$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft File: yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft (raw, json) Hash identifier: xAqKkuMXZqfrhH107FfLauNeAiiXWrJ6gk0GgPHa/aI= Subject key identifier: 3E:AB:0B:07:CD:C1:F1:7E:33:36:0B:7D:0B:89:14:64:9C:59:E0:24 Authority key identifier: C8:E0:59:1E:7E:51:7D:41:9C:FC:86:17:1C:DC:A9:FD:E6:26:E8:F5 Certificate issuer: /CN=A91AB3E3/serialNumber=C8E0591E7E517D419CFC86171CDCA9FDE626E8F5 Certificate serial: 01A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft Manifest number: 01A6 Signing time: Fri 25 Apr 2025 02:26:29 +0000 Manifest this update: Fri 25 Apr 2025 02:26:29 +0000 Manifest next update: Fri 02 May 2025 02:26:29 +0000 Files and hashes: 1: yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl (hash: AEUSh/tDrxPb+zJQcOZFJQ40VVui6T83Mv/QsXmFa5M=) 2: 1E7B7BB4996C11EDA107E666C4F9AE02.roa (hash: /ERrUArKmo0KgEQ70S3Uf+U0E1QNCp3+3kkOG/O7FLo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:26:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 425 (0x1a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB3E3, serialNumber=C8E0591E7E517D419CFC86171CDCA9FDE626E8F5 Validity Not Before: Apr 25 02:26:29 2025 GMT Not After : May 2 02:26:29 2025 GMT Subject: CN=680af2d5-bc83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:9a:f3:98:99:4e:9b:60:45:e9:35:c1:dd:87: 69:28:a6:e4:12:bd:5b:79:5e:7a:e0:d5:95:05:e3: ae:15:4c:39:f7:06:7b:52:fc:69:c0:ba:4c:fe:0d: a5:a1:db:eb:d1:26:a0:ba:5f:3e:2f:e0:40:5b:16: 48:f7:24:9a:dc:cf:df:4f:10:dd:8c:9d:7c:01:29: a6:06:f7:68:af:2c:9a:e0:09:df:3a:63:35:6a:d1: 9a:33:84:75:a7:1a:78:c2:b6:27:03:67:71:bd:aa: 04:c1:5a:21:7f:7a:67:2d:d2:ab:c2:83:ee:08:49: 13:d8:eb:7e:9a:ca:7b:f4:13:9d:d6:7f:fa:ee:d4: 90:99:d5:2b:2a:ea:99:49:d6:90:20:5b:a0:92:70: 3a:02:3f:42:5d:29:48:a0:c7:fb:af:a8:1b:53:2e: 3d:37:27:d2:7d:d4:7f:b5:02:cd:dc:80:89:80:72: fa:4b:60:cb:4d:9f:21:2b:55:eb:12:4b:ba:b0:7a: 72:bb:c3:0d:fc:a1:52:dd:28:ff:19:22:46:30:65: 54:4a:ea:9a:e6:d4:3d:1c:48:ed:25:e3:92:ed:ea: a9:c8:d0:1c:ec:9a:18:f6:f1:ff:44:ed:84:39:bf: 6d:ce:01:c5:b1:04:d2:4d:17:44:8f:b7:c9:45:1d: 91:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:AB:0B:07:CD:C1:F1:7E:33:36:0B:7D:0B:89:14:64:9C:59:E0:24 X509v3 Authority Key Identifier: keyid:C8:E0:59:1E:7E:51:7D:41:9C:FC:86:17:1C:DC:A9:FD:E6:26:E8:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:4f:f7:af:b4:14:1b:41:47:8e:42:a4:a3:b3:a2:97:a4:8b: ac:a1:c7:d8:03:85:47:32:76:c3:78:5c:a6:31:de:15:cf:e9: 9c:9d:b5:49:7a:26:94:79:b0:9d:05:04:12:d8:d3:7e:a7:92: 5f:c0:37:fa:a8:55:a0:dd:ad:39:03:b3:d5:d5:f4:24:18:b9: 77:c1:a1:69:d8:ba:9e:33:17:25:ce:7c:f5:23:65:5b:ea:c8: 08:30:9a:24:0c:94:3b:3d:9b:06:ee:b3:d8:78:7f:1f:88:cb: b4:63:a4:e2:13:3c:d2:7a:88:7e:2b:da:b6:b0:93:87:03:c5: ec:29:66:23:aa:91:ce:a4:2b:17:f8:5f:64:f2:30:9b:97:9b: 9c:1c:e8:23:e6:0a:14:2d:8d:ff:e2:05:6a:25:8e:60:65:da: 92:ea:68:fd:1b:27:e9:68:b6:2f:09:2e:6b:0d:37:2b:db:10: 53:7a:f2:d5:f3:ea:c0:07:d2:9b:ef:88:ab:f9:fb:3b:90:96: eb:a9:4d:4b:cf:09:d1:a9:95:4d:83:50:14:67:cb:ff:71:c7: c4:fd:ab:d9:4d:db:7b:0d:ff:4f:d4:5e:7f:8f:d9:da:a6:f9: 46:59:0f:5d:98:0d:33:d9:06:d8:61:0f:f7:bd:be:61:2a:e6: 8d:72:12:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAakwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIzRTMxMTAvBgNVBAUTKEM4RTA1OTFFN0U1MTdENDE5Q0ZDODYxNzFDRENBOUZE RTYyNkU4RjUwHhcNMjUwNDI1MDIyNjI5WhcNMjUwNTAyMDIyNjI5WjAYMRYwFAYD VQQDEw02ODBhZjJkNS1iYzgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsprzmJlOm2BF6TXB3YdpKKbkEr1beV564NWVBeOuFUw59wZ7UvxpwLpM/g2l odvr0Sagul8+L+BAWxZI9ySa3M/fTxDdjJ18ASmmBvdoryya4AnfOmM1atGaM4R1 pxp4wrYnA2dxvaoEwVohf3pnLdKrwoPuCEkT2Ot+msp79BOd1n/67tSQmdUrKuqZ SdaQIFugknA6Aj9CXSlIoMf7r6gbUy49NyfSfdR/tQLN3ICJgHL6S2DLTZ8hK1Xr Eku6sHpyu8MN/KFS3Sj/GSJGMGVUSuqa5tQ9HEjtJeOS7eqpyNAc7JoY9vH/RO2E Ob9tzgHFsQTSTRdEj7fJRR2RRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD6rCwfN wfF+MzYLfQuJFGScWeAkMB8GA1UdIwQYMBaAFMjgWR5+UX1BnPyGFxzcqf3mJuj1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjNFMy9BOTQ2MjRCNDk5 NjgxMUVEQjE2MkY4NjFDNEY5QUUwMi95T0JaSG41UmZVR2NfSVlYSE55cF9lWW02 UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lPQlpIbjVSZlVHY19JWVhITnlwX2VZbTZQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjNFMy9BOTQ2MjRCNDk5NjgxMUVEQjE2MkY4NjFDNEY5QUUwMi95T0JaSG41UmZV R2NfSVlYSE55cF9lWW02UFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAT/evtBQbQUeOQqSjs6KXpIusocfYA4VHMnbDeFymMd4Vz+mcnbVJ eiaUebCdBQQS2NN+p5JfwDf6qFWg3a05A7PV1fQkGLl3waFp2LqeMxclznz1I2Vb 6sgIMJokDJQ7PZsG7rPYeH8fiMu0Y6TiEzzSeoh+K9q2sJOHA8XsKWYjqpHOpCsX +F9k8jCbl5ucHOgj5goULY3/4gVqJY5gZdqS6mj9GyfpaLYvCS5rDTcr2xBTevLV 8+rAB9Kb74ir+fs7kJbrqU1LzwnRqZVNg1AUZ8v/ccfE/avZTdt7Df9P1F5/j9na pvlGWQ9dmA0z2QbYYQ/3vb5hKuaNchLw -----END CERTIFICATE-----Generated at Sat Apr 26 04:19:54 2025 by rpki-client