$ rpki-client -vvf rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.mft File: YqwbuVgKcRmBnntrbrLDUVNHh_0.mft (raw, json) Hash identifier: kbN1YpFaiBk3ntQdvk3HWJhh1NZHht04rRZFkk1u1EY= Subject key identifier: 36:65:5A:07:53:32:06:30:C6:78:1E:2E:09:65:28:12:9D:FC:51:16 Authority key identifier: 62:AC:1B:B9:58:0A:71:19:81:9E:7B:6B:6E:B2:C3:51:53:47:87:FD Certificate issuer: /CN=A911DD08/serialNumber=62AC1BB9580A7119819E7B6B6EB2C351534787FD Certificate serial: 93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YqwbuVgKcRmBnntrbrLDUVNHh_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.mft Manifest number: 90 Signing time: Thu 15 May 2025 05:44:30 +0000 Manifest this update: Thu 15 May 2025 05:44:30 +0000 Manifest next update: Thu 22 May 2025 05:44:30 +0000 Files and hashes: 1: YqwbuVgKcRmBnntrbrLDUVNHh_0.crl (hash: 1gnP0F3DowIu0cNDK6IcDyprYNOIU3uYj+aFs66jhHI=) 2: 652283665B1A11EFA78B847EC4F9AE02.roa (hash: tP/YOIdnoY7zTO5p4ZVWJihHDwAVW3mBLrg6H6OaTlM=) 3: 474934DE5B1A11EFBF0E1F7CC4F9AE02.roa (hash: AbR4JwNeIxvK28YKeU+rC69Mel7G0dy68L3LDpPyx/4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.crl rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YqwbuVgKcRmBnntrbrLDUVNHh_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 05:44:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 147 (0x93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DD08, serialNumber=62AC1BB9580A7119819E7B6B6EB2C351534787FD Validity Not Before: May 15 05:44:30 2025 GMT Not After : May 22 05:44:30 2025 GMT Subject: CN=68257f3e-bc2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:97:2f:92:b9:a0:47:02:8b:aa:d5:1f:eb:e2: 35:af:87:40:0a:b3:fe:8d:6e:0e:2c:a7:e4:a9:1d: 05:57:5e:11:6c:81:f5:ed:4b:78:94:cb:51:97:e5: e8:80:10:ff:12:21:dd:04:51:1c:85:3d:59:ee:e0: fc:3e:2f:b9:39:6d:2f:ee:da:2a:9b:17:f4:6b:42: 64:3f:e3:05:11:3a:66:af:62:f5:1c:60:7b:ea:99: 3b:fe:c4:f9:01:0f:6d:67:d8:57:0c:bf:76:5e:a8: ac:61:cf:d5:19:f4:ef:0a:b3:12:3c:1d:1b:14:36: 49:5d:40:c7:6d:56:18:56:c8:1b:4d:ef:ef:67:10: 11:2a:2d:71:ba:fc:c4:0c:d7:54:84:7e:ed:0b:0c: 39:a4:73:c4:41:45:45:41:a2:66:94:53:2b:bd:71: 16:23:8e:b3:68:1d:79:ec:64:b9:88:da:6d:c6:4f: a5:e7:05:b2:2c:29:97:12:ca:23:b9:7c:65:ee:4b: 94:b1:5f:3c:64:10:dc:c4:3a:cb:74:ac:73:a7:4b: 62:f3:c6:79:70:35:25:0d:1b:df:0f:97:59:64:b6: 97:fd:bb:05:a9:8e:fa:12:08:b9:d7:92:ec:be:8c: 11:3c:66:73:31:d8:6c:99:35:d6:78:ca:bc:8e:68: 86:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:65:5A:07:53:32:06:30:C6:78:1E:2E:09:65:28:12:9D:FC:51:16 X509v3 Authority Key Identifier: