$ rpki-client -vvf rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.mft File: yIwqqUquXvn01JfoOHo53RvOk50.mft (raw, json) Hash identifier: 25QTtz/mNSv7jAtBdCIQqjmEq6/Joej4Ek0JWbVZr4M= Subject key identifier: E2:1A:BE:E9:5C:6E:75:2C:64:FE:B3:A2:8D:B7:DE:41:77:43:FE:0A Authority key identifier: C8:8C:2A:A9:4A:AE:5E:F9:F4:D4:97:E8:38:7A:39:DD:1B:CE:93:9D Certificate issuer: /CN=A91228E2/serialNumber=C88C2AA94AAE5EF9F4D497E8387A39DD1BCE939D Certificate serial: 011E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yIwqqUquXvn01JfoOHo53RvOk50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.mft Manifest number: 011B Signing time: Fri 25 Apr 2025 03:53:18 +0000 Manifest this update: Fri 25 Apr 2025 03:53:17 +0000 Manifest next update: Fri 02 May 2025 03:53:17 +0000 Files and hashes: 1: yIwqqUquXvn01JfoOHo53RvOk50.crl (hash: G59O6f8yQzWMYOzjWKUEmSVGq8zOk3MJ52hmTcge8wk=) 2: EF98E11472E211EEB93A4F72C4F9AE02.roa (hash: zjnMnu7RY/dZWeqb3tnlHnJORJa1AYwPA3wCVz3+WfI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.crl rsync://rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yIwqqUquXvn01JfoOHo53RvOk50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:53:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 286 (0x11e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91228E2, serialNumber=C88C2AA94AAE5EF9F4D497E8387A39DD1BCE939D Validity Not Before: Apr 25 03:53:17 2025 GMT Not After : May 2 03:53:17 2025 GMT Subject: CN=680b072d-eb26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:49:bc:11:09:a6:47:32:c7:ac:e4:f5:ba:f1: 27:25:13:d9:e5:1c:26:a0:e2:5e:15:a5:fb:18:e7: 4c:cb:29:79:47:f0:20:ad:1d:1f:5a:75:f2:62:c5: 61:b3:21:ac:02:9d:0d:a6:fe:9f:72:3e:dd:ba:80: 7a:50:dd:f6:03:55:77:72:cb:4f:b9:bd:fb:21:f6: 7b:24:95:80:dc:c1:e1:c8:db:e2:5b:bb:66:d9:77: 7b:d9:da:35:76:77:26:50:9c:10:2c:95:1c:86:55: 50:f0:db:d9:c1:da:5f:a2:09:a7:80:9c:3d:db:33: 53:94:9e:65:b2:46:7e:0f:40:80:2d:cd:0f:b8:2f: bb:9d:15:07:1a:ac:4b:59:2f:07:a5:1b:76:93:e2: ee:24:3b:11:58:87:87:fa:4e:6b:9d:ea:37:91:56: 2e:99:e4:76:41:09:84:c1:d1:ae:06:15:f1:2b:41: 23:7d:ab:62:56:44:ec:0c:ed:c1:c8:4b:d1:53:9c: 31:44:6b:c5:82:c1:03:98:fe:71:99:03:e3:a4:62: cd:3c:76:37:a8:3b:83:a7:e7:08:e2:ca:f1:53:eb: ad:e5:00:6b:87:a6:0d:ac:1a:24:14:f2:45:90:20: 36:24:aa:f3:0c:05:a2:76:11:81:7b:79:69:17:5c: ec:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:1A:BE:E9:5C:6E:75:2C:64:FE:B3:A2:8D:B7:DE:41:77:43:FE:0A X509v3 Authority Key Identifier: