$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5413/DF99A1E87BE811EB9A092342C4F9AE02/M-fyZhXT9AcyxTv4c-J8nFLhLc0.mft File: M-fyZhXT9AcyxTv4c-J8nFLhLc0.mft (raw, json) Hash identifier: gO90s9+VbrOwSYtSyiCSTdaIGo8ZNXfW5KoISxh78kY= Subject key identifier: 8D:0B:6A:E4:E1:61:26:E3:B1:42:ED:BB:D4:BD:89:A5:0C:1F:5B:9A Authority key identifier: 33:E7:F2:66:15:D3:F4:07:32:C5:3B:F8:73:E2:7C:9C:52:E1:2D:CD Certificate issuer: /CN=A91C5413/serialNumber=33E7F26615D3F40732C53BF873E27C9C52E12DCD Certificate serial: 012F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M-fyZhXT9AcyxTv4c-J8nFLhLc0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5413/DF99A1E87BE811EB9A092342C4F9AE02/M-fyZhXT9AcyxTv4c-J8nFLhLc0.mft Manifest number: 07D9 Signing time: Thu 24 Apr 2025 22:11:47 +0000 Manifest this update: Thu 24 Apr 2025 22:11:47 +0000 Manifest next update: Thu 01 May 2025 22:11:47 +0000 Files and hashes: 1: M-fyZhXT9AcyxTv4c-J8nFLhLc0.crl (hash: pAEZTaLRDexFqDhIEKlHEwvr7m808W4s3PIK4ohWRPo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5413/DF99A1E87BE811EB9A092342C4F9AE02/M-fyZhXT9AcyxTv4c-J8nFLhLc0.crl rsync://rpki.apnic.net/member_repository/A91C5413/DF99A1E87BE811EB9A092342C4F9AE02/M-fyZhXT9AcyxTv4c-J8nFLhLc0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M-fyZhXT9AcyxTv4c-J8nFLhLc0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:11:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 303 (0x12f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5413, serialNumber=33E7F26615D3F40732C53BF873E27C9C52E12DCD Validity Not Before: Apr 24 22:11:47 2025 GMT Not After : May 1 22:11:47 2025 GMT Subject: CN=680ab723-1253 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:40:e8:5d:94:4e:b4:ef:78:a3:f5:62:9a:2a: 9c:16:db:b3:b3:50:6e:fb:27:83:11:92:13:78:12: c2:76:aa:e8:73:d0:2a:e5:2b:79:5d:55:7e:08:23: 1f:5b:d7:59:c4:4e:d2:4b:69:93:82:5b:8c:0c:d1: 6d:55:77:e3:e7:7a:04:5b:67:ca:1c:35:5c:8e:ec: 1f:80:a8:e1:25:88:c2:09:92:89:ca:86:91:60:4f: 79:37:a1:82:ce:9c:4e:74:3f:e6:06:04:a8:30:c7: c3:ed:95:c6:26:d9:01:bf:27:5f:b7:af:af:0c:68: 2d:1a:3d:cc:d0:9d:4b:57:f5:a9:58:fe:fc:9c:54: ee:8a:8b:5b:b0:70:ef:06:2e:d2:af:83:9e:84:6f: b6:ed:a4:c4:cf:c6:65:58:87:c9:23:2b:91:37:2b: 67:f6:15:d0:45:03:1f:e8:5f:45:08:e3:7a:c8:05: 55:ca:0d:f7:ef:bc:a0:13:95:ed:ec:3b:88:de:d7: 5f:89:c6:34:b2:cf:1a:b9:1e:ba:6b:9d:e7:12:7d: e9:db:50:3b:c3:48:2a:09:3f:c8:47:82:77:54:1a: 31:b2:ff:79:b9:45:ad:4d:da:91:fb:97:06:15:9c: 7f:e0:42:1e:3d:d0:23:12:4b:c4:37:9e:87:4e:c7: 98:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:0B:6A:E4:E1:61:26:E3:B1:42:ED:BB:D4:BD:89:A5:0C:1F:5B:9A X509v3 Authority Key Identifier: keyid:33:E7:F2:66:15:D3:F4:07:32:C5:3B:F8:73:E2:7C:9C:52:E1:2D:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5413/DF99A1E87BE811EB9A092342C4F9AE02/M-fyZhXT9AcyxTv4c-J8nFLhLc0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M-fyZhXT9AcyxTv4c-J8nFLhLc0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5413/DF99A1E87BE811EB9A092342C4F9AE02/M-fyZhXT9AcyxTv4c-J8nFLhLc0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:10:b1:9a:c3:b3:2c:cf:d0:f5:c0:b7:03:9b:7c:48:fa:0d: 4f:4b:89:ba:5d:cb:4c:e6:34:aa:96:8a:5a:d3:36:88:f5:25: a8:0e:58:9b:fe:d9:4b:93:72:ff:46:8c:b4:a4:ce:44:69:37: cb:c9:3f:1f:7e:81:a7:ca:e7:e4:4d:d2:d4:47:fa:57:4d:a0: eb:a7:f4:73:01:71:bc:a7:91:1d:4f:70:b4:43:fe:31:bb:1a: cf:53:73:6b:61:22:e9:53:71:90:72:c9:c7:38:e9:b4:b6:9a: 2c:41:c8:54:9c:26:5f:cb:ce:d7:35:d9:c3:64:9f:e6:21:ff: 1b:56:ea:ea:11:59:b0:01:a8:76:3d:57:19:21:ec:47:2f:21: 02:25:00:db:7b:19:f2:ec:90:2b:d2:08:7b:be:1b:2e:df:25: 4a:02:74:2f:75:d0:58:fe:30:4e:78:fd:95:9a:38:ec:7e:cf: d4:7f:fb:fd:07:a4:03:37:fb:39:5a:16:91:09:ea:b5:6e:42: 6f:cd:63:69:b7:a6:c4:33:46:be:51:b7:67:a1:01:06:e0:98: 07:9b:ab:7e:fd:4f:e3:fb:45:24:8c:b7:a1:7a:0f:0b:20:2a: 59:f1:d1:95:eb:7a:a7:f6:86:9f:e3:4e:d2:a5:f3:29:52:62: a5:7d:16:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzU0MTMxMTAvBgNVBAUTKDMzRTdGMjY2MTVEM0Y0MDczMkM1M0JGODczRTI3QzlD NTJFMTJEQ0QwHhcNMjUwNDI0MjIxMTQ3WhcNMjUwNTAxMjIxMTQ3WjAYMRYwFAYD VQQDEw02ODBhYjcyMy0xMjUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1UDoXZROtO94o/VimiqcFtuzs1Bu+yeDEZITeBLCdqroc9Aq5St5XVV+CCMf W9dZxE7SS2mTgluMDNFtVXfj53oEW2fKHDVcjuwfgKjhJYjCCZKJyoaRYE95N6GC zpxOdD/mBgSoMMfD7ZXGJtkBvydft6+vDGgtGj3M0J1LV/WpWP78nFTuiotbsHDv Bi7Sr4OehG+27aTEz8ZlWIfJIyuRNytn9hXQRQMf6F9FCON6yAVVyg3377ygE5Xt 7DuI3tdficY0ss8auR66a53nEn3p21A7w0gqCT/IR4J3VBoxsv95uUWtTdqR+5cG FZx/4EIePdAjEkvEN56HTseYawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI0LauTh YSbjsULtu9S9iaUMH1uaMB8GA1UdIwQYMBaAFDPn8mYV0/QHMsU7+HPifJxS4S3N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTQxMy9ERjk5QTFFODdC RTgxMUVCOUEwOTIzNDJDNEY5QUUwMi9NLWZ5WmhYVDlBY3l4VHY0Yy1KOG5GTGhM YzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL00tZnlaaFhUOUFjeXhUdjRjLUo4bkZMaExjMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTQxMy9ERjk5QTFFODdCRTgxMUVCOUEwOTIzNDJDNEY5QUUwMi9NLWZ5WmhYVDlB Y3l4VHY0Yy1KOG5GTGhMYzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlELGaw7Msz9D1wLcDm3xI+g1PS4m6XctM5jSqlopa0zaI9SWoDlib /tlLk3L/Roy0pM5EaTfLyT8ffoGnyufkTdLUR/pXTaDrp/RzAXG8p5EdT3C0Q/4x uxrPU3NrYSLpU3GQcsnHOOm0tposQchUnCZfy87XNdnDZJ/mIf8bVurqEVmwAah2 PVcZIexHLyECJQDbexny7JAr0gh7vhsu3yVKAnQvddBY/jBOeP2Vmjjsfs/Uf/v9 B6QDN/s5WhaRCeq1bkJvzWNpt6bEM0a+UbdnoQEG4JgHm6t+/U/j+0UkjLeheg8L ICpZ8dGV63qn9oaf407SpfMpUmKlfRab -----END CERTIFICATE-----Generated at Sat Apr 26 08:00:27 2025 by rpki-client