$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1814/F3C8539EBA3111EB9C69C178C4F9AE02/7yfjyfFbWDsVypzMPJBdIpzi8NA.mft File: 7yfjyfFbWDsVypzMPJBdIpzi8NA.mft (raw, json) Hash identifier: uN9eNozW9bOJhg320AQ4MhWUJCe+j7znbPxvQXFV/l8= Subject key identifier: 8E:67:1F:A5:09:13:80:F2:9C:39:5E:D6:27:23:11:45:12:7D:08:05 Authority key identifier: EF:27:E3:C9:F1:5B:58:3B:15:CA:9C:CC:3C:90:5D:22:9C:E2:F0:D0 Certificate issuer: /CN=A91C1814/serialNumber=EF27E3C9F15B583B15CA9CCC3C905D229CE2F0D0 Certificate serial: 05C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7yfjyfFbWDsVypzMPJBdIpzi8NA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1814/F3C8539EBA3111EB9C69C178C4F9AE02/7yfjyfFbWDsVypzMPJBdIpzi8NA.mft Manifest number: 05C4 Signing time: Thu 24 Apr 2025 22:51:33 +0000 Manifest this update: Thu 24 Apr 2025 22:51:33 +0000 Manifest next update: Thu 01 May 2025 22:51:33 +0000 Files and hashes: 1: 7yfjyfFbWDsVypzMPJBdIpzi8NA.crl (hash: f0tujxH5K+kiQTJaFU0OHK4hcIp9PqdDxF1bPRo5duc=) 2: 38378A3EBA3411EBB94A527CC4F9AE02.roa (hash: bXfsV+JRththOFdM9JTTJyhVvibLKGVpju+gIvVc/Sk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1814/F3C8539EBA3111EB9C69C178C4F9AE02/7yfjyfFbWDsVypzMPJBdIpzi8NA.crl rsync://rpki.apnic.net/member_repository/A91C1814/F3C8539EBA3111EB9C69C178C4F9AE02/7yfjyfFbWDsVypzMPJBdIpzi8NA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7yfjyfFbWDsVypzMPJBdIpzi8NA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:51:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1481 (0x5c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1814, serialNumber=EF27E3C9F15B583B15CA9CCC3C905D229CE2F0D0 Validity Not Before: Apr 24 22:51:33 2025 GMT Not After : May 1 22:51:33 2025 GMT Subject: CN=680ac075-2a96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:9f:0c:a0:8b:e2:76:79:c3:ed:e6:75:29:41: 9c:cc:a3:cb:89:1f:05:cc:2c:43:d1:a8:29:4e:27: 5b:38:aa:f8:34:21:a4:8d:52:32:93:f9:ab:cc:22: e9:ab:61:f5:87:6a:78:7e:3e:a1:20:dd:74:bf:70: 5d:59:95:f5:83:bc:a3:48:95:37:a2:96:48:d6:85: 27:6d:35:10:a3:3c:32:95:0b:47:7b:e6:92:14:2a: ce:e6:53:a1:ee:0f:f6:43:b4:ad:bb:b3:71:3c:42: 88:92:a3:5d:08:b6:49:b2:99:b6:a8:b8:06:36:82: cd:b6:f2:d9:35:68:e1:e6:40:da:6b:d7:1f:c1:54: 01:d9:47:4c:11:e0:48:a2:8b:9c:64:f9:80:7a:a7: 85:7c:59:02:71:1c:3f:10:5c:16:1b:3d:f1:d3:86: 3a:ea:f5:3a:2b:3e:8b:38:9e:d9:e3:6a:7f:39:b5: 2c:8a:0d:d4:db:8b:db:2f:c1:c3:fb:e8:d3:29:13: 06:67:36:7c:00:5d:ee:06:8a:6b:23:23:5f:cd:5b: ee:02:1c:7c:90:16:ec:d6:61:7c:03:a1:4f:b9:ca: f2:11:c6:41:e1:c8:03:fe:43:66:89:32:ec:4e:ea: 83:f4:d9:f0:d9:af:1f:4b:45:6a:97:08:95:36:8e: e3:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:67:1F:A5:09:13:80:F2:9C:39:5E:D6:27:23:11:45:12:7D:08:05 X509v3 Authority Key Identifier: keyid:EF:27:E3:C9:F1:5B:58:3B:15:CA:9C:CC:3C:90:5D:22:9C:E2:F0:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1814/F3C8539EBA3111EB9C69C178C4F9AE02/7yfjyfFbWDsVypzMPJBdIpzi8NA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7yfjyfFbWDsVypzMPJBdIpzi8NA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1814/F3C8539EBA3111EB9C69C178C4F9AE02/7yfjyfFbWDsVypzMPJBdIpzi8NA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:97:86:8c:fd:42:87:74:7f:71:61:98:60:4f:e2:c6:d3:ac: f0:97:ac:33:aa:ab:e8:36:c8:b9:f1:67:e3:68:03:7b:90:3d: 0b:e7:7b:fd:7e:f0:e5:e9:a6:4a:f4:60:4d:c4:b7:f0:89:2c: 94:a9:ca:bb:88:24:72:90:ba:6b:14:84:77:6a:0d:7a:1e:21: 87:b0:5c:81:64:32:ca:d7:12:f5:82:ba:47:36:59:e7:81:89: a5:b1:8e:40:ce:c2:d8:25:88:9b:0d:6c:3d:9e:db:a0:32:9d: 1c:87:1f:6c:42:ef:1b:31:9f:ba:6b:9f:cb:1f:e9:22:2d:47: f5:7f:6b:87:2d:81:a1:fb:70:7f:0c:7a:97:f4:3d:77:7a:34: e9:a6:de:83:4c:f9:f7:34:c5:ef:74:36:92:7a:c7:85:97:ed: 26:f7:af:db:13:ba:86:40:45:bb:1c:c6:20:c4:2c:78:e2:69: 46:4e:ed:14:b3:46:89:50:c1:0c:db:d6:c7:cd:d0:e7:b7:b9: e9:7e:ae:2a:3a:1f:9f:fc:80:af:76:74:bc:34:32:ec:8c:03: cc:f0:cb:1b:7a:c1:93:22:e2:44:e1:cb:96:f6:a4:9a:00:20: be:aa:02:b0:f1:fc:3c:30:42:4a:2c:8e:b7:4d:43:10:c1:7a: 17:5d:f9:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE4MTQxMTAvBgNVBAUTKEVGMjdFM0M5RjE1QjU4M0IxNUNBOUNDQzNDOTA1RDIy OUNFMkYwRDAwHhcNMjUwNDI0MjI1MTMzWhcNMjUwNTAxMjI1MTMzWjAYMRYwFAYD VQQDEw02ODBhYzA3NS0yYTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA058MoIvidnnD7eZ1KUGczKPLiR8FzCxD0agpTidbOKr4NCGkjVIyk/mrzCLp q2H1h2p4fj6hIN10v3BdWZX1g7yjSJU3opZI1oUnbTUQozwylQtHe+aSFCrO5lOh 7g/2Q7Stu7NxPEKIkqNdCLZJspm2qLgGNoLNtvLZNWjh5kDaa9cfwVQB2UdMEeBI ooucZPmAeqeFfFkCcRw/EFwWGz3x04Y66vU6Kz6LOJ7Z42p/ObUsig3U24vbL8HD ++jTKRMGZzZ8AF3uBoprIyNfzVvuAhx8kBbs1mF8A6FPucryEcZB4cgD/kNmiTLs TuqD9Nnw2a8fS0VqlwiVNo7jWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI5nH6UJ E4DynDle1icjEUUSfQgFMB8GA1UdIwQYMBaAFO8n48nxW1g7FcqczDyQXSKc4vDQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTgxNC9GM0M4NTM5RUJB MzExMUVCOUM2OUMxNzhDNEY5QUUwMi83eWZqeWZGYldEc1Z5cHpNUEpCZElwemk4 TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzd5Zmp5ZkZiV0RzVnlwek1QSkJkSXB6aThOQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTgxNC9GM0M4NTM5RUJBMzExMUVCOUM2OUMxNzhDNEY5QUUwMi83eWZqeWZGYldE c1Z5cHpNUEpCZElwemk4TkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARl4aM/UKHdH9xYZhgT+LG06zwl6wzqqvoNsi58WfjaAN7kD0L53v9 fvDl6aZK9GBNxLfwiSyUqcq7iCRykLprFIR3ag16HiGHsFyBZDLK1xL1grpHNlnn gYmlsY5AzsLYJYibDWw9ntugMp0chx9sQu8bMZ+6a5/LH+kiLUf1f2uHLYGh+3B/ DHqX9D13ejTppt6DTPn3NMXvdDaSeseFl+0m96/bE7qGQEW7HMYgxCx44mlGTu0U s0aJUMEM29bHzdDnt7npfq4qOh+f/ICvdnS8NDLsjAPM8MsbesGTIuJE4cuW9qSa ACC+qgKw8fw8MEJKLI63TUMQwXoXXfkA -----END CERTIFICATE-----Generated at Sat Apr 26 04:28:16 2025 by rpki-client