$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft File: 2YRcGequkJIocqDK_QUfFmFPhK8.mft (raw, json) Hash identifier: Vmzu45SCUQRfSo06YLN58JN4e5U7huZ/BywCYj+09UQ= Subject key identifier: FD:C2:4D:8D:C0:BC:11:11:B0:B9:FF:4B:42:C9:3A:F6:A7:60:65:43 Authority key identifier: D9:84:5C:19:EA:AE:90:92:28:72:A0:CA:FD:05:1F:16:61:4F:84:AF Certificate issuer: /CN=A91C6BF0/serialNumber=D9845C19EAAE90922872A0CAFD051F16614F84AF Certificate serial: 0E11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft Manifest number: 0F8E Signing time: Fri 16 May 2025 18:06:21 +0000 Manifest this update: Fri 16 May 2025 18:06:20 +0000 Manifest next update: Fri 23 May 2025 18:06:20 +0000 Files and hashes: 1: 2YRcGequkJIocqDK_QUfFmFPhK8.crl (hash: I5lAnUpz7UwLSjJ5NNQV+dX3TIyh7gq+tngO77Ms1bQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.crl rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 18:06:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3601 (0xe11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6BF0, serialNumber=D9845C19EAAE90922872A0CAFD051F16614F84AF Validity Not Before: May 16 18:06:20 2025 GMT Not After : May 23 18:06:20 2025 GMT Subject: CN=68277e9c-6a2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:4a:82:3e:5c:20:ef:b3:6a:be:32:6c:61:e4: 8e:58:80:54:78:ab:de:06:1a:7c:8f:22:03:60:94: f0:d5:e9:f9:65:f5:51:64:61:0a:30:6d:09:a8:e8: 25:28:e6:0f:10:1f:2f:f4:db:b8:12:c3:c4:5b:f4: 3e:6a:d0:33:a1:3b:d8:b2:b0:be:8e:97:1e:10:99: bf:ee:4e:72:66:1a:c8:2a:a7:40:5e:07:0c:d1:0e: e2:71:ba:9b:ab:7e:1a:35:ee:80:23:ad:66:9e:5a: ba:c5:4f:43:a7:ea:1a:db:e9:e7:53:73:c8:87:66: de:51:24:ae:a3:55:ae:34:c4:1f:c3:5d:47:25:69: f7:31:a1:d6:2f:55:73:fa:eb:cf:ac:ce:f6:71:89: f8:e9:ef:93:8d:3e:26:18:09:1a:52:89:99:54:1b: 0f:20:b6:a7:cb:e9:de:c8:05:e0:5c:a7:0d:b6:9a: 5a:d8:c2:ff:83:ac:c0:ea:ef:92:7e:32:b0:5a:fe: 76:94:41:4d:10:36:dc:ea:98:47:3a:df:d0:49:4e: 7b:36:bf:e3:fc:cb:c8:d0:ac:70:00:b1:8c:87:e3: 7d:ff:c4:97:62:7a:3e:58:50:e3:94:f0:2a:51:f0: f7:b4:c4:cb:56:29:de:09:c1:84:2c:a4:f4:e9:b2: 8c:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:C2:4D:8D:C0:BC:11:11:B0:B9:FF:4B:42:C9:3A:F6:A7:60:65:43 X509v3 Authority Key Identifier: keyid:D9:84:5C:19:EA:AE:90:92:28:72:A0:CA:FD:05:1F:16:61:4F:84:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:c5:42:cb:63:42:a6:2f:cf:c5:40:bc:fa:1a:38:06:b0:33: ad:ac:20:fc:fa:e3:63:a6:6c:5c:1c:bc:c6:1b:8f:80:fc:49: 24:65:9a:d0:26:3b:29:62:44:7d:a5:60:38:b2:96:c3:ba:a8: 6d:43:19:db:f4:56:c2:df:6e:25:7d:aa:a7:3e:13:86:e9:aa: 2f:c7:23:6f:93:a4:dd:51:5f:70:05:11:8b:ce:d6:7a:2c:60: e2:65:61:b7:f0:f2:b5:3d:55:b8:b2:4c:51:a4:e3:fc:e6:a3: 5b:5b:3f:59:a9:ea:48:25:f5:f6:ff:c5:60:5d:66:2d:ee:40: 27:db:e7:01:c8:7c:14:d1:32:46:ed:84:dc:78:2f:67:c8:21: 6f:5e:e0:37:e4:4f:3b:9f:16:dd:f4:e9:4d:c3:85:dc:b2:e7: d3:6b:ec:ea:ec:a0:97:06:8c:c8:9f:9c:c2:75:6c:3d:e8:f9: 78:88:f1:75:83:98:93:c3:42:cd:5c:f1:77:77:c0:81:a3:d5: 71:41:c3:f3:91:bc:7a:30:60:ab:2a:51:26:15:52:47:43:04: f3:38:7e:ec:ee:76:03:2e:99:7b:90:00:b0:54:8f:79:0e:74: 8c:a8:03:75:ad:b1:0e:33:1e:eb:d3:05:b4:73:6b:07:58:cc: 4f:ed:69:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDhEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZCRjAxMTAvBgNVBAUTKEQ5ODQ1QzE5RUFBRTkwOTIyODcyQTBDQUZEMDUxRjE2 NjE0Rjg0QUYwHhcNMjUwNTE2MTgwNjIwWhcNMjUwNTIzMTgwNjIwWjAYMRYwFAYD VQQDEw02ODI3N2U5Yy02YTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz0qCPlwg77NqvjJsYeSOWIBUeKveBhp8jyIDYJTw1en5ZfVRZGEKMG0JqOgl KOYPEB8v9Nu4EsPEW/Q+atAzoTvYsrC+jpceEJm/7k5yZhrIKqdAXgcM0Q7icbqb q34aNe6AI61mnlq6xU9Dp+oa2+nnU3PIh2beUSSuo1WuNMQfw11HJWn3MaHWL1Vz +uvPrM72cYn46e+TjT4mGAkaUomZVBsPILany+neyAXgXKcNtppa2ML/g6zA6u+S fjKwWv52lEFNEDbc6phHOt/QSU57Nr/j/MvI0KxwALGMh+N9/8SXYno+WFDjlPAq UfD3tMTLVineCcGELKT06bKMZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP3CTY3A vBERsLn/S0LJOvanYGVDMB8GA1UdIwQYMBaAFNmEXBnqrpCSKHKgyv0FHxZhT4Sv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkJGMC8xNDkxOTc0QUFF QkIxMUU5OEEzOTBCNTlDNEY5QUUwMi8yWVJjR2VxdWtKSW9jcURLX1FVZkZtRlBo SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJZUmNHZXF1a0pJb2NxREtfUVVmRm1GUGhLOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkJGMC8xNDkxOTc0QUFFQkIxMUU5OEEzOTBCNTlDNEY5QUUwMi8yWVJjR2VxdWtK SW9jcURLX1FVZkZtRlBoSzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxxULLY0KmL8/FQLz6GjgGsDOtrCD8+uNjpmxcHLzGG4+A/EkkZZrQ JjspYkR9pWA4spbDuqhtQxnb9FbC324lfaqnPhOG6aovxyNvk6TdUV9wBRGLztZ6 LGDiZWG38PK1PVW4skxRpOP85qNbWz9ZqepIJfX2/8VgXWYt7kAn2+cByHwU0TJG 7YTceC9nyCFvXuA35E87nxbd9OlNw4XcsufTa+zq7KCXBozIn5zCdWw96Pl4iPF1 g5iTw0LNXPF3d8CBo9VxQcPzkbx6MGCrKlEmFVJHQwTzOH7s7nYDLpl7kACwVI95 DnSMqAN1rbEOMx7r0wW0c2sHWMxP7Wkt -----END CERTIFICATE-----Generated at Sat May 17 01:46:44 2025 by rpki-client