$ rpki-client -vvf rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.mft File: RYBbVYDVFRl9GmFa1myLnUhU9eo.mft (raw, json) Hash identifier: uFwbL8NAHJv+/FQ2kB/mqNFRQVkK8TNszbXN1i/hDb4= Subject key identifier: 8F:DC:56:D5:83:7D:90:B0:E0:F8:2B:17:33:3A:03:95:F3:27:02:E8 Authority key identifier: 45:80:5B:55:80:D5:15:19:7D:1A:61:5A:D6:6C:8B:9D:48:54:F5:EA Certificate issuer: /CN=A91589E7/serialNumber=45805B5580D515197D1A615AD66C8B9D4854F5EA Certificate serial: 17D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYBbVYDVFRl9GmFa1myLnUhU9eo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.mft Manifest number: 17CA Signing time: Thu 24 Apr 2025 16:35:22 +0000 Manifest this update: Thu 24 Apr 2025 16:35:22 +0000 Manifest next update: Thu 01 May 2025 16:35:22 +0000 Files and hashes: 1: RYBbVYDVFRl9GmFa1myLnUhU9eo.crl (hash: zKYc8ZQEcytJtJtOBfGpTpS+dvmtWURXcn6OtAWSO94=) 2: 94A1F97A369711EA866E381CC4F9AE02.roa (hash: KWbJbgpGfDdYPVO+KIuyWusqQxr6PU0FBc6ESlEd+IQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.crl rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYBbVYDVFRl9GmFa1myLnUhU9eo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:35:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6099 (0x17d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91589E7, serialNumber=45805B5580D515197D1A615AD66C8B9D4854F5EA Validity Not Before: Apr 24 16:35:22 2025 GMT Not After : May 1 16:35:22 2025 GMT Subject: CN=680a684a-81bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:39:b7:4d:28:1c:50:f2:b1:76:2b:58:66:3d: 77:9b:61:6a:c1:7a:02:2e:d5:d0:05:81:3b:72:2e: 8b:ea:92:82:70:95:be:f0:53:e1:f5:d7:3e:35:d7: 88:16:18:2a:c1:6d:64:14:77:ab:85:de:81:7e:70: 7a:ef:cf:5a:cc:e2:10:66:73:52:11:ae:95:e5:26: fe:33:89:e8:24:9f:c7:cd:7a:96:15:9e:88:d9:4d: c7:97:8e:c3:a0:8c:5d:61:b8:d2:39:d8:74:92:fd: d1:17:ea:23:cb:5e:34:2f:6a:18:2c:c9:c8:8a:96: 67:1f:aa:f9:84:2e:a2:51:08:d5:cb:f8:02:c1:ba: de:57:b7:a8:93:e8:01:2f:90:9d:3e:d1:6a:cd:c3: e2:43:95:4d:38:b9:95:ca:24:13:6d:63:9c:ea:01: f4:d8:08:2b:82:4a:f7:67:f4:2c:fe:37:48:59:8b: 35:ed:ff:9c:f0:98:f9:58:d3:fa:7b:0e:20:ba:56: 56:f9:5e:d1:91:4c:cb:de:4b:2a:2a:8a:c2:bd:98: 46:a2:77:26:b3:06:b7:26:d5:24:9e:e2:22:be:d8: c2:0a:00:b5:d6:78:a8:f3:4d:53:41:9f:de:7a:5f: 27:6e:43:06:a8:a8:6f:49:e9:f4:57:19:7a:85:b2: a6:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:DC:56:D5:83:7D:90:B0:E0:F8:2B:17:33:3A:03:95:F3:27:02:E8 X509v3 Authority Key Identifier: keyid:45:80:5B:55:80:D5:15:19:7D:1A:61:5A:D6:6C:8B:9D:48:54:F5:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYBbVYDVFRl9GmFa1myLnUhU9eo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:41:66:8c:f0:81:e7:73:96:1f:53:dd:2e:e4:36:6a:b1:a1: 35:7c:2a:58:3f:6b:1a:d5:af:d6:cb:06:13:91:77:e6:a4:6c: d9:58:33:6a:52:d0:62:66:45:da:01:b1:9b:5e:5a:47:a6:52: ea:75:4c:37:2a:29:7c:cc:da:f2:73:16:41:f0:7c:9a:10:94: 91:69:15:d7:0c:75:90:c9:59:14:c9:d0:65:53:0d:d9:7d:37: f9:0a:25:4f:b1:b4:f0:a6:e0:c2:4d:f9:48:43:6b:19:a2:8b: 13:7e:c4:7b:57:50:91:82:c1:53:69:80:b7:46:30:81:9c:ca: 2b:ce:d0:fd:f8:0b:fe:99:30:ab:5c:d5:1f:a5:93:e2:e2:42: ff:43:df:5c:5b:40:9c:f5:47:b0:ca:c7:ac:5a:ed:39:13:81: 4e:e3:27:4b:a5:0c:be:67:a3:5a:4b:ee:3a:c4:15:c3:38:62: 49:86:91:7e:03:05:3c:0b:a8:96:ea:82:26:d5:c8:50:31:5b: ec:da:0c:12:e4:b5:25:00:93:77:8c:be:a5:3e:b1:16:b3:f7: c1:ef:94:e6:3d:a0:1a:16:8a:e5:2c:01:a2:b9:3d:73:3a:f6: d7:06:78:b3:24:26:f6:7e:f4:ae:fe:80:8e:56:b4:94:25:82: 7b:e2:ee:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF9MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg5RTcxMTAvBgNVBAUTKDQ1ODA1QjU1ODBENTE1MTk3RDFBNjE1QUQ2NkM4QjlE NDg1NEY1RUEwHhcNMjUwNDI0MTYzNTIyWhcNMjUwNTAxMTYzNTIyWjAYMRYwFAYD VQQDEw02ODBhNjg0YS04MWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvzm3TSgcUPKxditYZj13m2FqwXoCLtXQBYE7ci6L6pKCcJW+8FPh9dc+NdeI FhgqwW1kFHerhd6BfnB6789azOIQZnNSEa6V5Sb+M4noJJ/HzXqWFZ6I2U3Hl47D oIxdYbjSOdh0kv3RF+ojy140L2oYLMnIipZnH6r5hC6iUQjVy/gCwbreV7eok+gB L5CdPtFqzcPiQ5VNOLmVyiQTbWOc6gH02Agrgkr3Z/Qs/jdIWYs17f+c8Jj5WNP6 ew4gulZW+V7RkUzL3ksqKorCvZhGoncmswa3JtUknuIivtjCCgC11nio801TQZ/e el8nbkMGqKhvSen0Vxl6hbKmIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI/cVtWD fZCw4PgrFzM6A5XzJwLoMB8GA1UdIwQYMBaAFEWAW1WA1RUZfRphWtZsi51IVPXq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODlFNy9GOEZGMTUyMkJE RkIxMUU3Qjg3M0ZFMjdDNEY5QUUwMi9SWUJiVllEVkZSbDlHbUZhMW15TG5VaFU5 ZW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JZQmJWWURWRlJsOUdtRmExbXlMblVoVTllby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODlFNy9GOEZGMTUyMkJERkIxMUU3Qjg3M0ZFMjdDNEY5QUUwMi9SWUJiVllEVkZS bDlHbUZhMW15TG5VaFU5ZW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9QWaM8IHnc5YfU90u5DZqsaE1fCpYP2sa1a/WywYTkXfmpGzZWDNq UtBiZkXaAbGbXlpHplLqdUw3Kil8zNrycxZB8HyaEJSRaRXXDHWQyVkUydBlUw3Z fTf5CiVPsbTwpuDCTflIQ2sZoosTfsR7V1CRgsFTaYC3RjCBnMorztD9+Av+mTCr XNUfpZPi4kL/Q99cW0Cc9UewysesWu05E4FO4ydLpQy+Z6NaS+46xBXDOGJJhpF+ AwU8C6iW6oIm1chQMVvs2gwS5LUlAJN3jL6lPrEWs/fB75TmPaAaForlLAGiuT1z OvbXBnizJCb2fvSu/oCOVrSUJYJ74u5y -----END CERTIFICATE-----Generated at Sat Apr 26 13:57:15 2025 by rpki-client