$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft File: yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft (raw, json) Hash identifier: ZrMRq3LYWUaAY4F4M2pzGZYmYMlPo6On0yDHtEP6VAM= Subject key identifier: 03:02:58:77:64:8C:06:42:2F:DF:FB:A5:95:0C:40:A8:2E:1C:F0:53 Authority key identifier: CA:A6:EB:99:B3:FE:0E:FB:65:D3:8F:15:B2:AA:E4:DC:39:DA:B3:1D Certificate issuer: /CN=A91DE352/serialNumber=CAA6EB99B3FE0EFB65D38F15B2AAE4DC39DAB31D Certificate serial: 04EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqbrmbP-Dvtl048Vsqrk3Dnasx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft Manifest number: 04EA Signing time: Sat 15 Feb 2025 01:05:50 +0000 Manifest this update: Sat 15 Feb 2025 01:05:49 +0000 Manifest next update: Sat 22 Feb 2025 01:05:49 +0000 Files and hashes: 1: yqbrmbP-Dvtl048Vsqrk3Dnasx0.crl (hash: OgrlHic/A4P2dxwY+22qDRUzayQvEKEaQxFB97opERQ=) 2: F1C77A3C73E711ECA415F87FC4F9AE02.roa (hash: 2CyIyNp44NxNr2SQi/2YfeBSUBR+fj5EogTGvnYWavo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.crl rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqbrmbP-Dvtl048Vsqrk3Dnasx0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1263 (0x4ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE352 Validity Not Before: Feb 15 01:05:49 2025 GMT Not After : Feb 22 01:05:49 2025 GMT Subject: CN=67afe86d-0e41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:77:88:11:b6:98:e3:9a:88:ec:ce:be:1d:18: 1d:e5:14:20:e8:d6:47:90:c7:69:cd:28:ad:fd:82: 08:27:3c:84:c1:7e:41:45:80:2d:d8:2d:0e:ec:2c: 7b:6e:39:6f:a6:56:85:dd:5a:4c:c6:cd:b4:e5:69: 46:e0:a4:4e:c2:3a:95:83:c2:28:22:bf:af:08:78: fa:21:b4:5c:01:68:59:45:a4:a1:bd:d0:2b:1c:b5: e3:81:ba:89:d3:71:41:20:f3:be:83:43:32:6e:f2: 0f:5e:7b:40:41:29:ad:85:a2:86:79:54:e3:69:74: 2c:35:60:b4:15:0f:cf:87:d5:94:1c:95:85:c2:e3: ae:02:f7:32:2e:24:0b:57:ef:0e:0e:76:52:87:3f: 6e:5f:33:e3:57:1f:6c:70:bf:48:95:fd:6c:98:9e: 29:95:ce:7b:c6:10:58:99:5f:e6:b0:08:a0:eb:ae: dd:55:1e:bb:c0:88:e1:0e:cd:26:20:89:06:8b:b5: 08:d8:ec:42:0e:fe:71:6b:60:96:28:9a:26:15:11: 6b:dc:49:4a:26:8f:7e:ba:8c:bf:95:bd:ed:4a:f8: cb:30:68:c3:b3:f0:f9:7f:bc:1f:ba:58:9f:09:87: af:bd:ed:a9:3c:ca:48:32:71:f9:2a:52:df:5b:78: 4c:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:02:58:77:64:8C:06:42:2F:DF:FB:A5:95:0C:40:A8:2E:1C:F0:53 X509v3 Authority Key Identifier: