$ rpki-client -vvf rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/YHYovkVe83m-Zq-dbKm6js3tPwQ.mft File: YHYovkVe83m-Zq-dbKm6js3tPwQ.mft (raw, json) Hash identifier: SEH4CvOASD/Z2QtjVNrnweR7QqHA3BnYEhmLH7kIUPc= Subject key identifier: 86:B2:4B:39:4B:39:DF:A0:F8:18:8F:AD:7E:FC:06:20:9A:3B:BF:93 Authority key identifier: 60:76:28:BE:45:5E:F3:79:BE:66:AF:9D:6C:A9:BA:8E:CD:ED:3F:04 Certificate issuer: /CN=A91817E6/serialNumber=607628BE455EF379BE66AF9D6CA9BA8ECDED3F04 Certificate serial: 0109 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YHYovkVe83m-Zq-dbKm6js3tPwQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/YHYovkVe83m-Zq-dbKm6js3tPwQ.mft Manifest number: 0A09 Signing time: Thu 24 Apr 2025 20:23:12 +0000 Manifest this update: Thu 24 Apr 2025 20:23:11 +0000 Manifest next update: Thu 01 May 2025 20:23:11 +0000 Files and hashes: 1: YHYovkVe83m-Zq-dbKm6js3tPwQ.crl (hash: jAWpmdru52FldWoaxDb/qzXP37Gvecu4lcrxA/ymwC4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/YHYovkVe83m-Zq-dbKm6js3tPwQ.crl rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/YHYovkVe83m-Zq-dbKm6js3tPwQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YHYovkVe83m-Zq-dbKm6js3tPwQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:23:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 265 (0x109) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91817E6, serialNumber=607628BE455EF379BE66AF9D6CA9BA8ECDED3F04 Validity Not Before: Apr 24 20:23:11 2025 GMT Not After : May 1 20:23:11 2025 GMT Subject: CN=680a9db0-a639 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:6d:07:ee:a6:53:db:1e:cc:ff:35:7c:d7:54: e3:d2:33:de:8b:d8:4c:76:b7:33:f1:4b:99:97:82: cb:d9:5a:27:ac:1a:66:83:cc:95:16:9a:7e:84:5e: e4:5e:27:0f:55:8d:e6:54:df:c0:ca:81:d9:41:28: e9:0c:41:8b:2d:03:66:74:8b:5b:9e:ea:df:9d:b7: eb:26:c4:fd:ae:f2:4d:c1:f0:d7:40:b2:87:6b:aa: 8a:2f:4e:d9:06:6a:e6:64:40:76:2c:a5:aa:b5:89: ad:00:54:21:88:42:2e:52:67:d5:20:62:2c:1e:48: 28:af:02:39:f3:c1:e8:74:92:62:bd:da:85:09:08: 42:f7:1d:94:6b:aa:bf:92:6d:e1:e2:1a:57:cb:01: ec:07:60:f2:42:a9:58:5b:e5:83:ae:cd:ed:3c:15: 4c:cb:81:fc:97:74:df:37:86:d0:a7:36:10:ba:8b: 3f:e1:1a:7c:59:5a:82:42:39:69:74:1c:49:fa:df: e3:5c:8d:36:3d:6a:a6:30:88:85:97:30:f3:6c:2e: e2:41:03:dc:6c:6d:d2:ea:29:21:b9:19:c2:c8:62: d6:e6:4d:3a:96:48:11:52:00:76:f3:64:24:ee:52: 15:f0:50:ad:b7:fa:bc:ab:0f:9d:d1:12:9b:b2:87: ca:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:B2:4B:39:4B:39:DF:A0:F8:18:8F:AD:7E:FC:06:20:9A:3B:BF:93 X509v3 Authority Key Identifier: keyid:60:76:28:BE:45:5E:F3:79:BE:66:AF:9D:6C:A9:BA:8E:CD:ED:3F:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/YHYovkVe83m-Zq-dbKm6js3tPwQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YHYovkVe83m-Zq-dbKm6js3tPwQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/YHYovkVe83m-Zq-dbKm6js3tPwQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:e7:32:0b:77:da:08:f6:a3:e0:5f:58:78:f3:1e:d4:19:2e: 31:8a:d6:5b:1b:76:de:6c:64:ea:a0:a8:9d:70:9d:0f:06:8a: 91:0e:a9:11:6c:1e:bd:5b:b0:0e:54:01:65:30:e2:8c:b4:38: 7a:5c:e5:ae:44:2e:61:82:ae:27:cb:b3:47:43:29:86:38:5e: 57:90:c2:05:10:6c:3d:c0:68:62:9f:da:01:15:f3:40:9f:fd: 74:3a:2d:bf:e0:24:dd:f3:0a:b2:d4:3e:08:b0:1a:a0:7f:d2: 94:fc:5c:b4:80:bb:4e:38:aa:15:99:5c:f6:c6:0c:fc:23:18: 77:ef:f9:60:76:e5:18:37:02:b1:21:b1:76:64:3f:47:7c:a9: 60:c2:8e:a8:7b:bd:7d:ce:a1:16:de:cb:01:d7:e1:8d:86:06: c5:21:e2:ef:f0:a3:5e:8e:e7:3b:39:8b:c7:5c:50:e1:18:d9: 0e:35:1e:f3:fa:67:b7:1d:35:da:ae:71:b6:d9:77:1d:6a:41: 85:10:f2:a6:20:de:af:6c:c2:d6:59:f6:4b:e8:2f:ac:ef:27: ad:a8:c6:1d:a5:b3:ee:45:92:98:30:78:96:df:df:9d:9a:1b: 4b:4e:f5:e2:4a:74:7b:0c:91:bc:1f:02:8f:12:60:c3:d0:11: 2c:0c:15:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE3RTYxMTAvBgNVBAUTKDYwNzYyOEJFNDU1RUYzNzlCRTY2QUY5RDZDQTlCQThF Q0RFRDNGMDQwHhcNMjUwNDI0MjAyMzExWhcNMjUwNTAxMjAyMzExWjAYMRYwFAYD VQQDEw02ODBhOWRiMC1hNjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7G0H7qZT2x7M/zV811Tj0jPei9hMdrcz8UuZl4LL2VonrBpmg8yVFpp+hF7k XicPVY3mVN/AyoHZQSjpDEGLLQNmdItbnurfnbfrJsT9rvJNwfDXQLKHa6qKL07Z BmrmZEB2LKWqtYmtAFQhiEIuUmfVIGIsHkgorwI588HodJJivdqFCQhC9x2Ua6q/ km3h4hpXywHsB2DyQqlYW+WDrs3tPBVMy4H8l3TfN4bQpzYQuos/4Rp8WVqCQjlp dBxJ+t/jXI02PWqmMIiFlzDzbC7iQQPcbG3S6ikhuRnCyGLW5k06lkgRUgB282Qk 7lIV8FCtt/q8qw+d0RKbsofKsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIaySzlL Od+g+BiPrX78BiCaO7+TMB8GA1UdIwQYMBaAFGB2KL5FXvN5vmavnWypuo7N7T8E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTdFNi81NTc0MEU3MEIz QjMxMUVBQjE5OENFMERDNEY5QUUwMi9ZSFlvdmtWZTgzbS1acS1kYkttNmpzM3RQ d1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lIWW92a1ZlODNtLVpxLWRiS202anMzdFB3US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MTdFNi81NTc0MEU3MEIzQjMxMUVBQjE5OENFMERDNEY5QUUwMi9ZSFlvdmtWZTgz bS1acS1kYkttNmpzM3RQd1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCb5zILd9oI9qPgX1h48x7UGS4xitZbG3bebGTqoKidcJ0PBoqRDqkR bB69W7AOVAFlMOKMtDh6XOWuRC5hgq4ny7NHQymGOF5XkMIFEGw9wGhin9oBFfNA n/10Oi2/4CTd8wqy1D4IsBqgf9KU/Fy0gLtOOKoVmVz2xgz8Ixh37/lgduUYNwKx IbF2ZD9HfKlgwo6oe719zqEW3ssB1+GNhgbFIeLv8KNejuc7OYvHXFDhGNkONR7z +me3HTXarnG22XcdakGFEPKmIN6vbMLWWfZL6C+s7yetqMYdpbPuRZKYMHiW39+d mhtLTvXiSnR7DJG8HwKPEmDD0BEsDBXh -----END CERTIFICATE-----Generated at Sat Apr 26 09:19:47 2025 by rpki-client