$ rpki-client -vvf rpki.apnic.net/member_repository/A911392E/32E1F35850E011EFA7094168C4F9AE02/YptQlj68agIuJ67LYTQg5A5020o.mft File: YptQlj68agIuJ67LYTQg5A5020o.mft (raw, json) Hash identifier: 9tYNhzmYJaPO+4HjZHZvyVjqrnV7eBDU/ehWuRjlKtI= Subject key identifier: 41:91:90:FA:06:78:EE:DC:07:2F:72:62:C2:94:FD:59:DB:6E:71:97 Authority key identifier: 62:9B:50:96:3E:BC:6A:02:2E:27:AE:CB:61:34:20:E4:0E:74:DB:4A Certificate issuer: /CN=A911392E/serialNumber=629B50963EBC6A022E27AECB613420E40E74DB4A Certificate serial: 90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YptQlj68agIuJ67LYTQg5A5020o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911392E/32E1F35850E011EFA7094168C4F9AE02/YptQlj68agIuJ67LYTQg5A5020o.mft Manifest number: 8D Signing time: Fri 25 Apr 2025 05:29:29 +0000 Manifest this update: Fri 25 Apr 2025 05:29:29 +0000 Manifest next update: Fri 02 May 2025 05:29:29 +0000 Files and hashes: 1: YptQlj68agIuJ67LYTQg5A5020o.crl (hash: jWYGVmxAHxaMFABP14t28CKRpRXJ0C+FbYDuVrJU+p8=) 2: 8E9B074050E311EF8624AC36C4F9AE02.roa (hash: OMwuM+GLC4j4NcdExvOXIOxilMsEBWQawa7SmPYWVzY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911392E/32E1F35850E011EFA7094168C4F9AE02/YptQlj68agIuJ67LYTQg5A5020o.crl rsync://rpki.apnic.net/member_repository/A911392E/32E1F35850E011EFA7094168C4F9AE02/YptQlj68agIuJ67LYTQg5A5020o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YptQlj68agIuJ67LYTQg5A5020o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:29:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 144 (0x90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911392E, serialNumber=629B50963EBC6A022E27AECB613420E40E74DB4A Validity Not Before: Apr 25 05:29:29 2025 GMT Not After : May 2 05:29:29 2025 GMT Subject: CN=680b1db9-89aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:5b:8c:0b:7f:d1:e6:e4:89:be:c8:90:04:72: 7f:9c:b3:7c:26:fd:4b:88:d3:ab:5a:3a:72:d9:93: 4b:87:73:48:b1:93:cd:69:a8:e4:3c:c0:b1:a0:f6: c0:33:e6:f0:eb:f0:49:82:96:23:d1:b9:20:64:65: 0a:fb:7c:09:83:fa:04:59:51:8b:a9:cd:6a:02:42: 64:0a:2c:88:d4:c7:df:fc:18:02:08:79:21:0a:fc: 46:70:db:66:a9:c7:2d:96:38:eb:97:0e:3e:d8:db: da:25:43:ee:c6:d1:73:c7:0b:1f:5d:c0:04:f9:ef: 65:ca:aa:ef:21:ab:6e:dc:74:e7:a8:c0:a6:27:df: 0d:99:e2:a2:bb:d7:63:f6:e7:dd:ed:f7:9a:b3:65: f1:88:91:10:d1:10:98:0e:eb:d5:0e:30:7e:f3:f1: d9:68:c4:e6:b6:f1:9a:3c:3e:d6:7a:a1:2d:17:b6: 1b:c1:0f:9d:7f:47:94:58:03:b6:40:5d:a8:8b:73: fb:83:18:3b:a1:e2:45:92:d3:d0:c7:07:2d:d9:38: 94:85:85:54:36:67:ac:76:cf:a3:1a:a2:da:c4:20: 5c:45:47:3c:fc:62:50:3a:50:34:47:04:2b:21:07: a6:32:ef:90:81:4a:91:60:41:37:90:60:2c:63:93: 75:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:91:90:FA:06:78:EE:DC:07:2F:72:62:C2:94:FD:59:DB:6E:71:97 X509v3 Authority Key Identifier: keyid:62:9B:50:96:3E:BC:6A:02:2E:27:AE:CB:61:34:20:E4:0E:74:DB:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911392E/32E1F35850E011EFA7094168C4F9AE02/YptQlj68agIuJ67LYTQg5A5020o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YptQlj68agIuJ67LYTQg5A5020o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911392E/32E1F35850E011EFA7094168C4F9AE02/YptQlj68agIuJ67LYTQg5A5020o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:07:55:7e:4c:12:80:63:08:f1:8e:37:92:e0:a9:8f:d3:ce: 3c:9b:ad:88:ee:db:c0:8c:51:5c:da:a1:ac:0c:f3:cb:14:3a: d3:b7:d8:69:a6:07:4b:e5:fe:22:af:96:64:2f:c3:4e:d8:46: 58:26:f2:be:7a:8b:f1:79:d0:ee:eb:f8:98:7d:33:f5:1d:e3: 8f:e7:3f:54:9b:4c:d8:6a:07:d1:9f:6e:d6:6e:6a:63:08:37: 0c:90:31:7c:11:71:34:71:99:e2:66:ae:39:e6:56:cf:fc:ea: f8:94:99:2f:b2:de:cf:91:89:ba:b1:e8:21:15:9f:d7:3b:cb: 2b:97:03:0c:17:35:18:f6:ed:37:d4:32:11:f9:8c:8f:3b:bb: 2d:df:03:99:20:52:2f:90:ec:71:e9:83:a1:e3:f7:0f:25:fc: 8e:59:c0:e9:a6:5c:66:b1:17:24:c7:30:77:28:8b:07:1c:24: e5:43:1a:51:13:d7:f2:89:fd:02:91:a4:71:7e:20:dc:2f:36: 77:95:85:d7:62:9b:d5:1b:1c:8d:5a:bc:85:4d:d8:a8:1a:43: 93:cd:4a:e3:d9:f6:14:2f:ca:ae:de:8b:0e:5f:b0:f5:9d:9b: 7b:07:94:85:d2:d9:4b:3e:a9:60:b5:0f:87:55:b0:37:48:d9: 98:cd:ae:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTM5MkUxMTAvBgNVBAUTKDYyOUI1MDk2M0VCQzZBMDIyRTI3QUVDQjYxMzQyMEU0 MEU3NERCNEEwHhcNMjUwNDI1MDUyOTI5WhcNMjUwNTAyMDUyOTI5WjAYMRYwFAYD VQQDEw02ODBiMWRiOS04OWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo1uMC3/R5uSJvsiQBHJ/nLN8Jv1LiNOrWjpy2ZNLh3NIsZPNaajkPMCxoPbA M+bw6/BJgpYj0bkgZGUK+3wJg/oEWVGLqc1qAkJkCiyI1Mff/BgCCHkhCvxGcNtm qcctljjrlw4+2NvaJUPuxtFzxwsfXcAE+e9lyqrvIatu3HTnqMCmJ98NmeKiu9dj 9ufd7feas2XxiJEQ0RCYDuvVDjB+8/HZaMTmtvGaPD7WeqEtF7YbwQ+df0eUWAO2 QF2oi3P7gxg7oeJFktPQxwct2TiUhYVUNmesds+jGqLaxCBcRUc8/GJQOlA0RwQr IQemMu+QgUqRYEE3kGAsY5N1+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEGRkPoG eO7cBy9yYsKU/VnbbnGXMB8GA1UdIwQYMBaAFGKbUJY+vGoCLieuy2E0IOQOdNtK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMzkyRS8zMkUxRjM1ODUw RTAxMUVGQTcwOTQxNjhDNEY5QUUwMi9ZcHRRbGo2OGFnSXVKNjdMWVRRZzVBNTAy MG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lwdFFsajY4YWdJdUo2N0xZVFFnNUE1MDIwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MzkyRS8zMkUxRjM1ODUwRTAxMUVGQTcwOTQxNjhDNEY5QUUwMi9ZcHRRbGo2OGFn SXVKNjdMWVRRZzVBNTAyMG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdB1V+TBKAYwjxjjeS4KmP0848m62I7tvAjFFc2qGsDPPLFDrTt9hp pgdL5f4ir5ZkL8NO2EZYJvK+eovxedDu6/iYfTP1HeOP5z9Um0zYagfRn27Wbmpj CDcMkDF8EXE0cZniZq455lbP/Or4lJkvst7PkYm6seghFZ/XO8srlwMMFzUY9u03 1DIR+YyPO7st3wOZIFIvkOxx6YOh4/cPJfyOWcDpplxmsRckxzB3KIsHHCTlQxpR E9fyif0CkaRxfiDcLzZ3lYXXYpvVGxyNWryFTdioGkOTzUrj2fYUL8qu3osOX7D1 nZt7B5SF0tlLPqlgtQ+HVbA3SNmYza7M -----END CERTIFICATE-----Generated at Sat Apr 26 17:22:19 2025 by rpki-client