$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft File: yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft (raw, json) Hash identifier: 2umxQhgrFm6FZvQLaeyD9HuNUr6UxQr08542TBmdaA0= Subject key identifier: A7:0E:69:E7:E0:CE:1E:AB:05:B0:00:FC:32:8D:7E:B6:FB:B3:D0:5C Authority key identifier: C8:07:0F:D0:61:A8:51:FF:8A:ED:E0:DE:0C:36:07:EE:B9:8F:F7:01 Certificate issuer: /CN=A91E4D3D/serialNumber=C8070FD061A851FF8AEDE0DE0C3607EEB98FF701 Certificate serial: 05B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft Manifest number: 0598 Signing time: Thu 24 Apr 2025 23:05:13 +0000 Manifest this update: Thu 24 Apr 2025 23:05:12 +0000 Manifest next update: Thu 01 May 2025 23:05:12 +0000 Files and hashes: 1: yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl (hash: 7wt4EciSbmK8hTWvRO71iaEai3hiNmQL2cYfw+uMGA0=) 2: 5FA1BF8802DD11EE86865A23C4F9AE02.roa (hash: ui8GmB9i/5pnYfd6MeCxTJj3Yjz4hQKs4XNWYMcqflM=) 3: 3003C4BA7C7711EEB9E0BE15C4F9AE02.roa (hash: v6P92PiB+jeVRQvFzDPkmeCK4o2bOi69O9K8uU73bTE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:05:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1457 (0x5b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D3D, serialNumber=C8070FD061A851FF8AEDE0DE0C3607EEB98FF701 Validity Not Before: Apr 24 23:05:12 2025 GMT Not After : May 1 23:05:12 2025 GMT Subject: CN=680ac3a8-49af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:2a:99:87:91:ea:84:ee:ef:95:cb:c4:9e:ed: 4c:6c:ff:aa:f0:18:7f:6e:01:ba:21:a0:f1:0d:e0: 9c:24:68:5e:b8:a7:2e:ec:14:b7:e5:2b:06:80:2b: c3:98:9f:db:e9:94:cd:60:f5:27:4c:8f:ab:fb:52: 0c:c2:3c:6c:e6:6c:de:e4:e9:69:6c:90:da:df:a2: 48:e8:9d:0a:11:78:c4:8b:3d:f0:aa:52:9a:e0:41: 55:5b:8a:b3:ec:b4:10:b3:e1:51:c3:6d:db:85:50: 44:b2:c8:fc:68:cf:d8:a2:04:2a:29:69:3a:13:d5: 8c:92:c0:d5:3d:71:4f:ae:27:74:e8:8d:7f:84:ef: 67:49:b1:ce:2a:4a:68:17:ca:61:1b:11:c4:0b:68: 69:1d:1c:8c:d0:83:b0:fa:57:e1:2b:f4:2a:da:07: 93:6b:f3:f3:1c:b4:87:1b:c1:c9:2f:fc:16:fc:78: 5c:75:ef:dd:1e:a0:f0:fc:0f:89:e6:d3:ac:8b:de: a2:45:1b:f0:f3:d9:56:bb:b4:8d:d7:69:eb:54:ba: c0:a3:22:8b:67:45:eb:84:e8:63:dd:60:91:e8:1d: fb:04:4e:80:92:91:c8:0f:0b:9d:6c:b9:4c:df:23: 75:85:5f:e2:ae:32:e5:b3:ca:0a:65:0d:24:60:96: 28:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:0E:69:E7:E0:CE:1E:AB:05:B0:00:FC:32:8D:7E:B6:FB:B3:D0:5C X509v3 Authority Key Identifier: keyid:C8:07:0F:D0:61:A8:51:FF:8A:ED:E0:DE:0C:36:07:EE:B9:8F:F7:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:de:4c:26:29:8d:6e:5c:22:49:fb:b5:66:d7:9c:18:bc:99: 