$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft File: yCFQSaXsETZftnQLghcGdiaArRc.mft (raw, json) Hash identifier: nxGNhFhA/wntqvOI4MOWtl+syxjHaK1JXJvot+CIceA= Subject key identifier: A6:CC:10:49:73:3D:93:9D:61:32:74:48:67:FB:69:EC:54:D8:A8:8F Authority key identifier: C8:21:50:49:A5:EC:11:36:5F:B6:74:0B:82:17:06:76:26:80:AD:17 Certificate issuer: /CN=A91DC459/serialNumber=C8215049A5EC11365FB6740B821706762680AD17 Certificate serial: C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft Manifest number: C4 Signing time: Fri 25 Apr 2025 04:51:11 +0000 Manifest this update: Fri 25 Apr 2025 04:51:10 +0000 Manifest next update: Fri 02 May 2025 04:51:10 +0000 Files and hashes: 1: yCFQSaXsETZftnQLghcGdiaArRc.crl (hash: 3aGLmie/MTDXlBQm/feu3DbX1FQ1hoI02ixUrDrxF+4=) 2: 264C45FAFA3F11EE8A884F09C4F9AE02.roa (hash: 5Qk7wqUj4bSez6DKvrGbvLq6LTkbYNIBEPZBlcBLEEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.crl rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:51:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 198 (0xc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC459, serialNumber=C8215049A5EC11365FB6740B821706762680AD17 Validity Not Before: Apr 25 04:51:10 2025 GMT Not After : May 2 04:51:10 2025 GMT Subject: CN=680b14be-dc25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:eb:c1:d5:ca:8a:76:42:c4:56:8c:0c:6c:92: 5f:fe:fb:72:ff:2c:e6:3d:54:75:bd:f3:48:5d:d3: 5a:24:39:69:56:af:41:e5:0d:0d:19:d7:61:c4:4a: 4a:54:01:42:cd:5a:7f:5e:5e:ee:c4:ef:b4:b3:98: d4:e3:2c:5a:84:3b:2b:1b:7d:d8:6a:c2:85:e8:bf: e1:68:23:94:11:e3:b2:08:03:ba:0e:eb:7d:b3:38: 01:a5:7a:1c:b8:3e:b4:b1:30:04:e2:ac:aa:89:8b: 4e:c8:76:e5:b7:ab:7f:17:06:5f:d1:1c:e8:26:dd: df:aa:28:ec:b1:02:0a:27:95:48:16:43:a6:8d:80: b4:c6:77:b3:ae:c3:c1:5c:71:c9:fe:43:0e:d1:64: a3:19:77:59:2d:4f:49:3b:98:53:67:be:cf:2c:a9: 6f:26:75:06:83:71:de:c0:0f:19:21:be:c0:8c:7d: 25:fb:dc:58:92:e7:35:a0:93:e4:f6:d2:2e:c7:8c: 8f:98:79:07:38:27:95:a3:25:0c:19:0a:a3:d8:de: 45:04:ec:1d:c7:2c:2b:93:41:b2:32:75:6d:20:2b: 26:f3:7b:3e:1d:c8:c8:bc:19:0c:74:4b:69:73:ea: f7:12:03:a1:0a:8a:a7:d6:a5:10:d5:88:f2:6a:4f: f4:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:CC:10:49:73:3D:93:9D:61:32:74:48:67:FB:69:EC:54:D8:A8:8F X509v3 Authority Key Identifier: keyid:C8:21:50:49:A5:EC:11:36:5F:B6:74:0B:82:17:06:76:26:80:AD:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:93:37:86:3b:1a:10:07:a5:69:5f:0e:73:dd:1d:73:d2:83: a0:56:54:96:20:12:00:7e:0e:23:69:7d:27:8b:d9:e9:8f:77: 9b:ad:a2:b5:72:ab:3c:5f:16:c9:e3:3e:2a:a6:a4:67:99:22: 5b:d4:f5:8b:04:92:e6:e9:ce:de:32:36:4a:90:fa:7a:23:0c: e6:01:1d:ca:72:5a:83:af:e4:a7:9e:f1:eb:c4:e2:ed:49:49: fa:c6:1b:61:7d:91:8c:dc:16:55:f3:c6:7d:8a:c3:43:4f:c0: f3:67:31:fd:54:66:1c:dd:e6:77:4e:a1:85:94:7a:34:07:54: a2:d4:11:83:0e:83:70:64:65:1c:64:2e:a0:d0:51:85:81:08: 42:da:95:6d:af:40:40:3c:0b:9e:0b:15:82:a6:13:b8:2e:87: fe:b8:11:36:b2:18:be:f7:de:25:27:c7:b7:0d:23:97:27:3b: 18:d4:ed:4b:29:41:f2:9c:e2:61:80:3e:9c:3c:db:25:36:6c: e6:f6:82:ec:8a:5a:da:c2:34:9f:de:dc:7d:7c:69:a8:49:a3: e1:f9:22:9a:81:90:54:89:56:f4:d7:45:fe:94:f2:b2:1d:a9: 6b:cf:de:7a:c4:8f:ea:a6:01:59:05:09:86:0b:8a:9c:66:47: e1:04:14:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0NTkxMTAvBgNVBAUTKEM4MjE1MDQ5QTVFQzExMzY1RkI2NzQwQjgyMTcwNjc2 MjY4MEFEMTcwHhcNMjUwNDI1MDQ1MTEwWhcNMjUwNTAyMDQ1MTEwWjAYMRYwFAYD VQQDEw02ODBiMTRiZS1kYzI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxevB1cqKdkLEVowMbJJf/vty/yzmPVR1vfNIXdNaJDlpVq9B5Q0NGddhxEpK VAFCzVp/Xl7uxO+0s5jU4yxahDsrG33YasKF6L/haCOUEeOyCAO6Dut9szgBpXoc uD60sTAE4qyqiYtOyHblt6t/FwZf0RzoJt3fqijssQIKJ5VIFkOmjYC0xnezrsPB XHHJ/kMO0WSjGXdZLU9JO5hTZ77PLKlvJnUGg3HewA8ZIb7AjH0l+9xYkuc1oJPk 9tIux4yPmHkHOCeVoyUMGQqj2N5FBOwdxywrk0GyMnVtICsm83s+HcjIvBkMdEtp c+r3EgOhCoqn1qUQ1Yjyak/0kQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKbMEElz PZOdYTJ0SGf7aexU2KiPMB8GA1UdIwQYMBaAFMghUEml7BE2X7Z0C4IXBnYmgK0X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzQ1OS9BOTM1MDdCQ0Y2 RDUxMUVFQjg3ODNDMUVDNEY5QUUwMi95Q0ZRU2FYc0VUWmZ0blFMZ2hjR2RpYUFy UmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lDRlFTYVhzRVRaZnRuUUxnaGNHZGlhQXJSYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzQ1OS9BOTM1MDdCQ0Y2RDUxMUVFQjg3ODNDMUVDNEY5QUUwMi95Q0ZRU2FYc0VU WmZ0blFMZ2hjR2RpYUFyUmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACkzeGOxoQB6VpXw5z3R1z0oOgVlSWIBIAfg4jaX0ni9npj3ebraK1 cqs8XxbJ4z4qpqRnmSJb1PWLBJLm6c7eMjZKkPp6IwzmAR3KclqDr+SnnvHrxOLt SUn6xhthfZGM3BZV88Z9isNDT8DzZzH9VGYc3eZ3TqGFlHo0B1Si1BGDDoNwZGUc ZC6g0FGFgQhC2pVtr0BAPAueCxWCphO4Lof+uBE2shi+994lJ8e3DSOXJzsY1O1L KUHynOJhgD6cPNslNmzm9oLsilrawjSf3tx9fGmoSaPh+SKagZBUiVb010X+lPKy Halrz956xI/qpgFZBQmGC4qcZkfhBBT8 -----END CERTIFICATE-----Generated at Sat Apr 26 04:27:06 2025 by rpki-client