$ rpki-client -vvf rpki.apnic.net/member_repository/A91949C1/09F52B142DD511EF9E505E5DC4F9AE02/-YvpQtnreFakMNG8KUc7xN1nf-o.mft File: -YvpQtnreFakMNG8KUc7xN1nf-o.mft (raw, json) Hash identifier: pHTiwuCXjcyVlJ81tYB0w7kHpmCAUdOEXIw8jlF25m0= Subject key identifier: 62:70:8A:46:4E:60:41:74:88:96:C3:6E:8F:D7:BC:8D:B5:0B:63:ED Authority key identifier: F9:8B:E9:42:D9:EB:78:56:A4:30:D1:BC:29:47:3B:C4:DD:67:7F:EA Certificate issuer: /CN=A91949C1/serialNumber=F98BE942D9EB7856A430D1BC29473BC4DD677FEA Certificate serial: 8A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-YvpQtnreFakMNG8KUc7xN1nf-o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91949C1/09F52B142DD511EF9E505E5DC4F9AE02/-YvpQtnreFakMNG8KUc7xN1nf-o.mft Manifest number: 89 Signing time: Thu 13 Mar 2025 04:33:22 +0000 Manifest this update: Thu 13 Mar 2025 04:33:22 +0000 Manifest next update: Thu 20 Mar 2025 04:33:22 +0000 Files and hashes: 1: -YvpQtnreFakMNG8KUc7xN1nf-o.crl (hash: C5lCW6Zw/zt6Tw3XECiMhQjn5TPj+rhA+a+q2Dp+ubY=) 2: 5E1227E22DD511EF9AFE395EC4F9AE02.roa (hash: Etmj0xt/W0SmV0Orr2NUt8hTe4pIwfnUtLKYwnR9+RI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91949C1/09F52B142DD511EF9E505E5DC4F9AE02/-YvpQtnreFakMNG8KUc7xN1nf-o.crl rsync://rpki.apnic.net/member_repository/A91949C1/09F52B142DD511EF9E505E5DC4F9AE02/-YvpQtnreFakMNG8KUc7xN1nf-o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-YvpQtnreFakMNG8KUc7xN1nf-o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 04:33:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 138 (0x8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91949C1 Validity Not Before: Mar 13 04:33:22 2025 GMT Not After : Mar 20 04:33:22 2025 GMT Subject: CN=67d26012-1ec1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:96:39:c9:35:73:1a:1f:de:96:1e:da:70:98: 37:9a:1e:6a:20:53:71:0b:c3:e2:b4:93:85:f3:48: 9e:07:cb:1d:d4:44:b5:fd:00:ab:44:c3:48:72:3a: 3a:c8:8f:10:5b:e1:b3:1f:46:45:fd:39:ec:a3:ba: 4a:aa:b5:af:26:e8:cc:13:94:55:5a:0a:ec:1f:5b: 6e:98:99:ba:3d:2f:48:ec:cc:f2:ff:05:35:2b:d3: ef:5b:c6:ab:f9:0b:a5:d7:bd:d8:19:f9:bd:9e:b2: dc:89:f9:7e:9a:38:41:33:36:8c:62:d0:92:f4:2d: f6:e7:6d:b3:33:5b:a0:53:14:ce:df:f1:5d:fe:1f: 8c:d1:11:f5:59:0c:10:06:87:13:9a:20:3f:c7:b7: f0:5f:9a:06:c9:f1:6a:df:a0:08:99:c8:6f:cb:7a: ff:1d:d5:26:42:61:eb:7b:8c:49:b3:ee:2b:bb:85: dc:55:0e:54:46:68:83:d6:a3:97:8e:b5:fa:aa:e9: 9e:a7:46:c4:22:8b:b0:c7:1a:94:ba:59:b3:c4:f1: 69:32:fa:e0:30:ac:c8:88:d7:73:2a:fb:9f:ed:83: b6:68:ce:7a:57:97:cd:41:05:bb:4b:bf:94:38:ae: af:80:54:c5:79:56:ed:ef:84:eb:44:03:c3:99:17: 93:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:70:8A:46:4E:60:41:74:88:96:C3:6E:8F:D7:BC:8D:B5:0B:63:ED X509v3 Authority Key Identifier: