$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0DAC/0CE1964E4FCA11E9B38BA22BC4F9AE02/ySd_ApwVszeVNmb3S5x-bLOQf0Q.mft File: ySd_ApwVszeVNmb3S5x-bLOQf0Q.mft (raw, json) Hash identifier: mI9Z97yLUfESSiwas9/za7gobuVaNSK1fROKZZ9PY/Q= Subject key identifier: 39:47:74:22:69:B8:6E:52:7F:09:8A:EE:22:78:C0:A6:57:68:BA:D8 Authority key identifier: C9:27:7F:02:9C:15:B3:37:95:36:66:F7:4B:9C:7E:6C:B3:90:7F:44 Certificate issuer: /CN=A91F0DAC/serialNumber=C9277F029C15B337953666F74B9C7E6CB3907F44 Certificate serial: 1004 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySd_ApwVszeVNmb3S5x-bLOQf0Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0DAC/0CE1964E4FCA11E9B38BA22BC4F9AE02/ySd_ApwVszeVNmb3S5x-bLOQf0Q.mft Manifest number: 0FE9 Signing time: Wed 30 Apr 2025 17:25:20 +0000 Manifest this update: Wed 30 Apr 2025 17:25:20 +0000 Manifest next update: Wed 07 May 2025 17:25:20 +0000 Files and hashes: 1: ySd_ApwVszeVNmb3S5x-bLOQf0Q.crl (hash: vfGEIl5a1mXm7uXSc2eWq0ltPCGk37isIhVTeKrh6WA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0DAC/0CE1964E4FCA11E9B38BA22BC4F9AE02/ySd_ApwVszeVNmb3S5x-bLOQf0Q.crl rsync://rpki.apnic.net/member_repository/A91F0DAC/0CE1964E4FCA11E9B38BA22BC4F9AE02/ySd_ApwVszeVNmb3S5x-bLOQf0Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySd_ApwVszeVNmb3S5x-bLOQf0Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 May 2025 17:25:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4100 (0x1004) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0DAC, serialNumber=C9277F029C15B337953666F74B9C7E6CB3907F44 Validity Not Before: Apr 30 17:25:20 2025 GMT Not After : May 7 17:25:20 2025 GMT Subject: CN=68125d00-ca8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:5a:ee:c0:52:d2:ca:4c:5e:ea:7c:23:50:ad: 48:73:07:6a:01:72:35:53:d5:6d:9d:03:09:18:fb: 32:fb:b5:5c:9b:d0:47:a6:d6:5e:e6:92:89:9d:98: 57:cd:17:27:ef:9a:95:28:6b:a4:ad:eb:cf:1d:ad: 11:8f:1c:a4:63:77:de:53:9d:14:d1:f0:69:19:47: ff:5d:e7:e4:70:cc:dd:7d:a5:2e:f0:95:97:b6:49: f7:22:49:7b:0b:d8:8b:24:fe:dc:48:bb:1b:f8:29: 4f:b6:d3:c7:d2:07:8e:51:93:ff:0d:a6:fc:61:55: a3:e2:68:e7:cb:02:bf:2d:8a:e7:fa:32:bf:06:dc: 25:0c:a2:cb:b0:24:8d:c8:17:56:0e:62:a4:66:c3: e0:1b:e3:5b:ff:35:99:af:f4:70:36:ed:6e:04:57: 7c:2a:8a:00:57:fe:3a:8c:5a:21:ce:7d:19:13:c6: 8c:01:31:59:2e:88:f8:0c:f7:af:95:10:d5:16:1f: 41:85:0f:59:21:3e:3e:73:92:21:22:10:7d:42:f2: b2:6b:9d:87:fa:cf:62:bd:d0:22:a7:b5:9c:63:b0: ee:50:5a:b0:3e:41:c5:cc:be:26:25:7f:d1:ff:31: 07:ac:a6:aa:a5:9f:f6:8a:7a:0e:1d:72:86:7e:7d: 2b:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:47:74:22:69:B8:6E:52:7F:09:8A:EE:22:78:C0:A6:57:68:BA:D8 X509v3 Authority Key Identifier: