$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBD7B/A74F5EDCD87211EFA31F8419C4F9AE02/YU0eyLaT57tfMs-lJ7UCgyad_is.mft File: YU0eyLaT57tfMs-lJ7UCgyad_is.mft (raw, json) Hash identifier: /hfaYpjEK/pkDLfoFYpFwkTnv7KMHjKTqmGE/GwW+gw= Subject key identifier: 63:F5:06:C7:AA:A6:57:CB:59:61:C8:AC:94:F2:68:0D:FD:79:6E:81 Authority key identifier: 61:4D:1E:C8:B6:93:E7:BB:5F:32:CF:A5:27:B5:02:83:26:9D:FE:2B Certificate issuer: /CN=A91FBD7B/serialNumber=614D1EC8B693E7BB5F32CFA527B50283269DFE2B Certificate serial: 25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YU0eyLaT57tfMs-lJ7UCgyad_is.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBD7B/A74F5EDCD87211EFA31F8419C4F9AE02/YU0eyLaT57tfMs-lJ7UCgyad_is.mft Manifest number: 24 Signing time: Sat 29 Mar 2025 07:08:58 +0000 Manifest this update: Sat 29 Mar 2025 07:08:58 +0000 Manifest next update: Sat 05 Apr 2025 07:08:58 +0000 Files and hashes: 1: YU0eyLaT57tfMs-lJ7UCgyad_is.crl (hash: 0zdnrgqqmNDLz52on+cnG/MT3vUtsI/7Gmt9qpGpop0=) 2: EE380826D87211EFBAE0FC19C4F9AE02.roa (hash: 8l/PjgYxr+ZXAJadh6qG9Ww6HDPSsDKK/vON5gDczs4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBD7B/A74F5EDCD87211EFA31F8419C4F9AE02/YU0eyLaT57tfMs-lJ7UCgyad_is.crl rsync://rpki.apnic.net/member_repository/A91FBD7B/A74F5EDCD87211EFA31F8419C4F9AE02/YU0eyLaT57tfMs-lJ7UCgyad_is.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YU0eyLaT57tfMs-lJ7UCgyad_is.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37 (0x25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBD7B Validity Not Before: Mar 29 07:08:58 2025 GMT Not After : Apr 5 07:08:58 2025 GMT Subject: CN=67e79c8a-239d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c4:7e:19:14:0e:84:a7:8d:8e:38:61:29:7d: a1:be:44:8b:9c:ac:ed:42:2c:97:22:6d:a7:85:b6: 55:f0:2b:d9:47:f3:5c:f0:ea:e0:c8:e5:c6:20:b4: 7a:69:4e:22:ca:7a:9b:ef:2b:eb:57:59:0a:e4:cd: 3e:3c:67:20:d6:fe:30:d8:bf:1d:08:20:c5:56:d5: fa:e2:4f:19:e5:b8:ac:c9:2b:a5:b7:0b:99:8c:08: c4:7b:25:25:d6:7f:2d:f8:ba:61:4e:3a:59:a2:2a: ee:a0:cf:8c:52:c4:d1:fb:c4:a9:31:4a:4a:61:9b: e1:d7:1e:7e:f1:67:2c:72:ba:28:04:89:b0:6f:f5: 92:32:47:fc:cc:3b:69:53:38:c3:8c:de:00:99:d6: c3:d5:72:3b:31:30:57:0d:9e:da:a3:2d:f1:45:6f: 9b:0b:74:2e:39:03:bc:52:e6:86:79:d7:64:e3:f9: 3a:99:7e:f0:43:4a:ba:54:95:15:9d:8f:21:46:7c: 2e:d6:d3:20:7f:be:32:ea:ac:3b:60:23:cf:c3:03: 2c:8c:7b:fa:8d:3b:29:58:b6:68:f4:c2:cf:05:c3: a0:31:04:85:ab:29:0a:e4:51:6b:d2:41:00:fa:c7: 77:af:e2:0c:ac:56:36:e7:f4:3a:b5:62:a8:6e:cc: d6:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:F5:06:C7:AA:A6:57:CB:59:61:C8:AC:94:F2:68:0D:FD:79:6E:81 X509v3 Authority Key Identifier: keyid:61:4D:1E:C8:B6:93:E7:BB:5F:32:CF:A5:27:B5:02:83:26:9D:FE:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBD7B/A74F5EDCD87211EFA31F8419C4F9AE02/YU0eyLaT57tfMs-lJ7UCgyad_is.