$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft File: YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft (raw, json) Hash identifier: tWisREfwgX4vlDG/x9gxHIcDJ0DgbwCeYnI8n6XwKxw= Subject key identifier: 12:A4:D6:C4:DA:B4:57:A4:50:91:06:05:C8:05:8F:58:2B:29:1C:5F Authority key identifier: 60:5B:DA:3D:7A:DC:C0:2D:AC:73:86:AE:39:14:7A:64:65:93:A8:9D Certificate issuer: /CN=A91FC01A/serialNumber=605BDA3D7ADCC02DAC7386AE39147A646593A89D Certificate serial: 02F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YFvaPXrcwC2sc4auORR6ZGWTqJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft Manifest number: 02F2 Signing time: Sat 29 Mar 2025 01:34:33 +0000 Manifest this update: Sat 29 Mar 2025 01:34:33 +0000 Manifest next update: Sat 05 Apr 2025 01:34:33 +0000 Files and hashes: 1: YFvaPXrcwC2sc4auORR6ZGWTqJ0.crl (hash: AkdcInez701xBSclEukVFbi5tG0SZhe/BRlM/2qIM4I=) 2: 426D5CEAD12111ECBBAC1B7DC4F9AE02.roa (hash: PuEOajLEUChOIrthB/05mvECIB7cIWFQzgLmdVBLTBc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.crl rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YFvaPXrcwC2sc4auORR6ZGWTqJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 01:34:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 758 (0x2f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC01A Validity Not Before: Mar 29 01:34:33 2025 GMT Not After : Apr 5 01:34:33 2025 GMT Subject: CN=67e74e29-6865 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:eb:e1:fd:e5:0a:2c:17:30:f6:17:e1:5e:c9: 00:9d:48:38:b1:26:de:67:c6:af:3c:d6:e6:ff:8d: 26:cb:e6:f6:8b:31:79:a8:e3:ff:3b:48:2d:4b:7e: 8a:bf:e0:92:d6:6f:f6:37:4e:27:41:85:c1:a5:cf: aa:15:e6:f1:5e:d8:02:53:5e:ee:86:b0:14:c7:6b: 6e:ba:90:4f:c0:21:ea:b3:a9:e7:d8:07:63:97:aa: 07:e8:68:a0:c9:dc:f9:d5:f6:c1:a3:a5:9a:07:48: 0e:a7:15:38:9d:5e:1a:76:b3:a4:b1:a2:a9:b3:34: e4:9f:aa:d7:6a:ca:d8:72:12:3f:d4:e0:a2:fb:5e: a4:8c:28:65:02:97:ba:ef:da:d8:96:a7:a8:6a:32: 2e:52:ca:02:9d:32:88:f4:b5:6f:47:c7:42:6d:a2: 39:c3:11:9c:46:7d:d0:ce:ee:9f:7d:47:64:24:f8: eb:8c:9c:1e:63:a4:bc:fc:d0:79:a7:24:05:af:dd: 87:6f:d4:47:77:0e:8b:93:a4:78:4a:69:01:66:e3: 81:5c:dc:c7:ad:f9:c9:f2:09:f1:a0:94:8d:94:7a: 8e:b4:6b:1a:34:35:20:0e:68:54:36:4c:9b:c1:8e: bb:71:d0:f8:c5:cb:7d:c6:27:a2:31:6a:7a:7e:cd: 7e:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:A4:D6:C4:DA:B4:57:A4:50:91:06:05:C8:05:8F:58:2B:29:1C:5F X509v3 Authority Key Identifier: keyid:60:5B:DA:3D:7A:DC:C0:2D:AC:73:86:AE:39:14:7A:64:65:93:A8:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YFvaPXrcwC2sc4auORR6ZGWTqJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:00:34:ff:38:68:74:3f:13:76:04:de:44:61:44:6c:28:48: 2e:66:9c:c4:9d:e2:6a:cf:87:0e:f9:04:db:33:36:76:78:70: 86:a5:1e:75:cd:3c:57:f1:4f:87:2c:4c:f2:31:4e:fb:ba:e5: 34:80:d4:b5:a6:3f:71:0e:ed:2f:f7:ac:2b:7d:29:79:35:b1: 35:8e:47:c4:32:20:bf:33:35:39:61:bd:30:14:2a:53:48:d9: 4f:57:f0:c8:0f:2f:cf:18:ed:e5:c5:07:65:73:fc:a8:5a:6c: 16:3e:9c:a5:d5:1a:83:a4:61:f4:4d:07:83:8b:6a:32:89:6a: 8a:6d:b7:d8:f2:ec:1d:50:9d:b7:48:6f:37:75:9e:ee:53:f0: 2d:d4:b7:e0:52:af:6a:0b:73:55:93:88:70:a2:43:ad:12:ff: ba:b6:e8:3f:3e:27:de:91:38:d2:53:62:99:11:82:ce:f8:48: 0b:09:51:03:52:a5:88:b5:ca:b4:fc:11:2d:84:ee:83:5c:b5: e2:91:f6:17:3a:36:e3:c3:1c:4a:d1:c0:0b:56:90:ab:89:77: 0b:b3:43:0d:f2:f8:f2:d3:12:16:3c:45:80:77:6b:92:8d:40: 27:20:58:65:76:5e:61:34:33:9f:84:a0:74:82:b0:f5:d3:e7: 7f:9d:7b:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkMwMUExMTAvBgNVBAUTKDYwNUJEQTNEN0FEQ0MwMkRBQzczODZBRTM5MTQ3QTY0 NjU5M0E4OUQwHhcNMjUwMzI5MDEzNDMzWhcNMjUwNDA1MDEzNDMzWjAYMRYwFAYD VQQDEw02N2U3NGUyOS02ODY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0evh/eUKLBcw9hfhXskAnUg4sSbeZ8avPNbm/40my+b2izF5qOP/O0gtS36K v+CS1m/2N04nQYXBpc+qFebxXtgCU17uhrAUx2tuupBPwCHqs6nn2Adjl6oH6Gig ydz51fbBo6WaB0gOpxU4nV4adrOksaKpszTkn6rXasrYchI/1OCi+16kjChlApe6 79rYlqeoajIuUsoCnTKI9LVvR8dCbaI5wxGcRn3Qzu6ffUdkJPjrjJweY6S8/NB5 pyQFr92Hb9RHdw6Lk6R4SmkBZuOBXNzHrfnJ8gnxoJSNlHqOtGsaNDUgDmhUNkyb wY67cdD4xct9xieiMWp6fs1+jQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBKk1sTa tFekUJEGBcgFj1grKRxfMB8GA1UdIwQYMBaAFGBb2j163MAtrHOGrjkUemRlk6id MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzAxQS8wRjg1MDE0Q0Qx MUQxMUVDODE2OTYzNjNDNEY5QUUwMi9ZRnZhUFhyY3dDMnNjNGF1T1JSNlpHV1Rx SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lGdmFQWHJjd0Myc2M0YXVPUlI2WkdXVHFKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzAxQS8wRjg1MDE0Q0QxMUQxMUVDODE2OTYzNjNDNEY5QUUwMi9ZRnZhUFhyY3dD MnNjNGF1T1JSNlpHV1RxSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+ADT/OGh0PxN2BN5EYURsKEguZpzEneJqz4cO+QTbMzZ2eHCGpR51 zTxX8U+HLEzyMU77uuU0gNS1pj9xDu0v96wrfSl5NbE1jkfEMiC/MzU5Yb0wFCpT SNlPV/DIDy/PGO3lxQdlc/yoWmwWPpyl1RqDpGH0TQeDi2oyiWqKbbfY8uwdUJ23 SG83dZ7uU/At1LfgUq9qC3NVk4hwokOtEv+6tug/PifekTjSU2KZEYLO+EgLCVED UqWItcq0/BEthO6DXLXikfYXOjbjwxxK0cALVpCriXcLs0MN8vjy0xIWPEWAd2uS jUAnIFhldl5hNDOfhKB0grD10+d/nXuk -----END CERTIFICATE-----Generated at Fri Apr 4 22:13:43 2025 by rpki-client