keyid:C8:8C:2A:A9:4A:AE:5E:F9:F4:D4:97:E8:38:7A:39:DD:1B:CE:93:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yIwqqUquXvn01JfoOHo53RvOk50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:6a:0a:a3:d1:f4:69:d2:a1:fb:16:1d:b5:b7:52:db:85:e4: 5c:2c:4c:f0:07:28:eb:97:44:7a:ce:b7:ae:48:38:60:82:0a: 2f:28:ef:34:66:c5:78:aa:46:a5:b9:80:f7:de:20:8e:be:4b: 0c:81:9c:13:c9:fe:dc:09:23:1b:1c:11:9a:e2:8d:8a:8b:80: 53:f9:b6:dd:ce:4e:a3:bf:17:98:db:b7:cb:5d:9d:b0:87:f4: 7f:5a:30:ea:d2:2e:eb:01:51:71:6c:6e:7f:27:7b:09:d9:24: e0:6e:bd:70:ef:ca:2d:f6:c1:e8:84:45:46:fa:9e:01:09:84: 32:26:9b:88:1f:4d:32:4e:5b:ca:f1:94:b3:f5:e3:a6:d2:31: 43:c1:6b:12:39:05:15:7c:5c:45:22:3e:01:2f:fb:c2:7b:08: 3a:de:bf:f1:0d:97:44:7f:1d:18:84:4b:43:12:31:f1:17:90: 59:52:c8:0f:45:ca:3b:55:a1:4b:9c:1c:7b:d8:87:83:04:fc: 8d:bb:5a:09:7a:06:ba:3d:4a:3d:a3:a3:65:8e:b5:88:0a:a4: 16:c1:57:e9:16:fa:49:97:ff:96:e0:a3:eb:f6:30:b0:f2:6e: 3d:e0:d7:7b:23:12:b5:0f:1c:8c:db:04:03:53:96:6f:f0:88: 29:9b:84:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjI4RTIxMTAvBgNVBAUTKEM4OEMyQUE5NEFBRTVFRjlGNEQ0OTdFODM4N0EzOURE MUJDRTkzOUQwHhcNMjUwNDI1MDM1MzE3WhcNMjUwNTAyMDM1MzE3WjAYMRYwFAYD VQQDEw02ODBiMDcyZC1lYjI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt0m8EQmmRzLHrOT1uvEnJRPZ5RwmoOJeFaX7GOdMyyl5R/AgrR0fWnXyYsVh syGsAp0Npv6fcj7duoB6UN32A1V3cstPub37IfZ7JJWA3MHhyNviW7tm2Xd72do1 dncmUJwQLJUchlVQ8NvZwdpfogmngJw92zNTlJ5lskZ+D0CALc0PuC+7nRUHGqxL WS8HpRt2k+LuJDsRWIeH+k5rneo3kVYumeR2QQmEwdGuBhXxK0EjfatiVkTsDO3B yEvRU5wxRGvFgsEDmP5xmQPjpGLNPHY3qDuDp+cI4srxU+ut5QBrh6YNrBokFPJF kCA2JKrzDAWidhGBe3lpF1zsowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOIavulc bnUsZP6zoo233kF3Q/4KMB8GA1UdIwQYMBaAFMiMKqlKrl759NSX6Dh6Od0bzpOd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjhFMi9DRTU0MDZGNjcy RTExMUVFQjA3ODE2MTlDNEY5QUUwMi95SXdxcVVxdVh2bjAxSmZvT0hvNTNSdk9r NTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lJd3FxVXF1WHZuMDFKZm9PSG81M1J2T2s1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjhFMi9DRTU0MDZGNjcyRTExMUVFQjA3ODE2MTlDNEY5QUUwMi95SXdxcVVxdVh2 bjAxSmZvT0hvNTNSdk9rNTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeagqj0fRp0qH7Fh21t1LbheRcLEzwByjrl0R6zreuSDhgggovKO80 ZsV4qkaluYD33iCOvksMgZwTyf7cCSMbHBGa4o2Ki4BT+bbdzk6jvxeY27fLXZ2w h/R/WjDq0i7rAVFxbG5/J3sJ2STgbr1w78ot9sHohEVG+p4BCYQyJpuIH00yTlvK 8ZSz9eOm0jFDwWsSOQUVfFxFIj4BL/vCewg63r/xDZdEfx0YhEtDEjHxF5BZUsgP Rco7VaFLnBx72IeDBPyNu1oJega6PUo9o6NljrWICqQWwVfpFvpJl/+W4KPr9jCw 8m494Nd7IxK1DxyM2wQDU5Zv8Igpm4Ro -----END CERTIFICATE-----Generated at Sat Apr 26 15:07:20 2025 by rpki-client