$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.mft File: y8FNQFd4Ri-cXZFYOlxxg28jwZ0.mft (raw, json) Hash identifier: LLcxLqElERl6rwyBz6R3FAF/zmdy9hcf5yUrMEIblZY= Subject key identifier: CF:E6:2F:F2:D5:47:2F:46:C3:54:65:58:18:48:EA:F9:6A:E1:17:78 Authority key identifier: CB:C1:4D:40:57:78:46:2F:9C:5D:91:58:3A:5C:71:83:6F:23:C1:9D Certificate issuer: /CN=A91B9C52/serialNumber=CBC14D405778462F9C5D91583A5C71836F23C19D Certificate serial: 1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.mft Manifest number: 0518 Signing time: Thu 24 Apr 2025 23:30:13 +0000 Manifest this update: Thu 24 Apr 2025 23:30:13 +0000 Manifest next update: Thu 01 May 2025 23:30:13 +0000 Files and hashes: 1: y8FNQFd4Ri-cXZFYOlxxg28jwZ0.crl (hash: NmsSfXlE6F12G1ZCfcrZDBbOZi2HskpJPhtWRHUWef4=) 2: B0245792094611F089247D2CC4F9AE02.roa (hash: WzcjSkbp1L3UZdNgdiavQerl/BKgE6QHhDZV6MZpLAY=) 3: DB78EC4202C411F0A370F12EC4F9AE02.roa (hash: cYCE21n+c8J3/ZWE+DpkusC3dL/h3MNQr/C6R6q0LQY=) 4: DBEA4AA402C411F0A370F12EC4F9AE02.roa (hash: LglT88AP992wwS6++8oX+hvPgvXH2IXg5x9/81P07t8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.crl rsync://rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:30:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26 (0x1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9C52, serialNumber=CBC14D405778462F9C5D91583A5C71836F23C19D Validity Not Before: Apr 24 23:30:13 2025 GMT Not After : May 1 23:30:13 2025 GMT Subject: CN=680ac985-b2d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:49:79:b3:a6:0c:7c:d2:c5:56:46:59:f9:f4: f0:e9:c9:62:25:45:18:29:59:aa:d9:17:e7:16:1f: 7f:9d:a1:22:c6:ed:20:8b:9d:0a:50:f6:d9:e0:b3: b3:fd:bd:e4:bf:04:b4:9b:2c:49:18:80:38:95:ee: 99:a5:5a:bf:70:4c:f9:75:ee:9d:5e:de:ed:ea:15: 99:ad:e1:d4:86:fa:12:5b:a7:e3:0a:3c:09:3a:d2: 32:e4:d6:e0:af:c4:32:c1:20:23:3b:5d:71:d7:60: 8f:18:e1:f2:41:4d:be:52:26:2e:ac:7c:31:cf:63: 37:a4:cc:66:12:09:5b:e9:3f:d8:ec:42:ee:12:79: d6:4d:60:33:fc:a2:0a:fe:31:6a:72:9e:75:b9:5d: 9b:1d:f3:b3:94:33:f0:96:f6:85:10:77:ca:17:4a: 13:87:78:0a:7d:8c:21:d5:31:3c:ff:36:06:c1:e2: cf:86:3c:a7:df:b8:f5:2d:d8:c7:72:79:e9:2b:aa: ff:75:00:4f:03:90:91:6c:47:dc:e0:45:90:55:8c: fe:a4:d1:bc:99:c1:ea:b6:8b:bc:04:c8:d8:bb:ef: 1b:ea:bc:97:2d:65:20:d5:ed:b0:46:58:c6:dd:22: 18:a2:64:29:a0:32:90:47:ed:cb:79:18:61:11:08: bd:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:E6:2F:F2:D5:47:2F:46:C3:54:65:58:18:48:EA:F9:6A:E1:17:78 X509v3 Authority Key Identifier: keyid:CB:C1:4D:40:57:78:46:2F:9C:5D:91:58:3A:5C:71:83:6F:23:C1:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:8d:c9:78:8b:7d:aa:76:89:eb:bb:9a:54:90:20:2c:2a:dc: 30:ce:ff:bf:b6:72:d3:85:bc:db:c4:ca:27:fe:3e:c5:84:04: fb:f0:e7:62:0f:89:e4:b0:0c:88:63:57:34:19:27:b6:f3:8a: 98:4b:27:6b:44:6b:50:ba:6a:23:f6:7f:65:2b:77:fe:1e:aa: a9:1c:6a:b1:70:d3:78:f4:4f:dc:5e:aa:55:44:b5:34:a8:aa: ae:ac:b1:5b:4e:77:4c:ed:87:ec:00:1c:9f:63:30:b1:d7:15: 75:64:a3:b3:7a:a0:ce:50:82:2b:95:dc:9d:1f:79:7d:94:9d: 65:36:43:b1:d4:4a:78:ba:df:b4:33:2a:c0:9c:4c:20:dc:56: 08:e1:b1:a8:67:ff:96:ca:f9:08:be:a1:0e:60:4b:cc:f6:bf: b9:da:f9:dd:08:4f:df:af:49:00:04:76:2c:8c:2d:bb:14:3e: a7:f8:b5:d5:a2:e6:32:6c:6e:13:c3:49:03:9f:b4:10:69:ae: 79:de:cc:20:99:5c:fb:9e:e9:da:89:13:4e:22:d1:07:70:7c: a5:ec:e4:6f:aa:da:88:67:63:50:f6:cb:9c:6f:65:5b:ed:9f: 47:db:2b:89:d4:8a:f6:1d:d5:17:1e:92:2d:f7:51:2b:de:40: 9e:b3:ab:62 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC OUM1MjExMC8GA1UEBRMoQ0JDMTRENDA1Nzc4NDYyRjlDNUQ5MTU4M0E1QzcxODM2 RjIzQzE5RDAeFw0yNTA0MjQyMzMwMTNaFw0yNTA1MDEyMzMwMTNaMBgxFjAUBgNV BAMTDTY4MGFjOTg1LWIyZDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDISXmzpgx80sVWRln59PDpyWIlRRgpWarZF+cWH3+doSLG7SCLnQpQ9tngs7P9 veS/BLSbLEkYgDiV7pmlWr9wTPl17p1e3u3qFZmt4dSG+hJbp+MKPAk60jLk1uCv xDLBICM7XXHXYI8Y4fJBTb5SJi6sfDHPYzekzGYSCVvpP9jsQu4SedZNYDP8ogr+ MWpynnW5XZsd87OUM/CW9oUQd8oXShOHeAp9jCHVMTz/NgbB4s+GPKffuPUt2Mdy eekrqv91AE8DkJFsR9zgRZBVjP6k0byZweq2i7wEyNi77xvqvJctZSDV7bBGWMbd IhiiZCmgMpBH7ct5GGERCL1PAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUz+Yv8tVH L0bDVGVYGEjq+WrhF3gwHwYDVR0jBBgwFoAUy8FNQFd4Ri+cXZFYOlxxg28jwZ0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI5QzUyLzZCNzE1MTYyMEQ3 RTExRUM5QzBCNUY3NUM0RjlBRTAyL3k4Rk5RRmQ0UmktY1haRllPbHh4ZzI4anda MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveThGTlFGZDRSaS1jWFpGWU9seHhnMjhqd1owLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI5 QzUyLzZCNzE1MTYyMEQ3RTExRUM5QzBCNUY3NUM0RjlBRTAyL3k4Rk5RRmQ0Umkt Y1haRllPbHh4ZzI4andaMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADWNyXiLfap2ieu7mlSQICwq3DDO/7+2ctOFvNvEyif+PsWEBPvw52IP ieSwDIhjVzQZJ7bziphLJ2tEa1C6aiP2f2Urd/4eqqkcarFw03j0T9xeqlVEtTSo qq6ssVtOd0zth+wAHJ9jMLHXFXVko7N6oM5QgiuV3J0feX2UnWU2Q7HUSni637Qz KsCcTCDcVgjhsahn/5bK+Qi+oQ5gS8z2v7na+d0IT9+vSQAEdiyMLbsUPqf4tdWi 5jJsbhPDSQOftBBprnnezCCZXPue6dqJE04i0QdwfKXs5G+q2ohnY1D2y5xvZVvt n0fbK4nUivYd1Rceki33USveQJ6zq2I= -----END CERTIFICATE-----Generated at Sat Apr 26 12:26:43 2025 by rpki-client