$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft File: yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft (raw, json) Hash identifier: RpBwdcAaGQIVWQXSjIS5z9F4UYRQGA/B7Mk2u+whrig= Subject key identifier: D1:F4:CD:31:6D:48:B5:AC:D2:1B:20:22:5A:50:FB:57:43:7E:4C:09 Authority key identifier: CA:A6:EB:99:B3:FE:0E:FB:65:D3:8F:15:B2:AA:E4:DC:39:DA:B3:1D Certificate issuer: /CN=A91DE352/serialNumber=CAA6EB99B3FE0EFB65D38F15B2AAE4DC39DAB31D Certificate serial: 04FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqbrmbP-Dvtl048Vsqrk3Dnasx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft Manifest number: 04F7 Signing time: Wed 12 Mar 2025 23:17:45 +0000 Manifest this update: Wed 12 Mar 2025 23:17:44 +0000 Manifest next update: Wed 19 Mar 2025 23:17:44 +0000 Files and hashes: 1: yqbrmbP-Dvtl048Vsqrk3Dnasx0.crl (hash: YllHetZtQQW9QnyjRDuSSYYXyfnLE/DkWNHnA6tZOQY=) 2: F1C77A3C73E711ECA415F87FC4F9AE02.roa (hash: 2CyIyNp44NxNr2SQi/2YfeBSUBR+fj5EogTGvnYWavo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.crl rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqbrmbP-Dvtl048Vsqrk3Dnasx0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 23:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1276 (0x4fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE352 Validity Not Before: Mar 12 23:17:44 2025 GMT Not After : Mar 19 23:17:44 2025 GMT Subject: CN=67d21618-7d0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fe:94:f2:23:c3:d6:84:3a:f8:3a:3d:94:41:62: f6:ca:5d:ab:4a:19:12:8f:b9:ff:ab:d2:e1:99:4f: 78:49:3e:8b:33:8f:97:e4:cc:3b:26:6b:cf:85:47: 5d:c0:32:fc:bf:05:a5:b4:09:c0:42:34:80:18:06: ad:be:29:59:41:f9:04:42:5b:03:2f:fb:2f:d5:fd: 7a:ee:92:71:78:e2:64:bb:71:16:d2:ab:20:98:08: 8b:ca:4e:09:23:8c:62:b6:76:0a:52:a0:ee:64:df: 86:dd:4f:cd:2f:eb:81:49:ad:28:f9:26:e5:19:23: 76:25:e2:89:23:15:b8:d6:aa:72:af:52:bd:a7:af: e7:41:4b:77:b1:a8:00:19:53:fb:6f:20:49:c4:af: 72:93:9c:11:4b:21:6e:2c:5f:43:5f:e6:0d:fe:05: 4b:31:75:6e:0d:3f:70:b9:b5:de:9d:8a:6e:4a:b9: 70:97:8e:7a:6e:37:45:68:94:e7:42:e3:ac:65:1e: 8a:3f:8d:a7:59:9c:f1:35:d6:a4:dc:38:16:03:9a: da:49:5e:84:8a:cb:a4:c1:c8:40:0f:ea:af:67:6c: d1:a3:ef:38:f9:8f:76:00:f8:06:6d:a0:1f:be:f1: 7c:a8:1c:b7:3e:50:d6:b8:66:cb:cf:52:94:ba:49: 9d:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:F4:CD:31:6D:48:B5:AC:D2:1B:20:22:5A:50:FB:57:43:7E:4C:09 X509v3 Authority Key Identifier: keyid:CA:A6:EB:99:B3:FE:0E:FB:65:D3:8F:15:B2:AA:E4:DC:39:DA:B3:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqbrmbP-Dvtl048Vsqrk3Dnasx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:35:bc:49:a6:d2:80:20:b6:90:26:cf:0e:d9:6e:a1:09:76: fc:05:e6:e1:2e:a8:01:4a:cc:7f:58:64:fb:53:bc:c0:c1:dc: cc:45:cf:05:73:1f:b6:74:76:11:84:fe:10:85:c1:fd:9c:4f: 44:fb:fa:73:7d:e3:5b:00:60:e2:12:f3:92:b5:fe:23:9b:71: d2:33:86:21:32:0a:cf:4f:cb:2f:26:04:a7:73:69:a7:97:dc: 2f:78:c8:23:45:30:2c:ca:63:94:d8:95:94:38:53:e3:ae:4c: 1d:63:16:37:90:8d:da:5c:4e:6a:35:4b:63:0d:a4:e6:50:b5: eb:42:dc:db:2f:ad:24:60:23:5e:bc:ad:5b:02:25:09:7e:ba: ef:5f:74:82:14:6a:ce:a6:e8:95:e2:60:e4:80:7b:03:01:cb: f5:12:6e:1f:11:6e:ad:af:41:4f:9d:c7:e3:dc:54:39:99:d4: a2:b4:e9:3d:91:8d:d2:1a:14:d7:b9:48:c2:a9:b4:b4:c4:8c: 67:60:ee:20:2b:f5:6a:c7:55:82:cb:b5:54:67:ca:d2:57:ad: b3:4d:51:f0:ed:32:2a:e5:5f:54:bb:1a:d4:18:6c:0b:f9:a8: dc:9b:38:c0:72:38:e0:9d:8c:4f:48:2d:50:e9:35:dc:44:18: db:17:04:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REUzNTIxMTAvBgNVBAUTKENBQTZFQjk5QjNGRTBFRkI2NUQzOEYxNUIyQUFFNERD MzlEQUIzMUQwHhcNMjUwMzEyMjMxNzQ0WhcNMjUwMzE5MjMxNzQ0WjAYMRYwFAYD VQQDEw02N2QyMTYxOC03ZDBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/pTyI8PWhDr4Oj2UQWL2yl2rShkSj7n/q9LhmU94ST6LM4+X5Mw7JmvPhUdd wDL8vwWltAnAQjSAGAatvilZQfkEQlsDL/sv1f167pJxeOJku3EW0qsgmAiLyk4J I4xitnYKUqDuZN+G3U/NL+uBSa0o+SblGSN2JeKJIxW41qpyr1K9p6/nQUt3sagA GVP7byBJxK9yk5wRSyFuLF9DX+YN/gVLMXVuDT9wubXenYpuSrlwl456bjdFaJTn QuOsZR6KP42nWZzxNdak3DgWA5raSV6EisukwchAD+qvZ2zRo+84+Y92APgGbaAf vvF8qBy3PlDWuGbLz1KUukmdKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNH0zTFt SLWs0hsgIlpQ+1dDfkwJMB8GA1UdIwQYMBaAFMqm65mz/g77ZdOPFbKq5Nw52rMd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTM1Mi9DOEUyMkU4QTAx MTYxMUVDOUNDREU3MjJDNEY5QUUwMi95cWJybWJQLUR2dGwwNDhWc3FyazNEbmFz eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lxYnJtYlAtRHZ0bDA0OFZzcXJrM0RuYXN4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTM1Mi9DOEUyMkU4QTAxMTYxMUVDOUNDREU3MjJDNEY5QUUwMi95cWJybWJQLUR2 dGwwNDhWc3FyazNEbmFzeDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWNbxJptKAILaQJs8O2W6hCXb8BebhLqgBSsx/WGT7U7zAwdzMRc8F cx+2dHYRhP4QhcH9nE9E+/pzfeNbAGDiEvOStf4jm3HSM4YhMgrPT8svJgSnc2mn l9wveMgjRTAsymOU2JWUOFPjrkwdYxY3kI3aXE5qNUtjDaTmULXrQtzbL60kYCNe vK1bAiUJfrrvX3SCFGrOpuiV4mDkgHsDAcv1Em4fEW6tr0FPncfj3FQ5mdSitOk9 kY3SGhTXuUjCqbS0xIxnYO4gK/Vqx1WCy7VUZ8rSV62zTVHw7TIq5V9UuxrUGGwL +ajcmzjAcjjgnYxPSC1Q6TXcRBjbFwTO -----END CERTIFICATE-----Generated at Thu Mar 13 21:28:07 2025 by rpki-client