$ rpki-client -vvf rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.mft File: 0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.mft (raw, json) Hash identifier: g4e3I3Jk4iWscCXVvsqIB/cNFe5RZbr7eugAzLqkEwU= Subject key identifier: 5B:B3:5F:B5:B2:02:CD:FD:11:88:B5:AA:39:C1:43:2D:37:9B:08:AF Authority key identifier: D1:8F:98:A4:1C:0A:DC:8C:81:84:B8:26:A7:1F:3E:F2:7F:19:53:23 Certificate issuer: /CN=A91F1B39/serialNumber=D18F98A41C0ADC8C8184B826A71F3EF27F195323 Certificate serial: 01E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.mft Manifest number: 01E2 Signing time: Sat 03 May 2025 02:09:52 +0000 Manifest this update: Sat 03 May 2025 02:09:52 +0000 Manifest next update: Sat 10 May 2025 02:09:52 +0000 Files and hashes: 1: 0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.crl (hash: IdBJ1Lm43lP4PIZMj9wUpddLmdOnOBWBCBaRWz94cek=) 2: C18E7856446C11EDA55DB951C4F9AE02.roa (hash: AKVXd/DH9YanLRhXJZMqC5LiMXYq5bZo14nqm8XdwR0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.crl rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 02:09:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 485 (0x1e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F1B39, serialNumber=D18F98A41C0ADC8C8184B826A71F3EF27F195323 Validity Not Before: May 3 02:09:52 2025 GMT Not After : May 10 02:09:52 2025 GMT Subject: CN=68157af0-4ecb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:3b:7c:77:16:95:e4:46:aa:c6:e5:fa:c1:c8: 44:ec:fc:e6:6b:d7:5b:84:97:01:2f:cf:80:71:a1: 40:f4:d6:2d:51:32:5c:37:9e:e9:c6:91:46:39:d3: f0:a1:9c:53:50:22:20:85:66:6b:ed:c3:8b:4e:a1: 2f:62:fd:b4:39:a7:a5:83:92:f0:50:63:39:fb:c7: fd:4f:39:9a:7a:c5:59:e8:57:e8:3c:58:66:94:04: 5e:01:a9:ee:21:f4:e4:da:bb:ef:2d:bf:b9:df:9b: 86:1d:f9:b2:e1:19:4f:e4:dc:12:5c:a8:5f:3d:3b: fd:ca:65:bc:cc:57:1b:51:89:c8:41:97:cd:35:ad: 18:10:78:04:e6:c5:33:65:25:a5:82:7d:5d:b2:e1: 20:bc:28:23:92:05:47:da:0d:d0:29:27:46:7a:0f: c1:f9:cd:ba:de:14:20:6a:b6:c5:2c:10:65:1b:c0: 7a:05:29:41:4c:6a:ac:b4:50:32:9e:64:a7:17:34: da:4c:8e:92:8f:a4:e2:53:ac:35:d2:42:89:6d:1b: db:f3:52:51:19:fa:da:99:12:1c:66:b4:82:04:f2: e9:56:1d:d3:7f:5d:57:e3:6e:ad:5f:fa:16:5c:cf: cc:d6:d1:f4:dd:5a:44:d7:eb:7b:65:e5:fb:91:12: a9:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:B3:5F:B5:B2:02:CD:FD:11:88:B5:AA:39:C1:43:2D:37:9B:08:AF X509v3 Authority Key Identifier: keyid:D1:8F:98:A4:1C:0A:DC:8C:81:84:B8:26:A7:1F:3E:F2:7F:19:53:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:10:74:f1:82:d9:86:68:07:c4:27:e6:44:c4:39:a5:eb:ab: 2c:d5:bb:fa:93:3d:7d:a4:53:f6:0a:b7:0c:98:4b:d7:e9:e0: f0:94:86:43:1b:1e:1a:22:e4:e3:0f:03:e6:12:da:0f:d3:fa: 96:cf:4a:60:12:79:bd:ad:ff:d9:6b:eb:d4:ce:66:7e:73:6c: 6e:d2:9e:2e:cd:e1:22:0d:43:f8:a5:07:76:ed:6e:b6:f9:68: ec:c0:54:44:be:ef:3e:ec:72:fe:04:0d:c7:a6:25:ac:14:99: 48:91:67:3c:d0:3a:82:21:56:e0:c8:9b:2a:9c:b5:39:73:29: b7:36:e3:4e:1c:1d:44:13:b1:25:a9:96:e1:3e:26:35:a4:7c: 3a:62:40:26:87:04:ea:bd:37:16:c8:58:bd:58:fe:9e:73:5a: e8:16:78:40:94:d5:2a:0f:b2:63:21:ab:17:fd:67:c3:5c:1c: 3f:ec:fd:fa:e5:d0:91:81:58:57:9f:c6:ba:70:5e:c8:77:b3: e1:36:21:ab:89:bd:18:06:c4:33:33:40:89:7e:5a:b6:8f:84: f5:80:4b:6e:49:76:11:bf:3c:58:07:e1:1d:37:70:4c:89:f0: b5:51:e0:ca:ff:65:2d:fd:7d:c2:11:2a:66:67:3f:f0:1c:36: e4:c5:29:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjFCMzkxMTAvBgNVBAUTKEQxOEY5OEE0MUMwQURDOEM4MTg0QjgyNkE3MUYzRUYy N0YxOTUzMjMwHhcNMjUwNTAzMDIwOTUyWhcNMjUwNTEwMDIwOTUyWjAYMRYwFAYD VQQDEw02ODE1N2FmMC00ZWNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Dt8dxaV5EaqxuX6wchE7Pzma9dbhJcBL8+AcaFA9NYtUTJcN57pxpFGOdPw oZxTUCIghWZr7cOLTqEvYv20Oaelg5LwUGM5+8f9TzmaesVZ6FfoPFhmlAReAanu IfTk2rvvLb+535uGHfmy4RlP5NwSXKhfPTv9ymW8zFcbUYnIQZfNNa0YEHgE5sUz ZSWlgn1dsuEgvCgjkgVH2g3QKSdGeg/B+c263hQgarbFLBBlG8B6BSlBTGqstFAy nmSnFzTaTI6Sj6TiU6w10kKJbRvb81JRGframRIcZrSCBPLpVh3Tf11X426tX/oW XM/M1tH03VpE1+t7ZeX7kRKpBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFuzX7Wy As39EYi1qjnBQy03mwivMB8GA1UdIwQYMBaAFNGPmKQcCtyMgYS4JqcfPvJ/GVMj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMUIzOS9CNzY5OUQyQzQ0 NjkxMUVEQkU0RTc5NENDNEY5QUUwMi8wWS1ZcEJ3SzNJeUJoTGdtcHg4LThuOFpV eU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBZLVlwQndLM0l5QmhMZ21weDgtOG44WlV5TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MUIzOS9CNzY5OUQyQzQ0NjkxMUVEQkU0RTc5NENDNEY5QUUwMi8wWS1ZcEJ3SzNJ eUJoTGdtcHg4LThuOFpVeU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhEHTxgtmGaAfEJ+ZExDml66ss1bv6kz19pFP2CrcMmEvX6eDwlIZD Gx4aIuTjDwPmEtoP0/qWz0pgEnm9rf/Za+vUzmZ+c2xu0p4uzeEiDUP4pQd27W62 +WjswFREvu8+7HL+BA3HpiWsFJlIkWc80DqCIVbgyJsqnLU5cym3NuNOHB1EE7El qZbhPiY1pHw6YkAmhwTqvTcWyFi9WP6ec1roFnhAlNUqD7JjIasX/WfDXBw/7P36 5dCRgVhXn8a6cF7Id7PhNiGrib0YBsQzM0CJflq2j4T1gEtuSXYRvzxYB+EdN3BM ifC1UeDK/2Ut/X3CESpmZz/wHDbkxSld -----END CERTIFICATE-----Generated at Sun May 4 01:28:19 2025 by rpki-client