$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft File: Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft (raw, json) Hash identifier: kbVcAvHaD48+xJ1SgP/EmYH+Cwc3iBUkP1BWj1KVmvs= Subject key identifier: F9:B6:A3:1A:C5:E0:2F:84:48:0E:59:34:50:FF:DD:26:76:44:EC:24 Authority key identifier: 62:2E:E7:54:36:D6:F2:F3:9F:B2:3D:2C:EB:22:33:71:84:57:3D:FE Certificate issuer: /CN=A91EB46B/serialNumber=622EE75436D6F2F39FB23D2CEB22337184573DFE Certificate serial: 0C57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft Manifest number: 0C49 Signing time: Fri 04 Apr 2025 18:28:22 +0000 Manifest this update: Fri 04 Apr 2025 18:28:21 +0000 Manifest next update: Fri 11 Apr 2025 18:28:21 +0000 Files and hashes: 1: Yi7nVDbW8vOfsj0s6yIzcYRXPf4.crl (hash: GLjHk5XkJACf0DrErZ0v6G6QHlD7HZPFvHIeNYUurEI=) 2: BE8369D6053711EA9A24E761C4F9AE02.roa (hash: VMJPLLhedlHAk4tQ5HhxEAJ5POLeqMTVPXSXcNzn0f0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.crl rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:28:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3159 (0xc57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB46B Validity Not Before: Apr 4 18:28:21 2025 GMT Not After : Apr 11 18:28:21 2025 GMT Subject: CN=67f024c5-ad40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ee:3c:da:61:f0:1b:5b:aa:69:14:16:d4:bd: 6d:14:23:fe:43:5d:72:9e:0c:a4:31:44:c3:12:37: d7:46:0d:1d:9e:a0:50:b7:a9:0b:d3:12:25:92:dd: 0f:8b:6d:cf:4e:f9:f8:72:cd:91:83:51:20:41:93: d4:1f:e2:d7:04:a0:c8:8e:3c:73:fb:36:4f:c9:5c: 2a:d6:eb:40:51:3e:b2:b1:32:42:82:79:94:39:67: 13:76:d2:1f:fd:bb:aa:48:d7:cc:1e:41:f6:b4:c6: fc:93:3e:9b:46:15:5f:fa:ee:e0:6e:e5:ae:30:d7: bc:5e:df:e4:d4:4b:4e:d9:f6:46:d8:a2:ad:f9:3b: f0:7d:92:0a:87:ca:56:20:24:3c:23:51:e0:7a:63: b7:8b:cd:5c:3e:e5:a1:e1:66:f0:8b:e0:4d:46:90: 02:ca:5a:e3:07:e5:5a:c2:d1:35:36:e8:df:28:47: 29:7b:27:9c:8e:aa:ed:8d:91:cc:14:49:59:46:0b: 51:3e:15:5c:d6:77:66:e0:af:f7:4d:87:3a:7d:d6: d3:76:65:9d:d4:f9:c6:05:df:6c:1e:51:12:97:d6: 14:09:3a:5c:cc:15:a0:29:95:c1:d0:45:26:1a:e1: 92:97:d7:b0:82:48:3b:c8:f7:9b:4a:47:3f:af:50: 41:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:B6:A3:1A:C5:E0:2F:84:48:0E:59:34:50:FF:DD:26:76:44:EC:24 X509v3 Authority Key Identifier: keyid:62:2E:E7:54:36:D6:F2:F3:9F:B2:3D:2C:EB:22:33:71:84:57:3D:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:eb:0a:cf:1e:30:e0:be:69:99:79:99:91:cf:d3:eb:83:ce: