$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF55D/E7A77BEED11F11EB9E5B1A82C4F9AE02/YNw3XarMl4G7cC4DiCoyX-u_6bQ.mft File: YNw3XarMl4G7cC4DiCoyX-u_6bQ.mft (raw, json) Hash identifier: iHTsWFZlovtmck24TayYs+NAQ6hM0THvqthpTH3kdHk= Subject key identifier: 67:8E:DD:21:82:6F:EB:60:53:34:9D:9D:AD:D7:5E:2B:76:03:35:BB Authority key identifier: 60:DC:37:5D:AA:CC:97:81:BB:70:2E:03:88:2A:32:5F:EB:BF:E9:B4 Certificate issuer: /CN=A91DF55D/serialNumber=60DC375DAACC9781BB702E03882A325FEBBFE9B4 Certificate serial: 0593 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNw3XarMl4G7cC4DiCoyX-u_6bQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF55D/E7A77BEED11F11EB9E5B1A82C4F9AE02/YNw3XarMl4G7cC4DiCoyX-u_6bQ.mft Manifest number: 0588 Signing time: Sat 26 Apr 2025 22:55:13 +0000 Manifest this update: Sat 26 Apr 2025 22:55:13 +0000 Manifest next update: Sat 03 May 2025 22:55:13 +0000 Files and hashes: 1: YNw3XarMl4G7cC4DiCoyX-u_6bQ.crl (hash: iymn4d63fpgFkfNwzryAcoEMpykNAwEYWHSDbzY14Ic=) 2: 8504C794D12411EBAD06CD48C4F9AE02.roa (hash: zqhHb4EuNxIhj0MsDdGRZBLgZ5b4JdLttiLWNXtELcI=) 3: 84706C70D12411EBAD06CD48C4F9AE02.roa (hash: +VQvv+uWVXkQstiOmhvQpZ3+r0zEs8UArQ0Y/mZ6P60=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF55D/E7A77BEED11F11EB9E5B1A82C4F9AE02/YNw3XarMl4G7cC4DiCoyX-u_6bQ.crl rsync://rpki.apnic.net/member_repository/A91DF55D/E7A77BEED11F11EB9E5B1A82C4F9AE02/YNw3XarMl4G7cC4DiCoyX-u_6bQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNw3XarMl4G7cC4DiCoyX-u_6bQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 22:55:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1427 (0x593) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF55D, serialNumber=60DC375DAACC9781BB702E03882A325FEBBFE9B4 Validity Not Before: Apr 26 22:55:13 2025 GMT Not After : May 3 22:55:13 2025 GMT Subject: CN=680d6451-dbb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:fa:75:a4:fe:e0:95:31:dd:7a:97:30:82:de: d6:bd:2b:1a:0c:b6:98:83:39:3f:63:7c:56:f2:bb: e6:e6:d7:0c:d4:65:df:1d:8c:2e:0b:6f:b1:8e:2a: 90:59:3b:83:a8:f9:f6:db:53:ba:bc:3a:37:1d:c4: 18:b4:cc:5c:b9:99:21:af:44:db:b6:f5:6c:dc:24: 14:0c:38:2b:dd:a4:dc:4c:d2:38:82:4b:23:bb:da: 68:59:6d:8a:c8:cb:99:ce:32:9f:3e:10:70:d7:90: 84:d5:7a:13:24:3e:92:84:a3:b9:56:7f:d9:f3:02: fb:bb:4a:25:80:1d:d6:84:74:e6:8b:39:b7:e6:b5: 7c:0a:a9:f0:6f:08:35:c9:6c:fe:a6:1a:0d:1f:75: 1e:8b:89:66:02:4b:ba:6d:e6:95:b0:45:43:94:67: d8:9a:f2:f7:d2:68:ff:d4:d1:fc:72:60:e5:3f:43: f4:79:17:63:88:f7:9a:3c:88:a1:bf:74:04:e4:29: 7e:7e:23:54:ea:5d:5b:02:9f:48:3a:78:ac:0b:91: c1:45:ba:b2:9c:ad:55:df:d7:5e:3d:79:50:7a:e6: 5c:34:48:0a:13:c2:c9:89:3e:98:56:ff:41:06:a7: 24:07:e2:9e:aa:ae:16:73:38:64:11:fd:3b:57:a1: f7:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:8E:DD:21:82:6F:EB:60:53:34:9D:9D:AD:D7:5E:2B:76:03:35:BB X509v3 Authority