$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.mft File: _RYHGGNz6B9E0TeyoOlpV-YquKE.mft (raw, json) Hash identifier: /nLUQOdICKNkbesPXpxVP8T4xbkUR+AlebNSD3G4tsg= Subject key identifier: 6C:77:9A:12:D9:9E:46:CF:B0:1E:BD:AF:17:3B:91:99:1E:49:39:AA Authority key identifier: FD:16:07:18:63:73:E8:1F:44:D1:37:B2:A0:E9:69:57:E6:2A:B8:A1 Certificate issuer: /CN=A91EA958/serialNumber=FD1607186373E81F44D137B2A0E96957E62AB8A1 Certificate serial: 34B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_RYHGGNz6B9E0TeyoOlpV-YquKE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.mft Manifest number: 3496 Signing time: Thu 24 Apr 2025 15:02:32 +0000 Manifest this update: Thu 24 Apr 2025 15:02:32 +0000 Manifest next update: Thu 01 May 2025 15:02:32 +0000 Files and hashes: 1: _RYHGGNz6B9E0TeyoOlpV-YquKE.crl (hash: F7NcwtPBVIVRP5RzZGmzzR9fwN0U9MW4AaX6pDtiEc8=) 2: 5A7BB752BD2F11EBB84EE532C4F9AE02.roa (hash: BdwgkrEVvS7EaJMjyx021N1wHkcgwHBJVY8E6E534xQ=) 3: D347187A7E9511ECA9132A0BC4F9AE02.roa (hash: 4i/7LdEU/T1ZHgOr95PKDKNxvTm/ZtFlmP55xUeSbB0=) 4: 59F4A758BD2F11EBB84EE532C4F9AE02.roa (hash: c0Nj/EakD9jZWUmq6GYt4WJPzbB76p849p8VWNsKos4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.crl rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_RYHGGNz6B9E0TeyoOlpV-YquKE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:02:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13491 (0x34b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA958, serialNumber=FD1607186373E81F44D137B2A0E96957E62AB8A1 Validity Not Before: Apr 24 15:02:32 2025 GMT Not After : May 1 15:02:32 2025 GMT Subject: CN=680a5288-2eaf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:8d:59:cb:37:aa:e7:d9:9a:16:01:cf:b8:f8: 2b:0d:06:cf:2c:4a:69:6f:bf:f4:d5:dd:61:da:b8: 28:33:7d:ec:d8:54:77:22:2b:4c:e7:83:7b:e1:8e: 25:8a:fd:23:1e:6f:55:8c:f1:52:7e:7a:60:8f:9d: 4e:68:5f:58:5c:8e:cf:2a:46:28:56:cf:dd:76:8a: a8:0d:83:b1:c2:94:25:25:65:10:ae:a2:c4:b5:91: 57:51:fa:7b:b9:4a:e6:d6:63:2a:92:32:e9:bc:9c: a5:d2:81:b2:b3:64:db:64:f0:e8:4e:43:14:fd:c6: 70:8e:2b:97:62:e9:94:86:ce:ec:16:c8:8d:24:3d: 6f:8d:7d:9b:c5:c4:91:56:be:5c:46:61:bf:2d:ce: 99:2d:67:ff:fe:9b:df:bb:ba:18:57:17:cd:c0:ff: 97:24:2d:42:3e:1f:e2:76:87:ff:94:cd:08:cd:40: cc:52:db:4a:e3:c7:f6:1d:1f:7e:10:6b:14:da:b8: ce:61:54:af:4e:43:01:34:35:0d:85:9e:ff:e5:1c: 53:df:cc:b1:c7:82:b7:9c:56:d9:71:33:6b:95:54: d3:a5:22:8b:61:f8:f3:bc:c2:5e:e6:f8:26:29:76: 76:50:01:fd:ad:6b:bb:23:38:eb:f0:92:67:46:dc: 69:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:77:9A:12:D9:9E:46:CF:B0:1E:BD:AF:17:3B:91:99:1E:49:39:AA X509v3 