$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft File: 2YRcGequkJIocqDK_QUfFmFPhK8.mft (raw, json) Hash identifier: Lg0ki/s1/Yldkb9v7kg00mjL3Goib2/va8v231jrZ8I= Subject key identifier: A3:69:29:0D:B8:6F:2B:83:9A:FF:63:0B:01:25:F5:9E:FF:E8:82:2A Authority key identifier: D9:84:5C:19:EA:AE:90:92:28:72:A0:CA:FD:05:1F:16:61:4F:84:AF Certificate issuer: /CN=A91C6BF0/serialNumber=D9845C19EAAE90922872A0CAFD051F16614F84AF Certificate serial: 0E06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft Manifest number: 0F78 Signing time: Thu 24 Apr 2025 17:50:10 +0000 Manifest this update: Thu 24 Apr 2025 17:50:10 +0000 Manifest next update: Thu 01 May 2025 17:50:10 +0000 Files and hashes: 1: 2YRcGequkJIocqDK_QUfFmFPhK8.crl (hash: w6q8GhSXyckrJUmYjE4Tj6uGfTsIJAerp+sdj49NFEQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.crl rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3590 (0xe06) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6BF0, serialNumber=D9845C19EAAE90922872A0CAFD051F16614F84AF Validity Not Before: Apr 24 17:50:10 2025 GMT Not After : May 1 17:50:10 2025 GMT Subject: CN=680a79d2-89cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:59:01:5c:e6:97:9b:7c:e9:b5:72:1a:88:03: ee:e9:b9:07:c0:a8:47:bb:af:36:6d:52:e0:b3:e8: 91:33:01:52:94:69:3c:87:c2:58:70:34:7c:6e:f2: f5:b0:da:f7:4c:39:e7:08:36:cd:f8:f4:7d:8c:e9: 8d:f7:07:a3:aa:75:e8:83:9f:88:15:33:b8:7a:e0: ac:2d:e6:da:48:f8:b8:21:28:f9:8b:89:30:8e:f1: de:78:39:e6:66:d0:45:0d:11:15:62:50:ab:6d:df: 05:07:f5:47:76:ef:fc:25:b4:ff:62:dd:ad:7c:fa: bd:b9:1c:98:3f:68:a3:42:84:bd:14:e5:eb:3e:b8: fc:61:00:42:68:19:61:60:0d:3f:fc:e5:11:eb:02: 59:c1:65:9c:46:36:87:0e:c3:2d:60:a2:5e:c9:76: 6d:e3:25:aa:59:76:eb:fc:ef:75:4a:80:5c:63:4f: 78:53:d0:ba:f1:a4:6e:21:ef:32:d7:3b:95:43:c4: ab:c3:55:93:79:58:3b:35:1b:05:dc:d8:76:72:a3: 06:cd:1f:36:72:ff:1d:3a:06:18:14:fb:3b:63:5e: 5c:5c:04:ac:14:fe:8a:76:18:cc:1c:ff:5a:89:1f: 8f:e2:78:2d:47:3f:4c:bd:b0:48:05:3b:c6:a9:8c: 22:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:69:29:0D:B8:6F:2B:83:9A:FF:63:0B:01:25:F5:9E:FF:E8:82:2A X509v3 Authority Key Identifier: keyid:D9:84:5C:19:EA:AE:90:92:28:72:A0:CA:FD:05:1F:16:61:4F:84:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:c4:8f:58:5d:4f:59:b8:cf:14:7e:f9:54:54:4e:97:a7:92: 3e:48:97:ff:2e:d1:4b:19:7f:b7:cf:da:fc:2b:db:96:90:2e: