$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/yTdTqaqiqG5Wyk6gw_-FfDDjQig.mft File: yTdTqaqiqG5Wyk6gw_-FfDDjQig.mft (raw, json) Hash identifier: KLdtgNO920LamXCCLKo+hlKLUicJ1Y6Tfyg/Cz71Adg= Subject key identifier: CE:EF:07:6C:E3:69:71:E2:C5:BB:98:CF:BD:37:A2:53:28:CE:A4:82 Authority key identifier: C9:37:53:A9:AA:A2:A8:6E:56:CA:4E:A0:C3:FF:85:7C:30:E3:42:28 Certificate issuer: /CN=A91C1710/serialNumber=C93753A9AAA2A86E56CA4EA0C3FF857C30E34228 Certificate serial: 0187 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yTdTqaqiqG5Wyk6gw_-FfDDjQig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/yTdTqaqiqG5Wyk6gw_-FfDDjQig.mft Manifest number: 071B Signing time: Sun 11 May 2025 00:10:00 +0000 Manifest this update: Sun 11 May 2025 00:10:00 +0000 Manifest next update: Sun 18 May 2025 00:10:00 +0000 Files and hashes: 1: yTdTqaqiqG5Wyk6gw_-FfDDjQig.crl (hash: jLJb4d5VOcVvfK5th2lhW6VZi6UkWAFVHoATDV+79LE=) 2: 36EA74DAB55C11EF9EF5381AC4F9AE02.roa (hash: L0ogohbd+XG2Rt92PSkXg3Zj7mjIKhleupD8sB/ULt8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/yTdTqaqiqG5Wyk6gw_-FfDDjQig.crl rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/yTdTqaqiqG5Wyk6gw_-FfDDjQig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yTdTqaqiqG5Wyk6gw_-FfDDjQig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 00:09:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 391 (0x187) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1710, serialNumber=C93753A9AAA2A86E56CA4EA0C3FF857C30E34228 Validity Not Before: May 11 00:10:00 2025 GMT Not After : May 18 00:10:00 2025 GMT Subject: CN=681fead8-3981 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:87:4c:06:38:7c:25:b3:50:74:99:29:92:87: 97:56:0f:2e:46:eb:e2:e5:45:03:7a:43:b9:da:af: 49:3a:4b:a5:d6:5b:9e:31:eb:4b:14:5c:e7:71:c6: 40:d1:a3:82:b2:9c:19:e5:44:1a:86:9e:47:4f:38: bc:6e:8c:f7:01:39:fb:f3:cb:98:dc:22:f8:f1:7d: c8:bc:80:35:11:82:7d:1a:b5:bd:30:74:a6:5c:9f: d7:3b:05:5b:d8:48:79:ce:14:9e:bd:b9:82:bd:a8: d5:89:34:04:d5:5b:37:8a:0e:0a:ce:e1:04:95:d3: 6f:43:96:cd:c6:82:f1:84:10:e7:4a:60:ad:2b:b9: b4:4c:2a:51:29:f2:59:ef:b4:99:f4:4a:54:85:c8: a6:f2:98:da:2e:67:ce:4a:27:fd:e6:22:e5:42:cf: 47:34:6f:38:e1:8c:98:c0:7c:41:da:47:e8:ee:8a: ef:02:2c:c4:83:1b:16:5d:61:b4:e0:ad:c0:e8:ed: 85:c0:7a:1c:f6:3b:47:56:59:23:ff:bc:23:04:73: f4:84:65:70:a3:2e:d3:cd:f8:d7:cb:4b:85:15:8b: e8:b5:2c:59:d5:db:f8:d6:57:fc:a0:aa:1e:1d:81: 59:63:ff:88:23:f3:7a:88:8e:48:a8:95:f7:20:bb: 41:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:EF:07:6C:E3:69:71:E2:C5:BB:98:CF:BD:37:A2:53:28:CE:A4:82 X509v3 Authority Key Identifier: keyid:C9:37:53:A9:AA:A2:A8:6E:56:CA:4E:A0:C3:FF:85:7C:30:E3:42:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/yTdTqaqiqG5Wyk6gw_-FfDDjQig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yTdTqaqiqG5Wyk6gw_-FfDDjQig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/yTdTqaqiqG5Wyk6gw_-FfDDjQig.