$ rpki-client -vvf rpki.apnic.net/member_repository/A91298C7/D494B8EEFA7F11EB99ADD85CC4F9AE02/YzrLjVHS8Ihpm4pxSRzHVT7AwRI.mft File: YzrLjVHS8Ihpm4pxSRzHVT7AwRI.mft (raw, json) Hash identifier: 5MsmCxQsz0zTYrG1ln+zktEKUoBABpSqugQIsjmLSnc= Subject key identifier: 15:31:49:DF:81:34:6F:03:CB:9E:35:06:0F:63:EC:2C:C3:16:50:29 Authority key identifier: 63:3A:CB:8D:51:D2:F0:88:69:9B:8A:71:49:1C:C7:55:3E:C0:C1:12 Certificate issuer: /CN=A91298C7/serialNumber=633ACB8D51D2F088699B8A71491CC7553EC0C112 Certificate serial: 0520 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YzrLjVHS8Ihpm4pxSRzHVT7AwRI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91298C7/D494B8EEFA7F11EB99ADD85CC4F9AE02/YzrLjVHS8Ihpm4pxSRzHVT7AwRI.mft Manifest number: 0520 Signing time: Sat 10 May 2025 23:07:48 +0000 Manifest this update: Sat 10 May 2025 23:07:47 +0000 Manifest next update: Sat 17 May 2025 23:07:47 +0000 Files and hashes: 1: YzrLjVHS8Ihpm4pxSRzHVT7AwRI.crl (hash: kohVOl0GUMXYRgyuLYd6sy3irKn9C27/aYD72ft5Rks=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91298C7/D494B8EEFA7F11EB99ADD85CC4F9AE02/YzrLjVHS8Ihpm4pxSRzHVT7AwRI.crl rsync://rpki.apnic.net/member_repository/A91298C7/D494B8EEFA7F11EB99ADD85CC4F9AE02/YzrLjVHS8Ihpm4pxSRzHVT7AwRI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YzrLjVHS8Ihpm4pxSRzHVT7AwRI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 23:07:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1312 (0x520) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91298C7, serialNumber=633ACB8D51D2F088699B8A71491CC7553EC0C112 Validity Not Before: May 10 23:07:47 2025 GMT Not After : May 17 23:07:47 2025 GMT Subject: CN=681fdc44-4486 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:93:c8:bc:14:ec:56:19:e8:ac:c3:18:bf:41: a3:28:7c:45:70:d3:86:a4:bc:e3:36:f5:2d:27:57: 45:32:15:83:bb:4e:30:1b:98:95:ac:0a:c5:bb:9d: 88:ad:99:e8:f9:73:d6:59:32:d0:55:c5:27:69:d3: 49:15:89:38:79:3b:67:0a:e3:96:dd:cf:13:8a:b1: 33:43:16:3f:86:84:e4:64:2a:ef:8b:0d:fc:dd:1c: f9:00:86:f8:03:d6:53:07:b8:74:17:3f:83:50:5e: cc:49:93:13:0a:71:82:d7:f5:31:85:0d:c8:07:f5: 92:96:59:bf:d0:dc:b4:5d:75:8c:b0:7e:c1:e4:f4: 6a:a7:9b:f1:14:4d:44:dc:35:8b:44:9a:a2:96:18: d9:c8:fe:e6:c5:18:03:26:ff:1b:b9:36:82:35:04: 92:61:88:a9:dc:4a:a5:fa:4c:01:c1:fe:37:5e:be: bd:d3:5c:3b:2c:15:fc:ea:85:d3:33:47:c2:18:0e: ed:36:ae:3a:49:24:bb:45:a4:8d:ae:55:11:67:ed: bc:e5:f2:31:b9:81:f6:8e:1e:3d:27:04:af:2c:b8: 96:0b:d6:9d:27:85:ef:25:1a:4b:01:88:29:dd:34: ee:07:76:06:76:d7:c1:9b:3a:1c:88:1e:f1:8e:7d: 60:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:31:49:DF:81:34:6F:03:CB:9E:35:06:0F:63:EC:2C:C3:16:50:29 X509v3 Authority Key Identifier: keyid:63:3A:CB:8D:51:D2:F0:88:69:9B:8A:71:49:1C:C7:55:3E:C0:C1:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91298C7/D494B8EEFA7F11EB99ADD85CC4F9AE02/YzrLjVHS8Ihpm4pxSRzHVT7AwRI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YzrLjVHS8Ihpm4pxSRzHVT7AwRI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91298C7/D494B8EEFA7F11EB99ADD85CC4F9AE02/YzrLjVHS8Ihpm4pxSRzHVT7AwRI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:39:88:8b:9f:3b:25:d1:68:2b:4e:fc:f7:34:b6:40:ec:64: 01:83:f4:32:7d:d0:06:bf:53:a5:ec:70:07:8c:f1:38:ee:57: 84:fe:f7:8c:bb:31:18:cb:7f:30:4d:9f:60:f1:37:79:96:be: a3:06:92:07:d0:50:0d:ca:aa:bd:c8:66:81:9d:80:9e:dc:59: c2:15:1f:d3:17:61:09:a9:74:2a:df:3b:4e:e0:1f:ec:dd:6f: 18:a7:14:b5:fd:02:94:ef:4c:32:35:71:6c:96:cc:d2:e0:da: 4b:d9:ff:b9:c1:2d:ba:94:58:90:92:19:c6:35:6e:45:90:b7: 6d:06:e4:e4:b9:59:0a:58:62:64:94:37:8f:3f:04:3a:2e:11: 38:42:e0:00:b9:da:0e:02:4c:a4:d7:0b:83:d3:33:69:7b:d8: 25:9f:db:70:52:87:a4:04:79:fd:1c:cf:5f:02:37:b0:fb:70: 3e:42:62:8b:fc:ee:d5:59:38:87:aa:91:b1:22:fa:3e:17:95: d1:c1:2d:dc:72:65:6a:63:60:18:b6:5e:82:62:ef:48:4e:1a: 0e:0f:d8:ea:88:f7:da:5a:fc:b6:65:15:04:5c:16:e6:b0:dd: ba:6b:bb:76:fa:fb:50:82:ca:eb:0f:c8:9e:57:ea:62:7d:a9: ad:3a:0d:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk4QzcxMTAvBgNVBAUTKDYzM0FDQjhENTFEMkYwODg2OTlCOEE3MTQ5MUNDNzU1 M0VDMEMxMTIwHhcNMjUwNTEwMjMwNzQ3WhcNMjUwNTE3MjMwNzQ3WjAYMRYwFAYD VQQDEw02ODFmZGM0NC00NDg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt5PIvBTsVhnorMMYv0GjKHxFcNOGpLzjNvUtJ1dFMhWDu04wG5iVrArFu52I rZno+XPWWTLQVcUnadNJFYk4eTtnCuOW3c8TirEzQxY/hoTkZCrviw383Rz5AIb4 A9ZTB7h0Fz+DUF7MSZMTCnGC1/UxhQ3IB/WSllm/0Ny0XXWMsH7B5PRqp5vxFE1E 3DWLRJqilhjZyP7mxRgDJv8buTaCNQSSYYip3Eql+kwBwf43Xr6901w7LBX86oXT M0fCGA7tNq46SSS7RaSNrlURZ+285fIxuYH2jh49JwSvLLiWC9adJ4XvJRpLAYgp 3TTuB3YGdtfBmzociB7xjn1g3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBUxSd+B NG8Dy541Bg9j7CzDFlApMB8GA1UdIwQYMBaAFGM6y41R0vCIaZuKcUkcx1U+wMES MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOThDNy9ENDk0QjhFRUZB N0YxMUVCOTlBREQ4NUNDNEY5QUUwMi9ZenJMalZIUzhJaHBtNHB4U1J6SFZUN0F3 UkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1l6ckxqVkhTOElocG00cHhTUnpIVlQ3QXdSSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OThDNy9ENDk0QjhFRUZBN0YxMUVCOTlBREQ4NUNDNEY5QUUwMi9ZenJMalZIUzhJ aHBtNHB4U1J6SFZUN0F3UkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBOYiLnzsl0WgrTvz3NLZA7GQBg/QyfdAGv1Ol7HAHjPE47leE/veM uzEYy38wTZ9g8Td5lr6jBpIH0FANyqq9yGaBnYCe3FnCFR/TF2EJqXQq3ztO4B/s 3W8YpxS1/QKU70wyNXFslszS4NpL2f+5wS26lFiQkhnGNW5FkLdtBuTkuVkKWGJk lDePPwQ6LhE4QuAAudoOAkyk1wuD0zNpe9gln9twUoekBHn9HM9fAjew+3A+QmKL /O7VWTiHqpGxIvo+F5XRwS3ccmVqY2AYtl6CYu9IThoOD9jqiPfaWvy2ZRUEXBbm sN26a7t2+vtQgsrrD8ieV+pifamtOg0q -----END CERTIFICATE-----Generated at Mon May 12 10:47:32 2025 by rpki-client