$ rpki-client -vvf rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft File: YDUU_FCDUUDwM--oQ87pOWOWol0.mft (raw, json) Hash identifier: R6vQivLr96cGzfkVdMAr4e6ZX1iWgG4Oif+U00/HAFc= Subject key identifier: 44:DC:CC:1C:BA:9F:3D:BC:7A:A7:C0:F8:2B:82:96:4F:EE:66:8D:47 Authority key identifier: 60:35:14:FC:50:83:51:40:F0:33:EF:A8:43:CE:E9:39:63:96:A2:5D Certificate issuer: /CN=A91118FA/serialNumber=603514FC50835140F033EFA843CEE9396396A25D Certificate serial: 0B02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDUU_FCDUUDwM--oQ87pOWOWol0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft Manifest number: 0AFC Signing time: Thu 24 Apr 2025 19:11:09 +0000 Manifest this update: Thu 24 Apr 2025 19:11:08 +0000 Manifest next update: Thu 01 May 2025 19:11:08 +0000 Files and hashes: 1: YDUU_FCDUUDwM--oQ87pOWOWol0.crl (hash: 9eA1fXgXogAA7+ZiMIvgVhsn5lBKKunjKXbEjHrfU+Q=) 2: 42EE36A240EC11EA875BC545C4F9AE02.roa (hash: YIrw4KxM8ISIt1Ah1KvT99pW3vrO49ALdJTT54SyTO8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.crl rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDUU_FCDUUDwM--oQ87pOWOWol0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:11:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2818 (0xb02) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91118FA, serialNumber=603514FC50835140F033EFA843CEE9396396A25D Validity Not Before: Apr 24 19:11:08 2025 GMT Not After : May 1 19:11:08 2025 GMT Subject: CN=680a8ccc-ac49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:8e:af:6a:24:24:08:2e:2b:0a:9d:4f:74:ba: 3d:58:75:a5:b4:f8:ac:52:56:84:8a:38:ab:7b:6a: 82:59:7b:67:78:3c:2c:8e:1b:02:98:6e:04:87:a8: ac:27:5f:d1:bc:6d:80:07:24:f8:c1:af:92:35:40: 0d:8d:df:0f:5f:43:13:d3:91:eb:41:4a:95:a6:94: 3c:0c:ae:3c:ae:86:94:8a:ce:ee:6c:98:6a:12:47: 19:fe:4a:f4:0e:d1:ce:63:3e:9a:70:bb:aa:f6:e0: 27:68:0e:55:31:11:e3:3d:75:5e:a7:1b:52:42:9f: a8:6f:5d:31:10:8b:d4:65:d6:1c:c3:e5:df:c8:37: bd:bc:88:48:07:6c:bf:2d:42:17:8e:28:b0:d8:66: f1:5b:b2:3c:68:70:af:ac:56:04:5b:77:c5:7e:70: 79:55:a6:77:68:00:ef:36:54:4c:01:29:9e:4d:a7: 21:f7:db:32:2a:7a:6b:19:e4:1d:67:f0:ba:30:dc: 29:a1:6c:9e:19:61:ca:23:4c:35:e7:55:0c:61:94: 4d:00:74:97:89:99:6c:05:fb:2f:82:57:89:3a:f2: 43:3b:b3:72:d1:af:93:0a:6d:13:f6:3d:c2:ef:a5: 7f:ef:ff:a3:22:65:fb:fe:ff:d7:7b:b1:a7:95:08: 39:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:DC:CC:1C:BA:9F:3D:BC:7A:A7:C0:F8:2B:82:96:4F:EE:66:8D:47 X509v3 Authority Key Identifier: keyid:60:35:14:FC:50:83:51:40:F0:33:EF:A8:43:CE:E9:39:63:96:A2:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDUU_FCDUUDwM--oQ87pOWOWol0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:94:02:31:e1:b6:08:09:73:4d:50:a1:e9:ea:7e:31:83:d8: 4d:0e:9e:66:43:4a:83:c5:e6:42:59:1d:52:38:be:19:24:c5: 43:ef:02:78:78:f5:89:19:35:4c:8c:1a:ce:9b:e3:84:f9:3c: cc:d4:65:d3:a6:d2:08:0f:d6:f9:f2:e7:bc:c6:cd:69:79:a5: 67:52:23:a9:45:32:34:14:1c:fd:68:e6:2c:23:35:a4:95:9e: fb:10:93:ef:57:0c:6e:2c:f5:e3:d3:1f:c7:35:b0:5c:e5:4f: dc:42:da:86:13:7d:61:ed:66:a8:7f:72:a8:98:70:e0:ac:fb: 46:a9:c3:b9:fd:02:fa:52:4f:a9:19:37:52:79:c9:52:2e:d8: 61:0c:5d:3b:d9:7e:e4:74:5a:03:e2:21:4b:61:d8:a1:ef:98: 29:0d:14:56:0a:bc:ca:53:42:a8:00:dd:a7:d3:eb:85:be:24: 08:52:1d:e3:af:48:1d:bd:61:7c:8b:c8:cf:46:db:06:a3:78: da:cf:3b:31:14:8e:ca:72:f9:15:e2:ab:32:97:06:42:ad:c5: 8f:a6:5b:aa:96:58:ee:c8:36:b3:31:e1:c6:96:fc:5d:e1:ff: fd:b9:a6:80:d2:50:3f:da:eb:18:87:57:fa:e2:d3:3c:d1:ec: 72:84:e6:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTE4RkExMTAvBgNVBAUTKDYwMzUxNEZDNTA4MzUxNDBGMDMzRUZBODQzQ0VFOTM5 NjM5NkEyNUQwHhcNMjUwNDI0MTkxMTA4WhcNMjUwNTAxMTkxMTA4WjAYMRYwFAYD VQQDEw02ODBhOGNjYy1hYzQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7I6vaiQkCC4rCp1PdLo9WHWltPisUlaEijire2qCWXtneDwsjhsCmG4Eh6is J1/RvG2AByT4wa+SNUANjd8PX0MT05HrQUqVppQ8DK48roaUis7ubJhqEkcZ/kr0 DtHOYz6acLuq9uAnaA5VMRHjPXVepxtSQp+ob10xEIvUZdYcw+XfyDe9vIhIB2y/ LUIXjiiw2GbxW7I8aHCvrFYEW3fFfnB5VaZ3aADvNlRMASmeTach99syKnprGeQd Z/C6MNwpoWyeGWHKI0w151UMYZRNAHSXiZlsBfsvgleJOvJDO7Ny0a+TCm0T9j3C 76V/7/+jImX7/v/Xe7GnlQg54QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFETczBy6 nz28eqfA+CuClk/uZo1HMB8GA1UdIwQYMBaAFGA1FPxQg1FA8DPvqEPO6TljlqJd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMThGQS85ODQyNDQ5QzQw RUExMUVBQkIwMUJENDJDNEY5QUUwMi9ZRFVVX0ZDRFVVRHdNLS1vUTg3cE9XT1dv bDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lEVVVfRkNEVVVEd00tLW9RODdwT1dPV29sMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MThGQS85ODQyNDQ5QzQwRUExMUVBQkIwMUJENDJDNEY5QUUwMi9ZRFVVX0ZDRFVV RHdNLS1vUTg3cE9XT1dvbDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDBlAIx4bYICXNNUKHp6n4xg9hNDp5mQ0qDxeZCWR1SOL4ZJMVD7wJ4 ePWJGTVMjBrOm+OE+TzM1GXTptIID9b58ue8xs1peaVnUiOpRTI0FBz9aOYsIzWk lZ77EJPvVwxuLPXj0x/HNbBc5U/cQtqGE31h7Waof3KomHDgrPtGqcO5/QL6Uk+p GTdSeclSLthhDF072X7kdFoD4iFLYdih75gpDRRWCrzKU0KoAN2n0+uFviQIUh3j r0gdvWF8i8jPRtsGo3jazzsxFI7KcvkV4qsylwZCrcWPpluqlljuyDazMeHGlvxd 4f/9uaaA0lA/2usYh1f64tM80exyhOYg -----END CERTIFICATE-----Generated at Sat Apr 26 14:28:50 2025 by rpki-client