f8:d5:ed:6c:e7:19:42:63:6b:1f:81:ee:3c:65:cd:92:e5:ac: 8d:0b:09:e4:6b:35:86:14:41:bb:83:5f:63:79:44:76:64:60: 76:7f:ca:24:55:e9:09:66:f0:0c:f5:66:db:2a:f9:4d:e3:86: 79:0f:68:c0:93:03:77:da:c5:83:0e:de:f1:bd:09:d5:98:69: e3:c6:cd:89:9f:11:bd:ca:b7:35:94:23:c9:e1:dc:3c:f9:dc: 84:4e:e3:51:cf:4c:c4:f8:eb:cc:f6:79:f8:b7:1b:c3:6c:8b: f2:c1:2e:37:65:e6:c4:c1:f1:a5:83:6a:9a:c4:04:01:a3:51: 65:6f:ba:94:d9:ce:27:90:69:61:f5:c8:f0:7e:fb:66:68:05: 05:b6:10:7d:1f:83:26:ca:b6:3d:46:ad:e9:40:16:6b:f3:36: 1e:99:d9:fc:ec:8a:73:1f:5d:cb:21:f9:d8:32:9b:0c:c3:38: e5:e7:82:7c:01:6e:d4:4f:72:fc:7d:b6:92:fb:96:af:8f:a9: 5e:b9:90:c4:bf:1b:46:1a:5b:cd:09:9b:22:06:2b:47:1f:a6: 8b:1d:63:fd:92:3f:27:91:f5:32:c8:15:1b:a9:69:08:88:fc: 6a:1b:cd:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI0NkIxMTAvBgNVBAUTKDYyMkVFNzU0MzZENkYyRjM5RkIyM0QyQ0VCMjIzMzcx ODQ1NzNERkUwHhcNMjUwNDA0MTgyODIxWhcNMjUwNDExMTgyODIxWjAYMRYwFAYD VQQDEw02N2YwMjRjNS1hZDQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtO482mHwG1uqaRQW1L1tFCP+Q11yngykMUTDEjfXRg0dnqBQt6kL0xIlkt0P i23PTvn4cs2Rg1EgQZPUH+LXBKDIjjxz+zZPyVwq1utAUT6ysTJCgnmUOWcTdtIf /buqSNfMHkH2tMb8kz6bRhVf+u7gbuWuMNe8Xt/k1EtO2fZG2KKt+TvwfZIKh8pW ICQ8I1HgemO3i81cPuWh4Wbwi+BNRpACylrjB+VawtE1NujfKEcpeyecjqrtjZHM FElZRgtRPhVc1ndm4K/3TYc6fdbTdmWd1PnGBd9sHlESl9YUCTpczBWgKZXB0EUm GuGSl9ewgkg7yPebSkc/r1BBOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPm2oxrF 4C+ESA5ZNFD/3SZ2ROwkMB8GA1UdIwQYMBaAFGIu51Q21vLzn7I9LOsiM3GEVz3+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjQ2Qi80OTMxRUU0NjAw N0QxMUVBQjQ4OTEzMUJDNEY5QUUwMi9ZaTduVkRiVzh2T2ZzajBzNnlJemNZUlhQ ZjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lpN25WRGJXOHZPZnNqMHM2eUl6Y1lSWFBmNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjQ2Qi80OTMxRUU0NjAwN0QxMUVBQjQ4OTEzMUJDNEY5QUUwMi9ZaTduVkRiVzh2 T2ZzajBzNnlJemNZUlhQZjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB96wrPHjDgvmmZeZmRz9Prg8741e1s5xlCY2sfge48Zc2S5ayNCwnk azWGFEG7g19jeUR2ZGB2f8okVekJZvAM9WbbKvlN44Z5D2jAkwN32sWDDt7xvQnV mGnjxs2JnxG9yrc1lCPJ4dw8+dyETuNRz0zE+OvM9nn4txvDbIvywS43ZebEwfGl g2qaxAQBo1Flb7qU2c4nkGlh9cjwfvtmaAUFthB9H4MmyrY9Rq3pQBZr8zYemdn8 7IpzH13LIfnYMpsMwzjl54J8AW7UT3L8fbaS+5avj6leuZDEvxtGGlvNCZsiBitH H6aLHWP9kj8nkfUyyBUbqWkIiPxqG81K -----END CERTIFICATE-----Generated at Sun Apr 6 07:11:19 2025 by rpki-client