$ rpki-client -vvf rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft File: PykJw_UywAsCV7klbHbroxTc0A8.mft (raw, json) Hash identifier: yGJJAP19VK3QFlrNKyvbHWEw8pcnP8WO6MKojQEzUnQ= Subject key identifier: A4:3E:73:D8:E0:CC:8E:74:25:9D:86:84:9C:79:02:91:DC:8C:3D:53 Authority key identifier: 3F:29:09:C3:F5:32:C0:0B:02:57:B9:25:6C:76:EB:A3:14:DC:D0:0F Certificate issuer: /CN=A91C71A5/serialNumber=3F2909C3F532C00B0257B9256C76EBA314DCD00F Certificate serial: 0285 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft Manifest number: 027C Signing time: Sun 11 May 2025 01:13:05 +0000 Manifest this update: Sun 11 May 2025 01:13:05 +0000 Manifest next update: Sun 18 May 2025 01:13:05 +0000 Files and hashes: 1: PykJw_UywAsCV7klbHbroxTc0A8.crl (hash: 5ehb3TYThKSQBk3WNnffFrW5/qpA4sjeJzvMISmS0bw=) 2: 99A7637060B311EEBA329E54C4F9AE02.roa (hash: yZy+TqtowAyp3q8j4FvJTBd3TEpqHb7gUX+ZaoqGeKI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.crl rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 01:13:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 645 (0x285) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C71A5, serialNumber=3F2909C3F532C00B0257B9256C76EBA314DCD00F Validity Not Before: May 11 01:13:05 2025 GMT Not After : May 18 01:13:05 2025 GMT Subject: CN=681ff9a1-8ab1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:0f:a1:79:6f:db:a3:1e:bd:0a:46:98:e0:3b: 01:ee:d4:a7:0d:0d:1a:9e:2e:5d:5b:dc:ac:e9:6b: 00:57:28:17:32:80:24:a5:4a:e9:fc:c8:1e:b2:ca: af:4f:96:ec:72:57:95:4d:d3:20:2f:93:3e:be:9c: 6e:16:64:74:52:82:d4:09:ad:70:8a:86:43:86:64: 92:b6:85:5a:0b:02:f7:7c:d3:d0:d2:a3:7b:a9:f7: 39:27:d6:7d:cb:4d:27:e5:5d:89:04:7d:71:1a:7a: b9:4b:8b:0e:50:76:07:9c:0a:c0:66:eb:fe:45:34: c2:9b:b7:ad:f6:a1:3d:ae:51:15:3f:30:2c:a3:0f: d5:7e:a1:d6:7e:15:fb:30:f9:89:e9:5a:ac:bf:d4: d4:e0:b7:95:e8:c3:91:63:c4:a2:be:f3:d3:b5:3d: a4:e9:94:e3:14:1a:89:55:d6:4e:58:bc:3c:c3:61: 8b:e4:2d:58:28:fd:27:70:91:11:b9:d8:85:50:3a: 0e:f1:2b:2d:f8:21:b0:ee:5a:42:49:7f:af:16:f3: 57:46:67:0c:2a:04:d6:84:c8:f2:ee:da:f1:6f:62: 63:d8:6a:e0:b1:78:59:e8:02:af:d0:3f:c8:35:dd: 4f:9f:ac:23:af:d8:20:f2:8c:0a:57:f0:98:60:bc: 05:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:3E:73:D8:E0:CC:8E:74:25:9D:86:84:9C:79:02:91:DC:8C:3D:53 X509v3 Authority Key Identifier: keyid:3F:29:09:C3:F5:32:C0:0B:02:57:B9:25:6C:76:EB:A3:14:DC:D0:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:da:80:84:e6:77:ad:ee:1a:f2:b4:38:78:cb:15:4d:15:e9: 