keyid:F9:8B:E9:42:D9:EB:78:56:A4:30:D1:BC:29:47:3B:C4:DD:67:7F:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91949C1/09F52B142DD511EF9E505E5DC4F9AE02/-YvpQtnreFakMNG8KUc7xN1nf-o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-YvpQtnreFakMNG8KUc7xN1nf-o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91949C1/09F52B142DD511EF9E505E5DC4F9AE02/-YvpQtnreFakMNG8KUc7xN1nf-o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:e4:a3:a4:da:06:da:f1:e4:46:12:ca:a8:2c:f0:84:cb:0f: 6a:7e:1d:e0:88:42:d3:41:e3:4a:62:7c:75:85:d2:40:7a:f2: 0c:18:00:7e:ac:b6:7c:3d:7e:29:f9:82:2e:bf:ee:f0:2f:cc: 19:9b:0f:10:b0:24:19:6e:e4:1c:8f:97:68:0a:b3:e7:8c:f1: 2d:cd:27:d8:45:4d:21:e3:de:35:1e:44:2a:e7:3d:74:62:5b: 8e:c5:43:aa:a0:ed:0e:57:07:e7:e7:99:ad:85:1f:b2:8c:b2: d4:90:6a:4d:e6:be:18:b8:67:b5:99:40:45:f4:0c:51:60:f8: bd:cd:d7:67:22:f9:f9:0e:29:1d:38:59:a9:40:33:a0:9d:62: 73:0a:68:c1:ff:5a:0b:42:e7:6e:c4:7d:40:eb:0e:0d:22:17: 77:31:ba:f6:10:e8:81:ac:2f:1c:fc:f9:dc:f5:38:02:9a:c5: f8:99:d1:14:56:f2:50:b6:a2:62:f0:93:19:82:a8:ec:88:ed: ee:8f:8b:a5:1d:3c:62:0d:c6:01:bf:99:a9:40:6a:cf:d3:14: c9:10:fa:8c:e5:2d:ec:e3:e8:bc:29:d9:73:2e:f2:51:01:bd: 48:42:16:1b:78:38:6d:ad:04:61:7c:af:4c:b9:52:1f:3a:06: 8a:26:30:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQ5QzExMTAvBgNVBAUTKEY5OEJFOTQyRDlFQjc4NTZBNDMwRDFCQzI5NDczQkM0 REQ2NzdGRUEwHhcNMjUwMzEzMDQzMzIyWhcNMjUwMzIwMDQzMzIyWjAYMRYwFAYD VQQDEw02N2QyNjAxMi0xZWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqJY5yTVzGh/elh7acJg3mh5qIFNxC8PitJOF80ieB8sd1ES1/QCrRMNIcjo6 yI8QW+GzH0ZF/Tnso7pKqrWvJujME5RVWgrsH1tumJm6PS9I7Mzy/wU1K9PvW8ar +Qul173YGfm9nrLcifl+mjhBMzaMYtCS9C32522zM1ugUxTO3/Fd/h+M0RH1WQwQ BocTmiA/x7fwX5oGyfFq36AImchvy3r/HdUmQmHre4xJs+4ru4XcVQ5URmiD1qOX jrX6qumep0bEIouwxxqUulmzxPFpMvrgMKzIiNdzKvuf7YO2aM56V5fNQQW7S7+U OK6vgFTFeVbt74TrRAPDmReTgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGJwikZO YEF0iJbDbo/XvI21C2PtMB8GA1UdIwQYMBaAFPmL6ULZ63hWpDDRvClHO8TdZ3/q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDlDMS8wOUY1MkIxNDJE RDUxMUVGOUU1MDVFNURDNEY5QUUwMi8tWXZwUXRucmVGYWtNTkc4S1VjN3hOMW5m LW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy1ZdnBRdG5yZUZha01ORzhLVWM3eE4xbmYtby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDlDMS8wOUY1MkIxNDJERDUxMUVGOUU1MDVFNURDNEY5QUUwMi8tWXZwUXRucmVG YWtNTkc4S1VjN3hOMW5mLW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAT5KOk2gba8eRGEsqoLPCEyw9qfh3giELTQeNKYnx1hdJAevIMGAB+ rLZ8PX4p+YIuv+7wL8wZmw8QsCQZbuQcj5doCrPnjPEtzSfYRU0h4941HkQq5z10 YluOxUOqoO0OVwfn55mthR+yjLLUkGpN5r4YuGe1mUBF9AxRYPi9zddnIvn5Dikd OFmpQDOgnWJzCmjB/1oLQuduxH1A6w4NIhd3Mbr2EOiBrC8c/Pnc9TgCmsX4mdEU VvJQtqJi8JMZgqjsiO3uj4ulHTxiDcYBv5mpQGrP0xTJEPqM5S3s4+i8KdlzLvJR Ab1IQhYbeDhtrQRhfK9MuVIfOgaKJjDz -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:43 2025 by rpki-client