keyid:62:AC:1B:B9:58:0A:71:19:81:9E:7B:6B:6E:B2:C3:51:53:47:87:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YqwbuVgKcRmBnntrbrLDUVNHh_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:ab:a5:3e:82:db:81:06:31:a0:29:a3:f6:1c:39:91:5c:93: 47:ae:a0:12:dd:9f:5b:6e:8b:0d:e8:44:7a:cc:03:05:61:13: 63:c3:10:69:27:48:0b:66:a7:48:4a:05:5f:bf:de:9a:3b:25: 6b:3a:30:81:ce:ce:1c:0d:51:04:79:b1:cc:bb:6d:08:a0:ae: db:b1:3f:a1:f1:e4:42:2d:41:8d:9d:32:29:92:46:a2:1c:0b: e4:be:5c:68:a5:20:b1:b9:80:32:2c:09:46:2e:55:63:da:a3: 4c:b1:8a:b6:82:8c:4e:eb:96:09:10:c7:91:96:1d:ea:a2:b2: 74:96:d1:2d:00:f5:cf:ed:2d:37:e0:d6:bd:e0:a1:79:b6:79: bc:1a:71:a9:60:19:31:05:77:13:a2:3f:48:ff:77:97:f3:d6: da:7a:17:f5:f8:c5:c3:7c:4a:bb:78:fc:9c:5e:8e:5a:3a:e6: 5d:fb:d6:7e:e8:a2:92:52:d8:1e:41:bb:35:48:29:5b:6f:33: d2:6c:d5:98:8b:4c:51:91:b0:06:5c:77:21:64:20:59:d8:4d: 61:c1:08:47:40:50:93:55:e0:1e:67:86:ce:48:07:d8:55:66: 1d:1b:36:44:67:47:ab:cf:18:35:0a:20:1b:c7:4e:2f:2c:ba: 1e:3a:18:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUREMDgxMTAvBgNVBAUTKDYyQUMxQkI5NTgwQTcxMTk4MTlFN0I2QjZFQjJDMzUx NTM0Nzg3RkQwHhcNMjUwNTE1MDU0NDMwWhcNMjUwNTIyMDU0NDMwWjAYMRYwFAYD VQQDEw02ODI1N2YzZS1iYzJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAspcvkrmgRwKLqtUf6+I1r4dACrP+jW4OLKfkqR0FV14RbIH17Ut4lMtRl+Xo gBD/EiHdBFEchT1Z7uD8Pi+5OW0v7toqmxf0a0JkP+MFETpmr2L1HGB76pk7/sT5 AQ9tZ9hXDL92XqisYc/VGfTvCrMSPB0bFDZJXUDHbVYYVsgbTe/vZxARKi1xuvzE DNdUhH7tCww5pHPEQUVFQaJmlFMrvXEWI46zaB157GS5iNptxk+l5wWyLCmXEsoj uXxl7kuUsV88ZBDcxDrLdKxzp0ti88Z5cDUlDRvfD5dZZLaX/bsFqY76Egi515Ls vowRPGZzMdhsmTXWeMq8jmiGfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDZlWgdT MgYwxngeLgllKBKd/FEWMB8GA1UdIwQYMBaAFGKsG7lYCnEZgZ57a26yw1FTR4f9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREQwOC85QTVGQkI2MjVC MTkxMUVGQkVEMEM0N0FDNEY5QUUwMi9ZcXdidVZnS2NSbUJubnRyYnJMRFVWTkho XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lxd2J1VmdLY1JtQm5udHJickxEVVZOSGhfMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx REQwOC85QTVGQkI2MjVCMTkxMUVGQkVEMEM0N0FDNEY5QUUwMi9ZcXdidVZnS2NS bUJubnRyYnJMRFVWTkhoXzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcq6U+gtuBBjGgKaP2HDmRXJNHrqAS3Z9bbosN6ER6zAMFYRNjwxBp J0gLZqdISgVfv96aOyVrOjCBzs4cDVEEebHMu20IoK7bsT+h8eRCLUGNnTIpkkai HAvkvlxopSCxuYAyLAlGLlVj2qNMsYq2goxO65YJEMeRlh3qorJ0ltEtAPXP7S03 4Na94KF5tnm8GnGpYBkxBXcToj9I/3eX89baehf1+MXDfEq7ePycXo5aOuZd+9Z+ 6KKSUtgeQbs1SClbbzPSbNWYi0xRkbAGXHchZCBZ2E1hwQhHQFCTVeAeZ4bOSAfY VWYdGzZEZ0erzxg1CiAbx04vLLoeOhgT -----END CERTIFICATE-----Generated at Fri May 16 14:40:25 2025 by rpki-client