$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft File: Yt3ChdqLPiCesA6qNnGEXaps8oY.mft (raw, json) Hash identifier: JBAxgfvru8Qa97Te/qBPRtrxYS0IhXON48QvgtIbFPk= Subject key identifier: 00:06:80:4E:28:A0:3F:B9:32:4E:F6:7C:8F:79:F4:74:43:32:69:7D Authority key identifier: 62:DD:C2:85:DA:8B:3E:20:9E:B0:0E:AA:36:71:84:5D:AA:6C:F2:86 Certificate issuer: /CN=A91CE5A6/serialNumber=62DDC285DA8B3E209EB00EAA3671845DAA6CF286 Certificate serial: 0134 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft Manifest number: 012E Signing time: Fri 25 Apr 2025 03:41:47 +0000 Manifest this update: Fri 25 Apr 2025 03:41:47 +0000 Manifest next update: Fri 02 May 2025 03:41:47 +0000 Files and hashes: 1: Yt3ChdqLPiCesA6qNnGEXaps8oY.crl (hash: yjRdjT79uWDvr5qYX7shQOqtunhiSj8Uz/4jS4A12u8=) 2: 64120230B2C211EFA43BF057C4F9AE02.roa (hash: 9h3davUQ9pNDA3U7SYojAK+YEhrIBkhT56ukToleizY=) 3: 3B8DEFBCB2CD11EFBEB6A532C4F9AE02.roa (hash: DgTHE1vd+LuLJ/6bYp2I4wVbGI057+J0uGiHNmi5Ok4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.crl rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:41:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 308 (0x134) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE5A6, serialNumber=62DDC285DA8B3E209EB00EAA3671845DAA6CF286 Validity Not Before: Apr 25 03:41:47 2025 GMT Not After : May 2 03:41:47 2025 GMT Subject: CN=680b047b-506b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ee:b5:7a:5a:26:bc:6f:e9:9c:46:7d:a0:67: 47:fa:63:65:2e:e3:35:66:d9:d7:0e:b4:5e:59:62: 74:14:1f:d8:6c:ed:ec:9a:82:80:3f:9d:d1:4e:d3: b0:ce:50:5f:ea:2e:61:b5:37:25:81:19:56:95:8a: 9e:59:78:3e:09:df:dd:98:56:e7:14:66:e9:97:98: 8c:37:57:fd:00:ae:3a:29:e7:d1:cd:2c:10:21:7c: 4f:1f:42:94:49:0b:c3:55:bd:2a:55:e3:75:e2:7e: 0d:3b:ff:c7:df:fc:33:9a:1d:07:5c:61:1b:c7:ac: 26:9e:85:ba:cd:5e:ff:27:78:c3:c8:1e:0f:9b:06: 24:2a:a3:03:12:f6:ea:5c:29:12:9d:1c:d7:95:63: 0b:c5:44:49:7d:3b:03:76:bf:6e:e9:23:e2:6a:e1: a2:89:aa:7c:8d:c1:7e:79:29:e3:58:9f:ed:28:8b: 97:e0:6b:64:6c:da:4e:81:4e:01:80:cd:b7:f3:66: 14:bf:50:f8:14:5b:5d:32:c0:29:14:d3:aa:b8:86: ce:75:09:dc:c6:5a:14:92:01:0a:6b:4b:37:07:6a: d8:7f:6f:39:84:ad:ee:d9:81:58:0f:d2:d8:6b:7d: bc:75:45:dc:0c:93:8f:04:76:43:9a:bd:6b:8b:84: 14:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:06:80:4E:28:A0:3F:B9:32:4E:F6:7C:8F:79:F4:74:43:32:69:7D X509v3 Authority Key Identifier: