$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0DAC/0CE1964E4FCA11E9B38BA22BC4F9AE02/ySd_ApwVszeVNmb3S5x-bLOQf0Q.mft File: ySd_ApwVszeVNmb3S5x-bLOQf0Q.mft (raw, json) Hash identifier: 8B8CsfDBRuWWYNhqgvO5sdbxASYF0dlS1hDLIisCyXk= Subject key identifier: 66:A9:6F:51:7D:A0:42:C6:39:68:10:5C:60:31:CC:89:53:69:FA:B3 Authority key identifier: C9:27:7F:02:9C:15:B3:37:95:36:66:F7:4B:9C:7E:6C:B3:90:7F:44 Certificate issuer: /CN=A91F0DAC/serialNumber=C9277F029C15B337953666F74B9C7E6CB3907F44 Certificate serial: 100A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySd_ApwVszeVNmb3S5x-bLOQf0Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0DAC/0CE1964E4FCA11E9B38BA22BC4F9AE02/ySd_ApwVszeVNmb3S5x-bLOQf0Q.mft Manifest number: 0FEF Signing time: Mon 12 May 2025 17:24:08 +0000 Manifest this update: Mon 12 May 2025 17:24:08 +0000 Manifest next update: Mon 19 May 2025 17:24:08 +0000 Files and hashes: 1: ySd_ApwVszeVNmb3S5x-bLOQf0Q.crl (hash: o7e87UqIJL2kovL2xVmgAcVmBOq8Mm8ZoopPsbFC+rc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0DAC/0CE1964E4FCA11E9B38BA22BC4F9AE02/ySd_ApwVszeVNmb3S5x-bLOQf0Q.crl rsync://rpki.apnic.net/member_repository/A91F0DAC/0CE1964E4FCA11E9B38BA22BC4F9AE02/ySd_ApwVszeVNmb3S5x-bLOQf0Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySd_ApwVszeVNmb3S5x-bLOQf0Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 17:24:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4106 (0x100a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0DAC, serialNumber=C9277F029C15B337953666F74B9C7E6CB3907F44 Validity Not Before: May 12 17:24:08 2025 GMT Not After : May 19 17:24:08 2025 GMT Subject: CN=68222eb8-2a5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:f7:b8:9e:ea:23:05:81:ab:b8:1f:77:11:15: 3d:ba:b6:e8:14:99:65:a8:11:18:d5:12:75:ed:ca: 14:fb:a5:94:aa:0b:32:21:d5:60:53:ea:65:49:4c: e8:55:a9:0b:38:fb:4a:63:a3:19:44:28:5b:fc:82: f7:41:51:b5:f9:1a:ad:36:c5:21:73:cf:fe:e9:5a: b5:ea:cb:15:73:cb:1b:d4:48:e8:80:61:cf:3f:3b: e1:65:19:ec:76:1b:86:95:50:83:f4:5c:55:d2:7d: b8:2f:98:8a:5f:cc:22:3a:fa:6d:7d:71:01:1d:d2: b0:4e:5d:1b:cc:ac:c2:83:bb:23:17:44:80:e7:c2: b7:ea:e1:9b:35:5e:df:c7:b7:c2:29:e1:60:cf:28: 77:3c:16:84:1f:4e:d9:8f:c0:cb:b5:94:58:84:b9: 53:d3:0e:ae:7c:c9:e6:d5:ed:d2:c4:39:23:88:a4: 33:74:a6:b7:ac:b1:fd:20:63:5b:86:e7:ce:88:49: cf:dc:3c:d4:ee:d8:ff:a7:d2:a6:ec:fe:c9:7c:e8: 6d:0c:c0:97:23:6d:30:fa:ec:a9:30:93:81:3d:0a: 33:67:f4:c7:ee:b4:6c:4d:7c:71:e3:96:54:c4:22: 43:e7:48:63:1c:d5:0f:9a:2e:05:67:2f:e0:5a:54: f5:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:A9:6F:51:7D:A0:42:C6:39:68:10:5C:60:31:CC:89:53:69:FA:B3 X509v3 Authority Key Identifier: keyid:C9:27:7F:02:9C:15:B3:37:95:36:66:F7:4B:9C:7E:6C:B3:90:7F:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0DAC/0CE1964E4FCA11E9B38BA22BC4F9AE02/ySd_ApwVszeVNmb3S5x-bLOQf0Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySd_ApwVszeVNmb3S5x-bLOQf0Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0DAC/0CE1964E4FCA11E9B38BA22BC4F9AE02/ySd_ApwVszeVNmb3S5x-bLOQf0Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:97:69:63:fc:b8:5c:ca:27:8a:85:71:1f:71:c0:10:19:08: ca:d7:d6:06:fb:77:4b:71:d5:a4:9a:18:43:29:f0:59:77:c0: 8f:3a:31:8a:a1:85:60:db:80:c0:ed:03:70:d9:9e:02:ad:c5: aa:23:f8:90:86:2c:49:d6:23:a0:7c:12:19:d3:41:ae:d9:f5: 52:1e:0e:47:37:07:0b:ba:52:71:06:bd:ae:ce:7b:67:fa:ab: 7d:e4:57:e6:92:93:d4:7c:99:41:18:85:58:8c:b3:6b:c7:80: 25:83:a7:e4:02:a7:8f:94:62:c6:ce:49:48:cd:4b:4f:89:c7: da:03:2a:81:0e:e6:d6:4a:2f:e6:f2:71:19:44:57:6c:73:4f: c8:49:94:14:b1:80:5c:da:8f:23:00:5c:3e:37:53:0d:6c:75: 73:99:d4:f3:6d:c7:cc:a3:4b:b7:08:23:9b:e8:d7:85:10:0c: cc:d6:e1:b0:5d:47:e2:2f:5d:48:5c:36:c8:89:30:7a:06:b9: 3f:69:98:79:ec:97:fb:cd:5e:b8:f2:f4:09:77:fc:4d:b1:4f: a2:2d:7d:1b:0c:d4:e6:f4:82:83:66:90:98:cb:1e:93:01:2a: 16:0a:f8:9b:9a:95:fa:45:d6:d5:84:f9:16:07:54:a6:86:25: d8:6c:6d:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEAowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBEQUMxMTAvBgNVBAUTKEM5Mjc3RjAyOUMxNUIzMzc5NTM2NjZGNzRCOUM3RTZD QjM5MDdGNDQwHhcNMjUwNTEyMTcyNDA4WhcNMjUwNTE5MTcyNDA4WjAYMRYwFAYD VQQDEw02ODIyMmViOC0yYTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzfe4nuojBYGruB93ERU9urboFJllqBEY1RJ17coU+6WUqgsyIdVgU+plSUzo VakLOPtKY6MZRChb/IL3QVG1+RqtNsUhc8/+6Vq16ssVc8sb1EjogGHPPzvhZRns dhuGlVCD9FxV0n24L5iKX8wiOvptfXEBHdKwTl0bzKzCg7sjF0SA58K36uGbNV7f x7fCKeFgzyh3PBaEH07Zj8DLtZRYhLlT0w6ufMnm1e3SxDkjiKQzdKa3rLH9IGNb hufOiEnP3DzU7tj/p9Km7P7JfOhtDMCXI20w+uypMJOBPQozZ/TH7rRsTXxx45ZU xCJD50hjHNUPmi4FZy/gWlT18wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGapb1F9 oELGOWgQXGAxzIlTafqzMB8GA1UdIwQYMBaAFMknfwKcFbM3lTZm90ucfmyzkH9E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMERBQy8wQ0UxOTY0RTRG Q0ExMUU5QjM4QkEyMkJDNEY5QUUwMi95U2RfQXB3VnN6ZVZObWIzUzV4LWJMT1Fm MFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lTZF9BcHdWc3plVk5tYjNTNXgtYkxPUWYwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MERBQy8wQ0UxOTY0RTRGQ0ExMUU5QjM4QkEyMkJDNEY5QUUwMi95U2RfQXB3VnN6 ZVZObWIzUzV4LWJMT1FmMFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCal2lj/LhcyieKhXEfccAQGQjK19YG+3dLcdWkmhhDKfBZd8CPOjGK oYVg24DA7QNw2Z4CrcWqI/iQhixJ1iOgfBIZ00Gu2fVSHg5HNwcLulJxBr2uzntn +qt95FfmkpPUfJlBGIVYjLNrx4Alg6fkAqePlGLGzklIzUtPicfaAyqBDubWSi/m 8nEZRFdsc0/ISZQUsYBc2o8jAFw+N1MNbHVzmdTzbcfMo0u3CCOb6NeFEAzM1uGw XUfiL11IXDbIiTB6Brk/aZh57Jf7zV648vQJd/xNsU+iLX0bDNTm9IKDZpCYyx6T ASoWCvibmpX6RdbVhPkWB1SmhiXYbG1l -----END CERTIFICATE-----Generated at Tue May 13 02:34:53 2025 by rpki-client