$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft File: YbAiM19NheFtR3oAatyOPy_alGA.mft (raw, json) Hash identifier: IlKneZB40sfW4S2M57dOqvtpwjoFB4TeSOoUETuH3aA= Subject key identifier: B5:17:25:02:89:45:CE:E6:36:7E:E5:3F:A3:5A:BF:FB:C9:0C:81:60 Authority key identifier: 61:B0:22:33:5F:4D:85:E1:6D:47:7A:00:6A:DC:8E:3F:2F:DA:94:60 Certificate issuer: /CN=A91A7C77/serialNumber=61B022335F4D85E16D477A006ADC8E3F2FDA9460 Certificate serial: 0481 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft Manifest number: 047F Signing time: Thu 24 Apr 2025 23:49:29 +0000 Manifest this update: Thu 24 Apr 2025 23:49:28 +0000 Manifest next update: Thu 01 May 2025 23:49:28 +0000 Files and hashes: 1: YbAiM19NheFtR3oAatyOPy_alGA.crl (hash: aGbaotD8v+Uc8Uia44VBwkom7hWLvVaCVTbPf47dD/k=) 2: FF4EB6B2395811ECA422C462C4F9AE02.roa (hash: kkkJWZ9fDn1htzEtE1zpX7lAAG0cOZUfH1foPNvS114=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.crl rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:49:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1153 (0x481) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7C77, serialNumber=61B022335F4D85E16D477A006ADC8E3F2FDA9460 Validity Not Before: Apr 24 23:49:28 2025 GMT Not After : May 1 23:49:28 2025 GMT Subject: CN=680ace09-00e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:39:ea:f6:6a:c5:bc:16:94:72:a6:a7:e3:f1: 07:89:38:1a:1f:6f:1d:be:6b:2b:28:68:3a:c5:56: 4a:d9:8f:ae:53:6a:c8:8f:53:a8:9b:11:7d:02:92: 8c:74:a2:15:eb:94:5d:df:30:d7:e5:0b:44:fb:7c: d6:3d:48:97:fc:78:d9:2a:1d:0e:1b:5b:2e:53:51: ad:f6:5d:8f:5c:8b:12:72:1a:44:3a:f8:7a:19:5b: 53:59:92:47:08:ae:8e:ef:12:f8:5e:e0:11:9f:05: 64:25:89:fb:33:b7:47:85:33:1e:90:34:cd:fb:60: d4:69:8a:c2:a5:35:44:dd:f4:ec:3a:a8:95:55:5f: 02:3a:40:dd:d8:3f:e8:af:79:b2:15:2a:d9:09:37: 1e:9a:4f:25:bc:ce:d5:f9:ff:13:6d:f5:bf:34:06: a8:cc:77:60:40:26:cd:c8:a8:dd:c0:3c:bb:4a:bc: bd:b3:52:77:b9:01:45:b7:7b:69:86:a3:09:ef:a9: 5c:af:4c:a8:c8:18:ee:63:96:38:13:61:2d:00:96: ac:c5:f0:b0:67:4a:a0:27:27:0c:0a:bc:37:c0:77: e4:bb:b3:a9:84:fe:8d:e6:3c:0f:b0:e6:03:aa:f1: 11:a6:54:2c:2b:6f:21:bc:ca:82:f3:b3:38:cb:0d: 7d:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:17:25:02:89:45:CE:E6:36:7E:E5:3F:A3:5A:BF:FB:C9:0C:81:60 X509v3 Authority Key Identifier: keyid:61:B0:22:33:5F:4D:85:E1:6D:47:7A:00:6A:DC:8E:3F:2F:DA:94:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:80:ab:e1:4e:6b:13:57:4c:e9:bc:47:68:e0:b8:57:cd:6a: 