$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft File: yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft (raw, json) Hash identifier: 2J4QqU7RlbHzELwj6OkEZh1KMTz5/ESDLiG2MANnrY0= Subject key identifier: 7C:02:73:CF:25:06:39:E4:AF:32:4D:A8:B0:04:C1:9A:F4:96:64:25 Authority key identifier: CB:16:56:81:1D:08:45:79:93:E8:D8:1B:9F:97:98:DA:D6:16:97:1A Certificate issuer: /CN=A91B4357/serialNumber=CB1656811D08457993E8D81B9F9798DAD616971A Certificate serial: 0480 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft Manifest number: 0467 Signing time: Thu 24 Apr 2025 23:54:52 +0000 Manifest this update: Thu 24 Apr 2025 23:54:51 +0000 Manifest next update: Thu 01 May 2025 23:54:51 +0000 Files and hashes: 1: yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl (hash: KNzbnrIxKec5vZPK8p1ofnKPEfm5KpZgerM2wdV1jZ0=) 2: CA888654D0E011EC9E5ACC1CC4F9AE02.roa (hash: 4by10ick3aOPoEwL9MxmYZych/O61DB95JCCfpjs2l0=) 3: 52B98FDA46AF11ECB113AA4BC4F9AE02.roa (hash: zdWwyK62ezTqtldMx3AFhd08v1ee56JEEEGh/b+1bK8=) 4: 35A2418C45AE11ECB857890EC4F9AE02.roa (hash: yt5ul2v37If2OMAgvwlcXNvNlpOeU9vk4N82gRjp7ro=) 5: 9896BA2EB6DE11EC8DB17172C4F9AE02.roa (hash: tkC8VFhPaMMB7xHukmlTC8vVY5Lai1noTB/JDIdLAEc=) 6: 351AC73E45AE11ECB857890EC4F9AE02.roa (hash: ofwlwfDv/f2slgSdPa6hT78BUtn3LBZ837QvOITSXas=) 7: 346A2B4045AE11ECB857890EC4F9AE02.roa (hash: y6Yo94bVO58GlNbuqBWAfuC5sCH6iiyxweKo6sloNrk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:54:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1152 (0x480) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4357, serialNumber=CB1656811D08457993E8D81B9F9798DAD616971A Validity Not Before: Apr 24 23:54:51 2025 GMT Not After : May 1 23:54:51 2025 GMT Subject: CN=680acf4c-8a79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:d9:a8:2d:89:77:ad:3c:a5:f4:9d:bb:27:95: 31:c8:07:02:bc:e9:c2:0b:84:66:b6:22:11:fe:b0: 8b:cc:dd:3c:c8:1e:0d:d3:c4:cf:e6:0b:3e:91:b7: 6b:d3:59:29:04:a2:6f:63:b9:32:97:cc:fc:2d:8d: 93:d7:76:d2:85:55:1d:92:c1:98:6e:73:be:fa:92: 9e:13:b1:d3:14:90:8e:89:66:c5:81:5b:eb:44:84: 0f:c1:c6:f3:34:10:d8:e0:79:c9:b0:6f:4b:91:2a: 12:1a:cf:ad:c4:77:cf:74:d3:f7:74:0d:a2:37:21: 10:dc:d0:4c:c6:65:d4:f3:ab:80:96:d1:d4:89:ab: ee:7d:dd:a3:f6:23:10:be:31:a5:fe:74:d7:a4:e7: 63:4a:5a:83:e3:84:ec:d5:b6:29:b3:a2:71:96:0a: 94:71:e9:cb:99:18:14:00:d5:e1:dc:83:fd:2c:dd: 67:0f:5d:37:8a:a6:76:8e:b9:62:c4:ef:a2:50:f7: 75:d6:e3:2a:df:6f:92:22:a9:42:dd:3b:93:5d:36: ae:ac:53:8f:eb:98:ee:0a:b0:23:79:dd:68:c3:ad: f6:b7:7f:33:3b:07:1b:9d:f6:6c:aa:42:9d:47:3d: 67:8f:79:9f:76:78:7b:27:19:85:06:ab:06:18:84: 44:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:02:73:CF:25:06:39:E4:AF:32:4D:A8:B0:04:C1:9A:F4:96:64:25 X509v3 Authority Key Identifier: keyid:CB:16:56:81:1D:08:45:79:93:E8:D8:1B:9F:97:98:DA:D6:16:97:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:37:11:4a:34:f3:dd:36:7b:ed:48:44:6a:71:7a:60:fc:b5: 44:30:08:f6:10:45:28:40:77:26:0f:2f:62:1d:65:c9:ce:47: a9:7b:29:24:f1:92:af:3c:f4:61:5f:ac:b4:ff:38:71:af:73: 47:df:34:e7:d1:e9:79:c8:6a:d2:7c:c9:6f:56:f9:42:dd:9d: 4b:27:d6:bb:8a:28:0a:a4:7f:17:03:0e:6d:d7:24:cf:56:d1: bb:81:0d:bd:e5:53:32:10:f3:d0:f8:2a:cb:68:fc:62:ae:b2: 14:d8:f5:59:d4:f5:8c:1b:d7:b3:1f:9b:89:ee:71:7b:2e:ac: cd:40:6d:e1:d5:20:48:42:a7:5e:f1:aa:ed:e2:66:a0:2a:b6: 71:d2:9d:e9:b5:d7:4f:f9:00:d0:91:cb:ac:d4:9a:49:98:33: dc:49:09:97:a3:75:d8:53:4c:66:1d:a7:17:bd:1b:a5:5f:c4: fa:ec:17:a7:0b:21:ac:a4:c6:5d:69:40:e9:10:25:a2:e8:3b: e4:48:f8:a9:f9:16:e7:6e:19:5a:f0:c2:c6:f9:a4:2a:9f:41: 34:93:31:9d:3f:85:f6:ad:3e:e8:ec:e3:00:15:69:99:92:f3: b9:1e:a6:8d:3f:f3:27:f1:96:50:6d:c9:ae:25:51:94:05:bd: 20:11:67:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQzNTcxMTAvBgNVBAUTKENCMTY1NjgxMUQwODQ1Nzk5M0U4RDgxQjlGOTc5OERB RDYxNjk3MUEwHhcNMjUwNDI0MjM1NDUxWhcNMjUwNTAxMjM1NDUxWjAYMRYwFAYD VQQDEw02ODBhY2Y0Yy04YTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8tmoLYl3rTyl9J27J5UxyAcCvOnCC4RmtiIR/rCLzN08yB4N08TP5gs+kbdr 01kpBKJvY7kyl8z8LY2T13bShVUdksGYbnO++pKeE7HTFJCOiWbFgVvrRIQPwcbz NBDY4HnJsG9LkSoSGs+txHfPdNP3dA2iNyEQ3NBMxmXU86uAltHUiavufd2j9iMQ vjGl/nTXpOdjSlqD44Ts1bYps6JxlgqUcenLmRgUANXh3IP9LN1nD103iqZ2jrli xO+iUPd11uMq32+SIqlC3TuTXTaurFOP65juCrAjed1ow632t38zOwcbnfZsqkKd Rz1nj3mfdnh7JxmFBqsGGIRExQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHwCc88l BjnkrzJNqLAEwZr0lmQlMB8GA1UdIwQYMBaAFMsWVoEdCEV5k+jYG5+XmNrWFpca MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDM1Ny9CODRCMTBFQzQ1 QTgxMUVDOEIxNDA1NThDNEY5QUUwMi95eFpXZ1IwSVJYbVQ2TmdibjVlWTJ0WVds eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3l4WldnUjBJUlhtVDZOZ2JuNWVZMnRZV2x4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDM1Ny9CODRCMTBFQzQ1QTgxMUVDOEIxNDA1NThDNEY5QUUwMi95eFpXZ1IwSVJY bVQ2TmdibjVlWTJ0WVdseG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTNxFKNPPdNnvtSERqcXpg/LVEMAj2EEUoQHcmDy9iHWXJzkepeykk 8ZKvPPRhX6y0/zhxr3NH3zTn0el5yGrSfMlvVvlC3Z1LJ9a7iigKpH8XAw5t1yTP VtG7gQ295VMyEPPQ+CrLaPxirrIU2PVZ1PWMG9ezH5uJ7nF7LqzNQG3h1SBIQqde 8art4magKrZx0p3ptddP+QDQkcus1JpJmDPcSQmXo3XYU0xmHacXvRulX8T67Ben CyGspMZdaUDpECWi6DvkSPip+Rbnbhla8MLG+aQqn0E0kzGdP4X2rT7o7OMAFWmZ kvO5HqaNP/Mn8ZZQbcmuJVGUBb0gEWf5 -----END CERTIFICATE-----Generated at Sat Apr 26 04:24:44 2025 by rpki-client