$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft File: yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft (raw, json) Hash identifier: T5lnBq4xHdhmpeVxDUrbVLnRXrfBvA0zOgqI47tOc9s= Subject key identifier: D6:76:41:AF:28:6C:9B:A6:8A:11:63:14:78:DB:01:26:C3:AC:75:7B Authority key identifier: CB:16:56:81:1D:08:45:79:93:E8:D8:1B:9F:97:98:DA:D6:16:97:1A Certificate issuer: /CN=A91B4357/serialNumber=CB1656811D08457993E8D81B9F9798DAD616971A Certificate serial: 0488 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft Manifest number: 046F Signing time: Sat 10 May 2025 23:41:56 +0000 Manifest this update: Sat 10 May 2025 23:41:56 +0000 Manifest next update: Sat 17 May 2025 23:41:56 +0000 Files and hashes: 1: yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl (hash: GpK2G9HJL3JfL4n2NAzFNHIqCiaZ9AZ724nX37mql7I=) 2: CA888654D0E011EC9E5ACC1CC4F9AE02.roa (hash: 4by10ick3aOPoEwL9MxmYZych/O61DB95JCCfpjs2l0=) 3: 52B98FDA46AF11ECB113AA4BC4F9AE02.roa (hash: zdWwyK62ezTqtldMx3AFhd08v1ee56JEEEGh/b+1bK8=) 4: 35A2418C45AE11ECB857890EC4F9AE02.roa (hash: yt5ul2v37If2OMAgvwlcXNvNlpOeU9vk4N82gRjp7ro=) 5: 9896BA2EB6DE11EC8DB17172C4F9AE02.roa (hash: tkC8VFhPaMMB7xHukmlTC8vVY5Lai1noTB/JDIdLAEc=) 6: 351AC73E45AE11ECB857890EC4F9AE02.roa (hash: ofwlwfDv/f2slgSdPa6hT78BUtn3LBZ837QvOITSXas=) 7: 346A2B4045AE11ECB857890EC4F9AE02.roa (hash: y6Yo94bVO58GlNbuqBWAfuC5sCH6iiyxweKo6sloNrk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 23:41:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1160 (0x488) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4357, serialNumber=CB1656811D08457993E8D81B9F9798DAD616971A Validity Not Before: May 10 23:41:56 2025 GMT Not After : May 17 23:41:56 2025 GMT Subject: CN=681fe444-3f88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:a1:45:c4:86:0c:84:38:89:a2:a4:7c:7e:ae: 5b:63:b7:f6:fb:97:1f:ff:f4:5c:7d:fb:ac:09:d2: bb:5c:cc:22:22:f5:dd:76:aa:93:9d:54:8a:47:c5: f4:54:63:5d:5f:01:00:1a:48:8e:a6:a7:6e:54:a1: b1:de:cb:be:c9:59:1f:94:06:8e:07:56:a6:cd:57: 31:d3:09:6d:60:58:55:bc:69:30:b8:57:e4:d4:1f: 15:56:0e:19:41:5c:08:d8:68:05:e8:b8:2f:68:17: 24:90:5f:ec:18:9c:79:ee:48:5c:af:a7:0d:48:3a: 8e:2a:e4:f1:ad:44:60:55:88:56:b7:67:e1:6c:05: 4c:1c:f0:76:97:10:4e:81:56:3d:2d:52:98:65:08: 19:82:e8:fc:6d:74:ec:60:90:9b:f7:fd:c7:37:c3: ee:17:5d:43:88:49:5e:10:2a:0d:c6:be:39:75:ef: b5:9b:48:5d:af:8f:be:28:a5:79:45:82:3b:7d:62: 6d:df:2d:80:44:a4:64:c9:97:6b:4a:33:d8:13:b5: c7:99:d0:23:37:1c:c6:8e:c6:e1:ca:ec:53:3f:06: 3a:34:74:d0:cf:40:52:e1:2d:b1:30:ba:f9:3c:f9: 8d:bd:0b:d2:16:1b:7f:ee:86:63:cc:bf:67:ab:52: a8:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:76:41:AF:28:6C:9B:A6:8A:11:63:14:78:DB:01:26:C3:AC:75:7B X509v3 Authority Key Identifier: keyid:CB:16:56:81:1D:08:45:79:93:E8:D8:1B:9F:97:98:DA:D6:16:97:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:b9:cc:5f:ef:66:18:c1:a3:bf:10:94:6b:01:37:ad:fd:61: 21:c6:8f:fe:0a:d1:03:aa:35:54:74:c6:06:ff:13:c8:a9:75: a8:f9:d8:9c:12:5b:df:79:ba:2f:da:54:b7:26:da:a9:c1:d2: 50:c2:91:3e:da:c6:ea:72:19:42:37:13:6e:f6:0f:3a:6a:f7: a3:92:fe:62:83:45:c2:c7:7c:6d:f8:cc:de:51:c2:54:44:cd: 18:d5:a2:5b:cd:ee:9a:82:31:f3:bc:f2:12:d5:18:19:37:d5: fc:12:4d:87:a9:21:e9:27:36:01:2b:13:93:53:15:a4:5d:08: 37:9a:24:87:be:e5:dd:13:fe:bb:90:b5:b7:65:33:b6:cf:32: 6f:cc:ff:69:13:0b:9d:78:4a:9d:ac:7a:90:df:2d:0a:40:8b: aa:02:a2:f3:d8:f6:1a:cd:d0:d7:20:cd:a0:bc:a5:bf:26:a1: 8a:64:c3:59:58:8b:63:13:bc:b9:ed:a8:61:5c:e1:bd:13:f6: a7:2c:79:a9:3e:15:92:b3:cb:55:c1:3a:72:65:02:bf:1c:c0: 22:b4:46:5d:34:8c:aa:dc:9b:91:e5:6e:bd:ec:a3:49:dd:30: e5:e9:4c:de:97:3f:5d:3d:55:9c:e5:2f:74:ab:dc:50:3d:ae: 22:cf:a3:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQzNTcxMTAvBgNVBAUTKENCMTY1NjgxMUQwODQ1Nzk5M0U4RDgxQjlGOTc5OERB RDYxNjk3MUEwHhcNMjUwNTEwMjM0MTU2WhcNMjUwNTE3MjM0MTU2WjAYMRYwFAYD VQQDEw02ODFmZTQ0NC0zZjg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2aFFxIYMhDiJoqR8fq5bY7f2+5cf//RcffusCdK7XMwiIvXddqqTnVSKR8X0 VGNdXwEAGkiOpqduVKGx3su+yVkflAaOB1amzVcx0wltYFhVvGkwuFfk1B8VVg4Z QVwI2GgF6LgvaBckkF/sGJx57khcr6cNSDqOKuTxrURgVYhWt2fhbAVMHPB2lxBO gVY9LVKYZQgZguj8bXTsYJCb9/3HN8PuF11DiEleECoNxr45de+1m0hdr4++KKV5 RYI7fWJt3y2ARKRkyZdrSjPYE7XHmdAjNxzGjsbhyuxTPwY6NHTQz0BS4S2xMLr5 PPmNvQvSFht/7oZjzL9nq1Ko9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNZ2Qa8o bJumihFjFHjbASbDrHV7MB8GA1UdIwQYMBaAFMsWVoEdCEV5k+jYG5+XmNrWFpca MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDM1Ny9CODRCMTBFQzQ1 QTgxMUVDOEIxNDA1NThDNEY5QUUwMi95eFpXZ1IwSVJYbVQ2TmdibjVlWTJ0WVds eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3l4WldnUjBJUlhtVDZOZ2JuNWVZMnRZV2x4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDM1Ny9CODRCMTBFQzQ1QTgxMUVDOEIxNDA1NThDNEY5QUUwMi95eFpXZ1IwSVJY bVQ2TmdibjVlWTJ0WVdseG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0ucxf72YYwaO/EJRrATet/WEhxo/+CtEDqjVUdMYG/xPIqXWo+dic Elvfebov2lS3JtqpwdJQwpE+2sbqchlCNxNu9g86avejkv5ig0XCx3xt+MzeUcJU RM0Y1aJbze6agjHzvPIS1RgZN9X8Ek2HqSHpJzYBKxOTUxWkXQg3miSHvuXdE/67 kLW3ZTO2zzJvzP9pEwudeEqdrHqQ3y0KQIuqAqLz2PYazdDXIM2gvKW/JqGKZMNZ WItjE7y57ahhXOG9E/anLHmpPhWSs8tVwTpyZQK/HMAitEZdNIyq3JuR5W697KNJ 3TDl6Uzelz9dPVWc5S90q9xQPa4iz6O8 -----END CERTIFICATE-----Generated at Mon May 12 04:40:19 2025 by rpki-client