$ rpki-client -vvf rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.mft File: sYTDX2rtv7hd2kET8nUuDInKOpA.mft (raw, json) Hash identifier: 4A45EhXtmrLrBv9HID0kFBoZX63wlFOcPO0fOrcLNTk= Subject key identifier: F1:00:F3:1A:30:58:99:2C:D2:16:10:DC:1D:7B:EB:54:5A:72:8C:AA Authority key identifier: B1:84:C3:5F:6A:ED:BF:B8:5D:DA:41:13:F2:75:2E:0C:89:CA:3A:90 Certificate issuer: /CN=A91F88F4/serialNumber=B184C35F6AEDBFB85DDA4113F2752E0C89CA3A90 Certificate serial: 0ADC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sYTDX2rtv7hd2kET8nUuDInKOpA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.mft Manifest number: 0AD5 Signing time: Sun 20 Apr 2025 19:14:23 +0000 Manifest this update: Sun 20 Apr 2025 19:14:23 +0000 Manifest next update: Sun 27 Apr 2025 19:14:23 +0000 Files and hashes: 1: sYTDX2rtv7hd2kET8nUuDInKOpA.crl (hash: UZMZhKpZ3i6xvGrvEDUrEN1ez5acIN+5ZpSRtdA69+Y=) 2: F9D16F1CC7D811EDB42DFF20C4F9AE02.roa (hash: CtRLKn6Ho9BgRI41OP+GfRuStv7HD0JEHEC66mznFgA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.crl rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sYTDX2rtv7hd2kET8nUuDInKOpA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 19:14:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2780 (0xadc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F88F4, serialNumber=B184C35F6AEDBFB85DDA4113F2752E0C89CA3A90 Validity Not Before: Apr 20 19:14:23 2025 GMT Not After : Apr 27 19:14:23 2025 GMT Subject: CN=6805478f-596e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:48:36:d1:fb:4d:1b:3a:c4:41:93:56:1f:86: e1:93:b4:88:cf:d2:8b:ec:3f:2c:ec:7e:5f:a5:5b: da:b4:ec:7e:1f:5d:82:b5:bb:f7:1f:94:a1:b9:6e: dd:07:91:1d:94:f6:41:a0:1a:5f:75:b6:51:97:f9: dd:43:30:1d:0b:df:e6:38:83:3b:99:98:2d:a0:50: 89:d3:16:b1:c8:0d:ae:9f:84:06:d7:1d:f2:5a:2d: be:16:8d:51:6c:1f:0a:2c:ee:ff:0b:ee:fc:b2:6e: 11:0f:ab:c2:38:31:42:42:f8:89:07:26:30:46:79: da:35:4f:88:96:21:b0:5d:28:50:39:ca:96:7a:c8: ab:7e:a6:db:74:a9:f8:26:b3:e5:a5:b1:b6:ab:e1: ca:53:2a:15:d6:3e:6e:a4:f3:3c:45:74:28:f0:94: db:18:2d:8e:47:97:03:de:fa:4f:46:22:74:8a:53: 31:19:20:40:14:26:d9:64:4e:45:f2:4b:00:a9:1b: 6b:dd:94:e9:76:72:a4:fb:38:00:98:dd:f2:a3:e9: dd:9f:c5:9c:41:c3:b4:88:cf:18:b6:72:4c:77:85: 2b:88:4c:6d:29:08:ce:4b:7e:c6:d9:93:63:83:00: 87:b0:7a:1c:49:c5:6b:b4:ea:63:ef:0e:12:dc:c9: de:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:00:F3:1A:30:58:99:2C:D2:16:10:DC:1D:7B:EB:54:5A:72:8C:AA X509v3 Authority Key Identifier: keyid:B1:84:C3:5F:6A:ED:BF:B8:5D:DA:41:13:F2:75:2E:0C:89:CA:3A:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sYTDX2rtv7hd2kET8nUuDInKOpA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:cf:5a:54:59:c4:5f:27:3b:0d:58:1e:96:cc:14:4d:7e:21: 18:c5:d6:6c:7f:f3:1f:86:b8:cb:0b:7c:96:2f:13:3f:fe:16: 86:4f:5b:24:26:78:fd:5e:fb:ea:d5:39:76:e4:83:73:d9:6d: b1:0e:e9:af:37:d0:94:d9:58:c7:ca:7e:43:c5:77:ad:16:3c: 53:7e:ec:c7:7b:18:de:b5:c9:ef:37:7a:dc:12:a6:0a:0b:fc: aa:54:31:58:3d:28:89:24:c9:47:a1:94:cc:c3:4e:be:9d:93: ed:f1:44:fb:6d:1c:15:e5:14:2d:16:90:15:b2:d1:de:08:83: 4e:d8:27:79:b2:53:96:0b:c0:ad:47:79:1a:d2:86:e4:1f:60: 83:c3:d9:9d:35:a0:6f:25:d9:da:b0:74:ac:71:19:2f:7c:13: 28:76:52:1c:5f:54:d9:12:91:4d:3f:df:97:5e:57:c6:41:45: 63:ee:0e:62:ff:57:38:f2:9b:b7:07:90:61:64:bb:be:4c:39: 3a:a8:c5:f2:af:d0:ad:e7:75:b1:cf:55:82:2c:75:69:b9:c3: 14:5c:33:a1:12:95:1e:40:8d:d4:b9:92:f1:8b:71:ef:96:11: 1a:6d:2e:54:ca:27:61:d5:cb:31:28:a1:e1:42:e7:52:73:1d: 95:e1:37:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCtwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg4RjQxMTAvBgNVBAUTKEIxODRDMzVGNkFFREJGQjg1RERBNDExM0YyNzUyRTBD ODlDQTNBOTAwHhcNMjUwNDIwMTkxNDIzWhcNMjUwNDI3MTkxNDIzWjAYMRYwFAYD VQQDEw02ODA1NDc4Zi01OTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApkg20ftNGzrEQZNWH4bhk7SIz9KL7D8s7H5fpVvatOx+H12Ctbv3H5ShuW7d B5EdlPZBoBpfdbZRl/ndQzAdC9/mOIM7mZgtoFCJ0xaxyA2un4QG1x3yWi2+Fo1R bB8KLO7/C+78sm4RD6vCODFCQviJByYwRnnaNU+IliGwXShQOcqWesirfqbbdKn4 JrPlpbG2q+HKUyoV1j5upPM8RXQo8JTbGC2OR5cD3vpPRiJ0ilMxGSBAFCbZZE5F 8ksAqRtr3ZTpdnKk+zgAmN3yo+ndn8WcQcO0iM8YtnJMd4UriExtKQjOS37G2ZNj gwCHsHocScVrtOpj7w4S3MneFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPEA8xow WJks0hYQ3B1761RacoyqMB8GA1UdIwQYMBaAFLGEw19q7b+4XdpBE/J1LgyJyjqQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODhGNC8wN0FFNzdDQzQ4 Q0MxMUVBQUVGNTAxNTFDNEY5QUUwMi9zWVREWDJydHY3aGQya0VUOG5VdURJbktP cEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NZVERYMnJ0djdoZDJrRVQ4blV1REluS09wQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODhGNC8wN0FFNzdDQzQ4Q0MxMUVBQUVGNTAxNTFDNEY5QUUwMi9zWVREWDJydHY3 aGQya0VUOG5VdURJbktPcEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPz1pUWcRfJzsNWB6WzBRNfiEYxdZsf/MfhrjLC3yWLxM//haGT1sk Jnj9Xvvq1Tl25INz2W2xDumvN9CU2VjHyn5DxXetFjxTfuzHexjetcnvN3rcEqYK C/yqVDFYPSiJJMlHoZTMw06+nZPt8UT7bRwV5RQtFpAVstHeCINO2Cd5slOWC8Ct R3ka0obkH2CDw9mdNaBvJdnasHSscRkvfBModlIcX1TZEpFNP9+XXlfGQUVj7g5i /1c48pu3B5BhZLu+TDk6qMXyr9Ct53Wxz1WCLHVpucMUXDOhEpUeQI3UuZLxi3Hv lhEabS5Uyidh1csxKKHhQudScx2V4Td1 -----END CERTIFICATE-----Generated at Tue Apr 22 12:22:34 2025 by rpki-client