$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft File: y2yF51LVad_PHekEycvnHkg-9fI.mft (raw, json) Hash identifier: X0fdL5VUl2xPTzyfDWznArLOHYZvN3RrChpoi94sZOQ= Subject key identifier: 5B:C4:EE:AF:E6:D7:B6:4C:34:80:2D:B2:AD:E3:0A:F4:05:1B:E8:45 Authority key identifier: CB:6C:85:E7:52:D5:69:DF:CF:1D:E9:04:C9:CB:E7:1E:48:3E:F5:F2 Certificate issuer: /CN=A91BC039/serialNumber=CB6C85E752D569DFCF1DE904C9CBE71E483EF5F2 Certificate serial: 04C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2yF51LVad_PHekEycvnHkg-9fI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft Manifest number: 04BC Signing time: Thu 24 Apr 2025 23:39:00 +0000 Manifest this update: Thu 24 Apr 2025 23:39:00 +0000 Manifest next update: Thu 01 May 2025 23:39:00 +0000 Files and hashes: 1: y2yF51LVad_PHekEycvnHkg-9fI.crl (hash: W/W3HPQd+OzyucTc9pOuM1nXPVcsF9rP4/TImQD3h6w=) 2: B0A2E01225C411EC88466E59C4F9AE02.roa (hash: 8z4FQ3P4ffexi4IqxjF16x9Xr0QlwFMb8TffrA8dnxw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.crl rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2yF51LVad_PHekEycvnHkg-9fI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:38:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1218 (0x4c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC039, serialNumber=CB6C85E752D569DFCF1DE904C9CBE71E483EF5F2 Validity Not Before: Apr 24 23:39:00 2025 GMT Not After : May 1 23:39:00 2025 GMT Subject: CN=680acb94-92fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:10:c9:49:cb:16:9f:22:63:de:c8:87:b2:c0: f6:77:b4:75:1d:1b:07:eb:cf:0e:53:b9:3a:ce:d8: b6:1a:5e:77:9a:4a:b7:ce:7f:5b:e5:7e:8d:a0:ec: 27:54:c5:56:f4:51:13:ff:5f:99:3d:78:90:8f:f3: f4:cd:9c:54:6b:b3:09:c7:0f:8a:a3:81:ad:2a:ea: e4:80:8a:90:4c:3d:15:b8:ed:a8:df:9f:25:8e:b4: 86:b3:1c:b2:a5:55:75:76:71:9c:9c:32:58:63:5f: 0f:e3:8f:dd:84:f2:98:c6:65:78:64:96:3d:d7:2f: f8:b4:fe:b1:69:c9:f2:7b:2d:ab:1d:f1:72:7f:a8: c2:ff:a8:32:05:0f:d2:2b:a1:56:af:a5:05:52:a4: 2f:6b:eb:da:10:06:65:90:44:88:9f:75:47:de:ef: 9a:41:f8:8c:0c:01:60:5f:a7:43:c9:cc:46:f7:1d: 33:dc:bd:bc:5e:d5:01:b3:55:85:c1:c2:ef:ec:f1: 20:e9:f2:52:83:96:58:e8:42:0b:a7:11:bb:ff:ac: 61:2e:28:22:30:5c:dd:ab:98:7d:1e:a0:66:06:2b: d8:1c:3d:52:77:22:2d:05:10:71:08:e2:d7:52:98: c0:72:8e:4e:60:71:d6:f7:cb:a0:17:bc:6b:14:b0: 56:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:C4:EE:AF:E6:D7:B6:4C:34:80:2D:B2:AD:E3:0A:F4:05:1B:E8:45 X509v3 Authority Key Identifier: keyid:CB:6C:85:E7:52:D5:69:DF:CF:1D:E9:04:C9:CB:E7:1E:48:3E:F5:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2yF51LVad_PHekEycvnHkg-9fI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:47:ef:08:21:ac:12:a2:e7:07:81:7d:63:22:61:b1:17:89: ea:0f:b3:78:f8:f0:88:23:e8:b1:01:6f:cc:13:27:82:6e:23: 83:0c:fb:13:f1:68:3d:79:2e:a8:b0:85:41:a7:ea:31:f6:39: 09:6e:96:2f:81:06:57:c7:4e:ad:a3:46:bc:b1:da:af:6f:c2: 14:46:f3:17:c5:a9:d2:b8:35:3b:71:fd:6c:8b:f1:da:6e:e7: ca:bf:fc:ad:f4:60:58:51:41:c8:d1:93:a3:f6:dc:73:e6:e2: dc:6c:02:a1:2b:e4:05:2d:e2:4e:a9:3d:4f:cd:43:96:08:77: 2e:a7:19:14:cb:df:eb:1b:ee:ed:fb:5f:02:d9:b1:5a:74:5c: d0:fa:8a:c2:9e:05:b0:2c:1f:ed:cc:60:02:c3:89:bc:e1:29: 20:c6:91:e3:ef:1a:ca:ed:ca:95:c6:ed:e5:d8:a0:72:22:5d: 78:59:7f:d1:de:8e:84:4d:18:2c:7b:63:cd:e9:d8:26:ad:15: 1d:47:02:ea:62:38:bd:8b:4c:f8:49:7b:d4:7d:11:d6:ce:da: cb:e1:3c:9c:df:43:9a:e8:5f:ba:98:65:88:0c:c5:29:d7:1f: 5a:ed:fd:2d:bb:cc:67:ee:42:f4:08:55:80:26:7a:51:43:0f: f8:f8:ca:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMwMzkxMTAvBgNVBAUTKENCNkM4NUU3NTJENTY5REZDRjFERTkwNEM5Q0JFNzFF NDgzRUY1RjIwHhcNMjUwNDI0MjMzOTAwWhcNMjUwNTAxMjMzOTAwWjAYMRYwFAYD VQQDEw02ODBhY2I5NC05MmZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2hDJScsWnyJj3siHssD2d7R1HRsH688OU7k6zti2Gl53mkq3zn9b5X6NoOwn VMVW9FET/1+ZPXiQj/P0zZxUa7MJxw+Ko4GtKurkgIqQTD0VuO2o358ljrSGsxyy pVV1dnGcnDJYY18P44/dhPKYxmV4ZJY91y/4tP6xacnyey2rHfFyf6jC/6gyBQ/S K6FWr6UFUqQva+vaEAZlkESIn3VH3u+aQfiMDAFgX6dDycxG9x0z3L28XtUBs1WF wcLv7PEg6fJSg5ZY6EILpxG7/6xhLigiMFzdq5h9HqBmBivYHD1SdyItBRBxCOLX UpjAco5OYHHW98ugF7xrFLBW+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFvE7q/m 17ZMNIAtsq3jCvQFG+hFMB8GA1UdIwQYMBaAFMtshedS1Wnfzx3pBMnL5x5IPvXy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzAzOS9CQjUzMjNFODI1 QzIxMUVDQjQ5OUQxNThDNEY5QUUwMi95MnlGNTFMVmFkX1BIZWtFeWN2bkhrZy05 ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kyeUY1MUxWYWRfUEhla0V5Y3ZuSGtnLTlmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzAzOS9CQjUzMjNFODI1QzIxMUVDQjQ5OUQxNThDNEY5QUUwMi95MnlGNTFMVmFk X1BIZWtFeWN2bkhrZy05ZkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDBR+8IIawSoucHgX1jImGxF4nqD7N4+PCII+ixAW/MEyeCbiODDPsT 8Wg9eS6osIVBp+ox9jkJbpYvgQZXx06to0a8sdqvb8IURvMXxanSuDU7cf1si/Ha bufKv/yt9GBYUUHI0ZOj9txz5uLcbAKhK+QFLeJOqT1PzUOWCHcupxkUy9/rG+7t +18C2bFadFzQ+orCngWwLB/tzGACw4m84SkgxpHj7xrK7cqVxu3l2KByIl14WX/R 3o6ETRgse2PN6dgmrRUdRwLqYji9i0z4SXvUfRHWztrL4Tyc30Oa6F+6mGWIDMUp 1x9a7f0tu8xn7kL0CFWAJnpRQw/4+Mqe -----END CERTIFICATE-----Generated at Sat Apr 26 15:07:59 2025 by rpki-client