$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.mft File: yod6eu8duwRWSH9h_uaZNjdUHl0.mft (raw, json) Hash identifier: FqTjJ3bYv+v7fh59CUOIyj7WsZ9Xej8WwpqBm/PpGZU= Subject key identifier: 11:D7:32:3F:A0:A1:6A:62:E9:68:2D:1D:5F:D9:1E:32:50:CD:06:37 Authority key identifier: CA:87:7A:7A:EF:1D:BB:04:56:48:7F:61:FE:E6:99:36:37:54:1E:5D Certificate issuer: /CN=A91AA053/serialNumber=CA877A7AEF1DBB0456487F61FEE6993637541E5D Certificate serial: 9D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yod6eu8duwRWSH9h_uaZNjdUHl0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.mft Manifest number: 9D Signing time: Wed 14 May 2025 21:53:05 +0000 Manifest this update: Wed 14 May 2025 21:53:05 +0000 Manifest next update: Wed 21 May 2025 21:53:04 +0000 Files and hashes: 1: yod6eu8duwRWSH9h_uaZNjdUHl0.crl (hash: hXn4uCB/iTb0gPD6CV1mpSU6JwUK9pdlj1GGQurugDg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.crl rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yod6eu8duwRWSH9h_uaZNjdUHl0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 21:53:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 157 (0x9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA053, serialNumber=CA877A7AEF1DBB0456487F61FEE6993637541E5D Validity Not Before: May 14 21:53:05 2025 GMT Not After : May 21 21:53:04 2025 GMT Subject: CN=682510c1-9d5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:32:95:53:2f:72:cf:3b:93:b1:19:97:5f:cb: 84:cc:d3:b7:a6:6e:14:99:e6:29:ca:24:0c:af:85: 45:7d:54:1e:cc:9a:6c:8d:4d:58:19:b2:71:38:c3: e2:3c:a0:d5:46:8d:4f:0c:d0:47:df:1e:b4:5f:71: 72:2f:af:b7:6b:fd:71:dd:44:e0:e6:93:11:a7:cf: 73:97:30:58:6a:f8:6e:51:45:63:ed:0d:93:0f:1b: c9:ca:49:53:02:11:43:7b:6c:a1:8b:a2:6a:d9:9a: 94:e6:e6:e7:f8:38:89:15:8b:02:dd:37:db:09:5b: fe:8a:c7:e4:b1:48:bb:aa:52:6a:93:6a:7d:c2:f0: dd:f1:af:c2:b8:d8:03:de:83:0f:11:a4:c8:f3:8b: 27:8e:0d:26:56:56:2b:ad:1f:f8:e6:8f:b0:20:cd: 57:1c:b9:b0:6f:95:59:b7:ec:bd:88:af:f5:95:2c: ba:17:fd:37:f7:2a:bd:4b:12:72:0c:81:00:37:56: be:04:48:38:4b:e5:03:59:d1:9f:9a:ad:07:7c:e0: ee:54:5b:8f:43:79:9b:56:49:1d:5a:32:f6:a4:0d: 1d:19:2d:ca:0d:cd:c1:d9:bf:df:e2:bc:57:2d:51: 2f:28:e9:27:1f:aa:8b:ad:7d:cc:c9:36:f0:71:ba: 46:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:D7:32:3F:A0:A1:6A:62:E9:68:2D:1D:5F:D9:1E:32:50:CD:06:37 X509v3 Authority Key Identifier: keyid:CA:87:7A:7A:EF:1D:BB:04:56:48:7F:61:FE:E6:99:36:37:54:1E:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yod6eu8duwRWSH9h_uaZNjdUHl0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:05:36:36:9f:14:c2:85:05:5d:89:70:39:f5:0d:27:e1:90: 4d:56:60:97:17:a2:b6:d4:a4:b7:51:9a:dd:15:ef:47:f1:d2: b8:21:d4:63:e1:46:61:d4:d6:6f:81:2c:d2:1a:21:c2:cc:0a: 04:8b:63:c5:aa:19:64:b6:6a:ec:d4:ce:fe:3f:7f:62:02:11: 38:75:1c:a0:e3:c1:2e:eb:24:38:91:53:7c:f8:f5:e9:d5:bf: c0:99:80:76:9f:7d:bb:eb:9f:86:e3:60:b4:c9:d6:ae:e1:f4: 69:85:93:b9:2d:20:91:93:a2:fc:ab:af:85:a3:e1:eb:44:92: 20:27:83:94:c7:75:1e:89:03:04:57:99:3e:b0:c0:b6:83:e4: e9:fe:a0:03:85:05:e2:fc:04:ad:5b:97:61:85:5a:6b:52:b7: a5:78:83:ee:b6:63:1e:a7:1b:24:5b:24:cb:d7:d5:4f:cc:1d: 2f:39:fa:33:73:b1:76:aa:15:36:5b:45:4a:42:9e:81:9a:ad: 36:f6:68:b3:53:da:a3:3a:c7:48:3f:36:37:7a:fe:ca:c8:fb: 10:b8:cc:5a:98:2d:07:c2:16:42:34:ab:0a:95:11:93:4f:6d: fd:f9:18:58:bf:4d:6a:12:28:f5:b3:9b:4e:d3:c4:a1:e5:a1: a7:a4:d2:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUEwNTMxMTAvBgNVBAUTKENBODc3QTdBRUYxREJCMDQ1NjQ4N0Y2MUZFRTY5OTM2 Mzc1NDFFNUQwHhcNMjUwNTE0MjE1MzA1WhcNMjUwNTIxMjE1MzA0WjAYMRYwFAYD VQQDEw02ODI1MTBjMS05ZDVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuDKVUy9yzzuTsRmXX8uEzNO3pm4UmeYpyiQMr4VFfVQezJpsjU1YGbJxOMPi PKDVRo1PDNBH3x60X3FyL6+3a/1x3UTg5pMRp89zlzBYavhuUUVj7Q2TDxvJyklT AhFDe2yhi6Jq2ZqU5ubn+DiJFYsC3TfbCVv+isfksUi7qlJqk2p9wvDd8a/CuNgD 3oMPEaTI84snjg0mVlYrrR/45o+wIM1XHLmwb5VZt+y9iK/1lSy6F/039yq9SxJy DIEAN1a+BEg4S+UDWdGfmq0HfODuVFuPQ3mbVkkdWjL2pA0dGS3KDc3B2b/f4rxX LVEvKOknH6qLrX3MyTbwcbpGvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBHXMj+g oWpi6WgtHV/ZHjJQzQY3MB8GA1UdIwQYMBaAFMqHenrvHbsEVkh/Yf7mmTY3VB5d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTA1My84NzIwMzA1RTQ0 OTkxMUVGQkFDNjcxNTNDNEY5QUUwMi95b2Q2ZXU4ZHV3UldTSDloX3VhWk5qZFVI bDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3lvZDZldThkdXdSV1NIOWhfdWFaTmpkVUhsMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTA1My84NzIwMzA1RTQ0OTkxMUVGQkFDNjcxNTNDNEY5QUUwMi95b2Q2ZXU4ZHV3 UldTSDloX3VhWk5qZFVIbDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8BTY2nxTChQVdiXA59Q0n4ZBNVmCXF6K21KS3UZrdFe9H8dK4IdRj 4UZh1NZvgSzSGiHCzAoEi2PFqhlktmrs1M7+P39iAhE4dRyg48Eu6yQ4kVN8+PXp 1b/AmYB2n32765+G42C0ydau4fRphZO5LSCRk6L8q6+Fo+HrRJIgJ4OUx3UeiQME V5k+sMC2g+Tp/qADhQXi/AStW5dhhVprUreleIPutmMepxskWyTL19VPzB0vOfoz c7F2qhU2W0VKQp6Bmq029mizU9qjOsdIPzY3ev7KyPsQuMxamC0HwhZCNKsKlRGT T239+RhYv01qEij1s5tO08Sh5aGnpNLk -----END CERTIFICATE-----Generated at Thu May 15 19:21:26 2025 by rpki-client