$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft File: Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft (raw, json) Hash identifier: 4z1YlHFXZX8wPM2F42lacoOcMdkZm0apxeSIrxyHFLI= Subject key identifier: DA:72:12:96:C0:CD:F8:F9:88:A4:D4:25:79:1D:23:0F:7C:B6:F6:7D Authority key identifier: 63:49:73:59:04:E1:BC:0D:65:BD:59:4A:07:76:2B:B5:29:9C:03:8A Certificate issuer: /CN=A91AFB4C/serialNumber=6349735904E1BC0D65BD594A07762BB5299C038A Certificate serial: 01A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft Manifest number: 019E Signing time: Fri 25 Apr 2025 02:33:51 +0000 Manifest this update: Fri 25 Apr 2025 02:33:50 +0000 Manifest next update: Fri 02 May 2025 02:33:50 +0000 Files and hashes: 1: Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl (hash: N7io0U/Jvz1niQmA2ZEa78lap3iNiZksWhMFl/yYmDI=) 2: AD286018B29C11EDB216812EC4F9AE02.roa (hash: ck7frHwbdvA8vLLhGdgsJbIt8cpEwUyRbFKBDEFTB8E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:33:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 419 (0x1a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFB4C, serialNumber=6349735904E1BC0D65BD594A07762BB5299C038A Validity Not Before: Apr 25 02:33:50 2025 GMT Not After : May 2 02:33:50 2025 GMT Subject: CN=680af48f-6f9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:0d:a6:6e:79:c8:b9:74:ca:d9:08:bd:64:a1: 83:4a:b1:41:b4:9a:d4:78:47:23:c0:00:2b:f8:7c: 19:fc:c0:47:d9:03:fd:12:1b:9f:64:4c:a1:06:a1: e7:fe:4d:2e:5a:e2:0e:66:43:d5:b1:c8:a3:20:ba: 1c:e2:be:26:c7:1f:9c:b4:e5:a2:9b:fc:97:d0:25: 75:7f:e7:02:57:1e:99:cd:d4:53:42:e6:81:5d:9b: c4:63:bc:82:3c:ed:ec:de:67:ac:22:47:df:af:7d: f5:1a:81:e4:e0:fa:ec:c7:15:71:1e:d7:5a:f0:54: f5:e6:3a:05:d5:7c:ef:a5:13:2e:44:37:d4:ce:bc: b1:69:11:52:17:20:02:bb:ee:f8:c8:90:b0:86:c7: e3:9a:8e:d7:79:59:89:5f:60:2d:44:ac:ae:fc:7c: c3:e8:03:83:e9:60:50:4f:e0:cc:36:73:1c:92:a9: c3:db:1c:5a:f4:7b:34:6c:29:29:77:39:b3:80:0e: c7:eb:9b:c5:9a:56:5a:a2:45:df:cd:d8:58:dd:19: f0:fc:88:0d:82:a2:97:b0:00:8f:12:91:7f:06:ba: 1f:92:b6:61:83:f1:99:22:15:59:5a:e5:03:cd:ed: 37:7e:b4:4c:83:c0:9e:b1:10:66:ec:7b:e8:ec:35: 18:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:72:12:96:C0:CD:F8:F9:88:A4:D4:25:79:1D:23:0F:7C:B6:F6:7D X509v3 Authority Key Identifier: keyid:63:49:73:59:04:E1:BC:0D:65:BD:59:4A:07:76:2B:B5:29:9C:03:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:d1:23:a0:4b:a7:76:10:b4:ea:94:ff:2a:bb:47:5c:64:6b: 