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YU0eyLaT57tfMs-lJ7UCgyad_is.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBD7B/A74F5EDCD87211EFA31F8419C4F9AE02/YU0eyLaT57tfMs-lJ7UCgyad_is.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:3e:18:1b:f2:8e:f5:38:a0:58:35:e3:bb:8f:21:b2:5f:7b: d9:9e:fd:49:f9:1d:b5:ba:ae:15:2f:dd:55:33:0c:95:bd:76: 7f:60:0e:1e:bc:9c:f9:ff:b9:36:5f:c3:07:97:32:46:b1:87: 97:4b:6b:ae:10:69:3b:bc:63:7e:b7:67:cb:93:4f:ff:f3:cb: 54:29:c7:f9:dd:eb:17:1e:89:eb:84:b8:8f:0c:10:66:2e:18: 23:53:9e:44:10:01:e1:16:21:28:53:a1:80:3f:2b:83:48:61: 2c:a6:9a:31:3e:95:9d:9c:ab:d1:36:bf:3e:f9:a0:85:38:b0: 42:5c:af:44:71:76:e7:83:ce:a2:dc:ea:bd:95:6d:df:ed:94: 9c:b7:cd:58:bd:ea:aa:ae:43:78:98:cb:03:a0:7c:9c:a3:43: 68:0b:44:16:b1:68:02:41:a8:76:b7:01:be:65:a2:d4:00:2b: 4f:15:36:c7:c1:08:7e:ea:d2:19:2f:5d:d9:16:b2:13:f0:2f: 3d:f8:fc:e6:b5:08:08:1a:44:c0:ea:ed:0c:e1:6a:f2:09:4c: 5d:5a:aa:51:dd:5d:86:6f:0f:dd:68:c0:be:3d:84:f5:a8:c7: 27:9e:da:2f:16:52:c5:db:4b:2b:e8:b2:6d:8d:77:77:5d:97: cd:f1:f2:a3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QkQ3QjExMC8GA1UEBRMoNjE0RDFFQzhCNjkzRTdCQjVGMzJDRkE1MjdCNTAyODMy NjlERkUyQjAeFw0yNTAzMjkwNzA4NThaFw0yNTA0MDUwNzA4NThaMBgxFjAUBgNV BAMTDTY3ZTc5YzhhLTIzOWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7xH4ZFA6Ep42OOGEpfaG+RIucrO1CLJcibaeFtlXwK9lH81zw6uDI5cYgtHpp TiLKepvvK+tXWQrkzT48ZyDW/jDYvx0IIMVW1friTxnluKzJK6W3C5mMCMR7JSXW fy34umFOOlmiKu6gz4xSxNH7xKkxSkphm+HXHn7xZyxyuigEibBv9ZIyR/zMO2lT OMOM3gCZ1sPVcjsxMFcNntqjLfFFb5sLdC45A7xS5oZ512Tj+TqZfvBDSrpUlRWd jyFGfC7W0yB/vjLqrDtgI8/DAyyMe/qNOylYtmj0ws8Fw6AxBIWrKQrkUWvSQQD6 x3ev4gysVjbn9Dq1YqhuzNaVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUY/UGx6qm V8tZYcislPJoDf15boEwHwYDVR0jBBgwFoAUYU0eyLaT57tfMs+lJ7UCgyad/isw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZCRDdCL0E3NEY1RURDRDg3 MjExRUZBMzFGODQxOUM0RjlBRTAyL1lVMGV5TGFUNTd0Zk1zLWxKN1VDZ3lhZF9p cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWVUwZXlMYVQ1N3RmTXMtbEo3VUNneWFkX2lzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZC RDdCL0E3NEY1RURDRDg3MjExRUZBMzFGODQxOUM0RjlBRTAyL1lVMGV5TGFUNTd0 Zk1zLWxKN1VDZ3lhZF9pcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABI+GBvyjvU4oFg147uPIbJfe9me/Un5HbW6rhUv3VUzDJW9dn9gDh68 nPn/uTZfwweXMkaxh5dLa64QaTu8Y363Z8uTT//zy1Qpx/nd6xceieuEuI8MEGYu GCNTnkQQAeEWIShToYA/K4NIYSymmjE+lZ2cq9E2vz75oIU4sEJcr0RxdueDzqLc 6r2Vbd/tlJy3zVi96qquQ3iYywOgfJyjQ2gLRBaxaAJBqHa3Ab5lotQAK08VNsfB CH7q0hkvXdkWshPwLz34/Oa1CAgaRMDq7QzhavIJTF1aqlHdXYZvD91owL49hPWo xyee2i8WUsXbSyvosm2Nd3ddl83x8qM= -----END CERTIFICATE-----Generated at Fri Apr 4 22:01:42 2025 by rpki-client