$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft File: YbAiM19NheFtR3oAatyOPy_alGA.mft (raw, json) Hash identifier: kdEgwjMOAuti1kOSdO5p4/jG0EBAo+Ld3g4VY1uKJYY= Subject key identifier: D2:08:B3:BC:62:8A:5F:41:8E:5C:40:CB:3F:26:43:7D:2F:58:A2:36 Authority key identifier: 61:B0:22:33:5F:4D:85:E1:6D:47:7A:00:6A:DC:8E:3F:2F:DA:94:60 Certificate issuer: /CN=A91A7C77/serialNumber=61B022335F4D85E16D477A006ADC8E3F2FDA9460 Certificate serial: 0488 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft Manifest number: 0486 Signing time: Thu 08 May 2025 23:49:43 +0000 Manifest this update: Thu 08 May 2025 23:49:42 +0000 Manifest next update: Thu 15 May 2025 23:49:42 +0000 Files and hashes: 1: YbAiM19NheFtR3oAatyOPy_alGA.crl (hash: gkyNjN4vohC5LEvhVxdYNwL3HFNpaeTDrhJhahq+xjo=) 2: FF4EB6B2395811ECA422C462C4F9AE02.roa (hash: kkkJWZ9fDn1htzEtE1zpX7lAAG0cOZUfH1foPNvS114=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.crl rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 May 2025 23:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1160 (0x488) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7C77, serialNumber=61B022335F4D85E16D477A006ADC8E3F2FDA9460 Validity Not Before: May 8 23:49:42 2025 GMT Not After : May 15 23:49:42 2025 GMT Subject: CN=681d4316-4858 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c8:80:40:61:2a:65:23:c8:78:fe:6d:aa:c9: df:ef:8a:e0:74:af:f3:1c:6a:3f:86:f9:e5:28:ca: 29:51:a7:fd:2e:15:e7:b8:a1:3a:ee:ee:05:86:8a: 88:83:29:ae:f1:16:c7:d4:95:d4:7f:01:52:f4:fe: ba:a2:5e:43:66:2c:e1:3f:1c:a9:ac:79:e6:6e:31: e7:cc:63:32:40:d4:55:33:ec:9f:8a:14:e7:75:4a: 7b:bc:86:77:24:1e:10:79:c9:28:68:ec:b3:d8:f9: 6a:2a:11:f3:95:f4:78:f9:84:83:ed:12:c9:45:0f: 1b:a4:9c:a5:17:8c:c3:c7:5a:32:20:e9:72:43:ea: cb:c3:e8:ad:e6:76:fb:64:18:88:60:0f:23:20:4d: 6c:ba:f2:49:0a:27:8f:ae:37:30:81:37:51:6e:2f: 9e:4d:a8:90:4a:df:91:b7:21:21:2a:61:89:61:7b: 06:8c:3e:c0:78:bb:56:6d:ce:0f:ab:89:92:b3:98: a7:b0:be:92:62:0d:3e:c6:9f:97:eb:93:6b:20:c7: 60:65:8c:06:91:46:c3:de:cc:1d:68:d2:48:83:9f: 3b:56:12:09:d1:11:a8:e7:fb:01:20:3b:1b:be:ed: 74:07:9a:40:43:be:19:ef:36:16:10:4c:c5:ff:72: 8e:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:08:B3:BC:62:8A:5F:41:8E:5C:40:CB:3F:26:43:7D:2F:58:A2:36 X509v3 Authority Key Identifier: keyid:61:B0:22:33:5F:4D:85:E1:6D:47:7A:00:6A:DC:8E:3F:2F:DA:94:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:92:09:86:4a:5d:38:9d:3a:8f:1c:77:e7:b7:96:df:60:16: 