keyid:CA:A6:EB:99:B3:FE:0E:FB:65:D3:8F:15:B2:AA:E4:DC:39:DA:B3:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqbrmbP-Dvtl048Vsqrk3Dnasx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:00:69:39:fe:db:d6:43:3b:8c:3c:64:c2:15:9e:40:28:9d: 10:a9:cc:2f:a0:ed:35:81:f8:c7:f2:d9:09:aa:6e:10:01:9c: 30:a2:5f:f8:3f:90:27:d4:c1:5e:70:c1:cb:ef:8d:35:3e:35: 3e:af:5d:27:db:80:0b:45:c9:62:1a:ff:f1:73:2f:66:7e:48: 1d:6f:31:5e:c8:01:06:84:85:f3:69:ce:80:cf:eb:5c:6a:c6: 12:2d:91:b3:84:e5:e8:d6:1b:cd:fe:44:5f:69:a7:60:17:30: 7e:1d:9e:4a:69:56:22:3e:77:10:0f:50:d8:b4:7a:fb:b0:bd: ad:ad:d8:b4:5a:52:89:b7:da:50:2f:c3:ee:cd:62:63:c3:43: d3:6f:e0:f7:62:22:b1:01:3c:66:c0:a7:09:27:52:1a:8c:a8: 2a:a0:04:dc:ec:9b:8c:00:25:d8:4c:45:10:d4:ae:f8:dd:73: 20:65:08:db:c3:c5:8d:be:fa:d5:c6:a4:f6:e4:2b:68:32:4e: 0a:cc:d0:64:90:e7:b7:1c:ab:0a:5d:36:73:c9:dd:97:51:69: 76:aa:25:4c:6e:30:f9:a9:42:da:05:e3:07:85:55:04:a9:ce: 2e:8c:30:3f:08:f1:f4:1d:ed:24:60:e5:89:00:16:06:f8:c0: 1b:86:dd:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REUzNTIxMTAvBgNVBAUTKENBQTZFQjk5QjNGRTBFRkI2NUQzOEYxNUIyQUFFNERD MzlEQUIzMUQwHhcNMjUwMjE1MDEwNTQ5WhcNMjUwMjIyMDEwNTQ5WjAYMRYwFAYD VQQDEw02N2FmZTg2ZC0wZTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz3eIEbaY45qI7M6+HRgd5RQg6NZHkMdpzSit/YIIJzyEwX5BRYAt2C0O7Cx7 bjlvplaF3VpMxs205WlG4KROwjqVg8IoIr+vCHj6IbRcAWhZRaShvdArHLXjgbqJ 03FBIPO+g0MybvIPXntAQSmthaKGeVTjaXQsNWC0FQ/Ph9WUHJWFwuOuAvcyLiQL V+8ODnZShz9uXzPjVx9scL9Ilf1smJ4plc57xhBYmV/msAig667dVR67wIjhDs0m IIkGi7UI2OxCDv5xa2CWKJomFRFr3ElKJo9+uoy/lb3tSvjLMGjDs/D5f7wfulif CYevve2pPMpIMnH5KlLfW3hMGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAMCWHdk jAZCL9/7pZUMQKguHPBTMB8GA1UdIwQYMBaAFMqm65mz/g77ZdOPFbKq5Nw52rMd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTM1Mi9DOEUyMkU4QTAx MTYxMUVDOUNDREU3MjJDNEY5QUUwMi95cWJybWJQLUR2dGwwNDhWc3FyazNEbmFz eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lxYnJtYlAtRHZ0bDA0OFZzcXJrM0RuYXN4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTM1Mi9DOEUyMkU4QTAxMTYxMUVDOUNDREU3MjJDNEY5QUUwMi95cWJybWJQLUR2 dGwwNDhWc3FyazNEbmFzeDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6AGk5/tvWQzuMPGTCFZ5AKJ0QqcwvoO01gfjH8tkJqm4QAZwwol/4 P5An1MFecMHL7401PjU+r10n24ALRcliGv/xcy9mfkgdbzFeyAEGhIXzac6Az+tc asYSLZGzhOXo1hvN/kRfaadgFzB+HZ5KaVYiPncQD1DYtHr7sL2trdi0WlKJt9pQ L8PuzWJjw0PTb+D3YiKxATxmwKcJJ1IajKgqoATc7JuMACXYTEUQ1K743XMgZQjb w8WNvvrVxqT25CtoMk4KzNBkkOe3HKsKXTZzyd2XUWl2qiVMbjD5qULaBeMHhVUE qc4ujDA/CPH0He0kYOWJABYG+MAbht3h -----END CERTIFICATE-----Generated at Sun Feb 16 22:31:34 2025 by rpki-client