$ rpki-client -vvf rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft File: ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft (raw, json) Hash identifier: GVBKCtUcTAFcOpnlNZ7hA87RRDWK36Lgge9hRgjeMJU= Subject key identifier: 53:D0:B5:59:11:15:A3:9F:28:87:C5:28:AE:92:8F:18:0F:B7:40:02 Authority key identifier: AF:2E:E0:44:12:35:6A:BF:D8:E1:9A:E2:C1:B2:2A:73:7C:DF:5E:9E Certificate issuer: /CN=A9128C33/serialNumber=AF2EE04412356ABFD8E19AE2C1B22A737CDF5E9E Certificate serial: 0110 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft Manifest number: 0108 Signing time: Fri 25 Apr 2025 04:10:40 +0000 Manifest this update: Fri 25 Apr 2025 04:10:40 +0000 Manifest next update: Fri 02 May 2025 04:10:40 +0000 Files and hashes: 1: ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl (hash: wXWhg+3xzqJEqa5D3x+ghrpMphoWSYSTQdHR9DlSBT0=) 2: 813EDCA4137E11EF9969A86BC4F9AE02.roa (hash: 8cegSUbUuoPE7mPNDdYwV/tSOtw6Sjag/azXHzK7Lu8=) 3: 210A4EBAC0F211EE99FFBA21C4F9AE02.roa (hash: l/0cV1WqKHlm3zfBuP747PhglBf2SLieAswGuN8ioE8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:10:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 272 (0x110) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128C33, serialNumber=AF2EE04412356ABFD8E19AE2C1B22A737CDF5E9E Validity Not Before: Apr 25 04:10:40 2025 GMT Not After : May 2 04:10:40 2025 GMT Subject: CN=680b0b40-c480 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:90:b7:29:8a:de:be:da:53:35:dc:09:37:01: 91:1e:31:d7:5e:85:78:95:6b:e6:d4:84:0c:c6:b7: c9:ac:29:c7:38:b7:0b:fa:14:4a:69:17:ed:4f:dd: 39:4e:03:d7:e8:1f:bf:b9:8b:23:42:a3:b3:23:5c: 66:78:fc:e7:1c:53:4e:b3:a1:7c:4b:48:8d:71:ff: df:7d:aa:98:03:2f:7f:a9:f9:8e:80:6a:cf:9c:d7: d4:a2:32:85:fe:b3:a5:7c:a2:eb:a9:38:b9:4e:91: e7:e3:82:e9:a8:d8:df:9a:8d:a6:d6:47:53:b2:f1: 28:2d:ac:f8:4b:c7:27:9b:00:11:41:bb:0f:9d:90: 74:9d:4d:1b:2d:c5:09:1e:4c:ce:2d:85:80:ba:5a: d8:81:13:5f:a1:cd:30:e4:32:c5:97:58:3f:ba:28: ad:2e:ca:c4:eb:4c:9d:ad:3f:fd:f4:3b:5c:d8:26: 87:db:1e:da:f6:de:e6:72:73:6c:c1:52:dc:bf:14: 9e:98:69:0b:3c:6e:ba:30:1e:5a:be:4c:16:ae:e3: 69:a8:c3:b0:99:ad:ca:d7:97:f7:79:61:75:2b:33: 42:db:59:19:f0:a5:bd:e3:2e:5e:63:d9:09:d1:4b: fa:61:5f:99:71:6f:e0:8f:f1:5a:b2:db:8e:9e:c9: 88:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:D0:B5:59:11:15:A3:9F:28:87:C5:28:AE:92:8F:18:0F:B7:40:02 X509v3 Authority Key Identifier: keyid:AF:2E:E0:44:12:35:6A:BF:D8:E1:9A:E2:C1:B2:2A:73:7C:DF:5E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:61:23:d9:ee:46:fe:95:50:29:8c:af:7b:20:1d:1f:8c:fd: 1e:cc:29:26:54:12:ea:c3:14:d1:5d:06:96:d4:f2:16:3b:7d: 3d:a0:5d:0d:ba:e6:b5:68:56:f6:85:70:6c:77:15:c3:2b:5d: 40:72:31:10:ff:14:58:c7:6b:c6:69:51:c2:d1:c2:a6:ce:f8: 10:f0:dc:45:1b:2e:03:47:c2:00:2e:6c:98:88:68:9c:36:52: 83:b1:23:58:bc:fc:91:c7:e8:5d:db:5c:99:61:8b:39:55:85: f6:e9:9c:c0:b9:a7:a5:c5:d3:9b:c7:60:57:db:27:68:85:97: bf:03:d2:9f:6e:25:d7:1f:42:ed:2b:c9:c1:08:0e:27:18:9a: 47:cb:e5:90:d4:51:ed:d1:75:7e:da:ba:28:e3:27:b7:9d:0d: bb:dd:51:83:34:f1:19:67:8f:45:94:2a:d3:19:9c:87:95:b8: 8d:13:ba:5b:f6:9d:9a:b3:3e:cf:75:c2:43:6f:f2:01:c6:99: dd:e2:06:5b:45:4f:9f:68:8e:09:0e:84:69:1b:4e:fa:b4:f6: 2f:6a:37:c6:30:bc:bd:0e:a8:7b:4f:cc:8a:83:d7:f5:68:91: 17:bc:37:04:ef:c6:f1:66:35:3d:e6:b5:d2:62:10:19:48:3e: 3d:07:dd:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhDMzMxMTAvBgNVBAUTKEFGMkVFMDQ0MTIzNTZBQkZEOEUxOUFFMkMxQjIyQTcz N0NERjVFOUUwHhcNMjUwNDI1MDQxMDQwWhcNMjUwNTAyMDQxMDQwWjAYMRYwFAYD VQQDEw02ODBiMGI0MC1jNDgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ZC3KYrevtpTNdwJNwGRHjHXXoV4lWvm1IQMxrfJrCnHOLcL+hRKaRftT905 TgPX6B+/uYsjQqOzI1xmePznHFNOs6F8S0iNcf/ffaqYAy9/qfmOgGrPnNfUojKF /rOlfKLrqTi5TpHn44LpqNjfmo2m1kdTsvEoLaz4S8cnmwARQbsPnZB0nU0bLcUJ HkzOLYWAulrYgRNfoc0w5DLFl1g/uiitLsrE60ydrT/99Dtc2CaH2x7a9t7mcnNs wVLcvxSemGkLPG66MB5avkwWruNpqMOwma3K15f3eWF1KzNC21kZ8KW94y5eY9kJ 0Uv6YV+ZcW/gj/FastuOnsmI2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFPQtVkR FaOfKIfFKK6SjxgPt0ACMB8GA1UdIwQYMBaAFK8u4EQSNWq/2OGa4sGyKnN8316e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOEMzMy85NTZDQjA4Njk4 MUIxMUVFQUIwRkM5MjJDNEY5QUUwMi9yeTdnUkJJMWFyX1k0WnJpd2JJcWMzemZY cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3J5N2dSQkkxYXJfWTRacml3YklxYzN6ZlhwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OEMzMy85NTZDQjA4Njk4MUIxMUVFQUIwRkM5MjJDNEY5QUUwMi9yeTdnUkJJMWFy X1k0WnJpd2JJcWMzemZYcDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwYSPZ7kb+lVApjK97IB0fjP0ezCkmVBLqwxTRXQaW1PIWO309oF0N uua1aFb2hXBsdxXDK11AcjEQ/xRYx2vGaVHC0cKmzvgQ8NxFGy4DR8IALmyYiGic NlKDsSNYvPyRx+hd21yZYYs5VYX26ZzAuaelxdObx2BX2ydohZe/A9KfbiXXH0Lt K8nBCA4nGJpHy+WQ1FHt0XV+2roo4ye3nQ273VGDNPEZZ49FlCrTGZyHlbiNE7pb 9p2asz7PdcJDb/IBxpnd4gZbRU+faI4JDoRpG076tPYvajfGMLy9Dqh7T8yKg9f1 aJEXvDcE78bxZjU95rXSYhAZSD49B90e -----END CERTIFICATE-----Generated at Sat Apr 26 13:11:38 2025 by rpki-client