$ rpki-client -vvf rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.mft File: ry1FO-u_318ptjrBZ1THjRsPy4g.mft (raw, json) Hash identifier: Xe2FaZPcSxZzRERO3YbNwrY5b9fDO09z2Zh/00HzISw= Subject key identifier: 48:2F:16:33:64:AA:12:5F:0E:0F:28:50:76:6D:76:02:13:63:5B:09 Authority key identifier: AF:2D:45:3B:EB:BF:DF:5F:29:B6:3A:C1:67:54:C7:8D:1B:0F:CB:88 Certificate issuer: /CN=A91557BA/serialNumber=AF2D453BEBBFDF5F29B63AC16754C78D1B0FCB88 Certificate serial: 0C3D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ry1FO-u_318ptjrBZ1THjRsPy4g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.mft Manifest number: 0C34 Signing time: Thu 24 Apr 2025 18:22:16 +0000 Manifest this update: Thu 24 Apr 2025 18:22:15 +0000 Manifest next update: Thu 01 May 2025 18:22:15 +0000 Files and hashes: 1: ry1FO-u_318ptjrBZ1THjRsPy4g.crl (hash: 2LgYli36E0pY8ckX+xeguEOhEhxxBLo+OoYGDD2S5K8=) 2: 157A1BFC59EE11EBA398AA0AC4F9AE02.roa (hash: JpCVaZ9JZD1Afq3DjPUJqYLTP1v40h6qnEBodBPkfj4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.crl rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ry1FO-u_318ptjrBZ1THjRsPy4g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:22:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3133 (0xc3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91557BA, serialNumber=AF2D453BEBBFDF5F29B63AC16754C78D1B0FCB88 Validity Not Before: Apr 24 18:22:15 2025 GMT Not After : May 1 18:22:15 2025 GMT Subject: CN=680a8158-813f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:0c:e5:37:8d:e9:10:9c:05:fd:c9:0d:b6:77: 97:fb:6b:3c:bc:d7:43:78:e9:ba:59:b5:b1:26:da: 6b:ed:01:f2:af:d5:92:07:98:70:94:5a:d9:3a:7c: a6:6b:8b:eb:c9:7a:42:9c:37:0f:93:a0:d1:90:2e: a8:25:9c:f6:08:60:01:79:f6:30:d9:43:ea:fc:42: 43:dd:02:b1:78:c0:d5:f2:fb:d7:d4:d7:8e:07:ac: e3:fd:36:89:7f:e4:4b:86:4a:a9:d7:31:f6:56:56: 5f:65:46:85:c4:82:2a:8d:c2:00:37:a5:fc:3a:e8: 13:6b:67:e3:aa:78:56:f8:3e:5c:1f:4c:e6:3a:81: 7d:0a:21:bf:6a:9b:71:7e:be:93:88:46:cc:03:4f: 44:e8:48:2e:10:74:26:85:d4:71:72:e1:8a:f1:24: fd:c7:5b:39:0d:9c:0f:54:b4:c3:0f:b9:92:5a:41: 75:1f:3b:bb:d5:2a:9a:11:10:db:c8:7e:ab:b3:ef: 79:f1:5c:7d:5a:6b:d5:d7:3f:09:f6:9d:49:e7:8b: 23:88:9f:29:96:b1:a5:18:24:a6:e1:a8:09:59:11: 94:49:8f:4a:f1:95:a8:b6:bd:86:c0:41:7c:11:46: d9:78:1e:c5:5d:bb:62:fc:5e:05:de:4f:9d:3d:00: 6c:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:2F:16:33:64:AA:12:5F:0E:0F:28:50:76:6D:76:02:13:63:5B:09 X509v3 Authority Key Identifier: keyid:AF:2D:45:3B:EB:BF:DF:5F:29:B6:3A:C1:67:54:C7:8D:1B:0F:CB:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ry1FO-u_318ptjrBZ1THjRsPy4g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:5c:4d:49:44:fd:80:26:20:ba:26:5d:fc:8b:ae:84:cc:fe: 2f:06:48:44:c1:cc:20:f8:0f:47:c8:c4:c4:ed:be:6a:c5:b5: 31:e3:cb:16:ea:75:2d:29:bc:65:bb:e7:f2:cf:b2:27:a2:3e: ab:2a:d8:80:ba:64:8a:eb:30:72:1f:51:95:37:39:c4:dd:c1: ad:62:58:a8:06:d2:7b:5a:fd:83:32:8b:b8:11:df:90:3a:82: db:45:21:ed:cb:1a:4c:e5:16:9b:53:69:de:d8:13:ae:05:c5: ae:c4:68:ed:d5:c2:d2:40:58:14:5f:c3:5e:82:0f:a9:b0:96: 54:66:ad:b8:b0:2e:44:5a:e2:3f:a8:17:c6:17:f4:cb:fe:2b: bc:85:59:f9:bc:52:1d:47:23:fb:de:3b:6f:80:61:dc:f1:9f: 84:98:41:9a:92:06:da:ca:ef:2b:74:c8:6b:af:c6:40:2c:d7: f9:16:6e:02:7c:6b:39:90:f8:44:2e:ef:6e:34:b1:38:bd:70: ec:3d:07:e3:06:b3:a9:4f:e2:7b:52:53:a3:20:d0:12:5a:fa: ec:59:c7:3d:81:8c:42:1f:41:0a:d3:4a:a6:ab:35:e2:c8:fa: 12:b7:3d:d7:6d:73:5d:0c:49:67:c1:df:5c:60:4f:52:22:16: 2a:57:8a:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDD0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU3QkExMTAvBgNVBAUTKEFGMkQ0NTNCRUJCRkRGNUYyOUI2M0FDMTY3NTRDNzhE MUIwRkNCODgwHhcNMjUwNDI0MTgyMjE1WhcNMjUwNTAxMTgyMjE1WjAYMRYwFAYD VQQDEw02ODBhODE1OC04MTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAngzlN43pEJwF/ckNtneX+2s8vNdDeOm6WbWxJtpr7QHyr9WSB5hwlFrZOnym a4vryXpCnDcPk6DRkC6oJZz2CGABefYw2UPq/EJD3QKxeMDV8vvX1NeOB6zj/TaJ f+RLhkqp1zH2VlZfZUaFxIIqjcIAN6X8OugTa2fjqnhW+D5cH0zmOoF9CiG/aptx fr6TiEbMA09E6EguEHQmhdRxcuGK8ST9x1s5DZwPVLTDD7mSWkF1Hzu71SqaERDb yH6rs+958Vx9WmvV1z8J9p1J54sjiJ8plrGlGCSm4agJWRGUSY9K8ZWotr2GwEF8 EUbZeB7FXbti/F4F3k+dPQBsBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEgvFjNk qhJfDg8oUHZtdgITY1sJMB8GA1UdIwQYMBaAFK8tRTvrv99fKbY6wWdUx40bD8uI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTdCQS82ODEyREY5MjA0 RUIxMUVBQTcyRkEzNjNDNEY5QUUwMi9yeTFGTy11XzMxOHB0anJCWjFUSGpSc1B5 NGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3J5MUZPLXVfMzE4cHRqckJaMVRIalJzUHk0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTdCQS82ODEyREY5MjA0RUIxMUVBQTcyRkEzNjNDNEY5QUUwMi9yeTFGTy11XzMx OHB0anJCWjFUSGpSc1B5NGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLXE1JRP2AJiC6Jl38i66EzP4vBkhEwcwg+A9HyMTE7b5qxbUx48sW 6nUtKbxlu+fyz7Inoj6rKtiAumSK6zByH1GVNznE3cGtYlioBtJ7Wv2DMou4Ed+Q OoLbRSHtyxpM5RabU2ne2BOuBcWuxGjt1cLSQFgUX8Negg+psJZUZq24sC5EWuI/ qBfGF/TL/iu8hVn5vFIdRyP73jtvgGHc8Z+EmEGakgbayu8rdMhrr8ZALNf5Fm4C fGs5kPhELu9uNLE4vXDsPQfjBrOpT+J7UlOjINASWvrsWcc9gYxCH0EK00qmqzXi yPoStz3XbXNdDElnwd9cYE9SIhYqV4qC -----END CERTIFICATE-----Generated at Sat Apr 26 17:03:21 2025 by rpki-client