$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft File: yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft (raw, json) Hash identifier: cUSlCuvZUEwfFdAixDL0KcUcdYpt5BOCc1ZAapt00LI= Subject key identifier: 01:3B:67:0A:D6:07:3B:81:A6:82:17:44:8F:61:92:F4:39:D1:EE:59 Authority key identifier: C8:E0:59:1E:7E:51:7D:41:9C:FC:86:17:1C:DC:A9:FD:E6:26:E8:F5 Certificate issuer: /CN=A91AB3E3/serialNumber=C8E0591E7E517D419CFC86171CDCA9FDE626E8F5 Certificate serial: 01AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft Manifest number: 01AC Signing time: Wed 07 May 2025 02:28:29 +0000 Manifest this update: Wed 07 May 2025 02:28:28 +0000 Manifest next update: Wed 14 May 2025 02:28:28 +0000 Files and hashes: 1: yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl (hash: WcGEqmvXarfb2W9N1AmLPP1QCAjS7ESx0agRZ2pjq2U=) 2: 1E7B7BB4996C11EDA107E666C4F9AE02.roa (hash: /ERrUArKmo0KgEQ70S3Uf+U0E1QNCp3+3kkOG/O7FLo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 14 May 2025 02:28:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 431 (0x1af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB3E3, serialNumber=C8E0591E7E517D419CFC86171CDCA9FDE626E8F5 Validity Not Before: May 7 02:28:28 2025 GMT Not After : May 14 02:28:28 2025 GMT Subject: CN=681ac54d-1bf2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:00:cd:85:49:e3:ae:d4:1a:2a:3d:6a:41:7c: 90:bc:b2:6a:4e:86:f4:11:a6:2e:04:f1:c4:a8:12: 22:1f:32:56:49:a4:1a:5e:4d:f6:6f:c6:e9:21:1a: 7e:23:71:66:ac:9f:02:ae:96:92:40:32:d5:a8:32: 7f:72:a1:af:a7:95:69:cc:fd:ed:51:6b:bb:59:c6: 4a:bf:33:b7:39:bc:dc:10:ec:f7:45:f8:0a:2e:ca: 16:55:86:e0:33:7b:8d:36:5e:f0:c6:df:c1:24:90: 1b:03:a7:50:3d:5d:81:75:69:00:3c:a9:b1:94:57: a2:36:3b:bb:4c:32:4f:ac:ce:15:72:25:79:ac:fb: 7f:9f:d6:0d:bd:ad:45:26:e3:8d:bd:09:a4:09:1f: 33:13:07:c5:af:53:e0:67:1b:16:fd:73:71:54:44: 6f:3d:40:cf:31:5a:bb:fa:d9:99:47:8e:7b:c8:b1: 99:56:e1:f3:a3:cd:97:fd:c1:23:02:b2:f6:ff:32: 52:7e:46:83:51:51:a3:37:2e:1f:5e:30:15:3c:dd: 29:b8:41:0c:e4:8b:57:e6:47:f5:bb:7f:62:b9:7c: 89:8f:ad:6b:1e:2a:59:99:96:0c:f2:77:b7:4c:e1: e0:40:94:2b:1a:1f:c3:86:79:b4:25:a1:a1:dc:53: 1d:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:3B:67:0A:D6:07:3B:81:A6:82:17:44:8F:61:92:F4:39:D1:EE:59 X509v3 Authority Key Identifier: keyid:C8:E0:59:1E:7E:51:7D:41:9C:FC:86:17:1C:DC:A9:FD:E6:26:E8:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:82:2a:b1:92:cf:b9:5b:82:d9:44:46:a9:4d:15:1f:72:d2: 