$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft File: YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft (raw, json) Hash identifier: cOBq3pveCODTJtK1H9mVi1Rruy342CmslkdLZo2i3VQ= Subject key identifier: 22:0F:20:1C:FB:A4:2E:41:42:3B:0A:DC:42:24:34:9E:99:28:33:64 Authority key identifier: 61:7F:05:4E:3C:E4:51:E0:C3:E7:F4:46:DD:09:F7:86:46:52:B6:56 Certificate issuer: /CN=A91A1CAA/serialNumber=617F054E3CE451E0C3E7F446DD09F7864652B656 Certificate serial: E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YX8FTjzkUeDD5_RG3Qn3hkZStlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft Manifest number: E2 Signing time: Tue 29 Apr 2025 05:29:43 +0000 Manifest this update: Tue 29 Apr 2025 05:29:42 +0000 Manifest next update: Tue 06 May 2025 05:29:42 +0000 Files and hashes: 1: YX8FTjzkUeDD5_RG3Qn3hkZStlY.crl (hash: eAU+NsjivWdhQn4n2eOk7Ovq0jpB/MNSnjb/HAKRHnQ=) 2: E75FB4F0CE4A11EE95C15E20C4F9AE02.roa (hash: utq11zi2cO+ldR8mXOv++lb25ZgD5tUSUW03iRiwBL0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.crl rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YX8FTjzkUeDD5_RG3Qn3hkZStlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 06 May 2025 05:29:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 229 (0xe5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1CAA, serialNumber=617F054E3CE451E0C3E7F446DD09F7864652B656 Validity Not Before: Apr 29 05:29:42 2025 GMT Not After : May 6 05:29:42 2025 GMT Subject: CN=681063c6-7d46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:8c:93:c2:1f:9b:a2:9b:ec:6b:d5:74:9a:86: e1:db:af:70:04:0a:1f:fd:64:d7:a2:0a:fc:63:c5: 5d:41:37:b5:4e:dd:6d:99:28:e3:25:5a:3a:c9:fe: 83:83:da:3b:a3:3c:20:af:51:f8:84:33:c4:f5:14: ba:61:09:02:5e:e7:39:14:53:1b:3b:cb:96:59:9e: 48:5b:85:cd:13:4c:e0:38:0f:91:18:b0:2c:5f:0f: bc:3e:6a:d0:96:6c:3d:d2:d1:71:aa:cd:35:71:b0: 1d:8b:05:e1:bd:a4:bf:2d:d3:81:40:f5:73:28:e8: 3a:13:6c:64:86:de:39:65:7a:a6:6e:61:3a:03:96: 75:f4:01:9f:da:cb:fe:d5:12:65:36:84:1f:56:dd: e8:0a:f3:a6:bf:de:b9:71:3e:d9:36:da:5d:49:20: f2:9c:2f:12:2f:17:4c:4a:f4:50:d3:15:d4:e9:c8: 89:b9:0a:12:05:75:1a:4b:37:14:40:ea:db:66:e4: ba:05:aa:fd:40:d1:56:8d:f2:71:87:d2:32:28:88: 1a:f4:2d:fa:13:22:3d:09:48:38:1a:8c:98:73:be: 47:4c:e9:3a:a6:d4:96:cf:93:e5:74:68:b2:f2:73: 2c:05:91:28:ff:50:a2:ae:9a:1a:0a:b9:bd:ad:67: 1c:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:0F:20:1C:FB:A4:2E:41:42:3B:0A:DC:42:24:34:9E:99:28:33:64 X509v3 Authority Key Identifier: