$ rpki-client -vvf rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.mft File: yL8GWnSCLvjMYvSlTlnVhxILb0c.mft (raw, json) Hash identifier: Mj7fdUCIpHDmgnNuNNUOjLleo2nda+AxfWp8APTNHSY= Subject key identifier: 24:62:AE:1D:7B:9B:FD:18:B6:73:82:8C:24:13:84:F6:83:9A:BD:C5 Authority key identifier: C8:BF:06:5A:74:82:2E:F8:CC:62:F4:A5:4E:59:D5:87:12:0B:6F:47 Certificate issuer: /CN=A91E85F1/serialNumber=C8BF065A74822EF8CC62F4A54E59D587120B6F47 Certificate serial: 10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yL8GWnSCLvjMYvSlTlnVhxILb0c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.mft Manifest number: 0F Signing time: Fri 25 Apr 2025 07:04:28 +0000 Manifest this update: Fri 25 Apr 2025 07:04:27 +0000 Manifest next update: Fri 02 May 2025 07:04:27 +0000 Files and hashes: 1: yL8GWnSCLvjMYvSlTlnVhxILb0c.crl (hash: W/h9ipi4M8Wt8mQCSlyQ29KGE5wQYxzGyoJRkxThS0o=) 2: 4D144B780DFE11F09C46E054C4F9AE02.roa (hash: rxfflXV8vQ/KWVF6kuCP1iokmRw18P+QAjN4iDWpgsI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.crl rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yL8GWnSCLvjMYvSlTlnVhxILb0c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:04:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16 (0x10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E85F1, serialNumber=C8BF065A74822EF8CC62F4A54E59D587120B6F47 Validity Not Before: Apr 25 07:04:27 2025 GMT Not After : May 2 07:04:27 2025 GMT Subject: CN=680b33fc-0f62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:13:2a:a9:2e:aa:80:4a:1b:37:9b:a1:e4:f6: a0:1f:dd:78:1c:07:e0:cf:72:b9:51:a7:1b:d4:ac: f6:2c:fc:d1:1b:d4:5c:3b:ab:e0:54:96:ed:59:16: 2d:3b:2a:02:c7:d9:de:45:6f:df:2a:4a:fa:b8:46: 03:27:5a:71:56:b3:31:1b:d9:59:b1:ae:cc:e4:67: 64:1a:be:b4:c5:e3:93:73:62:76:bf:31:12:b1:54: f4:93:63:8e:ec:f8:14:e6:a0:9b:2d:8f:ac:aa:fe: f1:30:b0:f6:1b:4c:8a:8a:48:b6:a7:be:ce:c9:5a: 98:18:11:23:27:90:31:d4:a4:ae:59:62:28:b8:59: b7:1b:63:24:f7:41:eb:af:3a:3b:7b:4e:95:30:b5: 59:10:fe:63:05:c1:74:95:81:d4:d4:8d:8a:f1:81: 6e:27:ef:d2:71:a1:d7:07:3e:f1:21:58:cc:db:48: 80:a3:4d:c4:16:dc:ea:82:89:0e:65:35:8c:77:86: e7:ac:06:b2:07:38:b1:8a:3c:cf:5f:6f:48:6f:97: 13:4e:ad:4c:24:d4:32:0d:6c:5b:2d:3d:6f:a8:97: 61:6b:f6:6a:5b:9f:8e:c9:69:0a:3f:36:ba:fe:a4: d3:46:dd:45:ad:c2:76:84:8e:54:af:59:21:27:f8: 1c:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:62:AE:1D:7B:9B:FD:18:B6:73:82:8C:24:13:84:F6:83:9A:BD:C5 X509v3 Authority Key Identifier: keyid:C8:BF:06:5A:74:82:2E:F8:CC:62:F4:A5:4E:59:D5:87:12:0B:6F:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yL8GWnSCLvjMYvSlTlnVhxILb0c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:b5:68:91:ee:ba:1f:b7:2a:13:e6:44:35:71:05:c4:98:66: ca:7c:3e:bb:f3:fb:dd:bd:1b:ec:0e:3a:ea:c2:e2:9c:f9:0c: 97:23:7c:51:bf:dc:86:a1:32:51:ca:99:cf:0d:f3:a5:87:2a: 42:bc:4e:5d:0a:c3:84:a7:aa:83:fa:f6:b4:18:a6:56:1d:e8: 68:80:23:53:a0:42:7e:10:f5:ea:ab:9b:87:cc:35:bc:0e:c0: ef:9c:be:bc:37:47:f0:78:02:de:0d:1e:f4:2d:28:b6:f5:d2: 35:2c:73:27:b0:95:4c:21:e3:c3:03:ee:e1:ec:16:de:01:9a: 9b:5a:67:ff:11:18:44:c1:77:38:fd:d5:22:9b:bb:90:f6:e4: 47:5e:b0:26:75:58:07:a5:9f:ae:c2:13:ca:7f:14:ca:ca:f4: 2d:5e:94:25:b2:28:0f:51:aa:47:e1:c3:d6:74:c9:2a:46:cf: 12:3e:41:5d:67:25:d7:24:32:8d:d6:9f:fa:b4:9a:29:9d:f6: f9:25:b3:fb:c8:bf:f8:0f:34:ee:c5:3e:94:01:a3:09:b8:32: a2:17:46:93:9b:72:11:27:0c:c6:2a:dd:20:42:4f:88:7f:af: cf:0d:5e:b0:7b:82:7a:a3:81:7f:17:8e:3b:3a:0e:88:fc:fe: a2:c0:8d:b1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF ODVGMTExMC8GA1UEBRMoQzhCRjA2NUE3NDgyMkVGOENDNjJGNEE1NEU1OUQ1ODcx MjBCNkY0NzAeFw0yNTA0MjUwNzA0MjdaFw0yNTA1MDIwNzA0MjdaMBgxFjAUBgNV BAMTDTY4MGIzM2ZjLTBmNjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvEyqpLqqAShs3m6Hk9qAf3XgcB+DPcrlRpxvUrPYs/NEb1Fw7q+BUlu1ZFi07 KgLH2d5Fb98qSvq4RgMnWnFWszEb2VmxrszkZ2QavrTF45NzYna/MRKxVPSTY47s +BTmoJstj6yq/vEwsPYbTIqKSLanvs7JWpgYESMnkDHUpK5ZYii4WbcbYyT3Qeuv Ojt7TpUwtVkQ/mMFwXSVgdTUjYrxgW4n79JxodcHPvEhWMzbSICjTcQW3OqCiQ5l NYx3huesBrIHOLGKPM9fb0hvlxNOrUwk1DINbFstPW+ol2Fr9mpbn47JaQo/Nrr+ pNNG3UWtwnaEjlSvWSEn+BxtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJGKuHXub /Ri2c4KMJBOE9oOavcUwHwYDVR0jBBgwFoAUyL8GWnSCLvjMYvSlTlnVhxILb0cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4NUYxLzZBQTRENjBBMERG QzExRjBBMUQ5ODA1M0M0RjlBRTAyL3lMOEdXblNDTHZqTVl2U2xUbG5WaHhJTGIw Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveUw4R1duU0NMdmpNWXZTbFRsblZoeElMYjBjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4 NUYxLzZBQTRENjBBMERGQzExRjBBMUQ5ODA1M0M0RjlBRTAyL3lMOEdXblNDTHZq TVl2U2xUbG5WaHhJTGIwYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAA61aJHuuh+3KhPmRDVxBcSYZsp8Prvz+929G+wOOurC4pz5DJcjfFG/ 3IahMlHKmc8N86WHKkK8Tl0Kw4SnqoP69rQYplYd6GiAI1OgQn4Q9eqrm4fMNbwO wO+cvrw3R/B4At4NHvQtKLb10jUscyewlUwh48MD7uHsFt4BmptaZ/8RGETBdzj9 1SKbu5D25EdesCZ1WAeln67CE8p/FMrK9C1elCWyKA9Rqkfhw9Z0ySpGzxI+QV1n JdckMo3Wn/q0mimd9vkls/vIv/gPNO7FPpQBowm4MqIXRpObchEnDMYq3SBCT4h/ r88NXrB7gnqjgX8Xjjs6Doj8/qLAjbE= -----END CERTIFICATE-----Generated at Sat Apr 26 04:22:47 2025 by rpki-client