$ rpki-client -vvf rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.mft File: BYQh3nB4BzBHPlzFRboK5dubTAo.mft (raw, json) Hash identifier: oWpWGqxp5n89YrxksbkmrcjKxTCG6fTYbLKcOmHaRVs= Subject key identifier: 35:1C:58:F0:2F:B3:0B:86:73:4B:42:34:D7:D9:46:62:DC:30:06:3D Authority key identifier: 05:84:21:DE:70:78:07:30:47:3E:5C:C5:45:BA:0A:E5:DB:9B:4C:0A Certificate issuer: /CN=A91862F7/serialNumber=058421DE70780730473E5CC545BA0AE5DB9B4C0A Certificate serial: 0989 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BYQh3nB4BzBHPlzFRboK5dubTAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.mft Manifest number: 097D Signing time: Sat 10 May 2025 17:13:44 +0000 Manifest this update: Sat 10 May 2025 17:13:44 +0000 Manifest next update: Sat 17 May 2025 17:13:44 +0000 Files and hashes: 1: BYQh3nB4BzBHPlzFRboK5dubTAo.crl (hash: 5UQTt5F9dgjVlEPxqtyrvuroswC4N6e7RNE/WKS+GR4=) 2: 0619825C2F2A11ED9F62040DC4F9AE02.roa (hash: kL+XFv+JIBMzJ5k9XXPNiC6YLDiIMa15JQqj4/UV838=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.crl rsync://rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BYQh3nB4BzBHPlzFRboK5dubTAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 17:13:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2441 (0x989) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862F7, serialNumber=058421DE70780730473E5CC545BA0AE5DB9B4C0A Validity Not Before: May 10 17:13:44 2025 GMT Not After : May 17 17:13:44 2025 GMT Subject: CN=681f8948-1ab4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:2f:a5:68:cc:9d:a7:7e:bc:82:de:83:f9:80: 33:f0:77:11:30:03:2b:4c:c5:aa:07:df:b8:0c:a8: 98:80:cb:da:6d:0a:b8:51:2a:67:0e:92:f0:b8:9b: 4e:e9:3c:03:52:63:e7:e1:a4:f1:fa:ed:0a:ae:0d: 5c:94:f3:b0:54:c3:94:0a:8d:17:5b:e0:c0:e1:ef: af:7a:17:ab:c4:7a:89:4b:49:7f:c5:20:7c:59:71: 15:83:2b:57:06:3d:20:43:2d:1a:f4:12:9a:5e:c5: df:ab:9d:ca:be:52:ef:34:cd:15:ea:b9:75:8b:98: 65:17:e6:cc:d6:04:cb:6b:72:6d:0c:cc:e8:7d:af: da:3c:31:82:02:92:61:80:62:6d:65:75:87:36:41: b2:6b:a1:47:1a:6e:e9:46:ef:b0:6a:d2:b8:64:a9: de:34:46:10:c1:58:bd:e2:af:7a:56:58:f6:73:83: 49:2f:25:18:5a:dd:a4:dd:df:4f:b2:4a:88:8b:3f: 7e:25:6b:93:b7:a8:96:68:63:85:6c:8a:37:7d:26: 20:d0:17:72:b3:98:74:8a:8e:0a:4c:91:ed:95:8c: 78:6a:d3:1d:ca:9c:ed:b5:fb:a8:a9:bc:ef:72:2c: b5:87:14:fd:00:5f:52:f1:7e:45:bc:4a:9f:c2:4e: 9d:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:1C:58:F0:2F:B3:0B:86:73:4B:42:34:D7:D9:46:62:DC:30:06:3D X509v3 Authority Key Identifier: keyid:05:84:21:DE:70:78:07:30:47:3E:5C:C5:45:BA:0A:E5:DB:9B:4C:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BYQh3nB4BzBHPlzFRboK5dubTAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:97:6f:5f:6f:b3:61:9d:9e:44:ca:69:4f:32:98:61:eb:0d: c2:77:2c:e2:32:a8:c5:1f:78:8b:f6:1b:c3:ff:ce:11:5a:5f: c6:aa:06:85:4b:33:d1:f4:a6:cc:e7:0f:bf:01:b6:98:4e:eb: ac:26:54:b2:60:86:ef:da:ad:0a:81:ed:57:95:bc:fb:21:bd: dc:8f:2d:9f:c7:bf:b2:1a:bd:a6:de:66:a1:6a:44:f8:df:cb: e3:6b:a7:45:53:68:9e:f7:bf:75:ef:41:d4:75:15:dd:63:d2: 2c:ca:95:f0:55:6b:93:50:07:74:f4:d4:29:00:8e:25:14:b3: 03:f6:ee:d8:2d:6f:2c:e8:06:40:2c:92:ff:10:2c:9a:de:92: 9c:f1:64:b8:26:f1:d2:36:35:4c:7a:7a:9a:26:b3:8e:d7:5d: 2c:50:a2:cc:dc:fc:22:66:d0:34:6a:97:e5:0b:96:d0:87:2e: d7:66:8d:e8:76:d8:3e:ad:e9:e8:57:b2:d8:2e:70:c4:6a:0c: b2:3b:08:43:fb:4d:3b:ac:da:a5:99:ad:47:5e:07:18:99:5d: 18:c9:cb:a5:1d:e5:4e:46:17:fb:0e:9a:82:05:e3:d6:e2:a7: 6f:b5:09:0d:5d:8a:f3:55:cd:54:4d:79:ae:9f:4e:77:07:b1: 07:d6:8c:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCYkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyRjcxMTAvBgNVBAUTKDA1ODQyMURFNzA3ODA3MzA0NzNFNUNDNTQ1QkEwQUU1 REI5QjRDMEEwHhcNMjUwNTEwMTcxMzQ0WhcNMjUwNTE3MTcxMzQ0WjAYMRYwFAYD VQQDEw02ODFmODk0OC0xYWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwC+laMydp368gt6D+YAz8HcRMAMrTMWqB9+4DKiYgMvabQq4USpnDpLwuJtO 6TwDUmPn4aTx+u0Krg1clPOwVMOUCo0XW+DA4e+veherxHqJS0l/xSB8WXEVgytX Bj0gQy0a9BKaXsXfq53KvlLvNM0V6rl1i5hlF+bM1gTLa3JtDMzofa/aPDGCApJh gGJtZXWHNkGya6FHGm7pRu+watK4ZKneNEYQwVi94q96Vlj2c4NJLyUYWt2k3d9P skqIiz9+JWuTt6iWaGOFbIo3fSYg0Bdys5h0io4KTJHtlYx4atMdypzttfuoqbzv ciy1hxT9AF9S8X5FvEqfwk6dkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDUcWPAv swuGc0tCNNfZRmLcMAY9MB8GA1UdIwQYMBaAFAWEId5weAcwRz5cxUW6CuXbm0wK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjJGNy81RUFDNjE0NDhG QTYxMUVBOUFDQjdFN0ZDNEY5QUUwMi9CWVFoM25CNEJ6QkhQbHpGUmJvSzVkdWJU QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JZUWgzbkI0QnpCSFBsekZSYm9LNWR1YlRBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjJGNy81RUFDNjE0NDhGQTYxMUVBOUFDQjdFN0ZDNEY5QUUwMi9CWVFoM25CNEJ6 QkhQbHpGUmJvSzVkdWJUQW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAml29fb7NhnZ5EymlPMphh6w3CdyziMqjFH3iL9hvD/84RWl/GqgaF SzPR9KbM5w+/AbaYTuusJlSyYIbv2q0Kge1Xlbz7Ib3cjy2fx7+yGr2m3mahakT4 38vja6dFU2ie979170HUdRXdY9IsypXwVWuTUAd09NQpAI4lFLMD9u7YLW8s6AZA LJL/ECya3pKc8WS4JvHSNjVMenqaJrOO110sUKLM3PwiZtA0apflC5bQhy7XZo3o dtg+renoV7LYLnDEagyyOwhD+007rNqlma1HXgcYmV0YyculHeVORhf7DpqCBePW 4qdvtQkNXYrzVc1UTXmun053B7EH1owq -----END CERTIFICATE-----Generated at Sun May 11 09:45:51 2025 by rpki-client