$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft File: yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft (raw, json) Hash identifier: hTNtOMKK0ccdbkctQ4Nq1lB2OYcs3P0tbQJGiZoQSUo= Subject key identifier: 83:CA:35:71:0E:B0:2C:9D:9F:5A:7E:4C:AF:1D:08:10:66:B0:EC:0C Authority key identifier: CA:A6:EB:99:B3:FE:0E:FB:65:D3:8F:15:B2:AA:E4:DC:39:DA:B3:1D Certificate issuer: /CN=A91DE352/serialNumber=CAA6EB99B3FE0EFB65D38F15B2AAE4DC39DAB31D Certificate serial: 0512 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqbrmbP-Dvtl048Vsqrk3Dnasx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft Manifest number: 050D Signing time: Thu 24 Apr 2025 23:24:39 +0000 Manifest this update: Thu 24 Apr 2025 23:24:39 +0000 Manifest next update: Thu 01 May 2025 23:24:39 +0000 Files and hashes: 1: yqbrmbP-Dvtl048Vsqrk3Dnasx0.crl (hash: 19z27eVnGykZ8J6zCq+od8MZvkhvj6HsJtaCgNdKIG0=) 2: F1C77A3C73E711ECA415F87FC4F9AE02.roa (hash: 2CyIyNp44NxNr2SQi/2YfeBSUBR+fj5EogTGvnYWavo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.crl rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqbrmbP-Dvtl048Vsqrk3Dnasx0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:24:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1298 (0x512) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE352, serialNumber=CAA6EB99B3FE0EFB65D38F15B2AAE4DC39DAB31D Validity Not Before: Apr 24 23:24:39 2025 GMT Not After : May 1 23:24:39 2025 GMT Subject: CN=680ac837-94b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:23:7f:99:ba:2b:49:49:59:c8:d6:37:e2:98: db:1e:68:f3:b2:ad:90:4d:50:dd:b2:d7:2e:6c:96: b5:82:1d:de:fd:d1:b5:c7:11:02:56:9e:70:dd:02: 9f:53:a2:4d:2f:ae:96:d7:b8:c7:c3:81:46:20:53: 39:9c:68:5f:4c:fe:8c:f5:36:05:cc:ab:cc:0f:63: 91:ad:7f:94:47:48:0a:ce:99:10:dc:8c:b0:9f:af: 24:98:87:5f:4e:de:20:ad:f1:1b:4c:4b:14:4d:63: 03:2c:f9:49:0a:6f:1c:d4:46:84:14:d7:00:15:a6: a9:9e:4c:3f:58:f4:07:af:5a:ea:6c:4c:89:ac:11: ce:68:9b:8f:41:f2:99:93:5f:d2:39:8d:c0:c8:7c: 13:45:40:be:7a:a3:b5:ab:80:9a:9e:b9:1f:49:2a: bc:c5:07:f2:ae:2a:48:dd:d9:29:ac:c1:fc:36:d0: 75:7e:19:a9:11:8b:d0:e6:04:2f:ac:30:3c:71:e2: 84:18:ee:0d:c5:c6:b4:58:36:72:44:0a:56:1e:e9: 3e:dc:a5:ae:a2:39:c8:52:7d:42:f1:34:81:8c:a1: 00:aa:28:fe:a9:0e:4c:2d:da:73:b8:d3:dd:af:47: ab:c7:cc:7e:e8:93:3d:df:c0:41:9d:1e:a1:ab:e5: 4a:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:CA:35:71:0E:B0:2C:9D:9F:5A:7E:4C:AF:1D:08:10:66:B0:EC:0C X509v3 Authority Key Identifier: keyid:CA:A6:EB:99:B3:FE:0E:FB:65:D3:8F:15:B2:AA:E4:DC:39:DA:B3:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqbrmbP-Dvtl048Vsqrk3Dnasx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:67:09:66:c6:b3:ef:67:03:60:81:ce:8b:08:3b:10:bf:ae: 74:ae:5d:fc:c9:4f:99:28:99:98:f8:71:ad:cd:ee:7b:cc:63: b6:8a:01:02:9c:b3:05:21:38:2c:49:fc:94:aa:cb:00:6f:81: 99:21:2c:63:08:08:62:f3:c9:34:7f:30:be:f7:f8:b5:de:c6: cd:be:1f:ac:06:59:81:a0:1d:3b:28:57:87:af:12:44:66:4d: a1:01:a3:83:e0:77:f2:3c:f9:62:42:a6:76:cc:1e:08:e8:2e: 17:ce:4a:69:0b:f1:5d:02:7b:5d:ba:7c:f5:78:fe:3c:e0:23: 27:12:b6:b9:c5:c2:9c:3d:d7:ea:83:2c:34:1e:83:ae:e7:dd: 0b:07:5a:29:58:31:68:54:ad:b7:d2:8a:aa:78:da:4e:23:12: e0:01:16:06:52:22:0c:bf:23:61:24:4c:1b:09:99:c7:c1:a4: 43:14:03:b9:7d:83:d0:07:c8:d8:49:fe:6f:81:95:1b:70:11: af:90:ac:4c:b3:2e:bc:d6:f5:a4:c9:8d:6d:f1:47:7d:0a:2a: ab:37:3f:9e:59:aa:37:69:12:56:ef:d4:f5:a4:be:85:d9:3b: 50:62:99:6c:5b:f2:79:75:35:22:70:df:c4:88:9f:fb:0c:ca: d2:06:fa:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REUzNTIxMTAvBgNVBAUTKENBQTZFQjk5QjNGRTBFRkI2NUQzOEYxNUIyQUFFNERD MzlEQUIzMUQwHhcNMjUwNDI0MjMyNDM5WhcNMjUwNTAxMjMyNDM5WjAYMRYwFAYD VQQDEw02ODBhYzgzNy05NGI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAryN/mborSUlZyNY34pjbHmjzsq2QTVDdstcubJa1gh3e/dG1xxECVp5w3QKf U6JNL66W17jHw4FGIFM5nGhfTP6M9TYFzKvMD2ORrX+UR0gKzpkQ3Iywn68kmIdf Tt4grfEbTEsUTWMDLPlJCm8c1EaEFNcAFaapnkw/WPQHr1rqbEyJrBHOaJuPQfKZ k1/SOY3AyHwTRUC+eqO1q4CanrkfSSq8xQfyripI3dkprMH8NtB1fhmpEYvQ5gQv rDA8ceKEGO4Nxca0WDZyRApWHuk+3KWuojnIUn1C8TSBjKEAqij+qQ5MLdpzuNPd r0erx8x+6JM938BBnR6hq+VKUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIPKNXEO sCydn1p+TK8dCBBmsOwMMB8GA1UdIwQYMBaAFMqm65mz/g77ZdOPFbKq5Nw52rMd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTM1Mi9DOEUyMkU4QTAx MTYxMUVDOUNDREU3MjJDNEY5QUUwMi95cWJybWJQLUR2dGwwNDhWc3FyazNEbmFz eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lxYnJtYlAtRHZ0bDA0OFZzcXJrM0RuYXN4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTM1Mi9DOEUyMkU4QTAxMTYxMUVDOUNDREU3MjJDNEY5QUUwMi95cWJybWJQLUR2 dGwwNDhWc3FyazNEbmFzeDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwZwlmxrPvZwNggc6LCDsQv650rl38yU+ZKJmY+HGtze57zGO2igEC nLMFITgsSfyUqssAb4GZISxjCAhi88k0fzC+9/i13sbNvh+sBlmBoB07KFeHrxJE Zk2hAaOD4HfyPPliQqZ2zB4I6C4XzkppC/FdAntdunz1eP484CMnEra5xcKcPdfq gyw0HoOu590LB1opWDFoVK230oqqeNpOIxLgARYGUiIMvyNhJEwbCZnHwaRDFAO5 fYPQB8jYSf5vgZUbcBGvkKxMsy681vWkyY1t8Ud9CiqrNz+eWao3aRJW79T1pL6F 2TtQYplsW/J5dTUicN/EiJ/7DMrSBvpB -----END CERTIFICATE-----Generated at Sat Apr 26 17:14:12 2025 by rpki-client