$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft File: Yt3ChdqLPiCesA6qNnGEXaps8oY.mft (raw, json) Hash identifier: zt0bxsHNz8NrMZtN/YCp1sBIsy+NnsGPy3YjOjiuK18= Subject key identifier: 79:27:F4:6E:9B:14:5C:A1:83:28:07:E9:BA:0A:80:AE:A3:08:D2:57 Authority key identifier: 62:DD:C2:85:DA:8B:3E:20:9E:B0:0E:AA:36:71:84:5D:AA:6C:F2:86 Certificate issuer: /CN=A91CE5A6/serialNumber=62DDC285DA8B3E209EB00EAA3671845DAA6CF286 Certificate serial: 013C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft Manifest number: 0136 Signing time: Sun 11 May 2025 03:22:59 +0000 Manifest this update: Sun 11 May 2025 03:22:59 +0000 Manifest next update: Sun 18 May 2025 03:22:59 +0000 Files and hashes: 1: Yt3ChdqLPiCesA6qNnGEXaps8oY.crl (hash: xgGCdu7zQ/XYrFCjJWuF8JIqDlhJDR0UXi6/10zML9E=) 2: 64120230B2C211EFA43BF057C4F9AE02.roa (hash: 9h3davUQ9pNDA3U7SYojAK+YEhrIBkhT56ukToleizY=) 3: 3B8DEFBCB2CD11EFBEB6A532C4F9AE02.roa (hash: DgTHE1vd+LuLJ/6bYp2I4wVbGI057+J0uGiHNmi5Ok4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.crl rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 03:22:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 316 (0x13c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE5A6, serialNumber=62DDC285DA8B3E209EB00EAA3671845DAA6CF286 Validity Not Before: May 11 03:22:59 2025 GMT Not After : May 18 03:22:59 2025 GMT Subject: CN=68201813-b39f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:03:65:a0:1f:3c:d8:fd:f3:70:09:05:a5:6a: 18:71:cd:b6:a4:08:a2:f0:8f:44:31:fe:a7:6e:e6: 52:17:19:bf:2b:8d:9e:bb:08:bb:ce:9a:94:5d:03: 86:a5:b3:21:fd:71:8b:1e:95:ab:7d:fc:3e:7d:c6: 30:9f:08:5c:6c:de:85:32:a4:1e:53:9b:9a:09:f4: 07:c3:c3:c6:b6:02:7d:e5:a8:70:9b:b6:18:3a:ae: 29:57:e9:da:d1:ea:fd:0a:f4:15:e7:10:90:08:20: a2:6e:21:fa:ee:11:b9:30:df:a8:89:8c:36:ed:15: 65:5c:90:16:ce:6c:9e:06:57:31:03:d7:9d:9e:e9: 6a:5d:6c:9e:f0:b0:ef:8d:da:5e:df:c2:93:12:60: 49:24:d6:28:19:f1:30:f2:32:5e:6a:0e:1c:1a:a1: 48:d0:d1:50:bc:f9:8e:c2:20:3e:44:63:02:c8:42: 53:17:a9:e3:38:6a:86:69:8d:ce:3a:a3:e3:af:a9: 19:4c:44:64:c0:0c:1c:46:dd:22:08:33:9e:16:81: 21:d2:af:27:38:3b:50:30:3c:40:b0:8b:c5:2b:2e: 56:7e:26:da:f7:93:be:8e:09:ed:69:15:d4:45:7f: 1c:bc:1d:29:19:7a:6b:55:6b:61:fb:dc:6a:1b:08: b5:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:27:F4:6E:9B:14:5C:A1:83:28:07:E9:BA:0A:80:AE:A3:08:D2:57 X509v3 Authority Key Identifier: keyid:62:DD:C2:85:DA:8B:3E:20:9E:B0:0E:AA:36:71:84:5D:AA:6C:F2:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d8:a6:af:c0:f4:28:59:c8:20:b6:bd:ab:94:f8:ca:a9:f2:f7: 8b:73:ef:fc:b7:bd:95:ef:5b:58:4b:09:85:9d:33:bb:77:55: ad:49:d7:21:55:6a:11:17:b6:36:00:7e:51:c5:21:65:0d:2b: 40:9f:b9:c0:4a:02:3e:27:22:1f:57:c8:97:c5:40:eb:3b:54: 8d:e7:f3:24:bf:97:37:ff:4d:43:da:18:d3:2f:59:24:5e:36: 8c:7b:f2:45:f9:f3:b6:d9:09:c1:1b:37:4e:dd:a6:93:a8:cd: ee:f9:83:04:03:b8:8f:0b:6f:3c:84:09:73:31:85:b9:82:e9: e7:1b:f2:a1:7b:a3:7a:da:c6:13:bf:63:6f:13:40:18:12:21: e7:35:d1:34:ea:e0:df:79:5c:7a:12:10:11:9c:d6:6b:66:26: 43:3c:7d:fb:b7:77:be:00:5b:3e:e4:2b:e3:d6:08:40:88:fb: 7b:bf:80:e5:56:a7:9b:c6:2e:df:85:a5:b7:75:62:ff:f4:dd: 36:f8:8f:19:bf:60:19:7e:33:3d:06:de:57:cc:45:d6:c1:1c: b7:48:7c:18:41:43:d4:51:e4:19:60:e3:d4:b3:7d:5d:91:f1: ac:46:b0:98:51:4a:f5:ae:57:da:20:4a:b1:4a:2c:5b:a8:25: 25:98:6e:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1QTYxMTAvBgNVBAUTKDYyRERDMjg1REE4QjNFMjA5RUIwMEVBQTM2NzE4NDVE QUE2Q0YyODYwHhcNMjUwNTExMDMyMjU5WhcNMjUwNTE4MDMyMjU5WjAYMRYwFAYD VQQDEw02ODIwMTgxMy1iMzlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAygNloB882P3zcAkFpWoYcc22pAii8I9EMf6nbuZSFxm/K42euwi7zpqUXQOG pbMh/XGLHpWrffw+fcYwnwhcbN6FMqQeU5uaCfQHw8PGtgJ95ahwm7YYOq4pV+na 0er9CvQV5xCQCCCibiH67hG5MN+oiYw27RVlXJAWzmyeBlcxA9ednulqXWye8LDv jdpe38KTEmBJJNYoGfEw8jJeag4cGqFI0NFQvPmOwiA+RGMCyEJTF6njOGqGaY3O OqPjr6kZTERkwAwcRt0iCDOeFoEh0q8nODtQMDxAsIvFKy5Wfiba95O+jgntaRXU RX8cvB0pGXprVWth+9xqGwi1EwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHkn9G6b FFyhgygH6boKgK6jCNJXMB8GA1UdIwQYMBaAFGLdwoXaiz4gnrAOqjZxhF2qbPKG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTVBNi9BQUIzM0U0QzVC M0YxMUVFOEYxRDNENkVDNEY5QUUwMi9ZdDNDaGRxTFBpQ2VzQTZxTm5HRVhhcHM4 b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1l0M0NoZHFMUGlDZXNBNnFObkdFWGFwczhvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTVBNi9BQUIzM0U0QzVCM0YxMUVFOEYxRDNENkVDNEY5QUUwMi9ZdDNDaGRxTFBp Q2VzQTZxTm5HRVhhcHM4b1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDYpq/A9ChZyCC2vauU+Mqp8veLc+/8t72V71tYSwmFnTO7d1WtSdch VWoRF7Y2AH5RxSFlDStAn7nASgI+JyIfV8iXxUDrO1SN5/Mkv5c3/01D2hjTL1kk XjaMe/JF+fO22QnBGzdO3aaTqM3u+YMEA7iPC288hAlzMYW5gunnG/Khe6N62sYT v2NvE0AYEiHnNdE06uDfeVx6EhARnNZrZiZDPH37t3e+AFs+5Cvj1ghAiPt7v4Dl Vqebxi7fhaW3dWL/9N02+I8Zv2AZfjM9Bt5XzEXWwRy3SHwYQUPUUeQZYOPUs31d kfGsRrCYUUr1rlfaIEqxSixbqCUlmG5y -----END CERTIFICATE-----Generated at Sun May 11 18:14:37 2025 by rpki-client