$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.mft File: ysNNxbjd0zsX7HVcldRdD3YlD6g.mft (raw, json) Hash identifier: UGjpogCVqMTUgP3CcJ7vT4LvSztlWoktZmrT1gX57Bc= Subject key identifier: 65:F5:60:04:C8:12:58:32:14:5F:33:08:E1:47:43:E2:37:57:EF:B8 Authority key identifier: CA:C3:4D:C5:B8:DD:D3:3B:17:EC:75:5C:95:D4:5D:0F:76:25:0F:A8 Certificate issuer: /CN=A91C9B39/serialNumber=CAC34DC5B8DDD33B17EC755C95D45D0F76250FA8 Certificate serial: 01BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysNNxbjd0zsX7HVcldRdD3YlD6g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.mft Manifest number: 01BB Signing time: Fri 25 Apr 2025 02:14:49 +0000 Manifest this update: Fri 25 Apr 2025 02:14:49 +0000 Manifest next update: Fri 02 May 2025 02:14:49 +0000 Files and hashes: 1: ysNNxbjd0zsX7HVcldRdD3YlD6g.crl (hash: uN+UuNI0ZHzhp2KOq3fFayhH+hd+g4HyQmuNRP1IhYQ=) 2: E21DEF607B5E11ED98247D60C4F9AE02.roa (hash: ADnEMa2Brj1gfAu5du2mdudMmrXS7wa9cPzXrkNiEN4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.crl rsync://rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysNNxbjd0zsX7HVcldRdD3YlD6g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:14:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 446 (0x1be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9B39, serialNumber=CAC34DC5B8DDD33B17EC755C95D45D0F76250FA8 Validity Not Before: Apr 25 02:14:49 2025 GMT Not After : May 2 02:14:49 2025 GMT Subject: CN=680af019-7bae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:78:35:db:21:4b:82:f9:37:1c:d9:e2:e8:6d: 9e:f0:db:f1:db:9a:ae:9b:1b:c0:98:c4:ec:0d:ff: ba:dd:06:11:73:c6:7c:e3:f4:14:dc:5e:96:f0:bf: b5:d4:7f:c4:3a:0e:ac:83:67:3e:d2:50:4a:37:b4: db:8f:0e:a0:59:b8:42:4b:1c:e8:85:56:3b:2a:32: b6:99:a7:17:07:e3:d6:01:22:6a:1c:64:1e:fb:4e: 41:02:7b:fa:48:80:48:43:1c:0b:ab:d8:3f:a1:73: 50:5e:fc:f3:36:2a:28:6f:be:e5:ec:7d:21:39:c7: 22:da:28:21:46:81:98:db:a0:02:61:d8:b3:08:28: 70:44:ce:8c:c5:34:6f:8f:ec:2c:7b:d2:32:17:81: b3:dd:2d:67:db:5c:e9:65:73:48:90:f0:b0:ad:30: d9:1c:43:b3:09:4e:c8:dd:81:fe:fd:29:34:62:6a: 02:86:47:02:9e:27:a0:20:58:95:ef:41:72:47:41: 0e:2e:51:29:1c:80:91:60:44:87:03:98:68:f8:c9: 94:a3:2b:40:92:f0:cd:0c:2c:b4:cb:a2:c9:ba:ad: 3a:37:d4:51:05:f4:3c:aa:15:a4:92:0d:bc:97:ac: e7:28:67:27:f3:f4:6c:4b:24:81:9a:ba:f1:db:ba: 3b:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:F5:60:04:C8:12:58:32:14:5F:33:08:E1:47:43:E2:37:57:EF:B8 X509v3 Authority Key Identifier: keyid:CA:C3:4D:C5:B8:DD:D3:3B:17:EC:75:5C:95:D4:5D:0F:76:25:0F:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysNNxbjd0zsX7HVcldRdD3YlD6g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:bb:dd:54:74:04:ae:61:e5:31:88:dc:0c:ac:4e:34:c2:99: 5f:a1:a4:b4:e9:b7:20:83:d7:f0:03:c8:e8:81:6a:2e:18:64: 0c:a1:67:d1:ef:32:8b:5a:91:12:cf:b7:45:10:93:2a:9e:96: c5:12:58:bd:47:b6:80:9a:bc:ff:08:48:c9:ac:da:7f:17:33: c0:a4:10:66:4e:bf:3a:a5:98:80:55:76:9e:4a:31:3a:0d:c8: e0:0b:be:84:8d:3c:e1:fb:c4:c9:ee:77:d0:04:b7:d0:be:0a: f2:4c:e5:67:d0:bc:65:90:dc:22:69:79:dc:bb:13:cc:68:69: 6c:65:c4:04:9b:38:cb:b7:7a:35:18:5f:78:83:74:7a:1b:81: 59:94:ed:88:04:b3:27:24:ea:f7:3f:28:63:40:bd:2a:52:4a: ab:4e:51:a9:0b:56:ab:b1:76:d1:3c:cd:d9:58:7a:25:f9:48: b4:57:3d:86:f1:c2:34:f3:03:49:81:c4:fd:5d:6c:82:f5:81: d4:0a:8d:22:a4:9b:63:ee:04:82:37:44:93:74:c8:c6:c3:cb: c8:6b:59:f1:54:ac:be:3a:25:fb:e7:76:c7:dd:a9:11:e2:f4: ff:55:9b:a7:aa:2c:c6:7c:d5:26:f6:0c:4d:90:5f:94:d7:58: 13:b4:ae:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAb4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlCMzkxMTAvBgNVBAUTKENBQzM0REM1QjhEREQzM0IxN0VDNzU1Qzk1RDQ1RDBG NzYyNTBGQTgwHhcNMjUwNDI1MDIxNDQ5WhcNMjUwNTAyMDIxNDQ5WjAYMRYwFAYD VQQDEw02ODBhZjAxOS03YmFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAung12yFLgvk3HNni6G2e8Nvx25qumxvAmMTsDf+63QYRc8Z84/QU3F6W8L+1 1H/EOg6sg2c+0lBKN7Tbjw6gWbhCSxzohVY7KjK2macXB+PWASJqHGQe+05BAnv6 SIBIQxwLq9g/oXNQXvzzNioob77l7H0hOcci2ighRoGY26ACYdizCChwRM6MxTRv j+wse9IyF4Gz3S1n21zpZXNIkPCwrTDZHEOzCU7I3YH+/Sk0YmoChkcCniegIFiV 70FyR0EOLlEpHICRYESHA5ho+MmUoytAkvDNDCy0y6LJuq06N9RRBfQ8qhWkkg28 l6znKGcn8/RsSySBmrrx27o7ZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGX1YATI ElgyFF8zCOFHQ+I3V++4MB8GA1UdIwQYMBaAFMrDTcW43dM7F+x1XJXUXQ92JQ+o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUIzOS9CNjE1RDBCQzdC NUExMUVEQTVFM0NBNjZDNEY5QUUwMi95c05OeGJqZDB6c1g3SFZjbGRSZEQzWWxE NmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lzTk54YmpkMHpzWDdIVmNsZFJkRDNZbEQ2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUIzOS9CNjE1RDBCQzdCNUExMUVEQTVFM0NBNjZDNEY5QUUwMi95c05OeGJqZDB6 c1g3SFZjbGRSZEQzWWxENmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWu91UdASuYeUxiNwMrE40wplfoaS06bcgg9fwA8jogWouGGQMoWfR 7zKLWpESz7dFEJMqnpbFEli9R7aAmrz/CEjJrNp/FzPApBBmTr86pZiAVXaeSjE6 DcjgC76EjTzh+8TJ7nfQBLfQvgryTOVn0LxlkNwiaXncuxPMaGlsZcQEmzjLt3o1 GF94g3R6G4FZlO2IBLMnJOr3PyhjQL0qUkqrTlGpC1arsXbRPM3ZWHol+Ui0Vz2G 8cI08wNJgcT9XWyC9YHUCo0ipJtj7gSCN0STdMjGw8vIa1nxVKy+OiX753bH3akR 4vT/VZunqizGfNUm9gxNkF+U11gTtK6f -----END CERTIFICATE-----Generated at Sat Apr 26 13:54:52 2025 by rpki-client