$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft File: Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft (raw, json) Hash identifier: fGGZ28V3Pjh+Kg2JFe0WH/k4jXQ9rYrg9AmX+1ydw+g= Subject key identifier: 24:C9:43:DB:4D:7F:19:D2:81:AF:F2:12:54:47:54:9B:69:ED:0E:A7 Authority key identifier: 63:0E:FC:8B:C8:24:7F:99:A0:12:80:74:1E:4A:1A:0D:B7:F1:47:B0 Certificate issuer: /CN=A91BB629/serialNumber=630EFC8BC8247F99A01280741E4A1A0DB7F147B0 Certificate serial: 9C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft Manifest number: 9A Signing time: Sun 11 May 2025 05:05:54 +0000 Manifest this update: Sun 11 May 2025 05:05:53 +0000 Manifest next update: Sun 18 May 2025 05:05:53 +0000 Files and hashes: 1: Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl (hash: tu6vY7EZZNgWsB4rnR9gwHKKeT/UYbeur1nXq3hZUYg=) 2: 7CE4326245B511EFBAC06E1EC4F9AE02.roa (hash: bllAWJknG6t7sgMmQWLY59vxPXpNHKXKelWOMC8ypAI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 05:05:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 156 (0x9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB629, serialNumber=630EFC8BC8247F99A01280741E4A1A0DB7F147B0 Validity Not Before: May 11 05:05:53 2025 GMT Not After : May 18 05:05:53 2025 GMT Subject: CN=68203032-f56d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:95:03:8f:4e:19:53:81:a7:a2:62:8d:1a:14: a0:e9:55:ce:11:0c:26:d5:34:78:eb:48:96:b0:3b: 16:6e:9d:72:5f:aa:63:69:1d:d8:f1:40:0d:21:11: df:34:60:1f:33:fd:99:44:a1:f3:3a:95:ec:d5:99: ff:c8:b6:c3:fc:92:48:fc:14:d0:97:d3:df:35:98: 1d:99:c7:32:ad:b8:7f:2e:f2:d5:cd:9c:7e:3f:ae: ac:93:18:c7:22:aa:ec:d2:9e:fb:df:2c:4a:09:cf: 3c:b2:4e:50:1c:a3:1a:4f:6d:c0:83:55:58:b3:2e: e7:b2:e8:64:9a:a4:90:89:23:6c:7b:09:0c:0b:6d: 6f:57:c4:9a:46:26:8d:99:00:47:07:62:c9:4e:45: 7d:3b:d7:45:83:17:be:b9:78:58:19:50:40:03:47: 76:e0:f3:3e:24:d8:16:27:e3:95:bf:24:0f:21:4e: 39:a1:5a:94:60:da:83:6b:17:c3:8a:81:85:ec:c1: 42:50:6d:e6:d4:30:d7:a3:a6:68:60:14:ca:9a:bc: 60:94:bb:5c:64:19:b2:6a:4f:e7:ea:2b:93:2a:26: 18:af:42:57:6b:27:b6:ee:f6:b3:16:ab:90:d2:60: b5:e1:10:0f:33:62:23:f2:80:24:e7:e7:b2:19:2d: 0f:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:C9:43:DB:4D:7F:19:D2:81:AF:F2:12:54:47:54:9B:69:ED:0E:A7 X509v3 Authority Key Identifier: keyid:63:0E:FC:8B:C8:24:7F:99:A0:12:80:74:1E:4A:1A:0D:B7:F1:47:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:32:ae:8e:d4:79:bf:d6:b8:30:5d:55:82:02:7d:d4:aa:cd: ed:2c:3a:a4:3f:38:f5:e5:9d:65:4d:e1:ac:bf:1b:a1:36:0e: 35:c2:76:22:83:38:b0:bc:9b:26:91:50:ff:41:df:87:97:d1: ae:ec:b6:68:ec:f6:3a:33:3e:ec:8c:64:47:54:ff:c2:fe:63: ca:e0:d0:ec:29:11:2c:ba:58:0e:a0:2b:d6:e2:31:ac:b2:60: 35:7f:73:13:1e:10:c7:2b:7f:93:d7:ea:61:93:1c:e2:62:e5: 49:67:9f:41:4a:dc:b5:51:56:36:0d:ab:5a:fb:da:81:22:ba: 03:82:e4:a3:fd:57:d3:3a:0d:90:af:17:ff:f9:76:27:b8:27: e4:ff:aa:27:35:28:76:14:ba:42:a4:37:19:a5:a7:51:30:1c: 77:86:4f:0e:fc:0e:df:35:02:cc:30:03:c8:ff:4c:cc:c4:de: 9c:2e:49:ac:6b:81:de:ad:d2:e7:cf:55:dd:06:48:2a:f1:5c: c5:cc:00:a8:65:c7:4a:a9:d2:4f:e2:8a:36:a9:c1:be:63:38: a0:64:8c:9c:4c:8d:b4:32:16:1a:86:2c:36:16:a7:47:98:f7: 48:92:6a:58:59:eb:67:0d:0b:80:67:97:5e:e9:fe:59:84:14: 7a:2c:ef:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI2MjkxMTAvBgNVBAUTKDYzMEVGQzhCQzgyNDdGOTlBMDEyODA3NDFFNEExQTBE QjdGMTQ3QjAwHhcNMjUwNTExMDUwNTUzWhcNMjUwNTE4MDUwNTUzWjAYMRYwFAYD VQQDEw02ODIwMzAzMi1mNTZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA15UDj04ZU4GnomKNGhSg6VXOEQwm1TR460iWsDsWbp1yX6pjaR3Y8UANIRHf NGAfM/2ZRKHzOpXs1Zn/yLbD/JJI/BTQl9PfNZgdmccyrbh/LvLVzZx+P66skxjH Iqrs0p773yxKCc88sk5QHKMaT23Ag1VYsy7nsuhkmqSQiSNsewkMC21vV8SaRiaN mQBHB2LJTkV9O9dFgxe+uXhYGVBAA0d24PM+JNgWJ+OVvyQPIU45oVqUYNqDaxfD ioGF7MFCUG3m1DDXo6ZoYBTKmrxglLtcZBmyak/n6iuTKiYYr0JXaye27vazFquQ 0mC14RAPM2Ij8oAk5+eyGS0PkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCTJQ9tN fxnSga/yElRHVJtp7Q6nMB8GA1UdIwQYMBaAFGMO/IvIJH+ZoBKAdB5KGg238Uew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjYyOS9FMkNGOTQwQTQ1 QjQxMUVGOEZEQjc0MURDNEY5QUUwMi9Zdzc4aThna2Y1bWdFb0IwSGtvYURiZnhS N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1l3NzhpOGdrZjVtZ0VvQjBIa29hRGJmeFI3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjYyOS9FMkNGOTQwQTQ1QjQxMUVGOEZEQjc0MURDNEY5QUUwMi9Zdzc4aThna2Y1 bWdFb0IwSGtvYURiZnhSN0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdMq6O1Hm/1rgwXVWCAn3Uqs3tLDqkPzj15Z1lTeGsvxuhNg41wnYi gziwvJsmkVD/Qd+Hl9Gu7LZo7PY6Mz7sjGRHVP/C/mPK4NDsKREsulgOoCvW4jGs smA1f3MTHhDHK3+T1+phkxziYuVJZ59BSty1UVY2Data+9qBIroDguSj/VfTOg2Q rxf/+XYnuCfk/6onNSh2FLpCpDcZpadRMBx3hk8O/A7fNQLMMAPI/0zMxN6cLkms a4HerdLnz1XdBkgq8VzFzACoZcdKqdJP4oo2qcG+YzigZIycTI20MhYahiw2FqdH mPdIkmpYWetnDQuAZ5de6f5ZhBR6LO+t -----END CERTIFICATE-----Generated at Mon May 12 18:31:29 2025 by rpki-client