$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.mft File: y4244fF7x3I0bdn_uyByz6j9plI.mft (raw, json) Hash identifier: FITnm1ZjtIpttUB3r8fAfzRs4MM7ove6Tb/Xbag6oDc= Subject key identifier: F9:8B:D6:5A:CC:C6:79:37:37:6B:9A:4D:0C:A2:25:AE:FB:F1:6F:B3 Authority key identifier: CB:8D:B8:E1:F1:7B:C7:72:34:6D:D9:FF:BB:20:72:CF:A8:FD:A6:52 Certificate issuer: /CN=A91DB7E9/serialNumber=CB8DB8E1F17BC772346DD9FFBB2072CFA8FDA652 Certificate serial: 0121 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y4244fF7x3I0bdn_uyByz6j9plI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.mft Manifest number: 0121 Signing time: Fri 25 Apr 2025 03:50:45 +0000 Manifest this update: Fri 25 Apr 2025 03:50:44 +0000 Manifest next update: Fri 02 May 2025 03:50:44 +0000 Files and hashes: 1: y4244fF7x3I0bdn_uyByz6j9plI.crl (hash: T/gyxzWWztYHZR9iFgCbsvVZxR6ASuD6nZlmd9ToRjw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.crl rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y4244fF7x3I0bdn_uyByz6j9plI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:50:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 289 (0x121) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB7E9, serialNumber=CB8DB8E1F17BC772346DD9FFBB2072CFA8FDA652 Validity Not Before: Apr 25 03:50:44 2025 GMT Not After : May 2 03:50:44 2025 GMT Subject: CN=680b0694-33b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:17:85:6f:09:72:b5:c5:94:a2:c8:e1:d9:09: 82:b3:6e:55:c6:49:d4:33:ba:bb:0e:c4:ea:5f:56: dc:61:32:05:d6:f0:a4:6e:1a:04:39:d3:0d:d7:28: 1d:68:37:0f:58:c0:15:5a:0d:c2:97:07:f9:56:fc: cf:e2:0f:32:c6:c9:17:22:1b:5f:18:43:c1:81:1c: 7b:77:c6:dd:ca:65:74:e9:e4:19:16:57:3d:a8:ff: f8:4c:87:2f:86:f5:db:ab:93:82:cd:c1:2e:88:f6: 64:83:eb:ba:cd:07:d1:78:00:5e:d2:97:38:70:ac: d1:30:40:0e:22:24:bd:71:7b:58:e8:c1:72:58:9c: 49:3d:20:d0:20:1f:39:ca:a7:4e:9b:ea:70:dc:4e: 16:a6:23:38:31:17:61:d0:7d:4a:40:d0:23:5d:93: 5d:02:68:60:db:bf:d3:8d:95:07:fe:20:fa:d7:ba: 03:4c:2e:e3:27:aa:06:4f:cc:9b:2d:26:b3:3e:fc: f9:75:d5:62:e3:cc:48:c4:70:2d:e0:01:9f:07:3a: ee:4d:a6:ba:c8:87:82:e1:30:9f:4b:68:94:71:29: 22:45:6a:1d:86:a4:3c:02:03:a1:57:6b:35:01:86: ce:7e:9b:0d:df:67:99:8a:a7:80:c2:e6:be:27:eb: cc:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:8B:D6:5A:CC:C6:79:37:37:6B:9A:4D:0C:A2:25:AE:FB:F1:6F:B3 X509v3 Authority Key Identifier: keyid:CB:8D:B8:E1:F1:7B:C7:72:34:6D:D9:FF:BB:20:72:CF:A8:FD:A6:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y4244fF7x3I0bdn_uyByz6j9plI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:00:f8:05:a9:2b:f9:18:8e:b6:b3:42:9d:83:d5:14:0d:a9: 20:55:4d:5a:c2:3e:86:d9:79:2d:d2:20:8e:d1:82:fb:f1:81: eb:a4:bc:2b:87:cf:c9:b9:9e:67:9f:d2:22:a6:83:60:38:7b: 1e:7d:93:fb:2e:48:84:2d:13:61:6c:30:22:85:d2:4b:76:6a: 8f:c3:49:76:bd:46:6a:ea:76:8f:18:bd:f3:59:31:bb:e2:8c: ca:66:1c:44:c7:a7:1c:fa:ce:06:00:1a:0e:13:f6:cc:3e:db: ab:be:ff:6c:e8:bc:68:e5:5e:fe:4f:c7:61:de:14:a0:ee:b8: f8:7a:99:ec:5f:2d:97:5b:15:ba:b0:b8:df:38:21:28:43:5c: 18:db:74:2b:b0:f1:f0:42:e1:6c:64:4a:3d:61:46:10:13:20: 73:cd:09:a2:49:47:25:21:95:9d:70:8f:08:6d:6c:b5:a7:6b: 10:80:86:06:4f:c2:e3:11:c2:f6:b9:58:32:59:7a:c9:ae:38: 38:52:3c:62:bd:f7:ff:cb:3c:8e:67:80:39:e6:23:75:6e:6a: ef:9e:ee:b1:ce:08:a6:55:5a:2b:25:41:ca:33:98:28:03:35: d9:33:e9:90:7f:3a:ba:9d:4d:0c:af:80:7b:d9:ea:26:ec:73: fe:5f:ef:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI3RTkxMTAvBgNVBAUTKENCOERCOEUxRjE3QkM3NzIzNDZERDlGRkJCMjA3MkNG QThGREE2NTIwHhcNMjUwNDI1MDM1MDQ0WhcNMjUwNTAyMDM1MDQ0WjAYMRYwFAYD VQQDEw02ODBiMDY5NC0zM2IzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxBeFbwlytcWUosjh2QmCs25VxknUM7q7DsTqX1bcYTIF1vCkbhoEOdMN1ygd aDcPWMAVWg3Clwf5VvzP4g8yxskXIhtfGEPBgRx7d8bdymV06eQZFlc9qP/4TIcv hvXbq5OCzcEuiPZkg+u6zQfReABe0pc4cKzRMEAOIiS9cXtY6MFyWJxJPSDQIB85 yqdOm+pw3E4WpiM4MRdh0H1KQNAjXZNdAmhg27/TjZUH/iD617oDTC7jJ6oGT8yb LSazPvz5ddVi48xIxHAt4AGfBzruTaa6yIeC4TCfS2iUcSkiRWodhqQ8AgOhV2s1 AYbOfpsN32eZiqeAwua+J+vMYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPmL1lrM xnk3N2uaTQyiJa778W+zMB8GA1UdIwQYMBaAFMuNuOHxe8dyNG3Z/7sgcs+o/aZS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjdFOS9FMEM0NjEzMDZF MkUxMUVFODVEOTJEMzJDNEY5QUUwMi95NDI0NGZGN3gzSTBiZG5fdXlCeXo2ajlw bEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3k0MjQ0ZkY3eDNJMGJkbl91eUJ5ejZqOXBsSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjdFOS9FMEM0NjEzMDZFMkUxMUVFODVEOTJEMzJDNEY5QUUwMi95NDI0NGZGN3gz STBiZG5fdXlCeXo2ajlwbEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5APgFqSv5GI62s0Kdg9UUDakgVU1awj6G2Xkt0iCO0YL78YHrpLwr h8/JuZ5nn9IipoNgOHsefZP7LkiELRNhbDAihdJLdmqPw0l2vUZq6naPGL3zWTG7 4ozKZhxEx6cc+s4GABoOE/bMPturvv9s6Lxo5V7+T8dh3hSg7rj4epnsXy2XWxW6 sLjfOCEoQ1wY23QrsPHwQuFsZEo9YUYQEyBzzQmiSUclIZWdcI8IbWy1p2sQgIYG T8LjEcL2uVgyWXrJrjg4Ujxivff/yzyOZ4A55iN1bmrvnu6xzgimVVorJUHKM5go AzXZM+mQfzq6nU0Mr4B72eom7HP+X++Z -----END CERTIFICATE-----Generated at Sat Apr 26 17:04:54 2025 by rpki-client