$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.mft File: y8FNQFd4Ri-cXZFYOlxxg28jwZ0.mft (raw, json) Hash identifier: fyFWcYmkdgaht09tMmw9oZDjUMJzOqmp1vigZNo+Lic= Subject key identifier: 91:7B:BE:61:FC:3F:65:14:9C:4D:33:AD:B9:29:4B:DB:F8:2E:16:74 Authority key identifier: CB:C1:4D:40:57:78:46:2F:9C:5D:91:58:3A:5C:71:83:6F:23:C1:9D Certificate issuer: /CN=A91B9C52/serialNumber=CBC14D405778462F9C5D91583A5C71836F23C19D Certificate serial: 22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.mft Manifest number: 0528 Signing time: Sat 10 May 2025 23:17:36 +0000 Manifest this update: Sat 10 May 2025 23:17:36 +0000 Manifest next update: Sat 17 May 2025 23:17:36 +0000 Files and hashes: 1: y8FNQFd4Ri-cXZFYOlxxg28jwZ0.crl (hash: pwA9kSehNLb66ssG3IO6hUWDdmdGQ6bJbDd8ZgujwJc=) 2: B0245792094611F089247D2CC4F9AE02.roa (hash: WzcjSkbp1L3UZdNgdiavQerl/BKgE6QHhDZV6MZpLAY=) 3: DB78EC4202C411F0A370F12EC4F9AE02.roa (hash: cYCE21n+c8J3/ZWE+DpkusC3dL/h3MNQr/C6R6q0LQY=) 4: DBEA4AA402C411F0A370F12EC4F9AE02.roa (hash: LglT88AP992wwS6++8oX+hvPgvXH2IXg5x9/81P07t8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.crl rsync://rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 23:17:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9C52, serialNumber=CBC14D405778462F9C5D91583A5C71836F23C19D Validity Not Before: May 10 23:17:36 2025 GMT Not After : May 17 23:17:36 2025 GMT Subject: CN=681fde90-9d8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d7:d9:80:dc:e1:44:9c:da:c9:22:4d:fa:68: 03:47:a2:fa:b9:76:66:0d:46:fc:f3:09:3d:d0:d5: c0:c5:48:e2:6f:f5:0f:76:b8:b4:86:6b:57:2a:f0: 2f:39:0c:56:89:20:d2:2f:36:f0:80:20:d2:50:71: e8:9d:5b:9e:e3:0a:ca:99:de:d1:00:c4:75:c9:f4: 42:9c:67:e5:f6:f7:5c:7e:39:b9:b8:25:f5:cc:01: ed:a3:5f:6e:bd:d6:21:40:53:12:dc:46:de:5d:37: 57:3c:7b:0a:62:a4:93:e0:62:95:af:fd:9e:e0:5b: 84:2e:35:ff:9a:f8:0a:55:6b:b5:a6:3e:79:a7:0c: ba:09:b1:62:52:a8:02:9b:07:73:7a:06:a2:a2:e7: 36:65:4c:97:29:04:28:06:f8:c7:fd:54:6a:f6:29: 4f:09:dc:f6:e4:d1:38:1f:c6:b1:89:02:f3:96:50: 86:8c:ce:b5:83:61:5e:27:52:7c:cf:f7:e6:b3:73: 5a:f6:2b:42:10:d7:94:08:d2:50:d1:6f:f0:af:5d: 32:50:36:22:b5:11:f1:e0:f1:62:c0:a8:55:d1:37: 83:5c:d9:c0:9c:9f:bf:5e:98:ae:70:1e:5e:00:e0: 6e:72:6c:af:74:3d:01:27:ea:a7:fb:99:af:5b:ab: 73:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:7B:BE:61:FC:3F:65:14:9C:4D:33:AD:B9:29:4B:DB:F8:2E:16:74 X509v3 Authority Key Identifier: keyid:CB:C1:4D:40:57:78:46:2F:9C:5D:91:58:3A:5C:71:83:6F:23:C1:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:0a:c6:06:52:68:67:bb:c2:f7:f5:c2:e5:96:a4:f7:05:b4: c1:9c:99:d2:27:b9:f9:c5:0a:e2:6a:ba:04:15:9e:d5:9e:e3: a3:df:de:22:82:41:5d:0a:af:d8:a7:15:8a:bd:57:b4:51:1c: 22:20:57:c3:55:9d:1f:e2:65:56:af:11:0f:f3:22:ab:80:ad: 5a:a7:fb:7f:dd:1a:3d:65:04:b7:ea:31:b3:25:94:5d:ab:f7: df:b2:f7:75:60:18:1b:c0:9c:16:fd:72:04:2e:7c:8d:a3:b2: 27:7c:d2:4d:96:77:52:fd:b8:52:68:d1:9c:6d:06:86:58:60: 27:bf:16:75:8f:d2:4a:95:af:74:2b:89:e6:7b:08:d8:5b:04: 7a:cd:55:71:cd:31:9d:5f:4a:16:5d:33:66:30:0d:1c:54:0e: 8b:b4:dd:c7:45:e5:f1:77:44:ec:e9:44:44:20:29:aa:07:a2: c0:9d:0f:2f:f8:c7:ee:72:7c:47:d0:c8:76:8a:63:77:8b:e7: b7:cf:58:ee:91:a1:7f:17:5b:81:39:a5:c3:d9:9a:7f:d3:83: 42:8e:4b:82:30:3a:57:09:4e:01:87:10:ff:e3:15:81:18:63: 3f:96:15:e7:c5:7b:4c:e8:84:ed:41:56:03:6d:06:33:60:c0: eb:d5:28:be -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC OUM1MjExMC8GA1UEBRMoQ0JDMTRENDA1Nzc4NDYyRjlDNUQ5MTU4M0E1QzcxODM2 RjIzQzE5RDAeFw0yNTA1MTAyMzE3MzZaFw0yNTA1MTcyMzE3MzZaMBgxFjAUBgNV BAMTDTY4MWZkZTkwLTlkOGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDF19mA3OFEnNrJIk36aANHovq5dmYNRvzzCT3Q1cDFSOJv9Q92uLSGa1cq8C85 DFaJINIvNvCAINJQceidW57jCsqZ3tEAxHXJ9EKcZ+X291x+Obm4JfXMAe2jX269 1iFAUxLcRt5dN1c8ewpipJPgYpWv/Z7gW4QuNf+a+ApVa7WmPnmnDLoJsWJSqAKb B3N6BqKi5zZlTJcpBCgG+Mf9VGr2KU8J3Pbk0TgfxrGJAvOWUIaMzrWDYV4nUnzP 9+azc1r2K0IQ15QI0lDRb/CvXTJQNiK1EfHg8WLAqFXRN4Nc2cCcn79emK5wHl4A 4G5ybK90PQEn6qf7ma9bq3N9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUkXu+Yfw/ ZRScTTOtuSlL2/guFnQwHwYDVR0jBBgwFoAUy8FNQFd4Ri+cXZFYOlxxg28jwZ0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI5QzUyLzZCNzE1MTYyMEQ3 RTExRUM5QzBCNUY3NUM0RjlBRTAyL3k4Rk5RRmQ0UmktY1haRllPbHh4ZzI4anda MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveThGTlFGZDRSaS1jWFpGWU9seHhnMjhqd1owLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI5 QzUyLzZCNzE1MTYyMEQ3RTExRUM5QzBCNUY3NUM0RjlBRTAyL3k4Rk5RRmQ0Umkt Y1haRllPbHh4ZzI4andaMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACEKxgZSaGe7wvf1wuWWpPcFtMGcmdInufnFCuJqugQVntWe46Pf3iKC QV0Kr9inFYq9V7RRHCIgV8NVnR/iZVavEQ/zIquArVqn+3/dGj1lBLfqMbMllF2r 99+y93VgGBvAnBb9cgQufI2jsid80k2Wd1L9uFJo0ZxtBoZYYCe/FnWP0kqVr3Qr ieZ7CNhbBHrNVXHNMZ1fShZdM2YwDRxUDou03cdF5fF3ROzpREQgKaoHosCdDy/4 x+5yfEfQyHaKY3eL57fPWO6RoX8XW4E5pcPZmn/Tg0KOS4IwOlcJTgGHEP/jFYEY Yz+WFefFe0zohO1BVgNtBjNgwOvVKL4= -----END CERTIFICATE-----Generated at Mon May 12 18:22:13 2025 by rpki-client