72:b0:cf:1a:d4:21:3f:57:ae:f5:f3:51:64:5a:cd:74:c9:b4: 8a:42:2a:52:05:53:0b:30:d0:73:fb:6f:c4:ff:8a:16:ae:a5: dc:f9:20:d9:4f:8d:b0:f8:3d:8a:76:30:0a:61:44:05:e7:d6: 30:bc:23:b3:82:56:b1:52:c5:1e:01:6e:be:fb:61:57:c1:13: 8c:2a:6c:1a:37:f2:d5:a1:c9:a2:47:5e:6b:13:76:0f:95:ee: 6d:c3:bc:88:1d:57:32:19:a3:48:ef:36:5f:7b:4e:dd:b8:01: 10:72:15:ce:1a:40:07:a2:a9:ad:a7:42:29:e9:d8:75:82:e7: dd:64:1d:99:23:64:39:f2:31:14:94:d6:69:69:44:5b:b7:3c: 75:66:8b:83:32:13:34:51:29:23:f4:12:01:06:c2:85:82:4d: 09:d0:8f:e3:35:17:2d:b8:f6:23:23:84:67:8f:56:d5:78:f6: 14:8b:79:ec:88:1c:5e:47:d5:93:eb:07:ef:b7:53:36:07:0e: f6:0a:fb:e3:f2:ca:fa:f4:ba:ee:43:8d:41:d1:8c:77:58:27: 03:e3:2c:a4:79:46:c5:0f:ba:2b:8a:a7:cf:3d:b0:29:82:8d: 3e:c5:1a:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZCNEMxMTAvBgNVBAUTKDYzNDk3MzU5MDRFMUJDMEQ2NUJENTk0QTA3NzYyQkI1 Mjk5QzAzOEEwHhcNMjUwNDI1MDIzMzUwWhcNMjUwNTAyMDIzMzUwWjAYMRYwFAYD VQQDEw02ODBhZjQ4Zi02ZjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4A2mbnnIuXTK2Qi9ZKGDSrFBtJrUeEcjwAAr+HwZ/MBH2QP9EhufZEyhBqHn /k0uWuIOZkPVscijILoc4r4mxx+ctOWim/yX0CV1f+cCVx6ZzdRTQuaBXZvEY7yC PO3s3mesIkffr331GoHk4PrsxxVxHtda8FT15joF1XzvpRMuRDfUzryxaRFSFyAC u+74yJCwhsfjmo7XeVmJX2AtRKyu/HzD6AOD6WBQT+DMNnMckqnD2xxa9Hs0bCkp dzmzgA7H65vFmlZaokXfzdhY3Rnw/IgNgqKXsACPEpF/BrofkrZhg/GZIhVZWuUD ze03frRMg8CesRBm7Hvo7DUYZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNpyEpbA zfj5iKTUJXkdIw98tvZ9MB8GA1UdIwQYMBaAFGNJc1kE4bwNZb1ZSgd2K7UpnAOK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkI0Qy9DNDcwQjIyQUIy OTcxMUVEOTRFRjA5MjZDNEY5QUUwMi9ZMGx6V1FUaHZBMWx2VmxLQjNZcnRTbWNB NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kwbHpXUVRodkExbHZWbEtCM1lydFNtY0E0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RkI0Qy9DNDcwQjIyQUIyOTcxMUVEOTRFRjA5MjZDNEY5QUUwMi9ZMGx6V1FUaHZB MWx2VmxLQjNZcnRTbWNBNG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+0SOgS6d2ELTqlP8qu0dcZGtysM8a1CE/V67181FkWs10ybSKQipS BVMLMNBz+2/E/4oWrqXc+SDZT42w+D2KdjAKYUQF59YwvCOzglaxUsUeAW6++2FX wROMKmwaN/LVocmiR15rE3YPle5tw7yIHVcyGaNI7zZfe07duAEQchXOGkAHoqmt p0Ip6dh1gufdZB2ZI2Q58jEUlNZpaURbtzx1ZouDMhM0USkj9BIBBsKFgk0J0I/j NRctuPYjI4Rnj1bVePYUi3nsiBxeR9WT6wfvt1M2Bw72Cvvj8sr69LruQ41B0Yx3 WCcD4yykeUbFD7oriqfPPbApgo0+xRoZ -----END CERTIFICATE-----Generated at Sat Apr 26 05:15:56 2025 by rpki-client