$ rpki-client -vvf rpki.apnic.net/member_repository/A911A0B9/2E06D6DE6FB811ECA5677C78C4F9AE02/dBBmhNVnVypTS-yentek_D2x4sY.mft File: dBBmhNVnVypTS-yentek_D2x4sY.mft (raw, json) Hash identifier: Q6kNH8DtmEFp6vE8l692EWLhClyPysoKAdHGq0ARlyc= Subject key identifier: BE:48:49:28:6F:1F:C8:07:D2:9D:22:97:9A:38:B6:97:D9:1B:BE:58 Authority key identifier: 74:10:66:84:D5:67:57:2A:53:4B:EC:9E:9E:D7:A4:FC:3D:B1:E2:C6 Certificate issuer: /CN=A911A0B9/serialNumber=74106684D567572A534BEC9E9ED7A4FC3DB1E2C6 Certificate serial: 040A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dBBmhNVnVypTS-yentek_D2x4sY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A0B9/2E06D6DE6FB811ECA5677C78C4F9AE02/dBBmhNVnVypTS-yentek_D2x4sY.mft Manifest number: 0401 Signing time: Fri 25 Apr 2025 00:15:23 +0000 Manifest this update: Fri 25 Apr 2025 00:15:22 +0000 Manifest next update: Fri 02 May 2025 00:15:22 +0000 Files and hashes: 1: dBBmhNVnVypTS-yentek_D2x4sY.crl (hash: AisLvMxWvxnrC/eT+7GLn4XOkyvdmF0lRKqgvj8jcfM=) 2: 8C891848A8C511EC8F560C42C4F9AE02.roa (hash: lF0CFYohN2oja301WKea0PFfbTXXVh54QBYO4Syk2bo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A0B9/2E06D6DE6FB811ECA5677C78C4F9AE02/dBBmhNVnVypTS-yentek_D2x4sY.crl rsync://rpki.apnic.net/member_repository/A911A0B9/2E06D6DE6FB811ECA5677C78C4F9AE02/dBBmhNVnVypTS-yentek_D2x4sY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dBBmhNVnVypTS-yentek_D2x4sY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:15:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1034 (0x40a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A0B9, serialNumber=74106684D567572A534BEC9E9ED7A4FC3DB1E2C6 Validity Not Before: Apr 25 00:15:22 2025 GMT Not After : May 2 00:15:22 2025 GMT Subject: CN=680ad41a-eca4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:54:62:83:d5:36:a4:35:3a:0c:1d:26:1e:40: b7:26:81:15:03:0c:35:b2:ce:71:c7:23:c2:5f:2d: 3f:69:49:28:c8:44:70:b6:45:ec:a3:08:c4:04:65: 40:b9:1a:fc:76:74:68:6c:7b:bf:29:17:a4:b8:0d: 21:b8:ca:fe:fd:e0:bd:ae:96:03:d0:60:03:a5:59: 7d:de:8b:05:9f:be:c5:d8:da:93:c0:af:59:26:85: 0b:cf:0c:e8:a5:86:9b:06:d9:9a:72:5a:66:43:d5: ac:1c:fb:7a:5c:26:72:07:64:68:ec:9e:c3:2a:62: bb:d3:6f:f4:17:f7:8d:5d:04:0e:c5:63:1f:f9:e1: dd:6a:b6:fa:b1:03:75:31:77:a4:79:fe:da:24:eb: d6:3c:4e:75:82:3a:35:2f:4f:f4:ab:b8:9f:4c:ce: 08:b1:28:80:32:27:0f:ba:45:3b:51:52:bb:07:9c: 13:49:f9:3f:b5:37:e7:03:f2:ce:83:56:70:3c:e4: b8:7f:66:c5:26:fe:ae:e9:db:5b:22:3f:b5:40:b5: 9e:10:2d:e5:e0:35:95:e6:c2:d8:28:f8:9e:95:5e: ed:b7:8f:55:50:08:6a:d6:47:f2:cb:6f:1a:42:a5: 66:ea:75:fa:af:93:e0:84:52:68:be:59:53:aa:7c: 1c:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:48:49:28:6F:1F:C8:07:D2:9D:22:97:9A:38:B6:97:D9:1B:BE:58 X509v3 Authority Key Identifier: keyid:74:10:66:84:D5:67:57:2A:53:4B:EC:9E:9E:D7:A4:FC:3D:B1:E2:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A0B9/2E06D6DE6FB811ECA5677C78C4F9AE02/dBBmhNVnVypTS-yentek_D2x4sY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dBBmhNVnVypTS-yentek_D2x4sY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A0B9/2E06D6DE6FB811ECA5677C78C4F9AE02/dBBmhNVnVypTS-yentek_D2x4sY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:46:07:0f:e1:6d:8e:17:7c:c2:37:7c:a0:1b:a3:85:44:a2: 30:08:a9:e6:1e:4d:25:60:2d:88:28:92:28:36:ef:cd:2e:e9: d0:bf:bc:12:30:48:fc:89:9a:e7:4f:5e:f0:98:58:f2:9e:29: b0:d1:6b:f5:f0:44:54:49:1e:83:e8:a4:bf:c7:07:dd:15:85: 0d:b6:57:59:ce:2d:96:4e:1b:fb:03:83:2a:11:62:b3:d0:05: 86:c1:58:7a:93:f7:f8:21:25:d6:d7:52:58:46:05:59:fd:5d: 3b:d2:3b:7c:91:e8:5d:a0:15:6f:f9:05:e6:42:2f:bf:6d:56: a2:e1:19:4b:fc:5a:aa:0c:6b:ff:cf:67:45:61:19:1a:16:6e: fe:f4:a6:33:69:fa:68:65:95:53:cc:55:14:b9:c9:91:61:36: 25:93:bf:02:2c:b8:b2:2c:58:9f:89:f9:b0:09:4d:11:d5:fe: 47:fa:64:0a:61:88:a8:b9:43:8b:f0:83:09:90:5b:c9:66:71: 93:66:46:b9:84:98:13:f6:72:96:3a:ec:07:1b:4f:dd:95:de: ff:0c:8d:90:9b:22:44:6d:b4:f4:f6:a8:01:a6:7e:02:aa:e5: 2d:a7:91:35:4e:79:ba:d2:51:63:00:1d:2f:7f:8c:e5:90:56: cf:dc:26:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUEwQjkxMTAvBgNVBAUTKDc0MTA2Njg0RDU2NzU3MkE1MzRCRUM5RTlFRDdBNEZD M0RCMUUyQzYwHhcNMjUwNDI1MDAxNTIyWhcNMjUwNTAyMDAxNTIyWjAYMRYwFAYD VQQDEw02ODBhZDQxYS1lY2E0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo1Rig9U2pDU6DB0mHkC3JoEVAww1ss5xxyPCXy0/aUkoyERwtkXsowjEBGVA uRr8dnRobHu/KRekuA0huMr+/eC9rpYD0GADpVl93osFn77F2NqTwK9ZJoULzwzo pYabBtmaclpmQ9WsHPt6XCZyB2Ro7J7DKmK702/0F/eNXQQOxWMf+eHdarb6sQN1 MXekef7aJOvWPE51gjo1L0/0q7ifTM4IsSiAMicPukU7UVK7B5wTSfk/tTfnA/LO g1ZwPOS4f2bFJv6u6dtbIj+1QLWeEC3l4DWV5sLYKPielV7tt49VUAhq1kfyy28a QqVm6nX6r5PghFJovllTqnwc+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL5ISShv H8gH0p0il5o4tpfZG75YMB8GA1UdIwQYMBaAFHQQZoTVZ1cqU0vsnp7XpPw9seLG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTBCOS8yRTA2RDZERTZG QjgxMUVDQTU2NzdDNzhDNEY5QUUwMi9kQkJtaE5WblZ5cFRTLXllbnRla19EMng0 c1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RCQm1oTlZuVnlwVFMteWVudGVrX0QyeDRzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QTBCOS8yRTA2RDZERTZGQjgxMUVDQTU2NzdDNzhDNEY5QUUwMi9kQkJtaE5WblZ5 cFRTLXllbnRla19EMng0c1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRRgcP4W2OF3zCN3ygG6OFRKIwCKnmHk0lYC2IKJIoNu/NLunQv7wS MEj8iZrnT17wmFjynimw0Wv18ERUSR6D6KS/xwfdFYUNtldZzi2WThv7A4MqEWKz 0AWGwVh6k/f4ISXW11JYRgVZ/V070jt8kehdoBVv+QXmQi+/bVai4RlL/FqqDGv/ z2dFYRkaFm7+9KYzafpoZZVTzFUUucmRYTYlk78CLLiyLFififmwCU0R1f5H+mQK YYiouUOL8IMJkFvJZnGTZka5hJgT9nKWOuwHG0/dld7/DI2QmyJEbbT09qgBpn4C quUtp5E1Tnm60lFjAB0vf4zlkFbP3CYm -----END CERTIFICATE-----Generated at Sat Apr 26 12:40:50 2025 by rpki-client