3b:26:d9:f9:40:76:70:84:45:28:2a:10:e4:55:d1:2e:35:40: e5:6e:76:df:05:49:79:2c:6e:97:3f:5d:26:aa:2d:3b:ee:2d: 8e:3b:d6:4f:18:24:72:b0:75:e8:f7:41:9c:95:53:f2:8b:06: c8:d3:25:39:a0:6b:a6:6c:ff:7e:e1:ac:48:85:1a:3d:a1:25: d7:b3:d6:9b:ec:63:73:ee:c4:2d:ae:7a:72:28:a1:52:ca:f6: 32:20:85:af:ac:83:ca:2c:9b:e4:a7:eb:5f:96:48:b1:24:87: fd:4b:7e:5a:b6:25:c7:c3:a4:60:21:ca:4f:bf:eb:7d:6f:85: 8b:68:83:a7:e5:33:d4:24:c8:39:36:79:00:fa:d4:66:ba:cf: 91:35:f6:7c:b4:68:ee:3c:f5:ec:32:6a:fa:fe:cb:c5:da:99: 77:57:8c:45:30:54:50:15:18:01:f0:17:3e:a5:e4:a9:45:34: 09:5f:92:03:c3:02:bc:52:b8:96:4a:d0:81:3a:44:dd:c9:8d: 2b:9e:38:a6:f3:43:fe:1a:ef:80:87:02:e0:82:f3:4f:29:2c: 27:18:fb:44:52:18:72:d2:fd:df:bf:d4:af:24:bc:51:86:97: 4d:6a:34:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDNzcxMTAvBgNVBAUTKDYxQjAyMjMzNUY0RDg1RTE2RDQ3N0EwMDZBREM4RTNG MkZEQTk0NjAwHhcNMjUwNDI0MjM0OTI4WhcNMjUwNTAxMjM0OTI4WjAYMRYwFAYD VQQDEw02ODBhY2UwOS0wMGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqjnq9mrFvBaUcqan4/EHiTgaH28dvmsrKGg6xVZK2Y+uU2rIj1OomxF9ApKM dKIV65Rd3zDX5QtE+3zWPUiX/HjZKh0OG1suU1Gt9l2PXIsSchpEOvh6GVtTWZJH CK6O7xL4XuARnwVkJYn7M7dHhTMekDTN+2DUaYrCpTVE3fTsOqiVVV8COkDd2D/o r3myFSrZCTcemk8lvM7V+f8TbfW/NAaozHdgQCbNyKjdwDy7Sry9s1J3uQFFt3tp hqMJ76lcr0yoyBjuY5Y4E2EtAJasxfCwZ0qgJycMCrw3wHfku7OphP6N5jwPsOYD qvERplQsK28hvMqC87M4yw19XQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLUXJQKJ Rc7mNn7lP6Nav/vJDIFgMB8GA1UdIwQYMBaAFGGwIjNfTYXhbUd6AGrcjj8v2pRg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0M3Ny9EQzIwMUFGRTM5 NTQxMUVDODBEOUQzNTlDNEY5QUUwMi9ZYkFpTTE5TmhlRnRSM29BYXR5T1B5X2Fs R0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liQWlNMTlOaGVGdFIzb0FhdHlPUHlfYWxHQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0M3Ny9EQzIwMUFGRTM5NTQxMUVDODBEOUQzNTlDNEY5QUUwMi9ZYkFpTTE5Tmhl RnRSM29BYXR5T1B5X2FsR0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCgKvhTmsTV0zpvEdo4LhXzWo7Jtn5QHZwhEUoKhDkVdEuNUDlbnbf BUl5LG6XP10mqi077i2OO9ZPGCRysHXo90GclVPyiwbI0yU5oGumbP9+4axIhRo9 oSXXs9ab7GNz7sQtrnpyKKFSyvYyIIWvrIPKLJvkp+tflkixJIf9S35atiXHw6Rg IcpPv+t9b4WLaIOn5TPUJMg5NnkA+tRmus+RNfZ8tGjuPPXsMmr6/svF2pl3V4xF MFRQFRgB8Bc+peSpRTQJX5IDwwK8UriWStCBOkTdyY0rnjim80P+Gu+AhwLggvNP KSwnGPtEUhhy0v3fv9SvJLxRhpdNajQ3 -----END CERTIFICATE-----Generated at Sat Apr 26 04:20:43 2025 by rpki-client