$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft File: 0ypa3AVCwugXwgK-a3KB6GnReJc.mft (raw, json) Hash identifier: B7QvUzeOC1GCjzCPZ8Hbw3jIvMY2Gbsqf/Q9UnD0Ocg= Subject key identifier: FC:A2:C3:FA:16:76:57:2F:F0:52:4C:BD:42:4D:13:51:9F:12:3C:C6 Authority key identifier: D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97 Certificate issuer: /CN=A91E0855/serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897 Certificate serial: 95 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft Manifest number: 93 Signing time: Fri 25 Apr 2025 05:23:47 +0000 Manifest this update: Fri 25 Apr 2025 05:23:46 +0000 Manifest next update: Fri 02 May 2025 05:23:46 +0000 Files and hashes: 1: 0ypa3AVCwugXwgK-a3KB6GnReJc.crl (hash: Nv0r1vemqgTn+VutPLIWsPWISiJa8OSOhwAkV+VcGz4=) 2: 1818952C8D5811EFAD3A5D3BC4F9AE02.roa (hash: tKSHJqdsSmpGgJzA0ThHFbJCNwhgg/q9aM0ZWxNfpP8=) 3: 30C3ECA444B811EF8C81962AC4F9AE02.roa (hash: YRkHlOrrGzxXTEGbxmwj8yAFxeMrCPHch9CuERcM2OI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.crl rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:23:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0855, serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897 Validity Not Before: Apr 25 05:23:46 2025 GMT Not After : May 2 05:23:46 2025 GMT Subject: CN=680b1c62-e98d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:c6:e7:a4:30:41:4e:97:72:7b:1a:f4:a9:e0: 70:4b:b0:02:4c:71:a8:68:31:cb:9e:3c:09:6f:8d: de:0b:f9:fe:1c:94:5b:25:df:4c:5b:50:54:78:81: bf:2a:06:c1:ef:4e:d9:c1:98:c4:c6:e7:93:3b:03: b1:54:1a:62:cc:25:62:bb:07:b7:57:ee:02:64:c6: 54:b5:3f:4f:98:8d:5d:32:d0:ab:38:f7:9b:f8:c1: 1f:a4:13:3f:c3:3d:d7:2d:45:fa:65:d9:49:12:6e: 8e:6c:33:c9:d0:31:61:bb:79:ad:38:13:85:93:c7: fa:ff:d0:c9:c3:56:b2:b1:1f:f0:93:19:6f:0e:02: 7b:6f:b7:59:31:d6:55:26:8d:38:24:81:90:43:66: 28:67:c3:9f:17:32:dd:09:79:a9:2b:4f:e3:c6:48: 28:01:e1:16:8e:80:a5:28:33:c0:ca:4b:61:e0:fa: 01:a5:d8:26:70:38:0e:14:f9:1a:5c:07:17:4f:46: 5f:c8:9e:39:a2:2e:6d:9d:77:9c:3c:6c:58:c9:f8: 22:7e:63:b9:ee:2a:79:d2:b3:c0:b8:75:27:c7:0e: 96:59:4e:7e:3c:c7:3f:0b:c5:0e:52:3f:c7:73:d2: dd:59:57:bd:5d:14:d2:3b:f4:4a:dd:97:1d:9a:29: 9a:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:A2:C3:FA:16:76:57:2F:F0:52:4C:BD:42:4D:13:51:9F:12:3C:C6 X509v3 Authority Key Identifier: keyid:D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:e3:49:98:b3:f2:78:2a:6d:92:20:54:e7:b3:8b:0c:0a:15: b8:2b:ab:31:b3:c4:56:5b:12:47:f2:4c:ab:d0:58:ae:20:1d: 50:af:56:c4:29:ca:6e:6b:21:f4:33:38:57:ca:86:49:51:4c: 29:59:dc:54:6c:96:5b:73:e0:18:7f:e2:46:bd:75:ce:fe:30: 9e:00:ca:79:0e:60:57:05:de:9a:7d:07:4e:ed:f4:19:e7:93: a6:9e:77:92:d0:3e:6e:48:2b:e3:6c:0c:0a:3d:13:c9:ea:07: a0:49:d9:37:60:55:c3:04:0e:9b:0b:5e:2c:1d:5a:07:9e:68: ae:51:cf:83:41:74:7f:30:b1:37:30:25:87:66:7d:af:eb:bd: 48:ce:80:cd:cb:64:7e:7c:b5:18:4b:d8:f1:da:e4:6b:b2:64: ef:29:12:ba:68:34:24:53:5e:d4:25:dc:cf:33:45:75:d5:0b: 94:8c:ab:dc:ae:38:71:cf:59:a9:93:70:3c:f6:43:4b:64:90: 27:8c:4b:0d:4d:42:90:9c:6a:9f:36:f1:27:72:46:e0:6c:74: 75:c5:b0:7a:94:fe:9c:ca:6b:cd:b3:3e:42:83:9f:79:b1:5e: 41:ec:41:99:82:59:54:c1:d2:83:31:ee:d2:b5:d2:f8:59:01: ad:e0:37:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTA4NTUxMTAvBgNVBAUTKEQzMkE1QURDMDU0MkMyRTgxN0MyMDJCRTZCNzI4MUU4 NjlEMTc4OTcwHhcNMjUwNDI1MDUyMzQ2WhcNMjUwNTAyMDUyMzQ2WjAYMRYwFAYD VQQDEw02ODBiMWM2Mi1lOThkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2MbnpDBBTpdyexr0qeBwS7ACTHGoaDHLnjwJb43eC/n+HJRbJd9MW1BUeIG/ KgbB707ZwZjExueTOwOxVBpizCViuwe3V+4CZMZUtT9PmI1dMtCrOPeb+MEfpBM/ wz3XLUX6ZdlJEm6ObDPJ0DFhu3mtOBOFk8f6/9DJw1aysR/wkxlvDgJ7b7dZMdZV Jo04JIGQQ2YoZ8OfFzLdCXmpK0/jxkgoAeEWjoClKDPAykth4PoBpdgmcDgOFPka XAcXT0ZfyJ45oi5tnXecPGxYyfgifmO57ip50rPAuHUnxw6WWU5+PMc/C8UOUj/H c9LdWVe9XRTSO/RK3Zcdmima2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPyiw/oW dlcv8FJMvUJNE1GfEjzGMB8GA1UdIwQYMBaAFNMqWtwFQsLoF8ICvmtygehp0XiX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDg1NS81MDRDRkZFMjQ0 OTYxMUVGOEU4NEU2M0RDNEY5QUUwMi8weXBhM0FWQ3d1Z1h3Z0stYTNLQjZHblJl SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzB5cGEzQVZDd3VnWHdnSy1hM0tCNkduUmVKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDg1NS81MDRDRkZFMjQ0OTYxMUVGOEU4NEU2M0RDNEY5QUUwMi8weXBhM0FWQ3d1 Z1h3Z0stYTNLQjZHblJlSmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAy40mYs/J4Km2SIFTns4sMChW4K6sxs8RWWxJH8kyr0FiuIB1Qr1bE KcpuayH0MzhXyoZJUUwpWdxUbJZbc+AYf+JGvXXO/jCeAMp5DmBXBd6afQdO7fQZ 55OmnneS0D5uSCvjbAwKPRPJ6gegSdk3YFXDBA6bC14sHVoHnmiuUc+DQXR/MLE3 MCWHZn2v671IzoDNy2R+fLUYS9jx2uRrsmTvKRK6aDQkU17UJdzPM0V11QuUjKvc rjhxz1mpk3A89kNLZJAnjEsNTUKQnGqfNvEnckbgbHR1xbB6lP6cymvNsz5Cg595 sV5B7EGZgllUwdKDMe7StdL4WQGt4Dew -----END CERTIFICATE-----Generated at Sat Apr 26 13:03:29 2025 by rpki-client