$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0CF5/538C1960492B11EFBE10184FC4F9AE02/y7u7JLIrQ10cpJOp1j3Kd5vgeWo.mft File: y7u7JLIrQ10cpJOp1j3Kd5vgeWo.mft (raw, json) Hash identifier: EsbjvAlb4FumfnCzPdfhmYhBIEq99a6vqFUReD5o3a0= Subject key identifier: 5E:57:C8:88:A2:AB:85:7C:11:54:38:7B:52:24:03:6D:3A:CA:8E:80 Authority key identifier: CB:BB:BB:24:B2:2B:43:5D:1C:A4:93:A9:D6:3D:CA:77:9B:E0:79:6A Certificate issuer: /CN=A91E0CF5/serialNumber=CBBBBB24B22B435D1CA493A9D63DCA779BE0796A Certificate serial: 8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7u7JLIrQ10cpJOp1j3Kd5vgeWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0CF5/538C1960492B11EFBE10184FC4F9AE02/y7u7JLIrQ10cpJOp1j3Kd5vgeWo.mft Manifest number: 8E Signing time: Fri 25 Apr 2025 05:27:45 +0000 Manifest this update: Fri 25 Apr 2025 05:27:44 +0000 Manifest next update: Fri 02 May 2025 05:27:44 +0000 Files and hashes: 1: y7u7JLIrQ10cpJOp1j3Kd5vgeWo.crl (hash: WUjNmx8gRKHI4LRKZ8dAuO1jFyCYg5H2c1eM092rx8A=) 2: C155660E492B11EF8EF0D04FC4F9AE02.roa (hash: OVQ/CMJ4XqARrGXYEMgXeRxRPf3/PHnhFuc4e8fTgpg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0CF5/538C1960492B11EFBE10184FC4F9AE02/y7u7JLIrQ10cpJOp1j3Kd5vgeWo.crl rsync://rpki.apnic.net/member_repository/A91E0CF5/538C1960492B11EFBE10184FC4F9AE02/y7u7JLIrQ10cpJOp1j3Kd5vgeWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7u7JLIrQ10cpJOp1j3Kd5vgeWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:27:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 143 (0x8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0CF5, serialNumber=CBBBBB24B22B435D1CA493A9D63DCA779BE0796A Validity Not Before: Apr 25 05:27:44 2025 GMT Not After : May 2 05:27:44 2025 GMT Subject: CN=680b1d51-ef50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:31:ac:c0:76:17:42:1f:4b:2d:85:6d:07:97: 56:2e:b9:7f:78:09:80:f2:3f:99:a1:03:54:da:18: 03:8c:52:d1:2e:89:a1:4d:2f:14:c4:38:f0:4d:d2: 15:fe:61:f9:80:c4:d6:a2:bb:2b:09:3f:9a:92:9b: 84:53:ff:ce:94:58:2c:9b:7e:0e:f7:5f:4a:2a:16: 02:91:a4:e3:a3:e1:60:dd:4c:08:8a:8b:3f:52:72: 37:07:06:ba:78:91:4e:40:fd:b5:00:a5:b2:d4:99: d9:b5:5a:06:7d:67:fb:12:b4:ce:59:fa:ea:1a:d2: 7b:69:1f:69:d8:52:3b:da:c1:b5:07:29:85:35:0a: 5d:c0:9e:ef:90:e6:32:22:15:cc:a6:b4:ca:a2:42: 6f:97:be:9d:1c:cb:9a:1c:ee:79:a5:e3:c3:e8:03: ba:0c:0e:aa:41:15:60:0c:85:f3:b7:44:ec:90:79: 83:55:e4:a0:33:e2:91:00:35:2b:81:78:1e:87:2b: 29:5f:78:1a:81:ba:08:6d:22:0f:22:95:bb:c4:bb: e7:46:fc:54:b1:fe:15:c9:ec:16:2d:1e:26:1f:33: 44:76:ff:60:b0:0e:00:78:1d:85:1d:86:78:95:9f: 10:cc:e3:f0:61:cb:b6:f5:0d:30:93:03:48:f3:7d: ad:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:57:C8:88:A2:AB:85:7C:11:54:38:7B:52:24:03:6D:3A:CA:8E:80 X509v3 Authority Key Identifier: keyid:CB:BB:BB:24:B2:2B:43:5D:1C:A4:93:A9:D6:3D:CA:77:9B:E0:79:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0CF5/538C1960492B11EFBE10184FC4F9AE02/y7u7JLIrQ10cpJOp1j3Kd5vgeWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7u7JLIrQ10cpJOp1j3Kd5vgeWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0CF5/538C1960492B11EFBE10184FC4F9AE02/y7u7JLIrQ10cpJOp1j3Kd5vgeWo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:15:0c:98:0a:c4:a0:de:4f:ae:f5:34:4a:34:d5:e7:58:6a: 53:35:56:c1:e6:02:4e:a0:b5:b4:90:30:69:c8:3c:bd:4b:ea: c1:55:5e:fc:06:0b:54:0a:ef:31:5b:c9:b9:c6:02:2d:da:a2: 9f:00:70:a9:8c:24:82:b9:2d:39:cd:07:ed:e6:aa:64:54:b3: 0c:f5:7e:dd:aa:d0:17:b1:fc:b7:54:18:d3:68:66:e4:ca:15: 86:c2:fb:97:31:15:fe:ed:cd:9a:03:5a:5e:17:1c:aa:63:76: a7:77:f1:f2:47:be:93:3d:2d:86:84:f9:62:24:57:9a:fa:8f: 0c:72:fc:6a:70:6d:d0:04:cf:5d:d9:a9:9f:33:3f:07:4e:45: c1:a0:ef:4e:69:7e:2b:93:7f:5b:db:dd:15:ae:96:b1:6e:32: e0:25:b8:4e:dd:8d:23:3d:a3:26:d3:7a:9c:c7:1e:7f:62:5a: 88:cd:08:b8:0c:59:3f:32:2a:b1:59:60:76:d5:21:92:5b:5c: cb:d2:5b:59:99:06:36:08:f3:b5:4b:b1:ee:c6:52:08:61:9f: b4:a6:b7:18:76:9a:c4:cd:5b:d2:17:0c:54:7b:59:8e:e4:06: 99:e8:40:ce:a2:c3:2b:98:5a:91:9c:a6:2b:03:b3:e7:be:f1: 7a:20:2d:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBDRjUxMTAvBgNVBAUTKENCQkJCQjI0QjIyQjQzNUQxQ0E0OTNBOUQ2M0RDQTc3 OUJFMDc5NkEwHhcNMjUwNDI1MDUyNzQ0WhcNMjUwNTAyMDUyNzQ0WjAYMRYwFAYD VQQDEw02ODBiMWQ1MS1lZjUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApTGswHYXQh9LLYVtB5dWLrl/eAmA8j+ZoQNU2hgDjFLRLomhTS8UxDjwTdIV /mH5gMTWorsrCT+akpuEU//OlFgsm34O919KKhYCkaTjo+Fg3UwIios/UnI3Bwa6 eJFOQP21AKWy1JnZtVoGfWf7ErTOWfrqGtJ7aR9p2FI72sG1BymFNQpdwJ7vkOYy IhXMprTKokJvl76dHMuaHO55pePD6AO6DA6qQRVgDIXzt0TskHmDVeSgM+KRADUr gXgehyspX3gagboIbSIPIpW7xLvnRvxUsf4VyewWLR4mHzNEdv9gsA4AeB2FHYZ4 lZ8QzOPwYcu29Q0wkwNI832tewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF5XyIii q4V8EVQ4e1IkA206yo6AMB8GA1UdIwQYMBaAFMu7uySyK0NdHKSTqdY9yneb4Hlq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMENGNS81MzhDMTk2MDQ5 MkIxMUVGQkUxMDE4NEZDNEY5QUUwMi95N3U3SkxJclExMGNwSk9wMWozS2Q1dmdl V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3k3dTdKTElyUTEwY3BKT3AxajNLZDV2Z2VXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MENGNS81MzhDMTk2MDQ5MkIxMUVGQkUxMDE4NEZDNEY5QUUwMi95N3U3SkxJclEx MGNwSk9wMWozS2Q1dmdlV28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWFQyYCsSg3k+u9TRKNNXnWGpTNVbB5gJOoLW0kDBpyDy9S+rBVV78 BgtUCu8xW8m5xgIt2qKfAHCpjCSCuS05zQft5qpkVLMM9X7dqtAXsfy3VBjTaGbk yhWGwvuXMRX+7c2aA1peFxyqY3and/HyR76TPS2GhPliJFea+o8McvxqcG3QBM9d 2amfMz8HTkXBoO9OaX4rk39b290VrpaxbjLgJbhO3Y0jPaMm03qcxx5/YlqIzQi4 DFk/MiqxWWB21SGSW1zL0ltZmQY2CPO1S7HuxlIIYZ+0prcYdprEzVvSFwxUe1mO 5AaZ6EDOosMrmFqRnKYrA7PnvvF6IC2O -----END CERTIFICATE-----Generated at Sat Apr 26 13:10:52 2025 by rpki-client