$ rpki-client -vvf rpki.apnic.net/member_repository/A91580D2/EBC1AC2C184F11EDADBC3C65C4F9AE02/ypDU0hJfAza1OY7gmXcpby5AkrQ.mft File: ypDU0hJfAza1OY7gmXcpby5AkrQ.mft (raw, json) Hash identifier: zknpp6Y9k9KiNecT2dwIXppjULi86XKmV1L6LMvUnPs= Subject key identifier: DC:05:89:E7:94:A8:F1:30:10:45:6F:26:CE:7D:0B:7E:85:66:79:1D Authority key identifier: CA:90:D4:D2:12:5F:03:36:B5:39:8E:E0:99:77:29:6F:2E:40:92:B4 Certificate issuer: /CN=A91580D2/serialNumber=CA90D4D2125F0336B5398EE09977296F2E4092B4 Certificate serial: 0282 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypDU0hJfAza1OY7gmXcpby5AkrQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91580D2/EBC1AC2C184F11EDADBC3C65C4F9AE02/ypDU0hJfAza1OY7gmXcpby5AkrQ.mft Manifest number: 0267 Signing time: Fri 25 Apr 2025 01:37:48 +0000 Manifest this update: Fri 25 Apr 2025 01:37:48 +0000 Manifest next update: Fri 02 May 2025 01:37:48 +0000 Files and hashes: 1: ypDU0hJfAza1OY7gmXcpby5AkrQ.crl (hash: P+MnaHnbeowrGW9W9TBm4b5OizlSaD2hGbCm+ec1zu0=) 2: 39FCB4EC4F4E11EDB169BF33C4F9AE02.roa (hash: 0dIG8fQMRzlILpkTDJVo/XSoC64SAKbRto45S4Eicvs=) 3: 4D608CC0800211EF81167A23C4F9AE02.roa (hash: ZQQKFp5iiDEIGLxVFz3G6lECRRriefFnadRp8yKcQoY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91580D2/EBC1AC2C184F11EDADBC3C65C4F9AE02/ypDU0hJfAza1OY7gmXcpby5AkrQ.crl rsync://rpki.apnic.net/member_repository/A91580D2/EBC1AC2C184F11EDADBC3C65C4F9AE02/ypDU0hJfAza1OY7gmXcpby5AkrQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypDU0hJfAza1OY7gmXcpby5AkrQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:37:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 642 (0x282) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91580D2, serialNumber=CA90D4D2125F0336B5398EE09977296F2E4092B4 Validity Not Before: Apr 25 01:37:48 2025 GMT Not After : May 2 01:37:48 2025 GMT Subject: CN=680ae76c-e28d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:63:21:3c:e3:21:6c:7e:3a:f1:55:e8:b6:36: f8:ba:6a:cd:20:99:dd:e4:45:7c:88:d7:5a:5e:75: e8:32:63:1d:e2:db:06:22:92:fb:8d:6c:07:bd:18: 80:b7:1a:61:4f:97:e1:d2:f2:06:7b:1e:24:14:c8: 6b:6a:10:bc:3e:b1:48:af:3b:0d:59:84:a9:e5:72: ac:07:74:f9:b5:c8:ba:d8:af:a6:60:e0:31:6d:94: ef:cf:d8:c8:e2:68:27:e6:b9:8e:1e:15:a0:ef:1d: 26:ec:ce:6d:a8:8f:f3:f0:19:b9:96:56:b1:4b:44: 2c:ac:83:db:de:33:21:da:56:6e:73:f2:6f:07:71: ce:20:71:a6:e2:80:cc:09:8d:42:82:e4:8f:8b:66: 56:ff:85:22:08:dc:2c:f2:62:c8:c9:15:da:4c:1f: bd:3d:8e:f6:e7:b4:db:7d:98:d9:dd:8d:a0:8d:d1: c0:6d:e2:d8:da:66:a3:61:b5:6a:65:a4:d8:14:20: 1f:40:fa:d8:29:2e:ac:8e:36:1c:c5:1a:64:6b:c0: eb:33:e9:de:da:f3:39:63:73:91:ed:82:19:fe:0a: 17:15:b4:5e:64:8e:7b:c2:78:c7:5a:2c:35:1a:2d: 0d:89:9d:7d:cd:9d:33:10:9b:31:13:3d:be:df:fc: b8:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:05:89:E7:94:A8:F1:30:10:45:6F:26:CE:7D:0B:7E:85:66:79:1D X509v3 Authority