$ rpki-client -vvf rpki.apnic.net/member_repository/A91F428C/449BA5061DA011E2B6D8709108B02CD2/YyyN4CILjBC0H_Sb_4tDLPj_0lQ.mft File: YyyN4CILjBC0H_Sb_4tDLPj_0lQ.mft (raw, json) Hash identifier: yGG9W9gm+VaerdbUxh/bKEEiWAHAAgsVQ4WXdwoNfkA= Subject key identifier: E4:94:33:D8:80:A5:08:B9:04:48:B9:D2:D4:07:F8:D2:23:C6:E3:80 Authority key identifier: 63:2C:8D:E0:22:0B:8C:10:B4:1F:F4:9B:FF:8B:43:2C:F8:FF:D2:54 Certificate issuer: /CN=A91F428C/serialNumber=632C8DE0220B8C10B41FF49BFF8B432CF8FFD254 Certificate serial: 3481 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YyyN4CILjBC0H_Sb_4tDLPj_0lQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F428C/449BA5061DA011E2B6D8709108B02CD2/YyyN4CILjBC0H_Sb_4tDLPj_0lQ.mft Manifest number: 347D Signing time: Sat 10 May 2025 15:02:05 +0000 Manifest this update: Sat 10 May 2025 15:02:05 +0000 Manifest next update: Sat 17 May 2025 15:02:05 +0000 Files and hashes: 1: YyyN4CILjBC0H_Sb_4tDLPj_0lQ.crl (hash: ROOOknQJuJcOJ6VhH+b5DHo/X21PI8ICCmvMEwdZenU=) 2: 8852DDDEBED411ECBA66025BC4F9AE02.roa (hash: lc/qlMf4LlkPKULr4QDdOr7yT3mSRd2CWo/AG45TiUY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F428C/449BA5061DA011E2B6D8709108B02CD2/YyyN4CILjBC0H_Sb_4tDLPj_0lQ.crl rsync://rpki.apnic.net/member_repository/A91F428C/449BA5061DA011E2B6D8709108B02CD2/YyyN4CILjBC0H_Sb_4tDLPj_0lQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YyyN4CILjBC0H_Sb_4tDLPj_0lQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 15:02:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13441 (0x3481) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F428C, serialNumber=632C8DE0220B8C10B41FF49BFF8B432CF8FFD254 Validity Not Before: May 10 15:02:05 2025 GMT Not After : May 17 15:02:05 2025 GMT Subject: CN=681f6a6d-97a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:c1:9a:73:61:38:00:0d:1c:b1:b5:90:e7:fa: a4:97:f4:a8:b4:04:da:b4:d3:82:88:a1:29:f4:40: 7c:f9:03:60:8d:aa:14:f4:52:6b:41:6b:7c:22:c2: 82:b0:94:7f:6d:ec:20:f2:81:16:f4:fb:5b:40:a7: 20:9d:d5:9c:8f:91:f5:d5:4a:af:2a:de:e5:32:8f: 92:5f:a1:b4:48:1f:06:d6:28:96:d0:97:f8:8c:8c: 1e:50:93:39:6b:05:5a:d0:eb:43:b7:5c:40:f1:22: 48:a7:da:52:dd:62:b1:55:f9:b0:f8:1f:00:ca:1a: 69:38:a9:3a:25:7e:c0:ab:5c:e0:d4:e6:87:69:1a: 45:98:e9:41:a6:5f:b5:b4:0b:0c:53:78:0f:6f:c1: 1a:fe:7a:3f:8f:51:06:d5:c9:7a:f6:1f:fb:74:e4: 51:1b:0c:ef:f2:c2:9b:0e:13:c8:6a:e9:04:01:db: ff:9e:ad:07:f8:e9:13:b3:e6:e5:8a:e7:df:91:cf: 77:e1:8c:12:fc:84:e3:0a:6a:32:9c:79:72:2c:02: f6:25:a8:f0:fa:f0:d7:1f:bf:09:da:49:a0:08:fe: 61:b5:de:c5:5f:55:de:e8:ad:fc:a4:04:d4:a1:42: 8d:e6:d9:91:46:a1:5b:54:2e:80:58:20:ce:dd:63: bc:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:94:33:D8:80:A5:08:B9:04:48:B9:D2:D4:07:F8:D2:23:C6:E3:80 X509v3 Authority Key Identifier: keyid:63:2C:8D:E0:22:0B:8C:10:B4:1F:F4:9B:FF:8B:43:2C:F8:FF:D2:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F428C/449BA5061DA011E2B6D8709108B02CD2/YyyN4CILjBC0H_Sb_4tDLPj_0lQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YyyN4CILjBC0H_Sb_4tDLPj_0lQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F428C/449BA5061DA011E2B6D8709108B02CD2/YyyN4CILjBC0H_Sb_4tDLPj_0lQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:c5:70:f8:38:05:17:97:f6:54:aa:f4:91:55:8a:54:21:de: a9:8d:1a:09:64:34:70:ed:71:34:ad:5e:a5:e4:38:7f:34:52: bf:74:b7:46:95:b6:f0:05:93:d8:78:ce:f4:00:d6:f4:81:75: 3f:75:56:22:4b:3f:9d:fd:6d:9a:b3:74:91:5f:5c:c9:ef:44: 98:15:b8:6b:88:69:17:32:ad:68:bf:48:35:4c:20:ed:87:9f: d1:f5:24:26:8a:98:04:7d:47:13:2f:d0:82:16:17:6d:31:3b: 30:d5:e8:8f:01:b8:81:7b:7d:19:ea:52:e3:59:1a:c6:8c:b9: 97:ee:77:53:d7:41:68:75:43:19:fd:18:60:2a:9d:8e:ae:0e: 0f:bc:f2:2f:f5:6d:de:c8:26:0c:d1:83:2c:29:86:0d:3d:85: 46:43:58:9b:46:90:b1:49:31:f2:52:e9:ac:70:2b:b0:70:d2: c8:50:c4:53:29:57:7e:5c:01:f1:1a:d3:a4:21:fd:8e:14:fc: 29:cd:07:fb:a0:7b:41:6d:a7:88:4a:8b:28:c5:29:2a:09:80: 0b:15:19:67:b5:1b:2b:43:ca:87:f7:01:ba:55:b8:1d:2f:ea: 04:af:41:35:cc:2e:8f:6c:8b:78:a9:30:3e:c2:f8:45:63:cc: 73:42:95:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQyOEMxMTAvBgNVBAUTKDYzMkM4REUwMjIwQjhDMTBCNDFGRjQ5QkZGOEI0MzJD RjhGRkQyNTQwHhcNMjUwNTEwMTUwMjA1WhcNMjUwNTE3MTUwMjA1WjAYMRYwFAYD VQQDEw02ODFmNmE2ZC05N2E5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApMGac2E4AA0csbWQ5/qkl/SotATatNOCiKEp9EB8+QNgjaoU9FJrQWt8IsKC sJR/bewg8oEW9PtbQKcgndWcj5H11UqvKt7lMo+SX6G0SB8G1iiW0Jf4jIweUJM5 awVa0OtDt1xA8SJIp9pS3WKxVfmw+B8AyhppOKk6JX7Aq1zg1OaHaRpFmOlBpl+1 tAsMU3gPb8Ea/no/j1EG1cl69h/7dORRGwzv8sKbDhPIaukEAdv/nq0H+OkTs+bl iuffkc934YwS/ITjCmoynHlyLAL2Jajw+vDXH78J2kmgCP5htd7FX1Xe6K38pATU oUKN5tmRRqFbVC6AWCDO3WO8JwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOSUM9iA pQi5BEi50tQH+NIjxuOAMB8GA1UdIwQYMBaAFGMsjeAiC4wQtB/0m/+LQyz4/9JU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDI4Qy80NDlCQTUwNjFE QTAxMUUyQjZEODcwOTEwOEIwMkNEMi9ZeXlONENJTGpCQzBIX1NiXzR0RExQal8w bFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1l5eU40Q0lMakJDMEhfU2JfNHRETFBqXzBsUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDI4Qy80NDlCQTUwNjFEQTAxMUUyQjZEODcwOTEwOEIwMkNEMi9ZeXlONENJTGpC QzBIX1NiXzR0RExQal8wbFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvxXD4OAUXl/ZUqvSRVYpUId6pjRoJZDRw7XE0rV6l5Dh/NFK/dLdG lbbwBZPYeM70ANb0gXU/dVYiSz+d/W2as3SRX1zJ70SYFbhriGkXMq1ov0g1TCDt h5/R9SQmipgEfUcTL9CCFhdtMTsw1eiPAbiBe30Z6lLjWRrGjLmX7ndT10FodUMZ /RhgKp2Org4PvPIv9W3eyCYM0YMsKYYNPYVGQ1ibRpCxSTHyUumscCuwcNLIUMRT KVd+XAHxGtOkIf2OFPwpzQf7oHtBbaeISosoxSkqCYALFRlntRsrQ8qH9wG6Vbgd L+oEr0E1zC6PbIt4qTA+wvhFY8xzQpVP -----END CERTIFICATE-----Generated at Mon May 12 08:18:32 2025 by rpki-client