$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.mft File: y4244fF7x3I0bdn_uyByz6j9plI.mft (raw, json) Hash identifier: +Ut6cbK9oKqhSHTtOMYBHWgWRGaAdCY0esKwtTpD5qs= Subject key identifier: 3F:7B:55:30:44:FD:10:D0:06:0C:92:6B:2D:D8:42:10:CF:85:52:B3 Authority key identifier: CB:8D:B8:E1:F1:7B:C7:72:34:6D:D9:FF:BB:20:72:CF:A8:FD:A6:52 Certificate issuer: /CN=A91DB7E9/serialNumber=CB8DB8E1F17BC772346DD9FFBB2072CFA8FDA652 Certificate serial: 012A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y4244fF7x3I0bdn_uyByz6j9plI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.mft Manifest number: 012A Signing time: Tue 13 May 2025 03:51:35 +0000 Manifest this update: Tue 13 May 2025 03:51:34 +0000 Manifest next update: Tue 20 May 2025 03:51:34 +0000 Files and hashes: 1: y4244fF7x3I0bdn_uyByz6j9plI.crl (hash: IqWAb7Rw74jf4GOLUfE+jGzxQkTbLWBf2N9xP+PH2E8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.crl rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y4244fF7x3I0bdn_uyByz6j9plI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 03:51:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 298 (0x12a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB7E9, serialNumber=CB8DB8E1F17BC772346DD9FFBB2072CFA8FDA652 Validity Not Before: May 13 03:51:34 2025 GMT Not After : May 20 03:51:34 2025 GMT Subject: CN=6822c1c7-26a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:43:10:7a:b4:a0:68:99:a1:5f:6e:d1:86:93: 21:6d:27:17:53:a7:a5:ec:83:d6:a6:68:3d:47:24: 01:5a:4c:fa:99:73:a7:34:70:d0:bc:60:e0:b0:ef: c5:38:90:9c:d2:a3:16:13:40:4b:8e:55:85:e2:77: 3d:ce:df:9c:29:40:71:02:3c:b6:ab:99:8e:cc:45: 2c:4e:9d:14:bd:0d:65:c4:b5:5d:64:e9:67:cd:1d: 88:43:56:b3:40:43:45:db:04:47:57:80:b3:73:69: 38:35:e7:a7:df:78:85:64:09:c1:81:c6:f3:b6:7b: a3:e5:1a:1c:67:04:81:f5:ff:6b:b5:88:4c:9b:d2: 06:8d:78:ba:b2:6d:d4:35:1b:64:03:22:8c:bc:e2: b5:2d:e9:b6:c0:be:b4:50:8f:ce:df:1a:a9:39:0b: f7:3f:63:78:c0:25:a1:1b:6b:2a:2f:34:68:e2:5d: a0:c2:4c:25:e6:7e:00:8d:dd:73:a8:da:fe:30:35: 2e:01:e8:fd:b9:0f:d2:dc:fc:4f:8c:8e:16:9d:43: 21:e7:f6:68:f2:26:31:92:9e:dc:11:10:26:86:f4: e7:c0:c5:84:79:32:88:6e:ff:08:ec:17:cf:c4:51: 4c:1a:93:78:76:43:f6:a2:7e:cb:5a:a8:45:46:a1: 30:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:7B:55:30:44:FD:10:D0:06:0C:92:6B:2D:D8:42:10:CF:85:52:B3 X509v3 Authority Key Identifier: keyid:CB:8D:B8:E1:F1:7B:C7:72:34:6D:D9:FF:BB:20:72:CF:A8:FD:A6:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y4244fF7x3I0bdn_uyByz6j9plI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:73:ae:d5:c5:be:4d:d8:41:b3:14:3a:0a:2c:93:ae:a5:42: d9:35:0b:7d:36:90:bd:cc:ce:ff:54:4c:77:87:d4:d3:6e:82: 76:56:75:75:e6:4f:c6:d1:fa:19:21:84:72:06:e0:65:1c:2b: 40:a0:2b:7e:0a:93:4f:ed:80:10:84:91:81:bd:55:18:d5:a6: 2a:99:c3:c1:6c:40:3e:b6:e7:e1:ce:25:16:78:85:d8:02:34: b3:f9:a0:75:41:f3:01:45:89:e4:20:6b:ed:c1:02:02:51:8e: 4a:81:db:a1:46:9d:32:c4:d7:e9:63:ff:8e:3e:51:85:21:78: dd:c2:96:44:9e:a1:21:1d:e4:87:d0:1b:63:fc:15:4c:7a:94: 21:af:cb:89:35:37:e7:83:31:b9:f4:34:35:a8:b8:48:a0:9d: 43:42:97:59:35:d9:71:26:a7:01:76:63:08:85:da:de:c3:22: 34:0e:15:eb:f0:bb:b2:2e:e8:04:48:37:0c:4f:e7:26:90:33: 49:85:78:36:d3:f7:ed:20:76:96:b1:59:ee:b7:85:3b:80:06: 56:5c:67:c7:e8:84:30:24:29:ea:7f:86:67:62:3e:13:62:1f: 5d:0e:a1:97:f6:90:04:ae:0f:c9:b4:60:fa:c3:8e:5c:ab:91: 29:b4:5a:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI3RTkxMTAvBgNVBAUTKENCOERCOEUxRjE3QkM3NzIzNDZERDlGRkJCMjA3MkNG QThGREE2NTIwHhcNMjUwNTEzMDM1MTM0WhcNMjUwNTIwMDM1MTM0WjAYMRYwFAYD VQQDEw02ODIyYzFjNy0yNmE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqEMQerSgaJmhX27RhpMhbScXU6el7IPWpmg9RyQBWkz6mXOnNHDQvGDgsO/F OJCc0qMWE0BLjlWF4nc9zt+cKUBxAjy2q5mOzEUsTp0UvQ1lxLVdZOlnzR2IQ1az QENF2wRHV4Czc2k4Neen33iFZAnBgcbztnuj5RocZwSB9f9rtYhMm9IGjXi6sm3U NRtkAyKMvOK1Lem2wL60UI/O3xqpOQv3P2N4wCWhG2sqLzRo4l2gwkwl5n4Ajd1z qNr+MDUuAej9uQ/S3PxPjI4WnUMh5/Zo8iYxkp7cERAmhvTnwMWEeTKIbv8I7BfP xFFMGpN4dkP2on7LWqhFRqEwFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD97VTBE /RDQBgySay3YQhDPhVKzMB8GA1UdIwQYMBaAFMuNuOHxe8dyNG3Z/7sgcs+o/aZS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjdFOS9FMEM0NjEzMDZF MkUxMUVFODVEOTJEMzJDNEY5QUUwMi95NDI0NGZGN3gzSTBiZG5fdXlCeXo2ajlw bEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3k0MjQ0ZkY3eDNJMGJkbl91eUJ5ejZqOXBsSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjdFOS9FMEM0NjEzMDZFMkUxMUVFODVEOTJEMzJDNEY5QUUwMi95NDI0NGZGN3gz STBiZG5fdXlCeXo2ajlwbEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmc67Vxb5N2EGzFDoKLJOupULZNQt9NpC9zM7/VEx3h9TTboJ2VnV1 5k/G0foZIYRyBuBlHCtAoCt+CpNP7YAQhJGBvVUY1aYqmcPBbEA+tufhziUWeIXY AjSz+aB1QfMBRYnkIGvtwQICUY5KgduhRp0yxNfpY/+OPlGFIXjdwpZEnqEhHeSH 0Btj/BVMepQhr8uJNTfngzG59DQ1qLhIoJ1DQpdZNdlxJqcBdmMIhdrewyI0DhXr 8LuyLugESDcMT+cmkDNJhXg20/ftIHaWsVnut4U7gAZWXGfH6IQwJCnqf4ZnYj4T Yh9dDqGX9pAErg/JtGD6w45cq5EptFo8 -----END CERTIFICATE-----Generated at Thu May 15 00:16:49 2025 by rpki-client