$ rpki-client -vvf rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.mft File: yGA2V1UkSO1buu1xck0iIPA798Y.mft (raw, json) Hash identifier: HZd9IEvaOTimHLbsFCohATSW8T9S0IsvOQvyNMkVG40= Subject key identifier: FB:04:78:28:1F:A7:0C:0D:3F:98:CF:AF:02:DC:9A:9E:C5:AB:9A:06 Authority key identifier: C8:60:36:57:55:24:48:ED:5B:BA:ED:71:72:4D:22:20:F0:3B:F7:C6 Certificate issuer: /CN=A91E782F/serialNumber=C8603657552448ED5BBAED71724D2220F03BF7C6 Certificate serial: 86 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yGA2V1UkSO1buu1xck0iIPA798Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.mft Manifest number: 81 Signing time: Thu 13 Mar 2025 04:43:24 +0000 Manifest this update: Thu 13 Mar 2025 04:43:24 +0000 Manifest next update: Thu 20 Mar 2025 04:43:24 +0000 Files and hashes: 1: yGA2V1UkSO1buu1xck0iIPA798Y.crl (hash: WeT0xaZZ9i0eoqvQNE6iDbtkkYd/BJr3ysZ5q2TyN6g=) 2: 68EBA63A48B911EFB80D9535C4F9AE02.roa (hash: OV24Kj5y+880mPdkukE2fpkmI0sbTUDGEcrj2jYLxRA=) 3: C006CA2248B311EFB8A4C178C4F9AE02.roa (hash: RWKYaNgfk7P7N5uSJ3tE2gik3mua1Il7oXxrRLWnbWI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.crl rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yGA2V1UkSO1buu1xck0iIPA798Y.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 04:43:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 134 (0x86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E782F Validity Not Before: Mar 13 04:43:24 2025 GMT Not After : Mar 20 04:43:24 2025 GMT Subject: CN=67d2626c-787e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d9:6d:39:3d:2c:c2:98:6f:3c:81:d1:02:67: ef:d8:59:13:8d:d5:c2:de:f0:0f:dd:82:53:05:08: a1:89:7a:bd:0e:11:af:f2:c2:aa:75:4f:66:37:54: 03:1e:20:79:dc:95:cb:6f:ef:c1:86:d2:c9:62:f6: 48:38:96:bf:69:1d:b7:2a:92:ec:24:f9:29:c4:ee: a3:cd:13:77:32:05:99:f9:97:2c:a8:52:da:3c:30: db:4c:b9:11:67:d3:e7:61:d0:35:e3:b6:c8:70:7f: 5f:b5:e5:27:72:5b:59:18:07:2b:68:54:f4:e6:d9: 91:c4:3c:60:fd:08:1e:32:30:97:84:28:4b:5c:33: df:6b:97:67:ef:d0:f6:0e:74:40:6a:36:a7:0e:97: 22:6a:f7:1c:e1:a6:1d:a6:f5:e4:2c:c9:a2:27:63: 58:ad:3e:8a:c5:14:3b:c8:7d:bc:68:29:25:56:e1: 7a:e8:48:a9:c3:e9:74:08:99:3f:ee:33:ab:de:12: f8:14:a8:5d:14:f7:64:3d:74:eb:75:8b:d6:ae:80: d3:94:da:f1:9b:bb:0a:09:c3:4c:3d:12:e0:ac:7c: a8:e4:d5:9a:20:47:48:15:b1:0c:89:de:93:5d:2d: 1c:37:dc:37:43:9a:9c:de:57:a2:9c:48:1b:69:ac: 47:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:04:78:28:1F:A7:0C:0D:3F:98:CF:AF:02:DC:9A:9E:C5:AB:9A:06 X509v3 Authority Key Identifier: keyid:C8:60:36:57:55:24:48:ED:5B:BA:ED:71:72:4D:22:20:F0:3B:F7:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yGA2V1UkSO1buu1xck0iIPA798Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:22:82:79:7e:4b:7c:a1:05:f4:47:b7:fa:70:59:bb:7d:a3: a1:ed:5e:66:fd:30:66:a3:12:c0:81:1c:ce:21:ad:ef:48:93: 92:3f:3d:7b:d5:c9:9d:69:63:96:07:b9:86:f4:5d:a3:cb:5a: 04:8c:fb:53:78:a9:f4:02:1c:4a:cd:52:ce:3c:76:fb:d1:a4: e7:d3:7b:5c:92:96:70:ef:14:62:96:72:6a:c1:12:0e:00:11: d9:20:21:01:67:1b:4f:a6:bb:27:f6:bc:c9:6a:df:c5:9c:e1: a4:b4:50:74:4d:f4:26:c1:86:11:46:ba:25:b8:ec:51:06:5e: ec:2e:0a:6c:da:45:ad:7d:76:c0:4d:b0:5a:75:d3:29:a8:91: ac:cb:ba:4a:77:f3:97:a1:7b:d5:22:d6:b0:7f:07:eb:5a:43: 18:c3:f6:ac:dd:7f:40:a7:5b:7c:20:7d:2c:ca:58:ea:19:a9: 38:a3:28:10:08:7e:4d:78:50:3d:15:4e:17:b9:78:96:c1:4c: e4:4c:a8:b7:35:18:ef:76:5c:84:32:d1:9e:d7:ac:94:f6:a6: 5a:93:40:5c:52:88:11:05:6e:90:0d:ea:d7:c8:18:47:c0:55: b5:12:d5:b0:05:8f:b1:89:40:26:97:ab:2e:45:76:00:95:9b: fb:4c:6f:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc4MkYxMTAvBgNVBAUTKEM4NjAzNjU3NTUyNDQ4RUQ1QkJBRUQ3MTcyNEQyMjIw RjAzQkY3QzYwHhcNMjUwMzEzMDQ0MzI0WhcNMjUwMzIwMDQ0MzI0WjAYMRYwFAYD VQQDEw02N2QyNjI2Yy03ODdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAttltOT0swphvPIHRAmfv2FkTjdXC3vAP3YJTBQihiXq9DhGv8sKqdU9mN1QD HiB53JXLb+/BhtLJYvZIOJa/aR23KpLsJPkpxO6jzRN3MgWZ+ZcsqFLaPDDbTLkR Z9PnYdA147bIcH9fteUncltZGAcraFT05tmRxDxg/QgeMjCXhChLXDPfa5dn79D2 DnRAajanDpciavcc4aYdpvXkLMmiJ2NYrT6KxRQ7yH28aCklVuF66Eipw+l0CJk/ 7jOr3hL4FKhdFPdkPXTrdYvWroDTlNrxm7sKCcNMPRLgrHyo5NWaIEdIFbEMid6T XS0cN9w3Q5qc3leinEgbaaxHPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPsEeCgf pwwNP5jPrwLcmp7Fq5oGMB8GA1UdIwQYMBaAFMhgNldVJEjtW7rtcXJNIiDwO/fG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzgyRi82RDIwNzVGNjQw NzAxMUVGQkRBOUQ2NkZDNEY5QUUwMi95R0EyVjFVa1NPMWJ1dTF4Y2swaUlQQTc5 OFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3lHQTJWMVVrU08xYnV1MXhjazBpSVBBNzk4WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzgyRi82RDIwNzVGNjQwNzAxMUVGQkRBOUQ2NkZDNEY5QUUwMi95R0EyVjFVa1NP MWJ1dTF4Y2swaUlQQTc5OFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmIoJ5fkt8oQX0R7f6cFm7faOh7V5m/TBmoxLAgRzOIa3vSJOSPz17 1cmdaWOWB7mG9F2jy1oEjPtTeKn0AhxKzVLOPHb70aTn03tckpZw7xRilnJqwRIO ABHZICEBZxtPprsn9rzJat/FnOGktFB0TfQmwYYRRroluOxRBl7sLgps2kWtfXbA TbBaddMpqJGsy7pKd/OXoXvVItawfwfrWkMYw/as3X9Ap1t8IH0syljqGak4oygQ CH5NeFA9FU4XuXiWwUzkTKi3NRjvdlyEMtGe16yU9qZak0BcUogRBW6QDerXyBhH wFW1EtWwBY+xiUAml6suRXYAlZv7TG9Q -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:50 2025 by rpki-client