11:e8:59:35:db:b0:b1:52:38:a2:30:47:cc:6b:90:7e:1c:73: c2:aa:b7:8f:ed:16:25:41:18:80:25:28:2e:8f:83:e5:53:84: 3a:c2:61:e1:c9:db:a3:f8:c7:c3:a9:4a:2a:35:9f:d9:43:89: f7:51:d2:43:af:7d:76:71:6c:19:ab:13:85:98:c2:33:98:c3: 72:11:e9:67:b0:63:32:4f:50:ee:f8:be:31:03:26:10:24:26: 3c:5e:c2:94:9f:e9:c9:ef:ff:50:88:9f:21:8c:6b:4b:c8:a1: d0:80:47:84:0d:8b:95:aa:e4:7c:c8:53:0a:fe:b6:12:f7:cd: 12:18:d6:e7:61:30:ee:77:6d:53:46:0c:b1:f2:1e:18:6d:5a: 2d:20:e2:94:5b:d2:ba:fd:f0:52:e1:82:e4:95:8a:5b:3c:e4: 7d:87:84:5a:bc:a7:52:e4:9d:05:93:15:49:46:99:ec:9e:7b: fb:99:22:f5:38:20:fa:e1:14:ab:6f:47:a7:43:17:65:d5:2a: 67:a6:35:dd:15:e3:68:9b:c0:e1:49:62:6e:4b:18:18:74:36: cb:bc:b0:99:71:44:66:18:e9:29:52:81:80:82:db:69:42:74: fe:8d:e5:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIzRTMxMTAvBgNVBAUTKEM4RTA1OTFFN0U1MTdENDE5Q0ZDODYxNzFDRENBOUZE RTYyNkU4RjUwHhcNMjUwNTA3MDIyODI4WhcNMjUwNTE0MDIyODI4WjAYMRYwFAYD VQQDEw02ODFhYzU0ZC0xYmYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzgDNhUnjrtQaKj1qQXyQvLJqTob0EaYuBPHEqBIiHzJWSaQaXk32b8bpIRp+ I3FmrJ8CrpaSQDLVqDJ/cqGvp5VpzP3tUWu7WcZKvzO3ObzcEOz3RfgKLsoWVYbg M3uNNl7wxt/BJJAbA6dQPV2BdWkAPKmxlFeiNju7TDJPrM4VciV5rPt/n9YNva1F JuONvQmkCR8zEwfFr1PgZxsW/XNxVERvPUDPMVq7+tmZR457yLGZVuHzo82X/cEj ArL2/zJSfkaDUVGjNy4fXjAVPN0puEEM5ItX5kf1u39iuXyJj61rHipZmZYM8ne3 TOHgQJQrGh/Dhnm0JaGh3FMdBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAE7ZwrW BzuBpoIXRI9hkvQ50e5ZMB8GA1UdIwQYMBaAFMjgWR5+UX1BnPyGFxzcqf3mJuj1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjNFMy9BOTQ2MjRCNDk5 NjgxMUVEQjE2MkY4NjFDNEY5QUUwMi95T0JaSG41UmZVR2NfSVlYSE55cF9lWW02 UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lPQlpIbjVSZlVHY19JWVhITnlwX2VZbTZQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjNFMy9BOTQ2MjRCNDk5NjgxMUVEQjE2MkY4NjFDNEY5QUUwMi95T0JaSG41UmZV R2NfSVlYSE55cF9lWW02UFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBngiqxks+5W4LZREapTRUfctIR6Fk127CxUjiiMEfMa5B+HHPCqreP 7RYlQRiAJSguj4PlU4Q6wmHhyduj+MfDqUoqNZ/ZQ4n3UdJDr312cWwZqxOFmMIz mMNyEelnsGMyT1Du+L4xAyYQJCY8XsKUn+nJ7/9QiJ8hjGtLyKHQgEeEDYuVquR8 yFMK/rYS980SGNbnYTDud21TRgyx8h4YbVotIOKUW9K6/fBS4YLklYpbPOR9h4Ra vKdS5J0FkxVJRpnsnnv7mSL1OCD64RSrb0enQxdl1SpnpjXdFeNom8DhSWJuSxgY dDbLvLCZcURmGOkpUoGAgttpQnT+jeVt -----END CERTIFICATE-----Generated at Fri May 9 02:45:04 2025 by rpki-client