3a:13:6e:95:c3:5f:0c:40:ad:b0:73:fa:d7:83:38:bb:18:f7: 92:e4:fa:07:69:3c:af:f5:62:f1:dc:7d:cc:34:2e:22:58:36: dd:af:a3:cb:bf:52:f6:ac:4f:41:4f:a1:6b:87:f0:38:36:af: 9a:a0:60:bc:4f:3b:71:8b:07:fe:35:92:2d:2d:62:c4:c8:fd: 3c:7b:34:21:52:fc:e4:2c:72:39:81:4e:89:c9:3f:77:db:30: 1c:d3:8e:10:fd:3f:c9:b5:2f:f4:01:9e:77:96:1c:14:eb:4f: 9a:5c:a5:8c:33:ca:ae:9d:c1:dc:98:a2:eb:bd:36:b2:8f:3c: c7:eb:e4:75:5c:fd:24:0f:37:f0:62:33:50:3b:80:77:ab:b6: 09:72:79:1e:cd:5b:cf:81:b4:e4:40:86:f6:2d:61:49:7b:4b: 7e:47:1b:b1:e7:d9:b6:41:5c:d5:76:c9:06:1e:fe:14:13:3d: 57:63:6f:d4:d9:3e:cc:23:e8:6b:01:87:c5:71:e1:05:b5:c5: 46:0e:61:c0:cd:79:7a:9a:c9:82:72:d4:6a:7d:fc:a1:ac:6d: 44:fc:5f:cc:c8:43:67:0d:12:ec:6a:5f:c1:84:9d:ed:27:32: c0:00:a6:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREM0QxMTAvBgNVBAUTKEM4MDcwRkQwNjFBODUxRkY4QUVERTBERTBDMzYwN0VF Qjk4RkY3MDEwHhcNMjUwNDI0MjMwNTEyWhcNMjUwNTAxMjMwNTEyWjAYMRYwFAYD VQQDEw02ODBhYzNhOC00OWFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5CqZh5HqhO7vlcvEnu1MbP+q8Bh/bgG6IaDxDeCcJGheuKcu7BS35SsGgCvD mJ/b6ZTNYPUnTI+r+1IMwjxs5mze5OlpbJDa36JI6J0KEXjEiz3wqlKa4EFVW4qz 7LQQs+FRw23bhVBEssj8aM/YogQqKWk6E9WMksDVPXFPrid06I1/hO9nSbHOKkpo F8phGxHEC2hpHRyM0IOw+lfhK/Qq2geTa/PzHLSHG8HJL/wW/Hhcde/dHqDw/A+J 5tOsi96iRRvw89lWu7SN12nrVLrAoyKLZ0XrhOhj3WCR6B37BE6AkpHIDwudbLlM 3yN1hV/irjLls8oKZQ0kYJYo8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKcOaefg zh6rBbAA/DKNfrb7s9BcMB8GA1UdIwQYMBaAFMgHD9BhqFH/iu3g3gw2B+65j/cB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQzRC9CMDIwMkQzMkQ4 QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi95QWNQMEdHb1VmLUs3ZURlRERZSDdybVA5 d0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lBY1AwR0dvVWYtSzdlRGVERFlIN3JtUDl3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEQzRC9CMDIwMkQzMkQ4QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi95QWNQMEdHb1Vm LUs3ZURlRERZSDdybVA5d0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBb3kwmKY1uXCJJ+7Vm15wYvJk6E26Vw18MQK2wc/rXgzi7GPeS5PoH aTyv9WLx3H3MNC4iWDbdr6PLv1L2rE9BT6Frh/A4Nq+aoGC8Tztxiwf+NZItLWLE yP08ezQhUvzkLHI5gU6JyT932zAc044Q/T/JtS/0AZ53lhwU60+aXKWMM8quncHc mKLrvTayjzzH6+R1XP0kDzfwYjNQO4B3q7YJcnkezVvPgbTkQIb2LWFJe0t+Rxux 59m2QVzVdskGHv4UEz1XY2/U2T7MI+hrAYfFceEFtcVGDmHAzXl6msmCctRqffyh rG1E/F/MyENnDRLsal/BhJ3tJzLAAKaH -----END CERTIFICATE-----Generated at Sat Apr 26 04:25:48 2025 by rpki-client