$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft File: yoXhM8HiOWFMnFd4ARi9swlSjnY.mft (raw, json) Hash identifier: LrrUrK7N+f7CFqhfQZk73RqLybb2vyOyPN6LQQUPZQY= Subject key identifier: 76:31:17:DB:FA:80:0D:13:D0:E8:0B:B5:A7:63:08:C0:29:96:A3:9E Authority key identifier: CA:85:E1:33:C1:E2:39:61:4C:9C:57:78:01:18:BD:B3:09:52:8E:76 Certificate issuer: /CN=A91DC42E/serialNumber=CA85E133C1E239614C9C57780118BDB309528E76 Certificate serial: 078B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft Manifest number: 0785 Signing time: Wed 14 May 2025 21:28:19 +0000 Manifest this update: Wed 14 May 2025 21:28:19 +0000 Manifest next update: Wed 21 May 2025 21:28:19 +0000 Files and hashes: 1: yoXhM8HiOWFMnFd4ARi9swlSjnY.crl (hash: pOdDVH6t6DQQmHCFIx2HyhiJXCuYckRIEhy+psMdLwI=) 2: 4AAD8CFE0D1E11EB83C9B637C4F9AE02.roa (hash: SKKgbqIxO8h2gMjhNkPa/ZI17L9sik+EpFHik6yG+pU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.crl rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 21:28:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1931 (0x78b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC42E, serialNumber=CA85E133C1E239614C9C57780118BDB309528E76 Validity Not Before: May 14 21:28:19 2025 GMT Not After : May 21 21:28:19 2025 GMT Subject: CN=68250af3-d035 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:e2:fb:7a:b4:77:03:57:cf:92:ab:54:d1:f9: 99:43:99:76:26:3b:77:dd:35:e5:75:fb:01:90:35: 38:82:7f:a1:33:d2:e6:21:5e:e2:05:21:33:c3:01: 2d:86:7d:96:a4:65:a8:a7:5e:29:1d:d4:2e:01:34: 42:c1:27:18:54:1d:c4:8c:14:12:8a:2c:84:4d:d2: ac:66:82:06:ba:e9:de:e0:0f:fd:94:36:7b:a6:4d: 7b:6a:88:76:3c:05:7d:0f:dc:96:47:f4:3e:92:0d: 38:31:b7:60:26:b1:8e:fa:38:b8:c8:81:7f:8f:2a: 8a:a5:10:40:96:0f:d2:58:15:ec:3f:52:83:d2:ba: ef:70:15:53:41:f9:2e:44:76:12:4d:eb:50:dd:c4: e0:a9:9d:9d:a7:a0:0f:5e:b6:6e:5e:85:1c:50:2d: 35:55:00:03:29:1b:de:70:f4:08:e8:7d:de:fc:43: 9f:08:0f:5f:7d:f4:ae:14:11:2a:d9:b5:04:77:df: 7b:eb:e3:16:97:08:b7:69:8a:7d:c3:3b:11:02:c6: a8:f9:d4:0b:69:95:67:43:84:64:09:38:6f:9b:c4: 96:f4:6e:fc:c9:6b:c9:91:eb:4a:a4:66:d2:a7:52: 99:5b:82:3d:ba:0c:dc:6d:0a:3d:c0:c4:42:11:87: ee:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:31:17:DB:FA:80:0D:13:D0:E8:0B:B5:A7:63:08:C0:29:96:A3:9E X509v3 Authority Key Identifier: keyid:CA:85:E1:33:C1:E2:39:61:4C:9C:57:78:01:18:BD:B3:09:52:8E:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:bc:b0:bd:47:c8:b4:9b:0c:c1:0b:8c:2a:bb:04:17:c3:4a: b2:0a:34:62:ef:b8:cb:3a:34:27:ac:9e:f7:8c:f2:ef:96:76: df:ea:53:1f:1b:0e:34:43:ef:a7:15:22:53:e5:e5:a2:03:30: 6b:9a:b6:d9:e9:40:20:61:0f:e1:0d:a5:1a:ad:81:71:ea:65: e9:f1:c3:e9:ff:5d:f4:00:7d:82:26:40:c6:93:aa:22:14:82: ab:b0:61:c8:5b:93:5b:b0:a3:3a:e5:45:88:5d:e4:5d:63:f6: 6b:41:ef:2b:8e:e4:48:29:2e:a9:be:3a:af:dd:14:56:b1:ef: 8b:98:99:c2:47:9b:81:29:89:68:a0:a1:fe:95:14:87:9a:26: 9a:1c:4c:c7:4b:b3:1b:f2:e4:d1:41:8a:fd:39:b1:88:ba:ff: 31:0d:d8:e8:9c:9a:ba:ce:fd:7d:ae:aa:33:3e:3d:4e:cf:55: 42:62:45:13:99:59:e0:be:4d:2c:88:78:7f:b2:75:bb:57:bd: 83:01:17:50:2e:6c:a2:91:e2:c3:e6:e9:c3:aa:a5:44:db:9b: f6:81:5d:04:a0:1a:27:b3:c1:2f:2c:f8:03:d2:1b:b0:20:95: 93:c0:86:05:e2:01:09:7a:9a:f1:4a:ce:85:37:53:7f:73:de: b5:46:07:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0MkUxMTAvBgNVBAUTKENBODVFMTMzQzFFMjM5NjE0QzlDNTc3ODAxMThCREIz MDk1MjhFNzYwHhcNMjUwNTE0MjEyODE5WhcNMjUwNTIxMjEyODE5WjAYMRYwFAYD VQQDEw02ODI1MGFmMy1kMDM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2eL7erR3A1fPkqtU0fmZQ5l2Jjt33TXldfsBkDU4gn+hM9LmIV7iBSEzwwEt hn2WpGWop14pHdQuATRCwScYVB3EjBQSiiyETdKsZoIGuune4A/9lDZ7pk17aoh2 PAV9D9yWR/Q+kg04MbdgJrGO+ji4yIF/jyqKpRBAlg/SWBXsP1KD0rrvcBVTQfku RHYSTetQ3cTgqZ2dp6APXrZuXoUcUC01VQADKRvecPQI6H3e/EOfCA9fffSuFBEq 2bUEd9976+MWlwi3aYp9wzsRAsao+dQLaZVnQ4RkCThvm8SW9G78yWvJketKpGbS p1KZW4I9ugzcbQo9wMRCEYfuEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHYxF9v6 gA0T0OgLtadjCMAplqOeMB8GA1UdIwQYMBaAFMqF4TPB4jlhTJxXeAEYvbMJUo52 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzQyRS9ENkE3RkY0ODBE MTcxMUVCQTc0MUE1MEFDNEY5QUUwMi95b1hoTThIaU9XRk1uRmQ0QVJpOXN3bFNq blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lvWGhNOEhpT1dGTW5GZDRBUmk5c3dsU2puWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzQyRS9ENkE3RkY0ODBEMTcxMUVCQTc0MUE1MEFDNEY5QUUwMi95b1hoTThIaU9X Rk1uRmQ0QVJpOXN3bFNqblkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5vLC9R8i0mwzBC4wquwQXw0qyCjRi77jLOjQnrJ73jPLvlnbf6lMf Gw40Q++nFSJT5eWiAzBrmrbZ6UAgYQ/hDaUarYFx6mXp8cPp/130AH2CJkDGk6oi FIKrsGHIW5NbsKM65UWIXeRdY/ZrQe8rjuRIKS6pvjqv3RRWse+LmJnCR5uBKYlo oKH+lRSHmiaaHEzHS7Mb8uTRQYr9ObGIuv8xDdjonJq6zv19rqozPj1Oz1VCYkUT mVngvk0siHh/snW7V72DARdQLmyikeLD5unDqqVE25v2gV0EoBons8EvLPgD0huw IJWTwIYF4gEJeprxSs6FN1N/c961Rgdp -----END CERTIFICATE-----Generated at Fri May 16 05:03:31 2025 by rpki-client