$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft File: rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft (raw, json) Hash identifier: r7Y9e0CCiLbTfkY1jrRcHH2fRXNHD/nLMWnV64frBaE= Subject key identifier: BF:D4:3D:B2:C2:0E:39:60:A3:A8:46:5D:11:80:41:E5:F3:32:70:6F Authority key identifier: AD:84:F4:BC:BE:B3:C9:36:5F:28:27:15:3B:A6:9C:ED:2A:99:12:E2 Certificate issuer: /CN=A91EF8B6/serialNumber=AD84F4BCBEB3C9365F2827153BA69CED2A9912E2 Certificate serial: 0B38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYT0vL6zyTZfKCcVO6ac7SqZEuI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft Manifest number: 0B2D Signing time: Sat 10 May 2025 18:58:03 +0000 Manifest this update: Sat 10 May 2025 18:58:02 +0000 Manifest next update: Sat 17 May 2025 18:58:02 +0000 Files and hashes: 1: rYT0vL6zyTZfKCcVO6ac7SqZEuI.crl (hash: IT4Kxm7K2oFBdlPV8atZUQuWnfSuRO2AbePv4Kin418=) 2: FB6D5292263C11EEB9F5DB43C4F9AE02.roa (hash: F4+ANWrgSV1BYAbYrEyoAC+HEYBZsl5dMdzlHwWIwy8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.crl rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYT0vL6zyTZfKCcVO6ac7SqZEuI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 18:58:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2872 (0xb38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF8B6, serialNumber=AD84F4BCBEB3C9365F2827153BA69CED2A9912E2 Validity Not Before: May 10 18:58:02 2025 GMT Not After : May 17 18:58:02 2025 GMT Subject: CN=681fa1bb-fbdf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:83:6f:88:35:0c:e8:f2:8a:71:36:55:53:09: df:86:4d:5c:2e:de:0a:2c:fd:9c:5e:ba:0c:74:9e: 52:bb:49:2e:af:7b:0f:62:b5:e5:4b:ac:24:d7:c2: e9:96:e9:ff:57:b2:02:a4:1c:89:0a:54:79:ff:3b: 97:d9:7d:19:e0:c2:87:59:2c:bb:1d:a2:e3:64:57: 12:2b:41:1a:74:e4:f6:f0:fa:07:57:89:20:a2:27: 99:ef:09:84:47:d7:d0:2c:2b:8c:3c:b8:8d:79:18: 05:c9:49:68:cc:ad:6a:73:06:f2:6b:d5:75:2e:dc: f6:1d:82:c9:f0:18:67:96:6f:fb:14:34:1a:44:a0: 0d:b6:5c:9e:7f:38:35:a5:e9:96:59:64:7a:f0:5d: 30:7f:0d:46:25:dc:4d:d4:99:45:07:34:44:6f:be: d9:fe:b2:bc:80:41:5f:49:79:3d:e3:f3:46:01:10: 29:41:c6:d6:c5:8e:82:c1:e1:a7:58:42:58:5f:f1: 58:19:0c:4c:54:35:3f:8c:de:a8:7c:62:35:e2:73: 91:6e:97:9b:94:6c:4b:ca:95:a4:9e:a6:c5:8e:82: 3e:a3:e2:df:33:84:bf:ce:9c:06:2b:ed:9d:29:03: ba:03:1f:07:33:27:95:18:07:3e:2c:4c:c4:50:f2: 3b:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:D4:3D:B2:C2:0E:39:60:A3:A8:46:5D:11:80:41:E5:F3:32:70:6F X509v3 Authority Key Identifier: keyid:AD:84:F4:BC:BE:B3:C9:36:5F:28:27:15:3B:A6:9C:ED:2A:99:12:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYT0vL6zyTZfKCcVO6ac7SqZEuI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:42:88:57:48:e2:73:a3:80:f0:6a:c7:35:aa:e8:82:e5:d4: cb:61:9b:07:2f:d1:d7:64:fe:9a:a1:f1:21:cb:1b:8c:90:21: 5d:33:c7:fc:e8:0d:85:0f:94:d9:95:3c:a7:60:de:a6:1c:3b: f4:57:b2:13:3a:da:b4:aa:8e:73:c9:6a:5a:1c:79:45:a7:f7: 27:e3:22:c1:8b:99:d2:2a:19:a7:24:fd:8f:03:11:ea:8a:c2: 25:6d:59:7f:40:38:b0:3f:34:fb:36:14:fa:65:68:c0:54:4e: 92:87:9b:64:44:23:9b:f5:04:93:3e:c8:0a:cc:94:8c:75:68: c7:b4:fb:72:0d:43:11:87:9b:55:4e:e1:f3:d4:1c:58:96:58: af:35:49:7f:8c:49:cb:5c:b1:29:af:4d:2c:16:9f:f5:35:81: 1f:f3:36:4b:87:10:03:70:d3:6e:be:75:91:b9:5b:4e:a3:67: 42:5a:3a:d6:a2:d9:2f:7e:9b:40:c9:77:71:c0:61:79:89:79: 13:02:65:f1:b1:20:04:3e:dd:33:b2:17:22:fd:7b:93:c6:bb: 53:8b:7f:2a:a5:c6:ac:9d:61:4f:45:9a:c4:7d:c2:bd:8e:2a: fa:e6:87:0e:6e:a2:06:05:3b:14:c4:68:4e:f4:2d:99:eb:80: 96:db:78:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCzgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUY4QjYxMTAvBgNVBAUTKEFEODRGNEJDQkVCM0M5MzY1RjI4MjcxNTNCQTY5Q0VE MkE5OTEyRTIwHhcNMjUwNTEwMTg1ODAyWhcNMjUwNTE3MTg1ODAyWjAYMRYwFAYD VQQDEw02ODFmYTFiYi1mYmRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8INviDUM6PKKcTZVUwnfhk1cLt4KLP2cXroMdJ5Su0kur3sPYrXlS6wk18Lp lun/V7ICpByJClR5/zuX2X0Z4MKHWSy7HaLjZFcSK0EadOT28PoHV4kgoieZ7wmE R9fQLCuMPLiNeRgFyUlozK1qcwbya9V1Ltz2HYLJ8Bhnlm/7FDQaRKANtlyefzg1 pemWWWR68F0wfw1GJdxN1JlFBzREb77Z/rK8gEFfSXk94/NGARApQcbWxY6CweGn WEJYX/FYGQxMVDU/jN6ofGI14nORbpeblGxLypWknqbFjoI+o+LfM4S/zpwGK+2d KQO6Ax8HMyeVGAc+LEzEUPI7dQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL/UPbLC Djlgo6hGXRGAQeXzMnBvMB8GA1UdIwQYMBaAFK2E9Ly+s8k2XygnFTumnO0qmRLi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjhCNi80MEU3RkFCQTNB QTYxMUVBQUM4RjE4NzVDNEY5QUUwMi9yWVQwdkw2enlUWmZLQ2NWTzZhYzdTcVpF dUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JZVDB2TDZ6eVRaZktDY1ZPNmFjN1NxWkV1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjhCNi80MEU3RkFCQTNBQTYxMUVBQUM4RjE4NzVDNEY5QUUwMi9yWVQwdkw2enlU WmZLQ2NWTzZhYzdTcVpFdUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiQohXSOJzo4Dwasc1quiC5dTLYZsHL9HXZP6aofEhyxuMkCFdM8f8 6A2FD5TZlTynYN6mHDv0V7ITOtq0qo5zyWpaHHlFp/cn4yLBi5nSKhmnJP2PAxHq isIlbVl/QDiwPzT7NhT6ZWjAVE6Sh5tkRCOb9QSTPsgKzJSMdWjHtPtyDUMRh5tV TuHz1BxYllivNUl/jEnLXLEpr00sFp/1NYEf8zZLhxADcNNuvnWRuVtOo2dCWjrW otkvfptAyXdxwGF5iXkTAmXxsSAEPt0zshci/XuTxrtTi38qpcasnWFPRZrEfcK9 jir65ocObqIGBTsUxGhO9C2Z64CW23j5 -----END CERTIFICATE-----Generated at Mon May 12 03:55:30 2025 by rpki-client