$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft File: YcuQhfAv-PpF5zL1gDQPQkngDKI.mft (raw, json) Hash identifier: LJFZUIW0AWrbntpaK/EHSpX3PAxSrhWbnJQDMLThS4w= Subject key identifier: 1E:9C:69:C2:4C:89:40:11:9D:7D:2E:4D:5A:C3:6B:F9:21:B5:B5:1F Authority key identifier: 61:CB:90:85:F0:2F:F8:FA:45:E7:32:F5:80:34:0F:42:49:E0:0C:A2 Certificate issuer: /CN=A91DCB25/serialNumber=61CB9085F02FF8FA45E732F580340F4249E00CA2 Certificate serial: 1174 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YcuQhfAv-PpF5zL1gDQPQkngDKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft Manifest number: 116B Signing time: Thu 24 Apr 2025 17:14:33 +0000 Manifest this update: Thu 24 Apr 2025 17:14:33 +0000 Manifest next update: Thu 01 May 2025 17:14:33 +0000 Files and hashes: 1: YcuQhfAv-PpF5zL1gDQPQkngDKI.crl (hash: +OuZNRbF8UwKiUqVdUiktn6SXGAwVAEC/ZFcpL5cHns=) 2: BDC1AB0AFDA611E88FA5E26DC4F9AE02.roa (hash: SB9Ipu4AFekvf7xWy+dJxrZfjpqZ4b1Xx/G1XVRpODY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.crl rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YcuQhfAv-PpF5zL1gDQPQkngDKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:14:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4468 (0x1174) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCB25, serialNumber=61CB9085F02FF8FA45E732F580340F4249E00CA2 Validity Not Before: Apr 24 17:14:33 2025 GMT Not After : May 1 17:14:33 2025 GMT Subject: CN=680a7179-b3ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:43:6f:17:98:1c:0d:3c:77:b7:0c:08:32:63: bc:db:b5:f8:75:4c:05:18:c3:42:36:8d:47:b3:67: 13:67:82:4f:74:a2:39:28:93:a4:ea:e5:fe:f4:12: 53:80:13:69:57:68:5b:a9:c0:b3:7e:4c:2a:b7:d4: 0c:b6:db:53:16:02:de:28:8d:a5:c6:a5:4e:2d:20: 54:d7:11:9a:d8:0a:4a:78:a2:b6:8f:a6:76:f7:c0: 35:0f:e8:08:2b:1c:bd:41:7c:4f:2f:62:32:f4:86: 5d:1c:ad:41:2b:35:be:87:40:dd:9c:60:a1:8c:b9: 34:5c:bc:ba:7d:b8:f8:5b:dd:2a:cd:c5:6f:0d:a9: f1:ad:c8:34:e1:e3:a1:18:9e:29:cf:70:c7:f7:61: ce:a5:b0:95:d8:48:b5:0f:2a:e3:26:44:96:12:b2: 7c:99:ca:0c:ae:8c:37:ea:d1:6a:83:1e:e1:9f:31: d8:ab:71:a6:c3:3d:10:a9:59:c4:0e:0d:5d:26:81: af:46:db:23:ec:df:a6:bb:5f:12:25:6e:a9:ad:42: 88:0b:c9:ab:76:07:35:1b:95:bd:de:34:59:82:db: 1a:52:6e:fd:c6:e4:8f:57:67:59:68:a2:e8:27:7f: 3d:ae:a7:f6:90:c9:9f:44:79:6b:30:34:fa:83:8f: 1c:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:9C:69:C2:4C:89:40:11:9D:7D:2E:4D:5A:C3:6B:F9:21:B5:B5:1F X509v3 Authority Key Identifier: keyid:61:CB:90:85:F0:2F:F8:FA:45:E7:32:F5:80:34:0F:42:49:E0:0C:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YcuQhfAv-PpF5zL1gDQPQkngDKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:f0:95:72:4e:9c:57:a4:18:29:dd:fb:79:ed:93:ca:b2:38: 9b:63:5f:cc:d7:c4:dc:94:22:7c:c2:cd:14:29:de:fc:f0:0f: 1f:70:d6:2a:f8:d9:e1:23:6b:1a:e7:a4:6c:22:51:c1:06:8c: 77:5a:43:d2:be:61:20:57:61:2f:8d:6a:78:28:d7:ce:74:01: 97:c5:d7:a4:79:0b:5a:5f:cd:c9:a4:f6:dc:dd:96:5f:63:43: f1:08:10:39:87:f2:90:6c:58:f0:8c:ce:13:71:1f:db:7e:6d: 90:ce:60:e0:1a:bc:89:08:b4:f8:58:66:07:29:56:e0:69:39: 21:2d:ae:16:9e:e3:77:b1:21:0c:ad:29:50:c7:9f:c0:df:b7: dd:8c:07:69:d4:12:46:39:ed:6e:b0:dd:14:2b:37:26:74:7b: 0e:b9:1a:df:bd:1e:62:58:da:e8:9c:65:7e:d2:f1:42:33:95: a7:5e:da:71:b4:c8:56:b6:90:85:4f:40:e1:e9:ae:30:ed:af: c8:55:24:8b:ca:f9:84:6e:71:41:d6:b2:52:41:21:8a:27:8b: 59:f9:55:03:4f:20:45:3f:e8:69:f3:12:d6:02:79:85:a9:61: 69:e9:ee:35:d8:c7:a4:65:a5:d7:3b:70:b5:f4:1c:43:ae:30: 62:b5:dc:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEXQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENCMjUxMTAvBgNVBAUTKDYxQ0I5MDg1RjAyRkY4RkE0NUU3MzJGNTgwMzQwRjQy NDlFMDBDQTIwHhcNMjUwNDI0MTcxNDMzWhcNMjUwNTAxMTcxNDMzWjAYMRYwFAYD VQQDEw02ODBhNzE3OS1iM2ZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvkNvF5gcDTx3twwIMmO827X4dUwFGMNCNo1Hs2cTZ4JPdKI5KJOk6uX+9BJT gBNpV2hbqcCzfkwqt9QMtttTFgLeKI2lxqVOLSBU1xGa2ApKeKK2j6Z298A1D+gI Kxy9QXxPL2Iy9IZdHK1BKzW+h0DdnGChjLk0XLy6fbj4W90qzcVvDanxrcg04eOh GJ4pz3DH92HOpbCV2Ei1DyrjJkSWErJ8mcoMrow36tFqgx7hnzHYq3Gmwz0QqVnE Dg1dJoGvRtsj7N+mu18SJW6prUKIC8mrdgc1G5W93jRZgtsaUm79xuSPV2dZaKLo J389rqf2kMmfRHlrMDT6g48c5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB6cacJM iUARnX0uTVrDa/khtbUfMB8GA1UdIwQYMBaAFGHLkIXwL/j6Recy9YA0D0JJ4Ayi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0IyNS8yQzYwREZEOEZE QTUxMUU4ODg1OUMwNkJDNEY5QUUwMi9ZY3VRaGZBdi1QcEY1ekwxZ0RRUFFrbmdE S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ljdVFoZkF2LVBwRjV6TDFnRFFQUWtuZ0RLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Q0IyNS8yQzYwREZEOEZEQTUxMUU4ODg1OUMwNkJDNEY5QUUwMi9ZY3VRaGZBdi1Q cEY1ekwxZ0RRUFFrbmdES0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBA8JVyTpxXpBgp3ft57ZPKsjibY1/M18TclCJ8ws0UKd788A8fcNYq +NnhI2sa56RsIlHBBox3WkPSvmEgV2EvjWp4KNfOdAGXxdekeQtaX83JpPbc3ZZf Y0PxCBA5h/KQbFjwjM4TcR/bfm2QzmDgGryJCLT4WGYHKVbgaTkhLa4WnuN3sSEM rSlQx5/A37fdjAdp1BJGOe1usN0UKzcmdHsOuRrfvR5iWNronGV+0vFCM5WnXtpx tMhWtpCFT0Dh6a4w7a/IVSSLyvmEbnFB1rJSQSGKJ4tZ+VUDTyBFP+hp8xLWAnmF qWFp6e412MekZaXXO3C19BxDrjBitdyv -----END CERTIFICATE-----Generated at Sat Apr 26 12:56:48 2025 by rpki-client