$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4502/40E2DFCCB50211EAA29F277AC4F9AE02/y0yV-DniHR3g9FhVPZpM4o5BTYg.mft File: y0yV-DniHR3g9FhVPZpM4o5BTYg.mft (raw, json) Hash identifier: qBsSLmWByIzqhPkc1oBP6KcqZmGOHalTKN4giOKgE+M= Subject key identifier: 94:8F:5B:47:C2:B3:0F:23:94:E1:64:BF:0C:FE:5C:87:B5:18:51:8D Authority key identifier: CB:4C:95:F8:39:E2:1D:1D:E0:F4:58:55:3D:9A:4C:E2:8E:41:4D:88 Certificate issuer: /CN=A91C4502/serialNumber=CB4C95F839E21D1DE0F458553D9A4CE28E414D88 Certificate serial: 08DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y0yV-DniHR3g9FhVPZpM4o5BTYg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4502/40E2DFCCB50211EAA29F277AC4F9AE02/y0yV-DniHR3g9FhVPZpM4o5BTYg.mft Manifest number: 08BC Signing time: Thu 24 Apr 2025 20:23:41 +0000 Manifest this update: Thu 24 Apr 2025 20:23:41 +0000 Manifest next update: Thu 01 May 2025 20:23:41 +0000 Files and hashes: 1: y0yV-DniHR3g9FhVPZpM4o5BTYg.crl (hash: kjAFHOpxINWRK/iR8+dmkQCKDyHyAesnoL2z3Ph9B2Y=) 2: 9768CAB2550211EDA744F948C4F9AE02.roa (hash: +c7JrobNieG+ZMgvcidemgeezLPPKCFpg7+084o7JoA=) 3: 8CE5EE808E1A11EC96B4970AC4F9AE02.roa (hash: EZBagVr/hD3KJ6ELkAAEEOXAeLi6XW6fcfcVyYg3wjQ=) 4: 8C3B232E8E1A11EC96B4970AC4F9AE02.roa (hash: 8QLJCSW7Dx5LXrLw450pRNDRNzSQEQRY9thpGou2vRw=) 5: F407F0D49B8C11EC98C88432C4F9AE02.roa (hash: S/k+u3wzST4BAkpqg+O7+3Um9PXES4RfHWYozst9ucQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4502/40E2DFCCB50211EAA29F277AC4F9AE02/y0yV-DniHR3g9FhVPZpM4o5BTYg.crl rsync://rpki.apnic.net/member_repository/A91C4502/40E2DFCCB50211EAA29F277AC4F9AE02/y0yV-DniHR3g9FhVPZpM4o5BTYg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y0yV-DniHR3g9FhVPZpM4o5BTYg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:23:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2270 (0x8de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4502, serialNumber=CB4C95F839E21D1DE0F458553D9A4CE28E414D88 Validity Not Before: Apr 24 20:23:41 2025 GMT Not After : May 1 20:23:41 2025 GMT Subject: CN=680a9dcd-ab69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:fc:ed:cb:ad:53:a9:c6:3e:c7:b0:b0:d6:09: 1f:0e:db:a0:db:86:ed:da:f9:09:a5:bd:46:4b:fd: c5:85:63:6e:5f:c8:a1:3b:bb:6b:52:64:b3:7b:f6: 94:82:46:6f:fa:a5:b2:39:3c:a6:42:2e:56:98:eb: e1:01:a6:63:af:22:a3:5e:ba:ac:f6:75:71:fe:d3: ff:3e:de:1d:05:4d:bf:72:86:3f:8a:f0:76:1d:86: fc:e1:be:23:44:56:e0:23:a9:ad:15:fe:ff:17:25: d9:56:e8:15:3b:56:94:30:7c:4a:22:2c:87:1e:31: e9:97:3b:25:bb:eb:b5:b2:d1:62:c2:e8:c1:ab:84: 7f:2c:8c:90:22:f4:9d:71:4e:6e:d0:c3:87:eb:03: 37:f7:e0:2c:10:2b:ab:f6:37:ca:42:33:90:73:e1: fb:b3:e7:4e:6b:49:aa:d4:1a:3e:32:68:1a:b7:e7: dc:0c:2b:df:54:ec:00:89:cb:48:5f:d5:bc:22:ef: 4a:cc:34:9e:b6:a7:8d:ab:7f:46:47:54:7a:74:09: 0f:f1:16:2d:78:22:d0:95:a5:0d:14:c7:98:03:7c: 62:88:d0:e6:52:d2:99:30:48:d5:27:4b:f6:5b:ec: 19:48:bb:59:81:f6:ca:f6:b6:d8:26:e5:e9:05:57: 75:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:8F:5B:47:C2:B3:0F:23:94:E1:64:BF:0C:FE:5C:87:B5:18:51:8D X509v3 Authority Key Identifier: keyid:CB:4C:95:F8:39:E2:1D:1D:E0:F4:58:55:3D:9A:4C:E2:8E:41:4D:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4502/40E2DFCCB50211EAA29F277AC4F9AE02/y0yV-DniHR3g9FhVPZpM4o5BTYg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y0yV-DniHR3g9FhVPZpM4o5BTYg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4502/40E2DFCCB50211EAA29F277AC4F9AE02/y0yV-DniHR3g9FhVPZpM4o5BTYg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:15:67:b9:74:38:d6:0e:1b:e0:9b:b9:3b:bd:7b:f3:db:fc: 5c:21:4e:cd:1c:ad:36:95:bd:a2:b8:ff:0a:7d:dc:54:7d:8e: 92:da:dd:99:ff:93:fb:17:fa:73:8a:81:8a:2a:2d:6f:d3:a0: 12:4a:2d:fb:16:c2:85:0c:b4:65:ac:00:84:eb:63:cf:db:e9: ef:ed:82:0e:70:f1:e9:64:a1:32:fa:d2:a1:c4:6d:2f:56:01: 19:fc:5f:2a:26:9b:ee:61:27:8d:11:43:c4:37:d3:ac:1f:de: c6:cb:09:dd:f7:8f:65:33:1c:3b:f1:02:7b:d6:ed:ab:2e:45: f4:9b:84:06:89:31:20:c4:6b:44:01:b8:e1:a2:d8:81:38:d8: c4:24:df:20:16:23:00:22:a7:3e:58:31:74:e6:25:67:f8:e6: 71:65:74:2e:b6:5f:f7:bc:3e:48:22:ea:c9:2d:00:fc:d5:a3: e5:b3:06:3d:9e:3d:0a:04:79:0f:e4:f2:23:8f:3a:dc:5c:e5: 7b:76:7a:09:9b:23:03:f6:74:1c:3a:20:20:59:e2:a3:fb:e5: 33:12:ae:2f:6e:ba:fb:2d:6e:9d:ea:95:52:be:d4:01:74:f7: 63:61:7b:43:24:a3:8d:de:49:2d:ea:d9:01:22:f5:00:65:2a: 1c:79:50:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQ1MDIxMTAvBgNVBAUTKENCNEM5NUY4MzlFMjFEMURFMEY0NTg1NTNEOUE0Q0Uy OEU0MTREODgwHhcNMjUwNDI0MjAyMzQxWhcNMjUwNTAxMjAyMzQxWjAYMRYwFAYD VQQDEw02ODBhOWRjZC1hYjY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Pzty61TqcY+x7Cw1gkfDtug24bt2vkJpb1GS/3FhWNuX8ihO7trUmSze/aU gkZv+qWyOTymQi5WmOvhAaZjryKjXrqs9nVx/tP/Pt4dBU2/coY/ivB2HYb84b4j RFbgI6mtFf7/FyXZVugVO1aUMHxKIiyHHjHplzslu+u1stFiwujBq4R/LIyQIvSd cU5u0MOH6wM39+AsECur9jfKQjOQc+H7s+dOa0mq1Bo+Mmgat+fcDCvfVOwAictI X9W8Iu9KzDSetqeNq39GR1R6dAkP8RYteCLQlaUNFMeYA3xiiNDmUtKZMEjVJ0v2 W+wZSLtZgfbK9rbYJuXpBVd1VQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJSPW0fC sw8jlOFkvwz+XIe1GFGNMB8GA1UdIwQYMBaAFMtMlfg54h0d4PRYVT2aTOKOQU2I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDUwMi80MEUyREZDQ0I1 MDIxMUVBQTI5RjI3N0FDNEY5QUUwMi95MHlWLURuaUhSM2c5RmhWUFpwTTRvNUJU WWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kweVYtRG5pSFIzZzlGaFZQWnBNNG81QlRZZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDUwMi80MEUyREZDQ0I1MDIxMUVBQTI5RjI3N0FDNEY5QUUwMi95MHlWLURuaUhS M2c5RmhWUFpwTTRvNUJUWWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMFWe5dDjWDhvgm7k7vXvz2/xcIU7NHK02lb2iuP8KfdxUfY6S2t2Z /5P7F/pzioGKKi1v06ASSi37FsKFDLRlrACE62PP2+nv7YIOcPHpZKEy+tKhxG0v VgEZ/F8qJpvuYSeNEUPEN9OsH97Gywnd949lMxw78QJ71u2rLkX0m4QGiTEgxGtE AbjhotiBONjEJN8gFiMAIqc+WDF05iVn+OZxZXQutl/3vD5IIurJLQD81aPlswY9 nj0KBHkP5PIjjzrcXOV7dnoJmyMD9nQcOiAgWeKj++UzEq4vbrr7LW6d6pVSvtQB dPdjYXtDJKON3kkt6tkBIvUAZSoceVC3 -----END CERTIFICATE-----Generated at Sat Apr 26 03:45:28 2025 by rpki-client