$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC4FB/098FE2E8DCDC11EF8E291844C4F9AE02/_yC8N52JoNs75vzykPo91S63-iA.mft File: _yC8N52JoNs75vzykPo91S63-iA.mft (raw, json) Hash identifier: e2GQj7ii9tYsSk9s7AYS7wJnZIdj7mnph4tM4chmDis= Subject key identifier: 83:8D:E9:70:A1:DC:BE:7C:34:2F:23:C1:FB:F5:56:BF:FA:8C:B8:12 Authority key identifier: FF:20:BC:37:9D:89:A0:DB:3B:E6:FC:F2:90:FA:3D:D5:2E:B7:FA:20 Certificate issuer: /CN=A91FC4FB/serialNumber=FF20BC379D89A0DB3BE6FCF290FA3DD52EB7FA20 Certificate serial: 33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_yC8N52JoNs75vzykPo91S63-iA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC4FB/098FE2E8DCDC11EF8E291844C4F9AE02/_yC8N52JoNs75vzykPo91S63-iA.mft Manifest number: 31 Signing time: Fri 25 Apr 2025 06:39:52 +0000 Manifest this update: Fri 25 Apr 2025 06:39:51 +0000 Manifest next update: Fri 02 May 2025 06:39:51 +0000 Files and hashes: 1: _yC8N52JoNs75vzykPo91S63-iA.crl (hash: H3MAyrlQUiZquDmrnoWfZnPIlr5QKdk0+w/f5Wv34CI=) 2: F20BD4DEDD5C11EFAA80BB1AC4F9AE02.roa (hash: v5aAOYFTKYQs9mswlL+k53rGpICa845yISkOLh9tIAI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC4FB/098FE2E8DCDC11EF8E291844C4F9AE02/_yC8N52JoNs75vzykPo91S63-iA.crl rsync://rpki.apnic.net/member_repository/A91FC4FB/098FE2E8DCDC11EF8E291844C4F9AE02/_yC8N52JoNs75vzykPo91S63-iA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_yC8N52JoNs75vzykPo91S63-iA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:39:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51 (0x33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC4FB, serialNumber=FF20BC379D89A0DB3BE6FCF290FA3DD52EB7FA20 Validity Not Before: Apr 25 06:39:51 2025 GMT Not After : May 2 06:39:51 2025 GMT Subject: CN=680b2e37-5b87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:11:f1:aa:7c:2a:eb:25:b0:f9:63:0f:ca:a0: dd:4e:0d:6f:81:64:65:c4:e4:18:f2:87:6e:f1:37: 6f:97:af:9e:47:9e:4a:f7:ec:e4:45:d3:cd:20:d7: 4b:ad:1b:66:92:a8:3d:4a:de:b0:95:cf:0b:84:ea: 4e:89:eb:69:13:4a:ff:46:f1:39:58:49:33:64:f1: c8:16:5c:8d:6d:c5:43:f1:88:22:34:b1:6a:4d:27: e0:a4:df:ea:da:21:1c:2b:0c:4b:f3:4f:53:bb:2c: be:a3:5a:e6:53:d5:32:2b:34:67:a5:1e:69:55:ed: 96:66:e2:b8:2c:33:4e:4c:a1:1b:93:60:16:0d:05: ae:a5:90:94:17:3e:0d:11:c7:14:53:7d:2f:69:3b: 5f:83:ec:c6:ea:6e:55:3d:33:2d:8b:97:1d:ce:40: c8:08:5d:ca:ae:4b:22:f9:89:92:61:c3:40:94:b3: 84:b7:d2:18:f5:02:8d:27:f3:48:d6:6e:9e:03:a2: 01:6a:36:bb:b3:0d:a1:0d:b7:2e:03:3f:c2:20:31: 98:7c:2e:be:42:b3:32:3f:b9:96:79:14:e4:da:db: 5b:34:2f:e3:7a:67:49:b3:2c:90:3c:b7:8c:4a:6d: 00:cd:81:54:82:c3:98:53:1a:38:b6:30:58:29:fb: da:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:8D:E9:70:A1:DC:BE:7C:34:2F:23:C1:FB:F5:56:BF:FA:8C:B8:12 X509v3 Authority Key Identifier: keyid:FF:20:BC:37:9D:89:A0:DB:3B:E6:FC:F2:90:FA:3D:D5:2E:B7:FA:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC4FB/098FE2E8DCDC11EF8E291844C4F9AE02/_yC8N52JoNs75vzykPo91S63-iA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_yC8N52JoNs75vzykPo91S63-iA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC4FB/098FE2E8DCDC11EF8E291844C4F9AE02/_yC8N52JoNs75vzykPo91S63-iA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:bb:81:c0:a6:ed:16:06:90:2c:34:e2:2c:40:87:8c:a7:be: d4:11:98:52:68:03:97:a9:61:e6:ea:cf:6f:89:fc:11:0b:fe: bd:1d:2e:b9:20:39:b0:18:bb:67:53:27:32:73:53:1a:cc:ee: a8:ad:a9:59:8b:90:a1:4a:94:dd:ba:f0:39:c6:37:48:37:41: f9:0a:bf:0e:0d:00:70:97:aa:19:a1:94:70:7b:a2:cf:06:b3: a9:3d:1d:9f:33:b7:e7:2c:95:e9:4e:07:db:a2:3e:3a:37:2a: 2d:a8:cd:82:fd:75:d2:ac:e8:65:63:ca:58:ee:da:62:a6:ff: 95:ea:3b:1f:50:c1:a2:12:21:23:91:46:ba:09:8d:e6:3c:be: a5:27:de:85:43:ba:3f:6c:0c:86:50:5f:b3:9c:5e:5e:db:48: c8:83:6b:a6:9c:7e:dc:93:82:5f:9c:4f:24:82:c4:63:f4:c7: 98:23:cd:54:85:f3:59:7d:97:a8:3b:9b:36:9f:9b:1e:09:1e: 7f:41:f4:3d:36:1a:28:4c:db:75:67:76:db:20:55:05:50:09: 62:df:c3:dc:37:03:b0:a3:a5:ae:af:99:05:9f:2b:b9:93:0e: f6:54:b6:24:7c:20:16:95:4e:d4:cc:41:f3:25:2c:13:88:d5: fa:a2:f8:46 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QzRGQjExMC8GA1UEBRMoRkYyMEJDMzc5RDg5QTBEQjNCRTZGQ0YyOTBGQTNERDUy RUI3RkEyMDAeFw0yNTA0MjUwNjM5NTFaFw0yNTA1MDIwNjM5NTFaMBgxFjAUBgNV BAMTDTY4MGIyZTM3LTViODcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDmEfGqfCrrJbD5Yw/KoN1ODW+BZGXE5Bjyh27xN2+Xr55Hnkr37ORF080g10ut G2aSqD1K3rCVzwuE6k6J62kTSv9G8TlYSTNk8cgWXI1txUPxiCI0sWpNJ+Ck3+ra IRwrDEvzT1O7LL6jWuZT1TIrNGelHmlV7ZZm4rgsM05MoRuTYBYNBa6lkJQXPg0R xxRTfS9pO1+D7MbqblU9My2Llx3OQMgIXcquSyL5iZJhw0CUs4S30hj1Ao0n80jW bp4DogFqNruzDaENty4DP8IgMZh8Lr5CszI/uZZ5FOTa21s0L+N6Z0mzLJA8t4xK bQDNgVSCw5hTGji2MFgp+9odAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUg43pcKHc vnw0LyPB+/VWv/qMuBIwHwYDVR0jBBgwFoAU/yC8N52JoNs75vzykPo91S63+iAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZDNEZCLzA5OEZFMkU4RENE QzExRUY4RTI5MTg0NEM0RjlBRTAyL195QzhONTJKb05zNzV2enlrUG85MVM2My1p QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvX3lDOE41MkpvTnM3NXZ6eWtQbzkxUzYzLWlBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZD NEZCLzA5OEZFMkU4RENEQzExRUY4RTI5MTg0NEM0RjlBRTAyL195QzhONTJKb05z NzV2enlrUG85MVM2My1pQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKK7gcCm7RYGkCw04ixAh4ynvtQRmFJoA5epYebqz2+J/BEL/r0dLrkg ObAYu2dTJzJzUxrM7qitqVmLkKFKlN268DnGN0g3QfkKvw4NAHCXqhmhlHB7os8G s6k9HZ8zt+cslelOB9uiPjo3Ki2ozYL9ddKs6GVjylju2mKm/5XqOx9QwaISISOR RroJjeY8vqUn3oVDuj9sDIZQX7OcXl7bSMiDa6acftyTgl+cTySCxGP0x5gjzVSF 81l9l6g7mzafmx4JHn9B9D02GihM23VndtsgVQVQCWLfw9w3A7Cjpa6vmQWfK7mT DvZUtiR8IBaVTtTMQfMlLBOI1fqi+EY= -----END CERTIFICATE-----Generated at Sat Apr 26 14:59:00 2025 by rpki-client