$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1E29/DD13F8F0B29F11EA9380C04BC4F9AE02/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.mft File: W_YkOZCpRkyFt4I9tCbiq5ZyCjw.mft (raw, json) Hash identifier: O2/BHcdVYMLJcRmz3liH+xrSrkFQwxoqX24kS3zVoCo= Subject key identifier: 7D:55:50:11:F6:7C:48:82:F5:DA:8A:D8:3D:AC:91:6E:68:17:ED:8D Authority key identifier: 5B:F6:24:39:90:A9:46:4C:85:B7:82:3D:B4:26:E2:AB:96:72:0A:3C Certificate issuer: /CN=A91D1E29/serialNumber=5BF6243990A9464C85B7823DB426E2AB96720A3C Certificate serial: 08BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1E29/DD13F8F0B29F11EA9380C04BC4F9AE02/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.mft Manifest number: 08B5 Signing time: Thu 24 Apr 2025 20:22:35 +0000 Manifest this update: Thu 24 Apr 2025 20:22:34 +0000 Manifest next update: Thu 01 May 2025 20:22:34 +0000 Files and hashes: 1: W_YkOZCpRkyFt4I9tCbiq5ZyCjw.crl (hash: iYdZn70vaiD1ox10NUJiSs/wkoA7sf1SAMjjml4XeoQ=) 2: 108B7DAAB2A711EAABBE8663C4F9AE02.roa (hash: qTuGE1JcRtd/cW9n5J8BXF2j1PTZne38og2GGYl8DqM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1E29/DD13F8F0B29F11EA9380C04BC4F9AE02/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.crl rsync://rpki.apnic.net/member_repository/A91D1E29/DD13F8F0B29F11EA9380C04BC4F9AE02/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:22:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2235 (0x8bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1E29, serialNumber=5BF6243990A9464C85B7823DB426E2AB96720A3C Validity Not Before: Apr 24 20:22:34 2025 GMT Not After : May 1 20:22:34 2025 GMT Subject: CN=680a9d8b-646b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:df:86:cb:2a:2b:b4:c6:fe:c2:63:29:1e:b4: b7:eb:1c:51:ab:11:dd:3a:87:67:c9:71:a8:6e:28: 11:b3:95:47:42:8a:fc:16:44:65:a5:37:64:55:c4: 2c:0b:e1:61:5c:32:6c:1e:2c:1a:bd:79:74:4a:03: b9:74:c4:df:df:b4:1d:89:21:ff:c7:f7:cc:5c:16: 88:35:30:4e:f9:5b:f2:e7:dc:1e:ba:c0:26:1b:52: cf:b5:dd:45:06:b0:82:27:70:e4:da:f0:ee:51:62: 77:af:e2:dd:3f:82:89:b8:29:aa:67:73:ec:83:e8: be:9e:93:9d:a3:f5:2c:09:12:ef:71:05:9b:8b:c3: 9d:f1:5f:a9:5f:6b:3c:ef:dc:d1:a3:3f:a1:b4:26: 2a:87:8d:08:22:d5:16:e0:16:95:56:40:cb:45:d2: b6:f5:54:a9:d2:a3:0d:89:26:18:16:fe:1f:5c:11: 80:58:bf:50:37:8b:b5:96:ef:9a:d5:27:e8:3c:1e: 44:b3:ac:d2:61:c3:71:7a:20:38:bf:18:74:ec:ca: 49:39:44:40:8c:5e:ef:1f:b8:d0:67:24:12:0a:2b: 31:78:18:66:2e:99:73:e5:4f:e4:bc:3b:04:f1:ba: e0:46:37:e1:1b:fc:7c:ba:a8:e3:ef:c8:61:4e:65: 4a:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:55:50:11:F6:7C:48:82:F5:DA:8A:D8:3D:AC:91:6E:68:17:ED:8D X509v3 Authority Key Identifier: keyid:5B:F6:24:39:90:A9:46:4C:85:B7:82:3D:B4:26:E2:AB:96:72:0A:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1E29/DD13F8F0B29F11EA9380C04BC4F9AE02/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1E29/DD13F8F0B29F11EA9380C04BC4F9AE02/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:5f:44:b2:3d:eb:25:12:c2:63:6b:f9:b4:44:55:c4:ee:6f: ee:10:ba:a7:67:6c:11:c0:96:8f:4d:84:2b:17:bb:59:6b:68: 05:8e:54:4a:d3:be:fe:ba:82:c0:3d:53:f1:55:f4:9e:ca:ba: bd:a0:97:ac:e9:73:ca:f8:9f:16:db:72:1f:d8:49:ff:2a:27: 8b:4f:5b:a6:d1:0e:1e:80:69:3f:d1:85:da:a4:52:6a:d4:fb: 9c:79:ac:c8:ae:fd:56:d6:d9:68:82:4c:37:fc:83:0f:c8:53: c2:3c:c4:87:e8:6c:eb:d0:8a:cb:a3:18:b1:97:f7:94:1d:a3: 24:67:da:32:ba:8f:f4:4a:3a:4c:08:ae:d8:f0:30:8d:ff:b7: 47:81:52:12:35:b5:bb:6d:56:a0:13:55:8c:aa:0f:24:4e:78: 5d:6c:f6:3c:78:2c:4f:d1:fc:02:5b:2c:67:7d:6a:0c:c9:23: 0a:18:55:06:58:d4:bf:ca:bb:0f:86:17:55:21:39:de:58:0d: 72:7f:0d:80:57:9e:1b:e8:40:4a:67:84:be:84:70:8c:e4:c2: 6a:4e:e0:56:a2:27:5d:53:f0:bb:62:2f:5f:de:80:f7:97:4c: ce:9f:0d:77:b2:5e:67:8a:13:a5:53:ca:23:2c:61:be:94:bb: 8b:09:5a:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCLswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFFMjkxMTAvBgNVBAUTKDVCRjYyNDM5OTBBOTQ2NEM4NUI3ODIzREI0MjZFMkFC OTY3MjBBM0MwHhcNMjUwNDI0MjAyMjM0WhcNMjUwNTAxMjAyMjM0WjAYMRYwFAYD VQQDEw02ODBhOWQ4Yi02NDZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyt+GyyortMb+wmMpHrS36xxRqxHdOodnyXGobigRs5VHQor8FkRlpTdkVcQs C+FhXDJsHiwavXl0SgO5dMTf37QdiSH/x/fMXBaINTBO+Vvy59weusAmG1LPtd1F BrCCJ3Dk2vDuUWJ3r+LdP4KJuCmqZ3Psg+i+npOdo/UsCRLvcQWbi8Od8V+pX2s8 79zRoz+htCYqh40IItUW4BaVVkDLRdK29VSp0qMNiSYYFv4fXBGAWL9QN4u1lu+a 1SfoPB5Es6zSYcNxeiA4vxh07MpJOURAjF7vH7jQZyQSCisxeBhmLplz5U/kvDsE 8brgRjfhG/x8uqjj78hhTmVKZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH1VUBH2 fEiC9dqK2D2skW5oF+2NMB8GA1UdIwQYMBaAFFv2JDmQqUZMhbeCPbQm4quWcgo8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUUyOS9ERDEzRjhGMEIy OUYxMUVBOTM4MEMwNEJDNEY5QUUwMi9XX1lrT1pDcFJreUZ0NEk5dENiaXE1WnlD ancuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dfWWtPWkNwUmt5RnQ0STl0Q2JpcTVaeUNqdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MUUyOS9ERDEzRjhGMEIyOUYxMUVBOTM4MEMwNEJDNEY5QUUwMi9XX1lrT1pDcFJr eUZ0NEk5dENiaXE1WnlDancubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOX0SyPeslEsJja/m0RFXE7m/uELqnZ2wRwJaPTYQrF7tZa2gFjlRK 077+uoLAPVPxVfSeyrq9oJes6XPK+J8W23If2En/KieLT1um0Q4egGk/0YXapFJq 1PuceazIrv1W1tlogkw3/IMPyFPCPMSH6Gzr0IrLoxixl/eUHaMkZ9oyuo/0SjpM CK7Y8DCN/7dHgVISNbW7bVagE1WMqg8kTnhdbPY8eCxP0fwCWyxnfWoMySMKGFUG WNS/yrsPhhdVITneWA1yfw2AV54b6EBKZ4S+hHCM5MJqTuBWoiddU/C7Yi9f3oD3 l0zOnw13sl5nihOlU8ojLGG+lLuLCVok -----END CERTIFICATE-----Generated at Sat Apr 26 15:06:56 2025 by rpki-client