80:24:d4:a8:6d:62:81:33:51:0b:c7:e5:86:ad:9c:5c:bd:e8: e0:46:74:6e:e8:5a:fc:43:2a:ff:16:65:dd:1e:52:a7:7c:46: a2:16:f2:70:6d:93:dc:af:e3:41:39:f7:97:db:17:3a:a6:b3: 39:f7:09:4d:14:da:7a:1c:be:61:5b:6b:dd:32:76:05:90:d6: 6f:5e:a8:5a:a0:1f:1f:12:ce:55:de:ab:24:09:0e:0d:38:c3: a1:52:74:b6:ea:d5:e4:45:a9:9d:f9:54:27:f6:87:45:0f:bf: 8d:f3:90:f8:43:07:a5:57:35:db:85:ab:75:b1:28:e1:15:76: 0e:2b:9a:99:ae:28:66:7e:7a:69:0b:75:60:99:24:a1:04:fb: cc:ab:3d:9c:36:b2:28:cc:cd:95:a9:f2:8e:8a:0e:92:43:0c: 77:17:bb:0e:da:6b:32:a7:e1:27:e9:35:5f:fd:8c:d7:18:da: 59:d3:63:61:ac:75:15:28:a1:cd:c2:83:23:6f:9e:1b:35:62: f6:08:96:08:88:24:2e:9a:57:96:01:6c:56:78:df:16:fc:8b: a9:7c:e6:30:1a:2a:9f:0b:88:d6:81:3a:10:76:ac:c7:e1:40: a8:d5:0d:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDNzcxMTAvBgNVBAUTKDYxQjAyMjMzNUY0RDg1RTE2RDQ3N0EwMDZBREM4RTNG MkZEQTk0NjAwHhcNMjUwNTA4MjM0OTQyWhcNMjUwNTE1MjM0OTQyWjAYMRYwFAYD VQQDEw02ODFkNDMxNi00ODU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz8iAQGEqZSPIeP5tqsnf74rgdK/zHGo/hvnlKMopUaf9LhXnuKE67u4FhoqI gymu8RbH1JXUfwFS9P66ol5DZizhPxyprHnmbjHnzGMyQNRVM+yfihTndUp7vIZ3 JB4QeckoaOyz2PlqKhHzlfR4+YSD7RLJRQ8bpJylF4zDx1oyIOlyQ+rLw+it5nb7 ZBiIYA8jIE1suvJJCiePrjcwgTdRbi+eTaiQSt+RtyEhKmGJYXsGjD7AeLtWbc4P q4mSs5insL6SYg0+xp+X65NrIMdgZYwGkUbD3swdaNJIg587VhIJ0RGo5/sBIDsb vu10B5pAQ74Z7zYWEEzF/3KO+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNIIs7xi il9BjlxAyz8mQ30vWKI2MB8GA1UdIwQYMBaAFGGwIjNfTYXhbUd6AGrcjj8v2pRg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0M3Ny9EQzIwMUFGRTM5 NTQxMUVDODBEOUQzNTlDNEY5QUUwMi9ZYkFpTTE5TmhlRnRSM29BYXR5T1B5X2Fs R0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liQWlNMTlOaGVGdFIzb0FhdHlPUHlfYWxHQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0M3Ny9EQzIwMUFGRTM5NTQxMUVDODBEOUQzNTlDNEY5QUUwMi9ZYkFpTTE5Tmhl RnRSM29BYXR5T1B5X2FsR0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAukgmGSl04nTqPHHfnt5bfYBaAJNSobWKBM1ELx+WGrZxcvejgRnRu 6Fr8Qyr/FmXdHlKnfEaiFvJwbZPcr+NBOfeX2xc6prM59wlNFNp6HL5hW2vdMnYF kNZvXqhaoB8fEs5V3qskCQ4NOMOhUnS26tXkRamd+VQn9odFD7+N85D4QwelVzXb hat1sSjhFXYOK5qZrihmfnppC3VgmSShBPvMqz2cNrIozM2VqfKOig6SQwx3F7sO 2msyp+En6TVf/YzXGNpZ02NhrHUVKKHNwoMjb54bNWL2CJYIiCQumleWAWxWeN8W /IupfOYwGiqfC4jWgToQdqzH4UCo1Q0r -----END CERTIFICATE-----Generated at Sat May 10 19:22:22 2025 by rpki-client