$ rpki-client -vvf rpki.apnic.net/member_repository/A91B49F2/82E4C2A0A6EE11E985F3B011C4F9AE02/yHO7YQuRPD7NxwiiZadLEUGnb1Q.mft File: yHO7YQuRPD7NxwiiZadLEUGnb1Q.mft (raw, json) Hash identifier: IEZd7v7F4Z1V/tBYrR6tQX9R5E9TccG+CojujHov5Wo= Subject key identifier: 44:12:BB:96:C8:76:2B:A3:78:67:AB:F5:69:94:46:A7:05:A9:0B:9D Authority key identifier: C8:73:BB:61:0B:91:3C:3E:CD:C7:08:A2:65:A7:4B:11:41:A7:6F:54 Certificate issuer: /CN=A91B49F2/serialNumber=C873BB610B913C3ECDC708A265A74B1141A76F54 Certificate serial: 0E42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yHO7YQuRPD7NxwiiZadLEUGnb1Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B49F2/82E4C2A0A6EE11E985F3B011C4F9AE02/yHO7YQuRPD7NxwiiZadLEUGnb1Q.mft Manifest number: 0E2E Signing time: Sat 10 May 2025 17:40:35 +0000 Manifest this update: Sat 10 May 2025 17:40:34 +0000 Manifest next update: Sat 17 May 2025 17:40:34 +0000 Files and hashes: 1: yHO7YQuRPD7NxwiiZadLEUGnb1Q.crl (hash: vyJzwkM62nZePzUzhacvQ1AT3dNomAwT6R00/iYtl34=) 2: BB0AA59C0A3D11EB82ECEA4BC4F9AE02.roa (hash: ko6JuSH5KdHDRvbFAlQ/kuUaDfW5QK4Fi6pI4fCmc9Y=) 3: 79395BE68EB311EF9A8DFC3CC4F9AE02.roa (hash: IVs/EZ3aUjzucqrKlhAwA1VLfGJK+bUizU/goA1sqEo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B49F2/82E4C2A0A6EE11E985F3B011C4F9AE02/yHO7YQuRPD7NxwiiZadLEUGnb1Q.crl rsync://rpki.apnic.net/member_repository/A91B49F2/82E4C2A0A6EE11E985F3B011C4F9AE02/yHO7YQuRPD7NxwiiZadLEUGnb1Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yHO7YQuRPD7NxwiiZadLEUGnb1Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 17:40:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3650 (0xe42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B49F2, serialNumber=C873BB610B913C3ECDC708A265A74B1141A76F54 Validity Not Before: May 10 17:40:34 2025 GMT Not After : May 17 17:40:34 2025 GMT Subject: CN=681f8f93-e304 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:55:d7:56:58:78:31:63:2f:70:11:68:fc:76: b8:e1:29:94:c3:a7:09:ba:70:4f:5c:38:9d:9b:73: aa:b3:03:53:07:13:59:ee:70:3b:8e:48:df:86:14: 6d:d6:f1:3a:99:5a:59:90:55:89:34:88:f5:62:ec: a0:3d:92:6c:3c:64:43:63:ad:43:bf:86:fd:65:e7: 8f:ce:e4:46:cd:dc:ba:22:83:49:d1:af:68:f0:fc: 5e:17:60:07:51:d1:25:04:0a:27:b2:a9:c9:d1:43: 92:5c:d6:15:b6:42:a4:3c:7b:dd:5a:f7:1a:8a:c0: 78:6c:e6:9a:c5:f8:cb:38:a4:a6:0e:b3:f1:97:f1: 56:39:be:5b:88:f5:02:2c:0b:81:3a:b4:be:41:59: 9f:35:15:ec:f4:0b:66:08:bc:33:4a:95:6f:a7:f1: 70:38:16:d9:55:72:b8:16:ae:08:90:d2:49:3f:fc: c2:15:43:f0:6d:b5:e7:63:8d:55:14:45:dd:75:2d: d8:43:75:56:1c:01:34:34:66:d2:39:5b:c4:a8:58: 58:01:89:6c:7f:a2:a8:36:5c:33:be:0e:93:56:12: cf:9d:d1:a0:ce:69:7a:12:7d:2d:81:56:0e:d3:5e: 73:a2:07:f1:3e:f8:34:1e:b5:bd:4b:1a:ef:b2:fa: 27:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:12:BB:96:C8:76:2B:A3:78:67:AB:F5:69:94:46:A7:05:A9:0B:9D X509v3 