$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft File: YB71rSfD3A1NmC22u0dsBsvHAKA.mft (raw, json) Hash identifier: 68mD37k41f9vBd5qSntTsgwWhFdN38a3zj3d7sCcIC8= Subject key identifier: 19:59:5E:4D:08:1D:89:E4:5B:F2:0F:40:CA:4F:18:E2:C6:21:28:E6 Authority key identifier: 60:1E:F5:AD:27:C3:DC:0D:4D:98:2D:B6:BB:47:6C:06:CB:C7:00:A0 Certificate issuer: /CN=A91BFE4E/serialNumber=601EF5AD27C3DC0D4D982DB6BB476C06CBC700A0 Certificate serial: 77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB71rSfD3A1NmC22u0dsBsvHAKA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft Manifest number: 77 Signing time: Tue 13 May 2025 05:56:32 +0000 Manifest this update: Tue 13 May 2025 05:56:31 +0000 Manifest next update: Tue 20 May 2025 05:56:31 +0000 Files and hashes: 1: YB71rSfD3A1NmC22u0dsBsvHAKA.crl (hash: ukjAWOuCT96K5c4ubNVTNZa3vmyZRBWgUv9ScX7lUm4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.crl rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB71rSfD3A1NmC22u0dsBsvHAKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 05:56:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 119 (0x77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFE4E, serialNumber=601EF5AD27C3DC0D4D982DB6BB476C06CBC700A0 Validity Not Before: May 13 05:56:31 2025 GMT Not After : May 20 05:56:31 2025 GMT Subject: CN=6822df0f-aedc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ec:dd:3a:d6:48:58:8a:b6:22:cb:b9:46:64: 25:7d:51:27:15:74:1f:01:d9:6c:6c:eb:7d:df:8f: e9:83:99:26:51:e2:84:fc:c8:2a:51:cf:38:88:8f: 86:15:07:09:fb:38:fd:3f:8e:32:9e:df:c5:4f:5f: 5d:4b:84:94:5d:b2:6b:2b:10:f6:02:d2:6f:d8:3d: 18:5f:71:8a:3f:72:30:0d:d5:0d:64:9b:e2:c0:bc: 2f:f0:0f:fc:ad:c6:52:a6:94:1b:f8:1b:7b:5d:9e: f9:89:aa:40:8c:a0:80:15:3c:5c:99:1c:be:96:d9: ac:1d:78:67:10:ef:60:31:f5:b3:3e:f8:5d:3d:56: 7c:10:7f:ee:e0:1d:0c:90:b5:ae:ad:6b:72:9e:38: e8:e9:ef:18:29:ae:cb:1b:50:28:7b:02:3f:55:f0: f2:0f:05:64:24:57:cb:a4:0a:a6:64:b8:53:97:a1: e7:79:6d:a9:9d:4c:34:64:d1:98:e2:7e:e7:55:f1: 4e:21:86:75:6e:73:4d:a5:a9:35:e3:fb:e3:f4:3d: af:79:4d:59:e9:c1:4d:19:f3:bd:13:a6:6f:db:01: fd:85:9f:f3:56:ae:24:9a:a9:f3:eb:19:84:07:59: f8:65:16:c1:eb:3d:ca:6c:41:ac:65:08:7c:bb:0a: 51:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:59:5E:4D:08:1D:89:E4:5B:F2:0F:40:CA:4F:18:E2:C6:21:28:E6 X509v3 Authority Key Identifier: keyid:60:1E:F5:AD:27:C3:DC:0D:4D:98:2D:B6:BB:47:6C:06:CB:C7:00:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB71rSfD3A1NmC22u0dsBsvHAKA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:9d:80:c9:d1:1b:f8:f0:48:56:eb:ce:36:c5:df:b0:e4:91: f0:9e:38:74:a5:b2:3e:b4:99:f5:d5:46:9a:84:bf:74:1f:93: e5:3f:54:32:dc:d9:11:9b:a2:fc:5c:2f:98:27:ce:5c:42:94: ff:3d:b1:60:dd:82:e8:ff:db:86:44:cb:d7:3b:8d:38:4a:26: 57:77:72:08:78:7c:ae:b4:3e:09:42:a8:9b:78:7d:16:47:2a: b9:fe:e8:26:78:10:e6:fb:93:5a:5a:64:14:8e:34:9f:a5:e7: f6:01:c7:3e:c5:cc:7b:16:25:c1:b6:bb:04:49:96:7c:a0:43: 90:82:8c:4c:19:7a:92:25:67:6a:f4:24:5f:7e:37:6a:8d:d4: a4:b7:13:2b:2e:97:8f:24:91:54:3c:35:d1:69:58:75:78:f2: e1:b0:1c:53:0c:83:58:c2:4b:39:fe:90:9b:bf:11:91:29:ce: 60:65:48:3f:a1:a5:b4:23:51:a4:5f:6c:94:03:e6:65:af:87: 03:c9:06:7e:b1:64:00:68:15:44:ba:c8:ed:69:79:48:8a:4e: b1:c8:ca:66:ad:2a:85:a9:73:6d:bb:58:d6:9a:62:33:a4:0d: 94:6e:a2:cf:f1:69:13:84:36:0e:cf:66:90:be:e3:af:14:8d: 56:f3:72:36 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RkU0RTExMC8GA1UEBRMoNjAxRUY1QUQyN0MzREMwRDREOTgyREI2QkI0NzZDMDZD QkM3MDBBMDAeFw0yNTA1MTMwNTU2MzFaFw0yNTA1MjAwNTU2MzFaMBgxFjAUBgNV BAMTDTY4MjJkZjBmLWFlZGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCw7N061khYirYiy7lGZCV9UScVdB8B2Wxs633fj+mDmSZR4oT8yCpRzziIj4YV Bwn7OP0/jjKe38VPX11LhJRdsmsrEPYC0m/YPRhfcYo/cjAN1Q1km+LAvC/wD/yt xlKmlBv4G3tdnvmJqkCMoIAVPFyZHL6W2awdeGcQ72Ax9bM++F09VnwQf+7gHQyQ ta6ta3KeOOjp7xgprssbUCh7Aj9V8PIPBWQkV8ukCqZkuFOXoed5bamdTDRk0Zji fudV8U4hhnVuc02lqTXj++P0Pa95TVnpwU0Z870Tpm/bAf2Fn/NWriSaqfPrGYQH WfhlFsHrPcpsQaxlCHy7ClElAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUGVleTQgd ieRb8g9Ayk8Y4sYhKOYwHwYDVR0jBBgwFoAUYB71rSfD3A1NmC22u0dsBsvHAKAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJGRTRFL0RBM0Q3MUE4N0JF MzExRUY4OEQ5Qzc1M0M0RjlBRTAyL1lCNzFyU2ZEM0ExTm1DMjJ1MGRzQnN2SEFL QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWUI3MXJTZkQzQTFObUMyMnUwZHNCc3ZIQUtBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJG RTRFL0RBM0Q3MUE4N0JFMzExRUY4OEQ5Qzc1M0M0RjlBRTAyL1lCNzFyU2ZEM0Ex Tm1DMjJ1MGRzQnN2SEFLQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAD2dgMnRG/jwSFbrzjbF37DkkfCeOHSlsj60mfXVRpqEv3Qfk+U/VDLc 2RGbovxcL5gnzlxClP89sWDdguj/24ZEy9c7jThKJld3cgh4fK60PglCqJt4fRZH Krn+6CZ4EOb7k1paZBSONJ+l5/YBxz7FzHsWJcG2uwRJlnygQ5CCjEwZepIlZ2r0 JF9+N2qN1KS3Eysul48kkVQ8NdFpWHV48uGwHFMMg1jCSzn+kJu/EZEpzmBlSD+h pbQjUaRfbJQD5mWvhwPJBn6xZABoFUS6yO1peUiKTrHIymatKoWpc227WNaaYjOk DZRuos/xaROENg7PZpC+468UjVbzcjY= -----END CERTIFICATE-----Generated at Tue May 13 21:18:17 2025 by rpki-client