Key Identifier: keyid:60:DC:37:5D:AA:CC:97:81:BB:70:2E:03:88:2A:32:5F:EB:BF:E9:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF55D/E7A77BEED11F11EB9E5B1A82C4F9AE02/YNw3XarMl4G7cC4DiCoyX-u_6bQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNw3XarMl4G7cC4DiCoyX-u_6bQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF55D/E7A77BEED11F11EB9E5B1A82C4F9AE02/YNw3XarMl4G7cC4DiCoyX-u_6bQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:ce:b7:99:e6:20:52:ea:67:87:f1:8f:14:72:a9:04:72:85: 8e:d0:98:ec:7b:d6:3b:ad:2d:fd:e7:0e:cd:37:0c:5f:37:ff: 0e:61:e7:14:9c:6e:dd:fe:1d:79:08:9a:2f:3c:78:45:f9:c8: de:e9:fa:15:57:43:c4:37:0e:48:0f:a5:9c:c3:f6:51:c8:82: 68:3e:45:6b:e5:a5:19:cb:fb:a6:59:13:17:79:69:7d:38:e0: da:79:fa:b1:64:f6:a5:0b:ac:3e:76:1d:06:9e:2b:f1:44:48: b1:4f:41:8e:f7:ad:d8:12:cc:b9:1a:bd:5c:9d:98:ee:38:f6: 96:78:62:ec:83:57:d5:12:c3:7d:7d:97:46:1f:1c:00:57:2f: 08:f2:3d:ac:4a:08:a5:a5:08:a2:5d:51:31:61:a6:0a:ab:60: fc:69:21:fe:35:b4:d9:2f:f8:a9:7b:77:24:b1:aa:54:62:fb: ba:6f:c6:f6:38:ac:b4:8b:ee:65:3c:ae:d2:47:5b:a9:02:27: d4:9e:84:73:db:78:1a:19:6c:17:92:82:f1:d7:62:6b:c0:4e: 38:8c:c5:7e:7b:60:a9:c2:18:ea:34:b2:7a:fc:b8:a3:c2:27: d1:d9:e7:a3:85:d0:d0:ac:61:e2:11:00:bd:83:fc:8a:f9:75: 68:e9:1a:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY1NUQxMTAvBgNVBAUTKDYwREMzNzVEQUFDQzk3ODFCQjcwMkUwMzg4MkEzMjVG RUJCRkU5QjQwHhcNMjUwNDI2MjI1NTEzWhcNMjUwNTAzMjI1NTEzWjAYMRYwFAYD VQQDEw02ODBkNjQ1MS1kYmIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvvp1pP7glTHdepcwgt7WvSsaDLaYgzk/Y3xW8rvm5tcM1GXfHYwuC2+xjiqQ WTuDqPn221O6vDo3HcQYtMxcuZkhr0TbtvVs3CQUDDgr3aTcTNI4gksju9poWW2K yMuZzjKfPhBw15CE1XoTJD6ShKO5Vn/Z8wL7u0olgB3WhHTmizm35rV8Cqnwbwg1 yWz+phoNH3Uei4lmAku6beaVsEVDlGfYmvL30mj/1NH8cmDlP0P0eRdjiPeaPIih v3QE5Cl+fiNU6l1bAp9IOnisC5HBRbqynK1V39dePXlQeuZcNEgKE8LJiT6YVv9B BqckB+Keqq4WczhkEf07V6H3pwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGeO3SGC b+tgUzSdna3XXit2AzW7MB8GA1UdIwQYMBaAFGDcN12qzJeBu3AuA4gqMl/rv+m0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjU1RC9FN0E3N0JFRUQx MUYxMUVCOUU1QjFBODJDNEY5QUUwMi9ZTnczWGFyTWw0RzdjQzREaUNveVgtdV82 YlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lOdzNYYXJNbDRHN2NDNERpQ295WC11XzZiUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjU1RC9FN0E3N0JFRUQxMUYxMUVCOUU1QjFBODJDNEY5QUUwMi9ZTnczWGFyTWw0 RzdjQzREaUNveVgtdV82YlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkzreZ5iBS6meH8Y8UcqkEcoWO0Jjse9Y7rS395w7NNwxfN/8OYecU nG7d/h15CJovPHhF+cje6foVV0PENw5ID6Wcw/ZRyIJoPkVr5aUZy/umWRMXeWl9 OODaefqxZPalC6w+dh0GnivxREixT0GO963YEsy5Gr1cnZjuOPaWeGLsg1fVEsN9 fZdGHxwAVy8I8j2sSgilpQiiXVExYaYKq2D8aSH+NbTZL/ipe3cksapUYvu6b8b2 OKy0i+5lPK7SR1upAifUnoRz23gaGWwXkoLx12JrwE44jMV+e2CpwhjqNLJ6/Lij wifR2eejhdDQrGHiEQC9g/yK+XVo6RqL -----END CERTIFICATE-----Generated at Tue Apr 29 00:34:55 2025 by rpki-client