Authority Key Identifier: keyid:C8:73:BB:61:0B:91:3C:3E:CD:C7:08:A2:65:A7:4B:11:41:A7:6F:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B49F2/82E4C2A0A6EE11E985F3B011C4F9AE02/yHO7YQuRPD7NxwiiZadLEUGnb1Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yHO7YQuRPD7NxwiiZadLEUGnb1Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B49F2/82E4C2A0A6EE11E985F3B011C4F9AE02/yHO7YQuRPD7NxwiiZadLEUGnb1Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:a9:07:34:d4:e7:ea:86:41:f1:26:33:05:fe:83:7a:4b:84: f5:db:6c:f4:13:04:30:1c:c2:ef:da:46:53:41:5d:9b:d3:86: fc:ff:1c:b5:74:ba:ee:be:ba:d0:e4:c4:3b:c1:6f:be:50:53: 12:a8:ed:c2:c6:c2:97:71:c4:62:56:1f:16:7f:07:05:5b:7d: bd:96:a4:63:d3:d7:3a:54:cb:bb:3c:f2:f4:dd:69:68:62:37: 78:e9:7b:27:62:98:8d:71:90:41:a3:13:88:25:16:bf:de:d3: 09:1c:fa:8f:27:a4:74:db:e8:53:aa:c3:3b:58:ee:b4:8a:c6: b7:96:de:40:29:a8:05:03:21:fb:8a:83:2c:16:80:20:46:b0: e6:5b:f4:a5:af:95:d9:62:a4:80:79:dd:8b:2f:10:82:70:d9: 51:f6:ad:c4:5e:4b:4b:eb:66:6b:a4:57:6a:09:0d:62:74:61: 1c:3b:63:29:0c:b7:6a:fa:da:d2:70:9e:56:ba:e9:22:4e:8a: e7:6b:e0:8c:56:99:ad:c1:b5:1f:eb:35:7f:ee:0e:66:2d:fe: b3:57:ab:ab:4a:92:e9:29:ba:f8:4c:c7:e1:23:13:ef:44:6d: ca:5c:0b:70:a1:0b:fa:8b:fe:dc:f5:13:90:ac:51:ce:72:87: ae:0d:d7:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ5RjIxMTAvBgNVBAUTKEM4NzNCQjYxMEI5MTNDM0VDREM3MDhBMjY1QTc0QjEx NDFBNzZGNTQwHhcNMjUwNTEwMTc0MDM0WhcNMjUwNTE3MTc0MDM0WjAYMRYwFAYD VQQDEw02ODFmOGY5My1lMzA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxFXXVlh4MWMvcBFo/Ha44SmUw6cJunBPXDidm3OqswNTBxNZ7nA7jkjfhhRt 1vE6mVpZkFWJNIj1YuygPZJsPGRDY61Dv4b9ZeePzuRGzdy6IoNJ0a9o8PxeF2AH UdElBAonsqnJ0UOSXNYVtkKkPHvdWvcaisB4bOaaxfjLOKSmDrPxl/FWOb5biPUC LAuBOrS+QVmfNRXs9AtmCLwzSpVvp/FwOBbZVXK4Fq4IkNJJP/zCFUPwbbXnY41V FEXddS3YQ3VWHAE0NGbSOVvEqFhYAYlsf6KoNlwzvg6TVhLPndGgzml6En0tgVYO 015zogfxPvg0HrW9SxrvsvonfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEQSu5bI diujeGer9WmURqcFqQudMB8GA1UdIwQYMBaAFMhzu2ELkTw+zccIomWnSxFBp29U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDlGMi84MkU0QzJBMEE2 RUUxMUU5ODVGM0IwMTFDNEY5QUUwMi95SE83WVF1UlBEN054d2lpWmFkTEVVR25i MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lITzdZUXVSUEQ3Tnh3aWlaYWRMRVVHbmIxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDlGMi84MkU0QzJBMEE2RUUxMUU5ODVGM0IwMTFDNEY5QUUwMi95SE83WVF1UlBE N054d2lpWmFkTEVVR25iMVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYqQc01OfqhkHxJjMF/oN6S4T122z0EwQwHMLv2kZTQV2b04b8/xy1 dLruvrrQ5MQ7wW++UFMSqO3CxsKXccRiVh8WfwcFW329lqRj09c6VMu7PPL03Wlo Yjd46XsnYpiNcZBBoxOIJRa/3tMJHPqPJ6R02+hTqsM7WO60isa3lt5AKagFAyH7 ioMsFoAgRrDmW/Slr5XZYqSAed2LLxCCcNlR9q3EXktL62ZrpFdqCQ1idGEcO2Mp DLdq+trScJ5WuukiTorna+CMVpmtwbUf6zV/7g5mLf6zV6urSpLpKbr4TMfhIxPv RG3KXAtwoQv6i/7c9ROQrFHOcoeuDddg -----END CERTIFICATE-----Generated at Mon May 12 08:52:03 2025 by rpki-client