45:13:92:73:56:db:89:1c:ac:84:b0:d1:9e:15:b0:b5:68:ac: bf:47:ad:53:ba:96:a7:c2:6e:93:b0:12:67:bc:79:e5:5e:c1: 93:28:32:cf:6e:5a:51:c8:dd:53:90:33:43:20:91:48:69:28: c0:18:a9:eb:20:6c:cd:35:60:a3:87:1d:53:5b:88:fa:5a:7f: df:c5:bc:e6:33:b3:80:2e:8b:99:17:bb:c9:de:be:c3:f0:b6: b6:ea:e6:18:8b:33:ab:6c:58:88:a4:f5:b2:10:ef:4f:18:47: a7:39:6a:c0:a4:0a:7b:60:b1:c8:cd:c5:a0:70:ea:c0:ea:d5: 29:3d:78:92:dc:33:b7:44:8d:4e:37:20:38:c2:ab:22:af:8b: 8e:0b:dc:f9:df:2f:6a:91:be:e8:8d:37:4c:ff:f7:9a:a4:d8: d4:87:eb:25:a7:ce:bf:cb:ad:8c:80:b0:64:78:db:c3:43:31: ed:d5:dc:21:20:7e:31:97:35:91:3a:7c:a1:8a:74:75:32:76: bb:b5:53:6c:62:99:40:8f:a4:94:a3:da:d9:86:61:28:16:33: b2:96:85:ea:55:24:e3:c5:06:23:8f:d6:c8:51:37:a2:33:ae: 1e:c5:ae:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzcxQTUxMTAvBgNVBAUTKDNGMjkwOUMzRjUzMkMwMEIwMjU3QjkyNTZDNzZFQkEz MTREQ0QwMEYwHhcNMjUwNTExMDExMzA1WhcNMjUwNTE4MDExMzA1WjAYMRYwFAYD VQQDEw02ODFmZjlhMS04YWIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7g+heW/box69CkaY4DsB7tSnDQ0ani5dW9ys6WsAVygXMoAkpUrp/Mgessqv T5bscleVTdMgL5M+vpxuFmR0UoLUCa1wioZDhmSStoVaCwL3fNPQ0qN7qfc5J9Z9 y00n5V2JBH1xGnq5S4sOUHYHnArAZuv+RTTCm7et9qE9rlEVPzAsow/VfqHWfhX7 MPmJ6Vqsv9TU4LeV6MORY8SivvPTtT2k6ZTjFBqJVdZOWLw8w2GL5C1YKP0ncJER udiFUDoO8Sst+CGw7lpCSX+vFvNXRmcMKgTWhMjy7trxb2Jj2GrgsXhZ6AKv0D/I Nd1Pn6wjr9gg8owKV/CYYLwFIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKQ+c9jg zI50JZ2GhJx5ApHcjD1TMB8GA1UdIwQYMBaAFD8pCcP1MsALAle5JWx266MU3NAP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzFBNS8zQkZBMjgzNDBB ODMxMUVEOEQ2RDgzMkFDNEY5QUUwMi9QeWtKd19VeXdBc0NWN2tsYkhicm94VGMw QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B5a0p3X1V5d0FzQ1Y3a2xiSGJyb3hUYzBBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzFBNS8zQkZBMjgzNDBBODMxMUVEOEQ2RDgzMkFDNEY5QUUwMi9QeWtKd19VeXdB c0NWN2tsYkhicm94VGMwQTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBG2oCE5net7hrytDh4yxVNFelFE5JzVtuJHKyEsNGeFbC1aKy/R61T upanwm6TsBJnvHnlXsGTKDLPblpRyN1TkDNDIJFIaSjAGKnrIGzNNWCjhx1TW4j6 Wn/fxbzmM7OALouZF7vJ3r7D8La26uYYizOrbFiIpPWyEO9PGEenOWrApAp7YLHI zcWgcOrA6tUpPXiS3DO3RI1ONyA4wqsir4uOC9z53y9qkb7ojTdM//eapNjUh+sl p86/y62MgLBkeNvDQzHt1dwhIH4xlzWROnyhinR1Mna7tVNsYplAj6SUo9rZhmEo FjOyloXqVSTjxQYjj9bIUTeiM64exa6H -----END CERTIFICATE-----Generated at Mon May 12 07:20:27 2025 by rpki-client