$ rpki-client -vvf rpki.apnic.net/member_repository/A91FECFD/37A04264AF7711EA8118311BC4F9AE02/Y35CcZzKBnZlOgprNKBujlSsBe8.mft File: Y35CcZzKBnZlOgprNKBujlSsBe8.mft (raw, json) Hash identifier: tV5PVRPS4hPPReSoyCJQf1W0EaC7pabGDG9byHfGl+A= Subject key identifier: 74:39:55:64:C6:EC:14:13:C6:35:44:EB:9D:ED:65:AE:60:94:85:57 Authority key identifier: 63:7E:42:71:9C:CA:06:76:65:3A:0A:6B:34:A0:6E:8E:54:AC:05:EF Certificate issuer: /CN=A91FECFD/serialNumber=637E42719CCA0676653A0A6B34A06E8E54AC05EF Certificate serial: 08D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y35CcZzKBnZlOgprNKBujlSsBe8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FECFD/37A04264AF7711EA8118311BC4F9AE02/Y35CcZzKBnZlOgprNKBujlSsBe8.mft Manifest number: 08CD Signing time: Sat 10 May 2025 20:09:42 +0000 Manifest this update: Sat 10 May 2025 20:09:42 +0000 Manifest next update: Sat 17 May 2025 20:09:42 +0000 Files and hashes: 1: Y35CcZzKBnZlOgprNKBujlSsBe8.crl (hash: SIlzMrbsOyofQSdaNF45N0ukoIbGa2mZpm9u6JojHjw=) 2: 995F3DCEAF7811EABCA9AC1DC4F9AE02.roa (hash: NtKeyULWQMsrxRlevOb1FWtm72F4mnEmkpXQ082SXfg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FECFD/37A04264AF7711EA8118311BC4F9AE02/Y35CcZzKBnZlOgprNKBujlSsBe8.crl rsync://rpki.apnic.net/member_repository/A91FECFD/37A04264AF7711EA8118311BC4F9AE02/Y35CcZzKBnZlOgprNKBujlSsBe8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y35CcZzKBnZlOgprNKBujlSsBe8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 20:09:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2258 (0x8d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FECFD, serialNumber=637E42719CCA0676653A0A6B34A06E8E54AC05EF Validity Not Before: May 10 20:09:42 2025 GMT Not After : May 17 20:09:42 2025 GMT Subject: CN=681fb286-c0d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:a3:e6:ef:86:62:11:27:ee:3a:c8:48:67:81: 07:be:96:cb:0c:22:ba:37:a8:d4:ec:9d:80:dd:cf: b0:50:e1:c8:38:1a:17:a4:21:cb:a0:56:61:0c:59: 40:9b:b6:6f:f8:c2:0b:8a:78:de:76:3d:c7:34:8d: fa:0d:6a:d4:e9:3a:cc:88:29:2b:a7:ec:2c:11:a9: 30:02:50:11:8b:b1:05:8c:57:22:a0:de:9d:9d:5d: 7b:f8:21:d7:fe:40:64:0f:d2:77:da:80:3e:20:d6: ed:90:a9:19:97:ed:b3:ee:5f:8e:ca:12:01:46:fc: d6:e1:17:a4:2a:26:92:9c:e1:29:69:fd:27:a5:b3: ee:09:8a:46:bd:1f:82:83:b8:6e:b5:93:21:60:60: 1d:c7:ce:8e:cb:cf:68:3e:71:cd:c4:d1:4b:9a:47: 81:d5:a7:5c:94:c9:99:f0:da:43:12:5f:7b:55:ae: 96:ab:05:5f:8b:9d:9c:c4:8d:24:2b:be:c4:b4:a2: 56:74:cf:bf:86:74:3e:b5:79:27:b5:47:ab:5b:6c: 9e:ea:9c:00:d2:2b:ca:86:ec:ba:5c:dd:34:e9:ad: 5d:a9:b9:da:f7:33:5f:a1:7f:67:17:4d:2b:3d:01: a4:1d:78:13:41:66:6e:94:3d:fb:6e:78:3e:69:df: eb:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:39:55:64:C6:EC:14:13:C6:35:44:EB:9D:ED:65:AE:60:94:85:57 X509v3 Authority Key Identifier: keyid:63:7E:42:71:9C:CA:06:76:65:3A:0A:6B:34:A0:6E:8E:54:AC:05:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FECFD/37A04264AF7711EA8118311BC4F9AE02/Y35CcZzKBnZlOgprNKBujlSsBe8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y35CcZzKBnZlOgprNKBujlSsBe8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FECFD/37A04264AF7711EA8118311BC4F9AE02/Y35CcZzKBnZlOgprNKBujlSsBe8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:df:c5:b1:1a:b4:3c:a8:a6:a4:65:9b:83:5f:81:f8:f0:5e: 14:3b:5f:38:f5:ec:1b:19:a2:2b:2d:49:9a:73:6b:f9:48:b7: 4b:df:e1:8f:ad:7b:19:35:ee:d1:4d:30:2e:97:4a:40:0b:8f: 71:f2:22:b9:f9:e0:4b:cf:8e:79:99:2d:73:ef:d5:cb:83:64: e1:0a:4b:fb:29:cb:77:eb:d6:86:3a:b8:fe:70:3a:71:09:18: 9a:7e:ec:b2:15:ea:77:ac:2b:15:5c:9b:d2:71:dc:37:6d:c6: 9b:08:29:89:4e:e3:48:a2:08:96:11:0d:2a:b0:77:6a:5a:1f: 79:75:bd:26:4c:fa:ae:1a:84:85:dd:19:c8:29:b7:35:bf:cb: 23:15:6e:63:fe:4b:e6:b0:1d:95:03:5d:08:83:48:57:c2:6d: 62:50:14:eb:02:1f:3a:31:43:a3:05:5b:e2:62:bf:40:23:9f: 6a:1c:75:9a:18:ec:73:e2:59:f4:b3:41:23:0a:8a:63:d0:dc: 5f:54:0b:f9:44:e7:b8:8e:f4:aa:8a:e5:56:29:93:85:56:33: 7c:60:ee:38:c3:f8:67:9a:90:ab:99:38:7d:ed:b1:f2:ba:0c: de:7f:5a:69:49:72:4a:3d:0f:9a:39:db:ad:0d:29:35:3b:aa: 16:6c:75:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCNIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVDRkQxMTAvBgNVBAUTKDYzN0U0MjcxOUNDQTA2NzY2NTNBMEE2QjM0QTA2RThF NTRBQzA1RUYwHhcNMjUwNTEwMjAwOTQyWhcNMjUwNTE3MjAwOTQyWjAYMRYwFAYD VQQDEw02ODFmYjI4Ni1jMGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2qPm74ZiESfuOshIZ4EHvpbLDCK6N6jU7J2A3c+wUOHIOBoXpCHLoFZhDFlA m7Zv+MILinjedj3HNI36DWrU6TrMiCkrp+wsEakwAlARi7EFjFcioN6dnV17+CHX /kBkD9J32oA+INbtkKkZl+2z7l+OyhIBRvzW4RekKiaSnOEpaf0npbPuCYpGvR+C g7hutZMhYGAdx86Oy89oPnHNxNFLmkeB1adclMmZ8NpDEl97Va6WqwVfi52cxI0k K77EtKJWdM+/hnQ+tXkntUerW2ye6pwA0ivKhuy6XN006a1dqbna9zNfoX9nF00r PQGkHXgTQWZulD37bng+ad/rDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHQ5VWTG 7BQTxjVE653tZa5glIVXMB8GA1UdIwQYMBaAFGN+QnGcygZ2ZToKazSgbo5UrAXv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUNGRC8zN0EwNDI2NEFG NzcxMUVBODExODMxMUJDNEY5QUUwMi9ZMzVDY1p6S0JuWmxPZ3ByTktCdWpsU3NC ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kzNUNjWnpLQm5abE9ncHJOS0J1amxTc0JlOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RUNGRC8zN0EwNDI2NEFGNzcxMUVBODExODMxMUJDNEY5QUUwMi9ZMzVDY1p6S0Ju WmxPZ3ByTktCdWpsU3NCZTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCT38WxGrQ8qKakZZuDX4H48F4UO1849ewbGaIrLUmac2v5SLdL3+GP rXsZNe7RTTAul0pAC49x8iK5+eBLz455mS1z79XLg2ThCkv7Kct369aGOrj+cDpx CRiafuyyFep3rCsVXJvScdw3bcabCCmJTuNIogiWEQ0qsHdqWh95db0mTPquGoSF 3RnIKbc1v8sjFW5j/kvmsB2VA10Ig0hXwm1iUBTrAh86MUOjBVviYr9AI59qHHWa GOxz4ln0s0EjCopj0NxfVAv5ROe4jvSqiuVWKZOFVjN8YO44w/hnmpCrmTh97bHy ugzef1ppSXJKPQ+aOdutDSk1O6oWbHUR -----END CERTIFICATE-----Generated at Sun May 11 12:37:36 2025 by rpki-client