$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft File: YcuQhfAv-PpF5zL1gDQPQkngDKI.mft (raw, json) Hash identifier: x3NkHEshfgEeBhXzUPdlMYk/PvWM4xwfDdA5gvw/6Y0= Subject key identifier: 65:07:7D:FC:CA:3F:DF:71:E2:D5:18:38:71:7C:1B:08:F4:E3:6D:2C Authority key identifier: 61:CB:90:85:F0:2F:F8:FA:45:E7:32:F5:80:34:0F:42:49:E0:0C:A2 Certificate issuer: /CN=A91DCB25/serialNumber=61CB9085F02FF8FA45E732F580340F4249E00CA2 Certificate serial: 117B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YcuQhfAv-PpF5zL1gDQPQkngDKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft Manifest number: 1172 Signing time: Thu 08 May 2025 17:18:15 +0000 Manifest this update: Thu 08 May 2025 17:18:15 +0000 Manifest next update: Thu 15 May 2025 17:18:15 +0000 Files and hashes: 1: YcuQhfAv-PpF5zL1gDQPQkngDKI.crl (hash: f3V2hoQ1ECQ1SlJjmcv7HiTTZctwrSEc5TMlemVZHGg=) 2: BDC1AB0AFDA611E88FA5E26DC4F9AE02.roa (hash: SB9Ipu4AFekvf7xWy+dJxrZfjpqZ4b1Xx/G1XVRpODY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.crl rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YcuQhfAv-PpF5zL1gDQPQkngDKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 May 2025 17:18:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4475 (0x117b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCB25, serialNumber=61CB9085F02FF8FA45E732F580340F4249E00CA2 Validity Not Before: May 8 17:18:15 2025 GMT Not After : May 15 17:18:15 2025 GMT Subject: CN=681ce757-8a27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:46:fc:ef:e4:2a:16:92:0c:cd:22:9f:3e:27: ee:c9:83:1c:eb:93:00:34:69:4e:d7:5e:e7:4c:f3: 52:f1:49:ee:8f:51:4b:72:19:5e:b5:74:c3:d6:88: cc:34:5b:fd:18:04:e9:7a:3b:98:86:25:ae:c1:28: a0:17:20:52:93:45:e5:e8:41:5e:c7:90:64:cd:ae: fb:58:81:ec:f2:c7:66:f3:e8:e7:9b:39:e2:42:07: 45:e3:24:74:50:a0:a4:79:b3:ab:bb:0a:c9:22:77: 52:8c:b5:de:c0:27:ac:61:92:c4:54:4a:80:bb:d8: ce:a9:4a:4c:42:cf:2c:b1:e7:30:12:da:6d:b5:1c: 25:f6:c1:62:56:5d:8f:fe:0e:3b:63:09:73:cc:b3: ba:32:10:49:ae:1e:85:2f:0b:54:d0:83:f5:9a:10: 72:a6:88:61:1f:8e:6b:2f:c6:f0:57:c4:39:61:ca: 69:73:c2:33:af:83:e4:9f:fb:f4:d1:73:d0:2e:06: be:e3:76:80:d1:af:6f:15:13:a7:3b:47:89:7b:a9: 3c:02:02:d5:3b:f5:23:c8:89:19:7d:44:e6:6a:bf: 26:74:0e:d4:1b:c8:aa:a2:1a:e4:93:22:76:c9:02: 31:8c:94:ce:bb:85:ee:01:a7:fa:84:a3:83:a5:c3: f5:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:07:7D:FC:CA:3F:DF:71:E2:D5:18:38:71:7C:1B:08:F4:E3:6D:2C X509v3 Authority Key Identifier: keyid:61:CB:90:85:F0:2F:F8:FA:45:E7:32:F5:80:34:0F:42:49:E0:0C:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YcuQhfAv-PpF5zL1gDQPQkngDKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:5b:0b:60:85:80:15:5b:6e:46:e6:23:67:52:71:ff:33:d5: ef:5d:64:0b:74:8a:30:6b:01:4f:36:a2:9f:ce:f3:17:5c:bb: ab:6f:09:57:ad:05:97:99:3e:73:1b:af:b0:b5:03:f4:1b:1f: 33:79:24:8c:d7:72:62:46:ea:5e:3b:84:69:f6:f7:d4:90:bb: 0d:46:ea:13:b9:c8:27:d1:fb:7a:17:9c:88:92:15:57:9b:aa: 55:57:bb:4c:a0:27:1f:7a:6c:5f:a1:3b:c6:dc:72:8f:4d:44: 7f:bb:16:e3:e2:73:33:75:89:2c:b4:1b:eb:e7:11:b8:cf:5c: 1d:d3:72:9b:7f:01:85:ed:7e:b5:97:f1:75:ae:7a:c0:d9:d5: 6e:8b:00:61:f3:34:4a:c0:9f:e7:af:c0:fb:ca:6e:1c:3b:9c: c6:55:17:3c:96:55:7f:91:35:eb:f4:6f:7d:af:be:52:88:c6: 59:21:4c:15:b8:de:73:72:5b:a6:96:f5:a1:71:43:c8:f2:a6: 32:8e:df:05:5f:06:99:05:b5:2e:2e:24:04:13:76:a7:67:3b: ec:0d:ce:64:8e:52:ba:48:bb:e0:8d:75:77:ca:99:9a:fb:ac: 58:64:25:bc:e6:90:3e:04:22:f7:41:95:ab:73:e6:4f:2e:e2: 96:0d:4b:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENCMjUxMTAvBgNVBAUTKDYxQ0I5MDg1RjAyRkY4RkE0NUU3MzJGNTgwMzQwRjQy NDlFMDBDQTIwHhcNMjUwNTA4MTcxODE1WhcNMjUwNTE1MTcxODE1WjAYMRYwFAYD VQQDEw02ODFjZTc1Ny04YTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Ub87+QqFpIMzSKfPifuyYMc65MANGlO117nTPNS8Unuj1FLchletXTD1ojM NFv9GATpejuYhiWuwSigFyBSk0Xl6EFex5Bkza77WIHs8sdm8+jnmzniQgdF4yR0 UKCkebOruwrJIndSjLXewCesYZLEVEqAu9jOqUpMQs8ssecwEtpttRwl9sFiVl2P /g47YwlzzLO6MhBJrh6FLwtU0IP1mhBypohhH45rL8bwV8Q5Ycppc8Izr4Pkn/v0 0XPQLga+43aA0a9vFROnO0eJe6k8AgLVO/UjyIkZfUTmar8mdA7UG8iqohrkkyJ2 yQIxjJTOu4XuAaf6hKODpcP1RQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGUHffzK P99x4tUYOHF8Gwj0420sMB8GA1UdIwQYMBaAFGHLkIXwL/j6Recy9YA0D0JJ4Ayi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0IyNS8yQzYwREZEOEZE QTUxMUU4ODg1OUMwNkJDNEY5QUUwMi9ZY3VRaGZBdi1QcEY1ekwxZ0RRUFFrbmdE S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ljdVFoZkF2LVBwRjV6TDFnRFFQUWtuZ0RLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Q0IyNS8yQzYwREZEOEZEQTUxMUU4ODg1OUMwNkJDNEY5QUUwMi9ZY3VRaGZBdi1Q cEY1ekwxZ0RRUFFrbmdES0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4WwtghYAVW25G5iNnUnH/M9XvXWQLdIowawFPNqKfzvMXXLurbwlX rQWXmT5zG6+wtQP0Gx8zeSSM13JiRupeO4Rp9vfUkLsNRuoTucgn0ft6F5yIkhVX m6pVV7tMoCcfemxfoTvG3HKPTUR/uxbj4nMzdYkstBvr5xG4z1wd03KbfwGF7X61 l/F1rnrA2dVuiwBh8zRKwJ/nr8D7ym4cO5zGVRc8llV/kTXr9G99r75SiMZZIUwV uN5zclumlvWhcUPI8qYyjt8FXwaZBbUuLiQEE3anZzvsDc5kjlK6SLvgjXV3ypma +6xYZCW85pA+BCL3QZWrc+ZPLuKWDUsL -----END CERTIFICATE-----Generated at Fri May 9 23:50:04 2025 by rpki-client