ed:69:0f:ac:db:41:79:ed:fa:58:88:e1:e7:83:af:74:f6:3c: e8:6c:67:f7:a3:d1:c0:b6:9e:0f:1f:3e:97:a9:c2:2e:ba:ef: 8a:cd:8e:61:9e:75:3c:72:e5:03:c7:aa:a0:07:ee:6e:20:5e: 7c:e2:1f:36:68:53:fa:96:bd:05:dc:cc:d2:47:ac:08:a0:74: c6:96:b1:14:1b:85:2c:c3:40:f9:44:47:6d:7e:56:f8:b6:6b: aa:13:95:62:5b:95:1d:8b:c4:d1:36:fd:f9:d5:ca:ae:23:8f: 0e:ac:49:8a:d1:07:4c:1a:d9:cc:23:9b:e4:03:4e:9a:7d:ec: 72:39:04:7f:af:b6:75:66:4e:3f:39:3e:c0:20:c3:26:1a:58: dd:ba:e4:7c:2c:e0:b9:0e:2e:6a:54:e0:eb:c8:e8:c0:da:93: 73:50:5c:05:25:84:4a:7b:29:e5:7d:f5:15:fb:f6:54:86:6f: 8b:0a:d3:0d:30:13:92:4f:1d:7f:2e:67:0f:cd:4a:7f:08:9c: 7e:4f:e9:98:7f:ea:38:c7:dc:0c:55:f4:18:c0:f4:0f:93:bc: ab:0b:8e:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDgYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZCRjAxMTAvBgNVBAUTKEQ5ODQ1QzE5RUFBRTkwOTIyODcyQTBDQUZEMDUxRjE2 NjE0Rjg0QUYwHhcNMjUwNDI0MTc1MDEwWhcNMjUwNTAxMTc1MDEwWjAYMRYwFAYD VQQDEw02ODBhNzlkMi04OWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1VkBXOaXm3zptXIaiAPu6bkHwKhHu682bVLgs+iRMwFSlGk8h8JYcDR8bvL1 sNr3TDnnCDbN+PR9jOmN9wejqnXog5+IFTO4euCsLebaSPi4ISj5i4kwjvHeeDnm ZtBFDREVYlCrbd8FB/VHdu/8JbT/Yt2tfPq9uRyYP2ijQoS9FOXrPrj8YQBCaBlh YA0//OUR6wJZwWWcRjaHDsMtYKJeyXZt4yWqWXbr/O91SoBcY094U9C68aRuIe8y 1zuVQ8Srw1WTeVg7NRsF3Nh2cqMGzR82cv8dOgYYFPs7Y15cXASsFP6KdhjMHP9a iR+P4ngtRz9MvbBIBTvGqYwiBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKNpKQ24 byuDmv9jCwEl9Z7/6IIqMB8GA1UdIwQYMBaAFNmEXBnqrpCSKHKgyv0FHxZhT4Sv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkJGMC8xNDkxOTc0QUFF QkIxMUU5OEEzOTBCNTlDNEY5QUUwMi8yWVJjR2VxdWtKSW9jcURLX1FVZkZtRlBo SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJZUmNHZXF1a0pJb2NxREtfUVVmRm1GUGhLOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkJGMC8xNDkxOTc0QUFFQkIxMUU5OEEzOTBCNTlDNEY5QUUwMi8yWVJjR2VxdWtK SW9jcURLX1FVZkZtRlBoSzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBexI9YXU9ZuM8UfvlUVE6Xp5I+SJf/LtFLGX+3z9r8K9uWkC7taQ+s 20F57fpYiOHng6909jzobGf3o9HAtp4PHz6XqcIuuu+KzY5hnnU8cuUDx6qgB+5u IF584h82aFP6lr0F3MzSR6wIoHTGlrEUG4Usw0D5REdtflb4tmuqE5ViW5Udi8TR Nv351cquI48OrEmK0QdMGtnMI5vkA06afexyOQR/r7Z1Zk4/OT7AIMMmGljduuR8 LOC5Di5qVODryOjA2pNzUFwFJYRKeynlffUV+/ZUhm+LCtMNMBOSTx1/LmcPzUp/ CJx+T+mYf+o4x9wMVfQYwPQPk7yrC46H -----END CERTIFICATE-----Generated at Sat Apr 26 08:18:42 2025 by rpki-client