$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft File: 0ypa3AVCwugXwgK-a3KB6GnReJc.mft (raw, json) Hash identifier: 8ERR/tkb0oillfVBS57S7X4WFprXUncEP0uZeqDKjvg= Subject key identifier: 80:65:F8:21:62:69:1B:EA:B4:EB:BF:7A:6C:54:FA:D9:11:61:C3:B9 Authority key identifier: D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97 Certificate issuer: /CN=A91E0855/serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897 Certificate serial: 9E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft Manifest number: 9C Signing time: Tue 13 May 2025 05:28:00 +0000 Manifest this update: Tue 13 May 2025 05:27:59 +0000 Manifest next update: Tue 20 May 2025 05:27:59 +0000 Files and hashes: 1: 0ypa3AVCwugXwgK-a3KB6GnReJc.crl (hash: ls/LCfFTreu3UQl3SzNvV1D6lYv4AL/doALruFu0W/E=) 2: 1818952C8D5811EFAD3A5D3BC4F9AE02.roa (hash: tKSHJqdsSmpGgJzA0ThHFbJCNwhgg/q9aM0ZWxNfpP8=) 3: 30C3ECA444B811EF8C81962AC4F9AE02.roa (hash: YRkHlOrrGzxXTEGbxmwj8yAFxeMrCPHch9CuERcM2OI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.crl rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 158 (0x9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0855, serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897 Validity Not Before: May 13 05:27:59 2025 GMT Not After : May 20 05:27:59 2025 GMT Subject: CN=6822d860-42e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:11:54:c1:84:4c:29:0e:ed:e5:9a:01:7b:ea: e5:45:6c:19:85:06:bf:35:3d:80:01:6f:0b:34:56: 0b:61:12:67:57:68:cf:85:ed:5b:1b:9e:52:d0:10: e2:38:fe:d7:86:92:c8:32:cd:c1:19:de:95:4b:fc: e6:66:a4:b9:bc:a2:88:e2:ce:52:47:5b:df:f5:f6: 9d:d6:3b:8b:44:15:4d:88:e5:8b:b9:5a:f7:35:63: 74:24:70:b4:91:a6:a2:2d:db:21:be:d0:b6:6e:e9: 83:f5:40:91:0f:49:3e:19:83:1d:21:7a:a3:0f:90: 85:a1:80:8d:f2:99:fc:b0:70:9a:20:b6:27:b1:a0: af:ba:03:3f:10:7e:99:15:a8:85:61:dc:39:50:2d: 30:b3:a8:d8:c0:c4:32:81:e4:58:6c:45:f8:fc:e5: 1d:72:22:f3:38:79:85:0c:27:33:b2:46:be:fe:39: 19:76:1e:c8:af:8d:98:e8:17:ed:19:3f:ba:49:4f: 4b:10:e7:87:92:f4:77:fe:da:3c:7e:c2:e9:42:e0: 8e:ef:95:9a:93:15:8e:fc:ac:46:f8:f8:3d:f5:f4: 45:95:dd:69:24:38:1e:9c:ba:99:1d:88:98:ca:db: 1a:dc:31:1b:b1:bb:0e:53:ec:d2:2d:b4:c3:d8:9d: ef:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:65:F8:21:62:69:1B:EA:B4:EB:BF:7A:6C:54:FA:D9:11:61:C3:B9 X509v3 Authority Key Identifier: keyid:D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:62:af:80:37:77:bc:d4:9a:f5:4f:35:d8:d4:36:84:35:7e: 