$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft File: Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft (raw, json) Hash identifier: t7UHlJr/OGugIsQGcYEp0Te08dC7tZYs15vHI/PfvrU= Subject key identifier: 8B:48:B4:2B:44:BC:64:BF:72:5B:B2:E6:CA:61:DD:A0:80:1C:4A:7F Authority key identifier: 63:0E:FC:8B:C8:24:7F:99:A0:12:80:74:1E:4A:1A:0D:B7:F1:47:B0 Certificate issuer: /CN=A91BB629/serialNumber=630EFC8BC8247F99A01280741E4A1A0DB7F147B0 Certificate serial: 7E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft Manifest number: 7C Signing time: Thu 13 Mar 2025 04:46:33 +0000 Manifest this update: Thu 13 Mar 2025 04:46:32 +0000 Manifest next update: Thu 20 Mar 2025 04:46:32 +0000 Files and hashes: 1: Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl (hash: TfoG7QvIujiELD9xcqsCKUCjJ0/MfrTGt1ADybtn5FU=) 2: 7CE4326245B511EFBAC06E1EC4F9AE02.roa (hash: bllAWJknG6t7sgMmQWLY59vxPXpNHKXKelWOMC8ypAI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 04:46:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 126 (0x7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB629 Validity Not Before: Mar 13 04:46:32 2025 GMT Not After : Mar 20 04:46:32 2025 GMT Subject: CN=67d26328-5cbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:59:b8:0e:23:50:18:af:88:39:c1:63:15:7d: 04:7a:aa:67:53:a5:e9:50:7d:97:00:ee:ae:dc:d1: ff:69:1b:b3:8d:00:a3:42:59:64:9d:d4:76:1a:18: 7b:12:6f:7a:fb:76:bf:d6:cd:27:ae:ea:07:46:81: c7:24:bf:58:33:27:11:8c:81:29:cc:85:d0:6e:0f: 4b:ab:ae:97:29:c9:91:a9:12:bd:71:fc:3d:af:1d: 5c:13:1f:c2:bc:40:0b:df:9f:6f:97:b4:37:b7:c6: 27:3c:60:f2:cb:a6:57:3b:31:36:0b:a5:3c:73:f2: 38:68:b1:e3:3a:40:ba:92:c4:f3:75:8d:f1:8a:83: 94:57:81:19:9b:09:c0:be:d0:2f:03:51:53:49:63: c3:d4:b4:cf:fd:f1:6e:f5:bd:52:cb:6f:39:45:73: 74:64:de:9d:6f:6e:72:6b:1b:4b:fc:94:3a:1e:d5: aa:67:28:7c:7d:52:ae:f2:e4:cd:b9:b4:7c:3f:00: e5:28:4a:9d:f0:d9:0d:fd:bb:6c:89:68:d8:4a:e5: 2c:e0:0b:18:77:80:6c:66:1d:9e:ce:0f:87:d5:48: 23:5e:c3:fe:5e:05:e6:b4:81:90:64:77:11:ec:2c: 07:4e:b5:41:61:f0:d3:8e:c4:be:84:ff:e1:d0:f3: 8c:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:48:B4:2B:44:BC:64:BF:72:5B:B2:E6:CA:61:DD:A0:80:1C:4A:7F X509v3 Authority Key Identifier: keyid:63:0E:FC:8B:C8:24:7F:99:A0:12:80:74:1E:4A:1A:0D:B7:F1:47:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:75:cb:0a:96:67:83:d0:5e:f5:2c:22:cd:81:c0:e1:46:c9: 