Authority Key Identifier: keyid:FD:16:07:18:63:73:E8:1F:44:D1:37:B2:A0:E9:69:57:E6:2A:B8:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_RYHGGNz6B9E0TeyoOlpV-YquKE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:48:a8:16:8c:b7:f1:4c:8b:86:80:c3:62:c3:fd:79:af:8b: 89:51:a9:e5:1d:4f:f0:86:5c:89:18:6a:dc:4b:f3:11:3b:1b: 9c:8b:e0:79:2b:a7:a0:d6:8f:95:de:44:bf:13:b4:40:91:48: 95:f8:b5:4e:c8:10:3c:a0:a4:87:23:2a:82:d7:18:72:d6:95: 77:1a:21:69:a7:87:2e:f8:f5:72:98:bf:a0:14:ed:84:6d:6e: 75:75:81:ed:1e:20:17:a0:f3:39:59:c5:00:e5:9e:15:63:a1: 64:fc:17:46:fe:ff:2d:e9:80:18:3a:f3:09:d4:f4:fb:76:c4: ab:2a:85:0e:f9:83:d9:1b:e1:75:8b:a4:d3:c6:38:ab:d7:e6: f4:29:97:19:de:f2:13:08:06:93:c5:a8:c2:e2:e2:73:68:de: 48:73:09:50:d2:b8:92:8c:bf:9f:5c:5e:82:8a:3d:d4:05:67: e8:3e:ba:84:04:48:88:73:f7:a3:2f:42:cd:31:ec:1d:59:20: 4a:82:d0:3b:95:34:e6:67:0f:e1:6c:96:94:f1:23:be:28:1f: 06:f0:c9:37:14:87:1f:3c:3d:2a:1a:df:be:2f:6c:c7:08:25: d7:69:6f:77:82:fd:6a:f0:13:c6:60:eb:bf:36:7e:86:d7:d0: 45:8d:1f:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5NTgxMTAvBgNVBAUTKEZEMTYwNzE4NjM3M0U4MUY0NEQxMzdCMkEwRTk2OTU3 RTYyQUI4QTEwHhcNMjUwNDI0MTUwMjMyWhcNMjUwNTAxMTUwMjMyWjAYMRYwFAYD VQQDEw02ODBhNTI4OC0yZWFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAto1Zyzeq59maFgHPuPgrDQbPLEppb7/01d1h2rgoM33s2FR3IitM54N74Y4l iv0jHm9VjPFSfnpgj51OaF9YXI7PKkYoVs/ddoqoDYOxwpQlJWUQrqLEtZFXUfp7 uUrm1mMqkjLpvJyl0oGys2TbZPDoTkMU/cZwjiuXYumUhs7sFsiNJD1vjX2bxcSR Vr5cRmG/Lc6ZLWf//pvfu7oYVxfNwP+XJC1CPh/idof/lM0IzUDMUttK48f2HR9+ EGsU2rjOYVSvTkMBNDUNhZ7/5RxT38yxx4K3nFbZcTNrlVTTpSKLYfjzvMJe5vgm KXZ2UAH9rWu7Izjr8JJnRtxpwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGx3mhLZ nkbPsB69rxc7kZkeSTmqMB8GA1UdIwQYMBaAFP0WBxhjc+gfRNE3sqDpaVfmKrih MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTk1OC81QUUxOTdGNDFE OUYxMUUyQkNCRkY3OEYwOEIwMkNEMi9fUllIR0dOejZCOUUwVGV5b09scFYtWXF1 S0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19SWUhHR056NkI5RTBUZXlvT2xwVi1ZcXVLRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTk1OC81QUUxOTdGNDFEOUYxMUUyQkNCRkY3OEYwOEIwMkNEMi9fUllIR0dOejZC OUUwVGV5b09scFYtWXF1S0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjSKgWjLfxTIuGgMNiw/15r4uJUanlHU/whlyJGGrcS/MROxuci+B5 K6eg1o+V3kS/E7RAkUiV+LVOyBA8oKSHIyqC1xhy1pV3GiFpp4cu+PVymL+gFO2E bW51dYHtHiAXoPM5WcUA5Z4VY6Fk/BdG/v8t6YAYOvMJ1PT7dsSrKoUO+YPZG+F1 i6TTxjir1+b0KZcZ3vITCAaTxajC4uJzaN5IcwlQ0riSjL+fXF6Cij3UBWfoPrqE BEiIc/ejL0LNMewdWSBKgtA7lTTmZw/hbJaU8SO+KB8G8Mk3FIcfPD0qGt++L2zH CCXXaW93gv1q8BPGYOu/Nn6G19BFjR8f -----END CERTIFICATE-----Generated at Sat Apr 26 12:31:09 2025 by rpki-client