keyid:61:7F:05:4E:3C:E4:51:E0:C3:E7:F4:46:DD:09:F7:86:46:52:B6:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YX8FTjzkUeDD5_RG3Qn3hkZStlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:5f:ba:b6:e1:a8:80:1c:af:05:0c:0a:b9:12:66:14:93:46: 0a:f7:a1:74:36:a0:dd:aa:b0:2c:36:1c:9a:a3:9c:5a:82:e5: 44:b8:08:35:a5:d4:e9:cd:6e:4b:82:6c:66:2a:51:74:1d:68: 96:d2:0e:79:ff:7d:a9:80:b0:69:3b:5b:05:da:6d:56:7f:ff: ee:02:6a:7a:aa:73:aa:b5:2d:a2:42:e4:41:36:cd:31:be:cd: 2d:a7:82:a3:4b:86:94:63:b8:d5:e1:5f:c8:24:85:98:7e:b2: 57:5f:7a:ab:4e:e5:80:9c:13:9f:55:33:dc:ae:fd:03:a7:54: ed:9d:4d:bc:f4:db:d0:b0:0b:c6:a6:a9:e5:5b:44:12:f2:bf: 77:89:f0:18:4f:bb:2c:22:46:29:63:e9:18:46:54:8f:ba:c6: 06:97:9e:41:ed:b4:be:ba:52:47:4a:93:59:e9:73:c2:9b:5e: f3:49:69:38:3a:32:11:8a:34:2a:af:43:9e:6d:42:49:29:bc: 67:ef:10:4d:2d:39:32:cc:ba:ac:3b:c3:e5:f3:00:8a:a7:cd: 9e:d2:8a:a8:ed:c5:71:ba:e1:ca:8d:a5:88:eb:bf:14:97:5f: 08:05:20:f6:38:e3:ae:29:6f:81:b7:11:c6:4b:0c:85:4a:0d: 67:8b:89:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFDQUExMTAvBgNVBAUTKDYxN0YwNTRFM0NFNDUxRTBDM0U3RjQ0NkREMDlGNzg2 NDY1MkI2NTYwHhcNMjUwNDI5MDUyOTQyWhcNMjUwNTA2MDUyOTQyWjAYMRYwFAYD VQQDEw02ODEwNjNjNi03ZDQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApIyTwh+bopvsa9V0mobh269wBAof/WTXogr8Y8VdQTe1Tt1tmSjjJVo6yf6D g9o7ozwgr1H4hDPE9RS6YQkCXuc5FFMbO8uWWZ5IW4XNE0zgOA+RGLAsXw+8PmrQ lmw90tFxqs01cbAdiwXhvaS/LdOBQPVzKOg6E2xkht45ZXqmbmE6A5Z19AGf2sv+ 1RJlNoQfVt3oCvOmv965cT7ZNtpdSSDynC8SLxdMSvRQ0xXU6ciJuQoSBXUaSzcU QOrbZuS6Bar9QNFWjfJxh9IyKIga9C36EyI9CUg4GoyYc75HTOk6ptSWz5PldGiy 8nMsBZEo/1CirpoaCrm9rWcc7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCIPIBz7 pC5BQjsK3EIkNJ6ZKDNkMB8GA1UdIwQYMBaAFGF/BU485FHgw+f0Rt0J94ZGUrZW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUNBQS84RTI3NUExRUNF NEExMUVFOERFOUU1MUZDNEY5QUUwMi9ZWDhGVGp6a1VlREQ1X1JHM1FuM2hrWlN0 bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lYOEZUanprVWVERDVfUkczUW4zaGtaU3RsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUNBQS84RTI3NUExRUNFNEExMUVFOERFOUU1MUZDNEY5QUUwMi9ZWDhGVGp6a1Vl REQ1X1JHM1FuM2hrWlN0bFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0X7q24aiAHK8FDAq5EmYUk0YK96F0NqDdqrAsNhyao5xaguVEuAg1 pdTpzW5LgmxmKlF0HWiW0g55/32pgLBpO1sF2m1Wf//uAmp6qnOqtS2iQuRBNs0x vs0tp4KjS4aUY7jV4V/IJIWYfrJXX3qrTuWAnBOfVTPcrv0Dp1TtnU289NvQsAvG pqnlW0QS8r93ifAYT7ssIkYpY+kYRlSPusYGl55B7bS+ulJHSpNZ6XPCm17zSWk4 OjIRijQqr0OebUJJKbxn7xBNLTkyzLqsO8Pl8wCKp82e0oqo7cVxuuHKjaWI678U l18IBSD2OOOuKW+BtxHGSwyFSg1ni4mL -----END CERTIFICATE-----Generated at Wed Apr 30 09:47:36 2025 by rpki-client