0c:77:f4:9b:8f:76:f4:42:81:60:82:15:41:41:07:57:9a:9b: ee:c4:61:e1:6b:2c:20:5e:47:82:c9:9b:3e:e5:3b:f8:4b:f2: 47:31:59:ce:3b:2c:11:eb:af:5c:6e:ec:da:61:64:7f:13:d7: fc:12:c3:c0:54:0d:6f:95:ad:50:a9:22:d4:41:62:57:54:40: d4:22:52:aa:68:79:e8:77:3b:0e:09:b9:fa:f9:50:cb:d5:fc: 4d:8c:7a:ca:71:7b:fd:53:35:e6:3a:aa:24:1f:b9:d8:65:94: 52:8f:55:21:7a:f9:eb:63:43:d2:ce:56:3a:56:cc:f4:90:a6: 31:39:8c:14:49:e3:62:8b:e0:75:62:3f:39:0f:a3:6a:7e:74: 4b:29:48:30:49:69:71:12:19:13:af:54:25:48:13:d6:85:9e: 50:4d:2e:94:91:e0:4e:0e:4a:de:03:e5:ac:32:0c:22:4d:ad: 77:83:a0:2a:97:f7:44:18:c2:a7:a5:c6:06:0b:3c:08:16:3d: 49:70:a3:5c:d0:f8:f7:1e:c7:08:84:51:6c:8a:5f:7b:ef:f9: 38:fe:aa:13:a1:17:eb:66:86:b1:98:65:73:40:88:f3:fd:43: f6:d0:c7:a5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QjYyOTExMC8GA1UEBRMoNjMwRUZDOEJDODI0N0Y5OUEwMTI4MDc0MUU0QTFBMERC N0YxNDdCMDAeFw0yNTAzMTMwNDQ2MzJaFw0yNTAzMjAwNDQ2MzJaMBgxFjAUBgNV BAMTDTY3ZDI2MzI4LTVjYmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBWbgOI1AYr4g5wWMVfQR6qmdTpelQfZcA7q7c0f9pG7ONAKNCWWSd1HYaGHsS b3r7dr/WzSeu6gdGgcckv1gzJxGMgSnMhdBuD0urrpcpyZGpEr1x/D2vHVwTH8K8 QAvfn2+XtDe3xic8YPLLplc7MTYLpTxz8jhoseM6QLqSxPN1jfGKg5RXgRmbCcC+ 0C8DUVNJY8PUtM/98W71vVLLbzlFc3Rk3p1vbnJrG0v8lDoe1apnKHx9Uq7y5M25 tHw/AOUoSp3w2Q39u2yJaNhK5SzgCxh3gGxmHZ7OD4fVSCNew/5eBea0gZBkdxHs LAdOtUFh8NOOxL6E/+HQ84zRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUi0i0K0S8 ZL9yW7LmymHdoIAcSn8wHwYDVR0jBBgwFoAUYw78i8gkf5mgEoB0HkoaDbfxR7Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJCNjI5L0UyQ0Y5NDBBNDVC NDExRUY4RkRCNzQxREM0RjlBRTAyL1l3NzhpOGdrZjVtZ0VvQjBIa29hRGJmeFI3 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWXc3OGk4Z2tmNW1nRW9CMEhrb2FEYmZ4UjdBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJC NjI5L0UyQ0Y5NDBBNDVCNDExRUY4RkRCNzQxREM0RjlBRTAyL1l3NzhpOGdrZjVt Z0VvQjBIa29hRGJmeFI3QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKV1ywqWZ4PQXvUsIs2BwOFGyQx39JuPdvRCgWCCFUFBB1eam+7EYeFr LCBeR4LJmz7lO/hL8kcxWc47LBHrr1xu7NphZH8T1/wSw8BUDW+VrVCpItRBYldU QNQiUqpoeeh3Ow4Jufr5UMvV/E2Mespxe/1TNeY6qiQfudhllFKPVSF6+etjQ9LO VjpWzPSQpjE5jBRJ42KL4HViPzkPo2p+dEspSDBJaXESGROvVCVIE9aFnlBNLpSR 4E4OSt4D5awyDCJNrXeDoCqX90QYwqelxgYLPAgWPUlwo1zQ+PcexwiEUWyKX3vv +Tj+qhOhF+tmhrGYZXNAiPP9Q/bQx6U= -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:44 2025 by rpki-client