF378vBuip b+WkMRJtj6E64WZLbCB1HYnqiz01Cu3n95KASWy6hCgrAHKj5yq/AjEm/MY4EP1G R3N6mXL+u/8iFl2KJsLJ3Zt6IDoJsKjbyO5J+nUJb3PeOuQv4mPPzu5bj6Z8jUtL NU04qsdBAsI0RMLhshAvoCkClQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDWOyo8R 53KuQKurcxZvhI/+Nys5MB8GA1UdIwQYMBaAFNGPmKQcCtyMgYS4JqcfPvJ/GVMj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMUIzOS9CNzY5OUQyQzQ0 NjkxMUVEQkU0RTc5NENDNEY5QUUwMi8wWS1ZcEJ3SzNJeUJoTGdtcHg4LThuOFpV eU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBZLVlwQndLM0l5QmhMZ21weDgtOG44WlV5TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MUIzOS9CNzY5OUQyQzQ0NjkxMUVEQkU0RTc5NENDNEY5QUUwMi8wWS1ZcEJ3SzNJ eUJoTGdtcHg4LThuOFpVeU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCho+af82h17C0K9k3tNo7OMFcXPtNRaQl37/hrhf1X/XomoY/dKrrM bGyUHvpaXSmC34VYNR2iOO1pKJoxYVQA2lqnq4ejyv53ltEnAcPaOsNGWZH5Nt4L tAEobXPXb5u7r7f14OkOD1yx2nQJzpaky6PnGyco3HdqT381tJjofOdMnpfKDe0/ lNglfigqAS+FQ4sqcYDu/JUvvlpYcHIi6NT/fYevjYHhu56PYlrEgbbtBuklxmlR Z4ebo7Bw/nzU+EfC4d+a7yZRUAGDsAwe1gnB5CjPSN1JQ6CuqaNenJDLfgsjZjHU fcKW6yjgH3IRr1lLN87ydREI6XcHsoQX -----END CERTIFICATE-----Generated at Fri Apr 18 18:35:00 2025 by rpki-client