$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft File: yq3LrMUbKkZS3XMHTygsM00BAnc.mft (raw, json) Hash identifier: wmytJpfype9NECr8WnXrNva9ADYsjM2/ShSA43EZmdU= Subject key identifier: 1D:AC:A6:26:14:DD:98:CE:62:68:91:E1:B1:D8:54:83:CA:30:61:D2 Authority key identifier: CA:AD:CB:AC:C5:1B:2A:46:52:DD:73:07:4F:28:2C:33:4D:01:02:77 Certificate issuer: /CN=A91DCCB3/serialNumber=CAADCBACC51B2A4652DD73074F282C334D010277 Certificate serial: 0995 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yq3LrMUbKkZS3XMHTygsM00BAnc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft Manifest number: 098F Signing time: Sat 10 May 2025 19:48:59 +0000 Manifest this update: Sat 10 May 2025 19:48:59 +0000 Manifest next update: Sat 17 May 2025 19:48:59 +0000 Files and hashes: 1: yq3LrMUbKkZS3XMHTygsM00BAnc.crl (hash: el/NHcL+abdPXpzbKd6XQOvJhIbd3s1qslCD0WgufQA=) 2: 57EE11D0895D11EA81B43245C4F9AE02.roa (hash: LX76oihYc6Vcq0IqMjxINDxugVvobb/j/buf30BAPmQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.crl rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yq3LrMUbKkZS3XMHTygsM00BAnc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 19:48:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2453 (0x995) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCCB3, serialNumber=CAADCBACC51B2A4652DD73074F282C334D010277 Validity Not Before: May 10 19:48:59 2025 GMT Not After : May 17 19:48:59 2025 GMT Subject: CN=681fadab-f37f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:4c:fe:64:16:d8:15:1c:01:54:6d:55:e8:b8: 55:1b:a6:7e:b6:31:b0:e9:cd:92:60:da:ab:c9:de: b1:21:8e:48:ad:26:80:f9:d5:b2:3d:dd:e5:00:c3: b1:ab:20:c7:c3:40:1b:c4:df:f7:38:6b:70:24:0c: 98:9a:ab:97:63:6c:bf:67:fe:be:1b:3f:08:17:36: 8f:a5:a5:a2:fa:ec:f2:a9:c8:b1:be:82:f9:31:37: 59:14:95:06:33:f2:7d:a3:79:44:f4:1a:67:4c:09: 52:bd:5d:0b:6a:71:9b:39:34:c0:9b:88:78:31:37: 79:e5:c5:e6:ad:0b:c3:f4:60:0c:c2:89:a1:b3:8d: 25:46:ec:f5:5f:42:08:78:d6:34:b7:ff:c9:5e:45: 9a:22:fa:47:43:7d:51:8a:3c:3f:df:96:db:d4:cd: 5e:df:1b:75:dc:d6:3f:35:dd:2c:bb:e2:c3:0a:12: 6a:74:54:50:d4:45:14:ac:30:98:3a:99:c4:bf:6d: 71:f2:ed:c0:d2:dd:d9:ad:b4:ee:0b:6f:f7:d6:5c: a9:a3:12:7b:55:3f:39:43:58:ff:16:50:61:ef:83: f3:e7:53:35:c1:62:5e:6f:6a:02:d0:44:55:d1:d4: 2f:7c:14:1a:ca:14:9e:2a:c5:f5:e4:95:49:3e:76: 71:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:AC:A6:26:14:DD:98:CE:62:68:91:E1:B1:D8:54:83:CA:30:61:D2 X509v3 Authority Key Identifier: keyid:CA:AD:CB:AC:C5:1B:2A:46:52:DD:73:07:4F:28:2C:33:4D:01:02:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yq3LrMUbKkZS3XMHTygsM00BAnc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:40:75:20:1d:15:05:58:a8:1f:67:75:b9:92:09:b3:5e:68: d7:0b:6b:77:02:c7:23:86:92:cd:78:3e:ee:f8:0e:8c:27:14: cc:72:04:e1:a2:95:3c:26:80:c0:71:56:b4:26:d0:c2:1f:ad: 06:ac:8a:99:26:01:70:ef:c9:a5:b7:65:4d:8e:45:05:5a:5a: 0b:e8:f9:70:88:62:b3:a5:fc:5d:b1:05:3c:0b:2f:a2:de:54: 0c:92:2d:9c:79:a4:b7:b0:05:fc:d8:1d:9a:6b:11:bc:26:7d: c0:cd:b1:09:93:ad:50:55:df:02:c1:f5:4f:11:cf:8b:e1:fd: 71:33:b0:fb:da:13:3b:68:2b:8b:dc:df:99:90:09:6e:98:2c: b3:c4:81:6a:de:07:01:f8:0e:2a:6c:73:58:eb:66:5e:ee:76: fb:56:86:bb:a2:be:90:6c:93:4e:d4:8f:1b:ad:36:67:b1:70: f4:0a:ff:95:e0:52:6f:61:a5:6c:42:b5:0e:2b:79:ec:3a:58: f0:e0:a4:c5:b0:2e:e6:17:0e:4c:3e:5a:c6:86:59:1b:74:5b: 80:69:f1:d5:5e:c6:0d:71:54:2a:7c:bc:d6:76:08:68:99:fc: 7c:ac:d0:da:b3:e2:bb:7a:f4:e9:9b:7f:80:60:91:2b:2a:21: e1:0a:68:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCZUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENDQjMxMTAvBgNVBAUTKENBQURDQkFDQzUxQjJBNDY1MkRENzMwNzRGMjgyQzMz NEQwMTAyNzcwHhcNMjUwNTEwMTk0ODU5WhcNMjUwNTE3MTk0ODU5WjAYMRYwFAYD VQQDEw02ODFmYWRhYi1mMzdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvkz+ZBbYFRwBVG1V6LhVG6Z+tjGw6c2SYNqryd6xIY5IrSaA+dWyPd3lAMOx qyDHw0AbxN/3OGtwJAyYmquXY2y/Z/6+Gz8IFzaPpaWi+uzyqcixvoL5MTdZFJUG M/J9o3lE9BpnTAlSvV0LanGbOTTAm4h4MTd55cXmrQvD9GAMwomhs40lRuz1X0II eNY0t//JXkWaIvpHQ31Rijw/35bb1M1e3xt13NY/Nd0su+LDChJqdFRQ1EUUrDCY OpnEv21x8u3A0t3ZrbTuC2/31lypoxJ7VT85Q1j/FlBh74Pz51M1wWJeb2oC0ERV 0dQvfBQayhSeKsX15JVJPnZxEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB2spiYU 3ZjOYmiR4bHYVIPKMGHSMB8GA1UdIwQYMBaAFMqty6zFGypGUt1zB08oLDNNAQJ3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0NCMy80MUZENjAxNjg5 NUMxMUVBODkwQzYzNDNDNEY5QUUwMi95cTNMck1VYktrWlMzWE1IVHlnc00wMEJB bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lxM0xyTVViS2taUzNYTUhUeWdzTTAwQkFuYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Q0NCMy80MUZENjAxNjg5NUMxMUVBODkwQzYzNDNDNEY5QUUwMi95cTNMck1VYktr WlMzWE1IVHlnc00wMEJBbmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4QHUgHRUFWKgfZ3W5kgmzXmjXC2t3AscjhpLNeD7u+A6MJxTMcgTh opU8JoDAcVa0JtDCH60GrIqZJgFw78mlt2VNjkUFWloL6PlwiGKzpfxdsQU8Cy+i 3lQMki2ceaS3sAX82B2aaxG8Jn3AzbEJk61QVd8CwfVPEc+L4f1xM7D72hM7aCuL 3N+ZkAlumCyzxIFq3gcB+A4qbHNY62Ze7nb7Voa7or6QbJNO1I8brTZnsXD0Cv+V 4FJvYaVsQrUOK3nsOljw4KTFsC7mFw5MPlrGhlkbdFuAafHVXsYNcVQqfLzWdgho mfx8rNDas+K7evTpm3+AYJErKiHhCmhS -----END CERTIFICATE-----Generated at Sun May 11 15:27:48 2025 by rpki-client