$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3E17/920C5ECAE16811ECAAD8F818C4F9AE02/yKkupf322jjqQIWq7lWnJIzTTzo.mft File: yKkupf322jjqQIWq7lWnJIzTTzo.mft (raw, json) Hash identifier: eV/dDFOKpWzOKFK6tRcx6uF2qkREwqkHh9N5EqBTg/E= Subject key identifier: 63:10:4D:16:50:A3:71:62:1B:C1:46:DF:BA:AC:13:3A:EA:01:F5:04 Authority key identifier: C8:A9:2E:A5:FD:F6:DA:38:EA:40:85:AA:EE:55:A7:24:8C:D3:4F:3A Certificate issuer: /CN=A91B3E17/serialNumber=C8A92EA5FDF6DA38EA4085AAEE55A7248CD34F3A Certificate serial: 02DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yKkupf322jjqQIWq7lWnJIzTTzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3E17/920C5ECAE16811ECAAD8F818C4F9AE02/yKkupf322jjqQIWq7lWnJIzTTzo.mft Manifest number: 02DA Signing time: Thu 01 May 2025 00:57:01 +0000 Manifest this update: Thu 01 May 2025 00:57:01 +0000 Manifest next update: Thu 08 May 2025 00:57:01 +0000 Files and hashes: 1: yKkupf322jjqQIWq7lWnJIzTTzo.crl (hash: Ehe4zEb3ONv0YOiuvrFYmHc4igRS6Nlh83zJR9mGVsQ=) 2: 3166C07AE16C11ECB2629D1AC4F9AE02.roa (hash: ipLQrTfxlsH1xbpA5Xtx6FI7FTiCB5Vq0xVbQe7ALKk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3E17/920C5ECAE16811ECAAD8F818C4F9AE02/yKkupf322jjqQIWq7lWnJIzTTzo.crl rsync://rpki.apnic.net/member_repository/A91B3E17/920C5ECAE16811ECAAD8F818C4F9AE02/yKkupf322jjqQIWq7lWnJIzTTzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yKkupf322jjqQIWq7lWnJIzTTzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 08 May 2025 00:57:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 734 (0x2de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3E17, serialNumber=C8A92EA5FDF6DA38EA4085AAEE55A7248CD34F3A Validity Not Before: May 1 00:57:01 2025 GMT Not After : May 8 00:57:01 2025 GMT Subject: CN=6812c6dd-33d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:8f:66:e2:41:89:29:bc:24:47:85:ae:93:51: 7d:70:2f:47:fc:67:8c:53:78:0d:a3:19:ef:94:f9: 7a:56:c6:c4:23:f4:26:7a:ec:77:48:44:a8:09:98: a2:9f:5d:72:e4:c0:b7:9b:84:2d:f2:b5:c5:61:c7: 56:7d:e5:f3:ce:d5:d4:b1:6d:7e:ec:43:60:42:98: 2a:af:36:bc:56:ec:83:5c:e5:12:8a:8f:c9:20:9f: f3:63:a3:e3:43:7b:67:9a:df:fd:a1:a3:03:44:b0: aa:df:b3:3d:a5:3c:41:e3:2d:19:1c:20:97:15:1a: 5a:73:24:af:e4:e7:2d:22:da:a6:12:bd:00:52:fe: 4d:09:d3:d7:5c:91:ee:50:44:b4:34:e4:54:68:37: b3:82:e7:70:49:2f:29:ae:a2:d4:40:25:ad:dd:63: f6:9e:27:99:e4:64:ee:62:7d:80:58:35:27:77:9b: bf:7e:35:02:7a:cf:f0:73:be:e6:01:97:98:2b:53: 20:ff:cd:5d:34:7e:86:e1:5d:0e:ce:13:29:43:f8: 04:22:fd:f4:db:a0:21:c3:26:81:74:f0:3f:45:4d: 32:ad:dd:e1:7e:4e:5d:17:a6:af:5d:50:0c:2b:15: 61:40:b1:09:fd:1c:e1:65:d6:5e:36:35:1e:dd:9a: 48:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:10:4D:16:50:A3:71:62:1B:C1:46:DF:BA:AC:13:3A:EA:01:F5:04 X509v3 Authority Key Identifier: keyid:C8:A9:2E:A5:FD:F6:DA:38:EA:40:85:AA:EE:55:A7:24:8C:D3:4F:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3E17/920C5ECAE16811ECAAD8F818C4F9AE02/yKkupf322jjqQIWq7lWnJIzTTzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yKkupf322jjqQIWq7lWnJIzTTzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3E17/920C5ECAE16811ECAAD8F818C4F9AE02/yKkupf322jjqQIWq7lWnJIzTTzo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:57:eb:f0:97:cb:42:d9:1e:72:34:2d:60:01:d3:b1:62:2d: 90:3b:26:8f:ca:44:43:03:12:14:c1:08:ef:5a:eb:26:d9:39: 4f:6a:12:e8:6b:59:fc:a3:cc:e8:32:66:d7:64:f1:b3:b8:ed: 19:29:6a:15:bf:d8:f2:31:49:51:8b:9e:a4:e4:e1:2e:a6:b5: 08:07:e2:de:28:42:1b:32:f1:6e:52:eb:66:a4:5b:24:fb:96: a8:20:61:4a:b3:fc:10:8a:c8:9f:73:cb:23:9d:76:d8:4d:6d: ba:30:f3:39:54:f7:96:8a:be:bd:f0:c9:56:9c:8e:87:08:6b: 63:bf:c9:8e:b2:6d:8f:9d:ef:8f:97:1e:6e:04:1b:f4:8c:d9: 0c:2f:5e:e7:fb:ef:ea:7c:97:e5:6e:0c:81:68:73:2d:2b:b7: 86:d2:89:91:c2:78:7b:4b:22:71:48:47:73:90:e4:f5:67:f8: 92:79:b5:83:56:8b:bd:54:8d:40:14:04:08:c3:5d:2e:e6:77: 12:e1:83:7c:76:60:1f:ab:29:7e:79:98:5b:90:b7:ec:ba:bd: 3d:11:89:a1:e0:60:f2:09:89:76:d0:f8:a0:0d:19:3b:d2:57: 48:18:b6:c2:bb:7a:e5:0d:d1:63:bf:9a:ee:4e:6f:08:08:18: 1e:c8:39:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAt4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNFMTcxMTAvBgNVBAUTKEM4QTkyRUE1RkRGNkRBMzhFQTQwODVBQUVFNTVBNzI0 OENEMzRGM0EwHhcNMjUwNTAxMDA1NzAxWhcNMjUwNTA4MDA1NzAxWjAYMRYwFAYD VQQDEw02ODEyYzZkZC0zM2Q5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqY9m4kGJKbwkR4Wuk1F9cC9H/GeMU3gNoxnvlPl6VsbEI/Qmeux3SESoCZii n11y5MC3m4Qt8rXFYcdWfeXzztXUsW1+7ENgQpgqrza8VuyDXOUSio/JIJ/zY6Pj Q3tnmt/9oaMDRLCq37M9pTxB4y0ZHCCXFRpacySv5OctItqmEr0AUv5NCdPXXJHu UES0NORUaDezgudwSS8prqLUQCWt3WP2nieZ5GTuYn2AWDUnd5u/fjUCes/wc77m AZeYK1Mg/81dNH6G4V0OzhMpQ/gEIv3026AhwyaBdPA/RU0yrd3hfk5dF6avXVAM KxVhQLEJ/RzhZdZeNjUe3ZpIuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGMQTRZQ o3FiG8FG37qsEzrqAfUEMB8GA1UdIwQYMBaAFMipLqX99to46kCFqu5VpySM0086 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0UxNy85MjBDNUVDQUUx NjgxMUVDQUFEOEY4MThDNEY5QUUwMi95S2t1cGYzMjJqanFRSVdxN2xXbkpJelRU em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lLa3VwZjMyMmpqcVFJV3E3bFduSkl6VFR6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC M0UxNy85MjBDNUVDQUUxNjgxMUVDQUFEOEY4MThDNEY5QUUwMi95S2t1cGYzMjJq anFRSVdxN2xXbkpJelRUem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqV+vwl8tC2R5yNC1gAdOxYi2QOyaPykRDAxIUwQjvWusm2TlPahLo a1n8o8zoMmbXZPGzuO0ZKWoVv9jyMUlRi56k5OEuprUIB+LeKEIbMvFuUutmpFsk +5aoIGFKs/wQisifc8sjnXbYTW26MPM5VPeWir698MlWnI6HCGtjv8mOsm2Pne+P lx5uBBv0jNkML17n++/qfJflbgyBaHMtK7eG0omRwnh7SyJxSEdzkOT1Z/iSebWD Vou9VI1AFAQIw10u5ncS4YN8dmAfqyl+eZhbkLfsur09EYmh4GDyCYl20PigDRk7 0ldIGLbCu3rlDdFjv5ruTm8ICBgeyDkG -----END CERTIFICATE-----Generated at Thu May 1 03:57:07 2025 by rpki-client