keyid:62:DD:C2:85:DA:8B:3E:20:9E:B0:0E:AA:36:71:84:5D:AA:6C:F2:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:33:b5:b0:87:7e:ca:e2:6f:6d:72:f9:07:b9:e8:f5:15:25: db:a4:b9:fc:e4:73:1f:c8:76:ab:9d:3a:59:71:7a:59:fb:b3: f9:82:25:22:01:a5:f5:60:d7:d3:d2:7f:d5:ad:1d:1f:84:da: 55:72:06:75:8d:f4:49:ae:9e:e7:59:1b:d7:4c:ae:ba:43:7b: ee:02:72:f6:8b:a4:db:17:d0:8a:3a:b7:35:27:8f:3f:b8:6d: a6:80:4f:59:8d:ab:4d:f3:1e:c8:32:d2:85:0b:59:90:1a:04: 50:f5:83:de:c0:f6:83:b7:b3:6c:24:cf:33:88:ee:91:57:c6: 55:86:15:9e:9b:1f:f7:e5:96:c7:e4:ea:73:2d:9a:4b:0a:ad: 41:e6:40:e2:b1:19:16:f1:75:de:7a:b0:14:9e:74:86:7f:9a: c7:10:81:8e:63:e7:e6:f1:b0:11:d0:99:ca:f8:30:e8:12:ff: 7b:89:29:da:fa:f0:e1:17:8e:89:e9:09:10:fe:1c:2f:7f:fc: 23:10:12:a4:91:dc:51:d4:a6:88:b4:69:98:fc:16:45:f1:14: ca:2e:98:65:06:f7:92:2c:36:ad:b5:68:5d:3b:2b:ed:a8:52: 09:bd:a8:00:95:40:e6:36:cc:61:36:fe:38:7b:a9:b1:15:12: bf:c6:1a:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1QTYxMTAvBgNVBAUTKDYyRERDMjg1REE4QjNFMjA5RUIwMEVBQTM2NzE4NDVE QUE2Q0YyODYwHhcNMjUwNDI1MDM0MTQ3WhcNMjUwNTAyMDM0MTQ3WjAYMRYwFAYD VQQDEw02ODBiMDQ3Yi01MDZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt+61elomvG/pnEZ9oGdH+mNlLuM1ZtnXDrReWWJ0FB/YbO3smoKAP53RTtOw zlBf6i5htTclgRlWlYqeWXg+Cd/dmFbnFGbpl5iMN1f9AK46KefRzSwQIXxPH0KU SQvDVb0qVeN14n4NO//H3/wzmh0HXGEbx6wmnoW6zV7/J3jDyB4PmwYkKqMDEvbq XCkSnRzXlWMLxURJfTsDdr9u6SPiauGiiap8jcF+eSnjWJ/tKIuX4GtkbNpOgU4B gM2382YUv1D4FFtdMsApFNOquIbOdQncxloUkgEKa0s3B2rYf285hK3u2YFYD9LY a328dUXcDJOPBHZDmr1ri4QUVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAAGgE4o oD+5Mk72fI959HRDMml9MB8GA1UdIwQYMBaAFGLdwoXaiz4gnrAOqjZxhF2qbPKG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTVBNi9BQUIzM0U0QzVC M0YxMUVFOEYxRDNENkVDNEY5QUUwMi9ZdDNDaGRxTFBpQ2VzQTZxTm5HRVhhcHM4 b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1l0M0NoZHFMUGlDZXNBNnFObkdFWGFwczhvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTVBNi9BQUIzM0U0QzVCM0YxMUVFOEYxRDNENkVDNEY5QUUwMi9ZdDNDaGRxTFBp Q2VzQTZxTm5HRVhhcHM4b1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjM7Wwh37K4m9tcvkHuej1FSXbpLn85HMfyHarnTpZcXpZ+7P5giUi AaX1YNfT0n/VrR0fhNpVcgZ1jfRJrp7nWRvXTK66Q3vuAnL2i6TbF9CKOrc1J48/ uG2mgE9ZjatN8x7IMtKFC1mQGgRQ9YPewPaDt7NsJM8ziO6RV8ZVhhWemx/35ZbH 5OpzLZpLCq1B5kDisRkW8XXeerAUnnSGf5rHEIGOY+fm8bAR0JnK+DDoEv97iSna +vDhF46J6QkQ/hwvf/wjEBKkkdxR1KaItGmY/BZF8RTKLphlBveSLDattWhdOyvt qFIJvagAlUDmNsxhNv44e6mxFRK/xhqE -----END CERTIFICATE-----Generated at Sat Apr 26 14:59:35 2025 by rpki-client