Key Identifier: keyid:CA:90:D4:D2:12:5F:03:36:B5:39:8E:E0:99:77:29:6F:2E:40:92:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91580D2/EBC1AC2C184F11EDADBC3C65C4F9AE02/ypDU0hJfAza1OY7gmXcpby5AkrQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypDU0hJfAza1OY7gmXcpby5AkrQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91580D2/EBC1AC2C184F11EDADBC3C65C4F9AE02/ypDU0hJfAza1OY7gmXcpby5AkrQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:d5:30:b7:e1:82:ab:a3:05:8b:5b:99:68:71:97:e7:9f:5e: 54:2f:02:92:98:ab:c2:94:09:aa:79:f7:05:e6:ca:ee:13:bc: 47:cb:92:bb:73:90:eb:f3:4f:69:ca:b4:9c:f5:3e:90:05:ab: 69:6b:56:35:29:11:b5:a3:02:6a:c7:92:ea:97:41:90:2f:5d: ee:f7:49:33:fa:60:e1:e0:43:3a:98:da:99:c0:e5:0b:28:21: 80:f3:ab:69:77:f9:5a:d8:8c:cc:93:57:28:df:8a:e5:85:dd: 95:19:82:eb:c5:11:10:a6:56:7e:8f:d6:6b:1a:ab:53:bd:63: 31:80:e7:54:03:d6:43:f2:6a:d8:36:45:86:28:89:ae:32:53: 56:ed:6b:45:c6:2a:6a:e6:0b:8e:ee:96:d2:ab:df:ae:0f:38: 05:aa:be:7e:53:b0:88:ab:81:72:a0:fa:e5:ef:29:41:20:fa: 95:3b:f1:30:b5:fc:3a:70:57:6f:4d:4c:01:84:9c:61:be:01: 4f:ec:75:b7:2d:b8:09:86:93:11:d9:58:ed:1e:fb:58:b4:32: d4:0b:28:34:c7:56:cd:4e:71:2e:64:c3:1c:24:99:ca:c4:11: a2:f4:3a:dc:f4:f3:43:50:c3:47:44:56:b0:68:63:7b:ac:29: cb:9b:b9:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwRDIxMTAvBgNVBAUTKENBOTBENEQyMTI1RjAzMzZCNTM5OEVFMDk5NzcyOTZG MkU0MDkyQjQwHhcNMjUwNDI1MDEzNzQ4WhcNMjUwNTAyMDEzNzQ4WjAYMRYwFAYD VQQDEw02ODBhZTc2Yy1lMjhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8GMhPOMhbH468VXotjb4umrNIJnd5EV8iNdaXnXoMmMd4tsGIpL7jWwHvRiA txphT5fh0vIGex4kFMhrahC8PrFIrzsNWYSp5XKsB3T5tci62K+mYOAxbZTvz9jI 4mgn5rmOHhWg7x0m7M5tqI/z8Bm5llaxS0QsrIPb3jMh2lZuc/JvB3HOIHGm4oDM CY1CguSPi2ZW/4UiCNws8mLIyRXaTB+9PY7257TbfZjZ3Y2gjdHAbeLY2majYbVq ZaTYFCAfQPrYKS6sjjYcxRpka8DrM+ne2vM5Y3OR7YIZ/goXFbReZI57wnjHWiw1 Gi0NiZ19zZ0zEJsxEz2+3/y4BwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNwFieeU qPEwEEVvJs59C36FZnkdMB8GA1UdIwQYMBaAFMqQ1NISXwM2tTmO4Jl3KW8uQJK0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODBEMi9FQkMxQUMyQzE4 NEYxMUVEQURCQzNDNjVDNEY5QUUwMi95cERVMGhKZkF6YTFPWTdnbVhjcGJ5NUFr clEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lwRFUwaEpmQXphMU9ZN2dtWGNwYnk1QWtyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODBEMi9FQkMxQUMyQzE4NEYxMUVEQURCQzNDNjVDNEY5QUUwMi95cERVMGhKZkF6 YTFPWTdnbVhjcGJ5NUFrclEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBa1TC34YKrowWLW5locZfnn15ULwKSmKvClAmqefcF5sruE7xHy5K7 c5Dr809pyrSc9T6QBatpa1Y1KRG1owJqx5Lql0GQL13u90kz+mDh4EM6mNqZwOUL KCGA86tpd/la2IzMk1co34rlhd2VGYLrxREQplZ+j9ZrGqtTvWMxgOdUA9ZD8mrY NkWGKImuMlNW7WtFxipq5guO7pbSq9+uDzgFqr5+U7CIq4FyoPrl7ylBIPqVO/Ew tfw6cFdvTUwBhJxhvgFP7HW3LbgJhpMR2VjtHvtYtDLUCyg0x1bNTnEuZMMcJJnK xBGi9Drc9PNDUMNHRFawaGN7rCnLm7nb -----END CERTIFICATE-----Generated at Sat Apr 26 15:07:51 2025 by rpki-client