$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2F8C/5E072AFE86E011EF9B6B177EC4F9AE02/YR4cFJUo8XoOx5nDnVYmGcmhUQA.mft File: YR4cFJUo8XoOx5nDnVYmGcmhUQA.mft (raw, json) Hash identifier: QAO+qcljAFoFFAHFIeDmSyFBQwRQJKyK8r3/qe7PzXM= Subject key identifier: 5A:BF:C1:72:95:D8:E0:85:A9:56:E8:40:B4:0C:D8:8D:E8:BF:50:B1 Authority key identifier: 61:1E:1C:14:95:28:F1:7A:0E:C7:99:C3:9D:56:26:19:C9:A1:51:00 Certificate issuer: /CN=A91C2F8C/serialNumber=611E1C149528F17A0EC799C39D562619C9A15100 Certificate serial: 67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YR4cFJUo8XoOx5nDnVYmGcmhUQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2F8C/5E072AFE86E011EF9B6B177EC4F9AE02/YR4cFJUo8XoOx5nDnVYmGcmhUQA.mft Manifest number: 67 Signing time: Fri 25 Apr 2025 05:57:23 +0000 Manifest this update: Fri 25 Apr 2025 05:57:23 +0000 Manifest next update: Fri 02 May 2025 05:57:23 +0000 Files and hashes: 1: YR4cFJUo8XoOx5nDnVYmGcmhUQA.crl (hash: ob/8sXYttl29u7pPwHpQUauUVrCsO4KWt1KcoqB6XS0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2F8C/5E072AFE86E011EF9B6B177EC4F9AE02/YR4cFJUo8XoOx5nDnVYmGcmhUQA.crl rsync://rpki.apnic.net/member_repository/A91C2F8C/5E072AFE86E011EF9B6B177EC4F9AE02/YR4cFJUo8XoOx5nDnVYmGcmhUQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YR4cFJUo8XoOx5nDnVYmGcmhUQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:57:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 103 (0x67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2F8C, serialNumber=611E1C149528F17A0EC799C39D562619C9A15100 Validity Not Before: Apr 25 05:57:23 2025 GMT Not After : May 2 05:57:23 2025 GMT Subject: CN=680b2443-ea9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:3b:c3:35:5e:cd:e5:fb:43:5a:d3:58:a9:05: e4:5d:a3:4a:44:56:c7:29:31:02:cb:aa:60:c2:92: e3:9d:7a:40:c6:d3:3b:64:78:df:95:52:a9:6d:07: 9c:7c:bc:55:26:bd:a8:73:23:fd:44:4f:36:12:1c: 5b:ed:17:96:4c:60:6a:57:a6:f9:eb:03:47:d1:cb: c7:7a:fc:88:ec:03:c9:4f:4e:cf:ea:a7:5d:8d:3a: 0c:81:b4:07:48:a5:41:e2:e2:15:98:fa:43:c6:10: 89:bb:0e:36:a9:dd:e1:4c:3f:e2:41:7e:26:4e:b6: 92:bf:af:ff:38:1d:5d:80:0f:99:8c:27:33:76:31: f0:9a:a8:f9:0d:de:2c:64:18:a2:0b:e1:df:b2:99: b7:9f:7b:0f:16:a3:e7:50:84:65:5e:f4:c8:d6:03: 7a:3f:c1:c6:15:1e:4b:c7:49:4e:4c:d7:4d:f1:3a: 77:b6:dc:61:68:0a:1d:ee:39:a9:5e:f0:9f:49:c4: 18:ab:8f:9d:a1:3f:cd:28:db:dd:a4:94:5c:e5:d0: da:d3:ee:da:de:0b:81:f1:e7:dc:fc:cd:06:54:c0: d7:52:10:50:6d:4c:fc:79:76:d9:59:f9:8e:26:de: fc:72:f5:77:0a:9e:5d:b4:7c:6e:c5:1e:cd:47:3d: df:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:BF:C1:72:95:D8:E0:85:A9:56:E8:40:B4:0C:D8:8D:E8:BF:50:B1 X509v3 Authority Key Identifier: keyid:61:1E:1C:14:95:28:F1:7A:0E:C7:99:C3:9D:56:26:19:C9:A1:51:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2F8C/5E072AFE86E011EF9B6B177EC4F9AE02/YR4cFJUo8XoOx5nDnVYmGcmhUQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YR4cFJUo8XoOx5nDnVYmGcmhUQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2F8C/5E072AFE86E011EF9B6B177EC4F9AE02/YR4cFJUo8XoOx5nDnVYmGcmhUQA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:29:c7:d6:42:c6:ff:1e:f0:02:b7:6a:57:4b:8a:c9:1e:60: 42:33:be:b1:ce:8f:e5:9f:ba:b6:cf:90:45:2c:56:a5:9a:5f: be:fb:2b:06:ed:86:88:b3:3b:2f:94:e3:da:a0:2f:df:fd:cc: 2c:5b:2e:c4:43:17:d4:73:75:75:90:36:74:2b:98:0f:30:4e: 34:43:8b:57:57:11:d5:3d:d2:1c:a8:b3:a4:8e:e6:73:e8:9b: 59:dc:0d:8e:29:cf:8b:70:3d:8a:ab:05:1d:95:80:7a:91:19: c4:b5:f1:33:2b:b5:19:b1:7e:fa:29:c4:2a:f6:4c:ff:31:c1: e2:29:3c:6b:79:66:e1:82:69:f0:78:d0:ab:68:02:28:0c:da: 33:d3:ed:d0:1b:ff:dc:a8:44:7a:26:ec:0c:92:c9:6e:c7:e4: d4:d9:50:0b:df:7f:96:ca:64:d9:ed:21:b8:ca:98:96:77:d8: cf:1c:b3:29:68:59:c1:d5:c4:fc:b6:b2:fe:aa:cd:ef:00:4c: c5:ec:08:a2:76:2f:00:e1:58:33:df:6f:9a:0a:31:1f:dd:3b: 90:24:c0:9a:7e:b4:57:8b:83:4e:0b:c3:03:e1:ec:fd:a7:15: 68:c0:2b:06:3f:52:4e:98:2d:dd:77:5b:29:73:eb:30:7b:6e: 2a:04:c9:33 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MkY4QzExMC8GA1UEBRMoNjExRTFDMTQ5NTI4RjE3QTBFQzc5OUMzOUQ1NjI2MTlD OUExNTEwMDAeFw0yNTA0MjUwNTU3MjNaFw0yNTA1MDIwNTU3MjNaMBgxFjAUBgNV BAMTDTY4MGIyNDQzLWVhOWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5O8M1Xs3l+0Na01ipBeRdo0pEVscpMQLLqmDCkuOdekDG0ztkeN+VUqltB5x8 vFUmvahzI/1ETzYSHFvtF5ZMYGpXpvnrA0fRy8d6/IjsA8lPTs/qp12NOgyBtAdI pUHi4hWY+kPGEIm7Djap3eFMP+JBfiZOtpK/r/84HV2AD5mMJzN2MfCaqPkN3ixk GKIL4d+ymbefew8Wo+dQhGVe9MjWA3o/wcYVHkvHSU5M103xOne23GFoCh3uOale 8J9JxBirj52hP80o292klFzl0NrT7treC4Hx59z8zQZUwNdSEFBtTPx5dtlZ+Y4m 3vxy9XcKnl20fG7FHs1HPd/hAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUWr/BcpXY 4IWpVuhAtAzYjei/ULEwHwYDVR0jBBgwFoAUYR4cFJUo8XoOx5nDnVYmGcmhUQAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMyRjhDLzVFMDcyQUZFODZF MDExRUY5QjZCMTc3RUM0RjlBRTAyL1lSNGNGSlVvOFhvT3g1bkRuVlltR2NtaFVR QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWVI0Y0ZKVW84WG9PeDVuRG5WWW1HY21oVVFBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMy RjhDLzVFMDcyQUZFODZFMDExRUY5QjZCMTc3RUM0RjlBRTAyL1lSNGNGSlVvOFhv T3g1bkRuVlltR2NtaFVRQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJgpx9ZCxv8e8AK3aldLiskeYEIzvrHOj+WfurbPkEUsVqWaX777Kwbt hoizOy+U49qgL9/9zCxbLsRDF9RzdXWQNnQrmA8wTjRDi1dXEdU90hyos6SO5nPo m1ncDY4pz4twPYqrBR2VgHqRGcS18TMrtRmxfvopxCr2TP8xweIpPGt5ZuGCafB4 0KtoAigM2jPT7dAb/9yoRHom7AySyW7H5NTZUAvff5bKZNntIbjKmJZ32M8csylo WcHVxPy2sv6qze8ATMXsCKJ2LwDhWDPfb5oKMR/dO5AkwJp+tFeLg04LwwPh7P2n FWjAKwY/Uk6YLd13Wylz6zB7bioEyTM= -----END CERTIFICATE-----Generated at Sat Apr 26 05:11:37 2025 by rpki-client