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:28:fd:65:0e:80:b8:43:d1:b2:a3:01:75:63:8a:db:b1:ab: b0:98:81:98:6a:08:0c:c1:6d:ac:38:ab:2b:9f:c8:fe:fe:38: c1:ce:ea:0f:5c:02:f9:65:8a:4c:ea:fa:5e:58:96:3b:1a:74: 28:64:83:17:f5:96:46:1f:81:69:c4:bc:03:de:64:9d:de:82: 0f:9a:b4:28:75:42:e9:cb:a8:ec:a1:a8:2e:34:b2:74:f0:76: f3:19:c7:e2:8c:8c:a9:22:5c:fa:9a:ae:1f:1b:fc:ec:9e:36: f6:76:31:e1:01:65:2d:68:d4:5a:89:34:0c:96:45:56:d5:94: eb:9e:76:6d:65:81:9f:e2:c2:5d:54:46:d6:18:f1:da:3c:eb: 61:f0:f7:42:04:63:f7:f6:7d:2c:4f:ea:95:fe:a6:91:37:ae: f5:b4:30:a6:cb:c6:40:f3:52:c8:fe:32:8f:86:05:71:4d:fa: 7e:e6:c8:5b:28:c8:76:b6:1f:19:76:c6:f0:db:04:e7:e6:1c: f9:cb:f0:a6:5c:7f:4b:5a:54:d1:42:9f:3d:79:ae:bd:2b:f0: a3:85:f4:2b:66:7d:27:50:26:33:55:5e:31:4d:53:b0:76:e7: 6a:77:66:d4:e0:17:d0:93:bc:86:60:b1:88:63:ac:42:ae:d9: 52:8d:21:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE3MTAxMTAvBgNVBAUTKEM5Mzc1M0E5QUFBMkE4NkU1NkNBNEVBMEMzRkY4NTdD MzBFMzQyMjgwHhcNMjUwNTExMDAxMDAwWhcNMjUwNTE4MDAxMDAwWjAYMRYwFAYD VQQDEw02ODFmZWFkOC0zOTgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs4dMBjh8JbNQdJkpkoeXVg8uRuvi5UUDekO52q9JOkul1lueMetLFFznccZA 0aOCspwZ5UQahp5HTzi8boz3ATn788uY3CL48X3IvIA1EYJ9GrW9MHSmXJ/XOwVb 2Eh5zhSevbmCvajViTQE1Vs3ig4KzuEEldNvQ5bNxoLxhBDnSmCtK7m0TCpRKfJZ 77SZ9EpUhcim8pjaLmfOSif95iLlQs9HNG844YyYwHxB2kfo7orvAizEgxsWXWG0 4K3A6O2FwHoc9jtHVlkj/7wjBHP0hGVwoy7TzfjXy0uFFYvotSxZ1dv41lf8oKoe HYFZY/+II/N6iI5IqJX3ILtBuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM7vB2zj aXHixbuYz703olMozqSCMB8GA1UdIwQYMBaAFMk3U6mqoqhuVspOoMP/hXww40Io MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTcxMC8xODIyOUE4Njgy NkIxMUVDQTExQkE1MkJDNEY5QUUwMi95VGRUcWFxaXFHNVd5azZnd18tRmZERGpR aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lUZFRxYXFpcUc1V3lrNmd3Xy1GZkREalFpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTcxMC8xODIyOUE4NjgyNkIxMUVDQTExQkE1MkJDNEY5QUUwMi95VGRUcWFxaXFH NVd5azZnd18tRmZERGpRaWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyKP1lDoC4Q9GyowF1Y4rbsauwmIGYaggMwW2sOKsrn8j+/jjBzuoP XAL5ZYpM6vpeWJY7GnQoZIMX9ZZGH4FpxLwD3mSd3oIPmrQodULpy6jsoaguNLJ0 8HbzGcfijIypIlz6mq4fG/zsnjb2djHhAWUtaNRaiTQMlkVW1ZTrnnZtZYGf4sJd VEbWGPHaPOth8PdCBGP39n0sT+qV/qaRN671tDCmy8ZA81LI/jKPhgVxTfp+5shb KMh2th8Zdsbw2wTn5hz5y/CmXH9LWlTRQp89ea69K/CjhfQrZn0nUCYzVV4xTVOw dudqd2bU4BfQk7yGYLGIY6xCrtlSjSHL -----END CERTIFICATE-----Generated at Mon May 12 23:23:15 2025 by rpki-client