50:a0:c5:63:0c:fd:ee:89:4e:f9:0a:60:d9:39:ca:6e:43:50: e0:fa:a3:d4:f2:9e:96:18:90:74:87:13:70:6d:b4:dd:bf:22: 22:b0:11:8c:51:1a:f5:ea:3f:ff:eb:43:98:4e:ac:0c:10:b3: 3b:dd:ea:55:3b:f9:41:f8:f7:11:72:3e:0c:33:7a:4d:52:f6: 8b:be:b5:04:27:7a:de:c9:e6:32:f4:fa:bd:d2:62:6e:f7:39: e1:87:f2:e4:bf:38:31:2e:df:ff:db:67:7c:61:5e:f7:63:ca: 5a:6f:45:60:ea:f0:62:10:7c:a3:69:94:35:cf:21:63:03:fe: 11:a1:e2:0e:29:6a:0c:2c:74:71:30:43:83:79:72:46:8e:4d: 13:8d:6d:34:f2:e5:60:04:80:c9:97:29:bc:ff:eb:5a:ed:77: b1:18:c5:9d:a3:ba:9d:25:54:c2:14:b1:6b:7d:4d:64:18:37: d5:c8:6c:c8:c8:e3:91:f7:fc:53:fc:f7:83:63:f7:21:23:5f: 38:4a:91:61:c1:74:17:15:77:8b:d4:55:c1:94:dc:77:1a:23: 78:5d:6a:1f:93:77:03:33:8d:bb:18:c0:67:0e:2a:35:53:ed: eb:af:d6:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTA4NTUxMTAvBgNVBAUTKEQzMkE1QURDMDU0MkMyRTgxN0MyMDJCRTZCNzI4MUU4 NjlEMTc4OTcwHhcNMjUwNTEzMDUyNzU5WhcNMjUwNTIwMDUyNzU5WjAYMRYwFAYD VQQDEw02ODIyZDg2MC00MmU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsRFUwYRMKQ7t5ZoBe+rlRWwZhQa/NT2AAW8LNFYLYRJnV2jPhe1bG55S0BDi OP7XhpLIMs3BGd6VS/zmZqS5vKKI4s5SR1vf9fad1juLRBVNiOWLuVr3NWN0JHC0 kaaiLdshvtC2bumD9UCRD0k+GYMdIXqjD5CFoYCN8pn8sHCaILYnsaCvugM/EH6Z FaiFYdw5UC0ws6jYwMQygeRYbEX4/OUdciLzOHmFDCczska+/jkZdh7Ir42Y6Bft GT+6SU9LEOeHkvR3/to8fsLpQuCO75WakxWO/KxG+Pg99fRFld1pJDgenLqZHYiY ytsa3DEbsbsOU+zSLbTD2J3vuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIBl+CFi aRvqtOu/emxU+tkRYcO5MB8GA1UdIwQYMBaAFNMqWtwFQsLoF8ICvmtygehp0XiX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDg1NS81MDRDRkZFMjQ0 OTYxMUVGOEU4NEU2M0RDNEY5QUUwMi8weXBhM0FWQ3d1Z1h3Z0stYTNLQjZHblJl SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzB5cGEzQVZDd3VnWHdnSy1hM0tCNkduUmVKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDg1NS81MDRDRkZFMjQ0OTYxMUVGOEU4NEU2M0RDNEY5QUUwMi8weXBhM0FWQ3d1 Z1h3Z0stYTNLQjZHblJlSmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4Yq+AN3e81Jr1TzXY1DaENX5QoMVjDP3uiU75CmDZOcpuQ1Dg+qPU 8p6WGJB0hxNwbbTdvyIisBGMURr16j//60OYTqwMELM73epVO/lB+PcRcj4MM3pN UvaLvrUEJ3reyeYy9Pq90mJu9znhh/LkvzgxLt//22d8YV73Y8pab0Vg6vBiEHyj aZQ1zyFjA/4RoeIOKWoMLHRxMEODeXJGjk0TjW008uVgBIDJlym8/+ta7XexGMWd o7qdJVTCFLFrfU1kGDfVyGzIyOOR9/xT/PeDY/chI184SpFhwXQXFXeL1FXBlNx3 GiN4XWofk3cDM427GMBnDio1U+3rr9Z0 -----END CERTIFICATE-----Generated at Tue May 13 12:46:22 2025 by rpki-client