keyid:C9:27:7F:02:9C:15:B3:37:95:36:66:F7:4B:9C:7E:6C:B3:90:7F:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0DAC/0CE1964E4FCA11E9B38BA22BC4F9AE02/ySd_ApwVszeVNmb3S5x-bLOQf0Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySd_ApwVszeVNmb3S5x-bLOQf0Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0DAC/0CE1964E4FCA11E9B38BA22BC4F9AE02/ySd_ApwVszeVNmb3S5x-bLOQf0Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:94:63:78:26:a8:b9:5b:b7:cd:0d:aa:06:47:95:c2:c5:b1: 8d:70:e3:3d:74:33:cb:d3:8d:7b:bd:19:f0:0a:a1:c0:61:66: 0e:ed:59:c7:35:9b:f3:b4:6e:7f:c9:d4:fb:6d:0f:03:12:24: 80:7e:2d:e0:9d:df:6f:e0:28:ea:79:d7:8e:72:44:2a:c8:e4: d2:fa:61:90:2e:96:47:de:bb:73:70:ba:9d:db:d2:91:e3:50: f2:b7:43:cf:93:30:2c:c4:f8:88:79:25:e5:a6:cf:a4:a0:94: 07:22:40:26:99:b6:a5:da:43:2b:70:dd:b8:36:58:49:81:43: d6:24:63:9f:44:39:a7:fd:13:75:eb:8b:27:0a:b9:77:82:9d: d1:54:75:a3:3f:fc:a5:9c:03:c5:a4:07:d1:60:85:0a:b1:2d: c6:71:08:2e:a9:99:24:38:91:61:c9:9b:31:37:8c:8b:ec:bf: cd:71:1d:69:d6:06:b5:76:0e:3c:50:f2:fc:b7:58:c1:2c:67: 31:84:cb:4b:5c:9f:be:60:46:b6:e4:3e:5c:94:c8:82:f2:9d: d1:a4:2c:60:13:a7:92:97:ba:29:18:f4:1b:5f:be:1e:37:59: b6:8d:94:c1:da:63:ea:b6:99:1b:91:9c:ac:01:74:3f:f8:cd: 36:fd:c2:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEAQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBEQUMxMTAvBgNVBAUTKEM5Mjc3RjAyOUMxNUIzMzc5NTM2NjZGNzRCOUM3RTZD QjM5MDdGNDQwHhcNMjUwNDMwMTcyNTIwWhcNMjUwNTA3MTcyNTIwWjAYMRYwFAYD VQQDEw02ODEyNWQwMC1jYThjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6lruwFLSykxe6nwjUK1IcwdqAXI1U9VtnQMJGPsy+7Vcm9BHptZe5pKJnZhX zRcn75qVKGukrevPHa0RjxykY3feU50U0fBpGUf/XefkcMzdfaUu8JWXtkn3Ikl7 C9iLJP7cSLsb+ClPttPH0geOUZP/Dab8YVWj4mjnywK/LYrn+jK/BtwlDKLLsCSN yBdWDmKkZsPgG+Nb/zWZr/RwNu1uBFd8KooAV/46jFohzn0ZE8aMATFZLoj4DPev lRDVFh9BhQ9ZIT4+c5IhIhB9QvKya52H+s9ivdAip7WcY7DuUFqwPkHFzL4mJX/R /zEHrKaqpZ/2inoOHXKGfn0rNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDlHdCJp uG5SfwmK7iJ4wKZXaLrYMB8GA1UdIwQYMBaAFMknfwKcFbM3lTZm90ucfmyzkH9E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMERBQy8wQ0UxOTY0RTRG Q0ExMUU5QjM4QkEyMkJDNEY5QUUwMi95U2RfQXB3VnN6ZVZObWIzUzV4LWJMT1Fm MFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lTZF9BcHdWc3plVk5tYjNTNXgtYkxPUWYwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MERBQy8wQ0UxOTY0RTRGQ0ExMUU5QjM4QkEyMkJDNEY5QUUwMi95U2RfQXB3VnN6 ZVZObWIzUzV4LWJMT1FmMFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRlGN4Jqi5W7fNDaoGR5XCxbGNcOM9dDPL0417vRnwCqHAYWYO7VnH NZvztG5/ydT7bQ8DEiSAfi3gnd9v4CjqedeOckQqyOTS+mGQLpZH3rtzcLqd29KR 41Dyt0PPkzAsxPiIeSXlps+koJQHIkAmmbal2kMrcN24NlhJgUPWJGOfRDmn/RN1 64snCrl3gp3RVHWjP/ylnAPFpAfRYIUKsS3GcQguqZkkOJFhyZsxN4yL7L/NcR1p 1ga1dg48UPL8t1jBLGcxhMtLXJ++YEa25D5clMiC8p3RpCxgE6eSl7opGPQbX74e N1m2jZTB2mPqtpkbkZysAXQ/+M02/cKS -----END CERTIFICATE-----Generated at Thu May 1 07:41:23 2025 by rpki-client