$ rpki-client -vvf rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.mft File: yQm9soTk3whHdmDWgrfLP1lIMeM.mft (raw, json) Hash identifier: ZV4zIW3K0i1xwOTABdTgjyWNsGEoO2H16TIg2c0UMs0= Subject key identifier: 70:78:78:2E:D3:9E:A2:98:23:DE:45:D9:31:3B:C6:75:2F:5D:AB:5D Authority key identifier: C9:09:BD:B2:84:E4:DF:08:47:76:60:D6:82:B7:CB:3F:59:48:31:E3 Certificate issuer: /CN=A912BD25/serialNumber=C909BDB284E4DF08477660D682B7CB3F594831E3 Certificate serial: 0BEB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yQm9soTk3whHdmDWgrfLP1lIMeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.mft Manifest number: 0BE2 Signing time: Thu 24 Apr 2025 18:42:52 +0000 Manifest this update: Thu 24 Apr 2025 18:42:52 +0000 Manifest next update: Thu 01 May 2025 18:42:52 +0000 Files and hashes: 1: yQm9soTk3whHdmDWgrfLP1lIMeM.crl (hash: oaSlWsvuBC5apdUfRXcfrOPV+KarCpIEy7T5AfXt/3k=) 2: CF3378E272DB11ED8483E95DC4F9AE02.roa (hash: 7P+2TWLqfeVNyGM33Rg8heOwqWfXOoMC0kS7Ev1IOzE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.crl rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yQm9soTk3whHdmDWgrfLP1lIMeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:42:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3051 (0xbeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BD25, serialNumber=C909BDB284E4DF08477660D682B7CB3F594831E3 Validity Not Before: Apr 24 18:42:52 2025 GMT Not After : May 1 18:42:52 2025 GMT Subject: CN=680a862c-d673 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:82:b1:d8:a7:e2:08:24:c9:fc:46:57:17:bb: d6:3b:cc:ff:92:ad:24:46:0d:f4:ab:89:1c:8b:ba: ed:c6:93:b4:7b:86:98:67:b8:38:94:70:1a:e7:e3: 86:0f:83:1e:bd:99:98:3d:d3:d6:81:aa:93:29:f8: f6:f3:5d:01:75:19:e5:61:b1:46:10:13:80:ef:7d: 6d:e2:e4:64:e3:41:b9:ab:f3:13:a2:05:57:23:f5: 6d:3e:ad:79:da:14:14:28:e0:5d:d0:8a:1f:af:fc: 86:af:26:59:86:a8:c7:29:69:3e:05:9e:58:23:20: e7:2f:85:80:4f:f3:0f:5e:89:35:d1:63:7a:56:a1: 98:91:a3:92:39:7b:0f:17:d5:2d:49:95:85:51:2e: df:1d:85:fb:dd:d0:87:4b:83:a0:6a:55:48:36:ff: 94:27:9c:57:60:1f:fd:80:43:b1:31:c2:57:d0:51: c8:23:84:3b:d8:af:d9:c9:4f:ce:f6:b1:bf:7b:39: c7:13:81:23:bd:de:3d:be:fd:37:2f:27:32:97:d4: 8f:c4:f7:78:1a:8c:cb:d9:b8:a1:80:ee:31:30:df: d6:31:52:32:2c:7a:90:e6:e0:91:3a:be:8a:d6:dd: 96:a0:d1:ea:dc:63:1a:80:6a:11:21:bd:fe:f8:d6: 6e:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:78:78:2E:D3:9E:A2:98:23:DE:45:D9:31:3B:C6:75:2F:5D:AB:5D X509v3 Authority Key Identifier: keyid:C9:09:BD:B2:84:E4:DF:08:47:76:60:D6:82:B7:CB:3F:59:48:31:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yQm9soTk3whHdmDWgrfLP1lIMeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:af:80:63:5a:19:41:aa:8c:48:8b:0f:67:3f:bf:ba:94:78: b1:21:fa:24:f6:dc:4b:90:7c:df:8f:a5:83:3e:95:e8:08:ec: b9:22:f5:ab:d1:9b:e5:ef:d4:26:64:9f:84:cc:23:84:b2:4e: a1:f6:9d:7e:d3:ad:13:46:65:2c:80:9b:98:01:cf:9a:0f:5d: 63:c9:06:c8:c8:b3:61:ca:a0:b8:c0:a1:dd:3d:14:6e:ee:39: c5:0f:0f:f0:be:f5:2b:1f:d2:49:af:a5:48:f6:49:b6:ec:18: cc:6f:5c:f3:60:86:4d:a0:de:55:4a:b5:e3:3d:01:c7:c5:e2: ac:47:4d:41:e9:7c:47:a2:9a:2c:c5:dc:27:90:3f:90:1d:91: d9:e9:80:3a:62:cd:3f:02:ec:39:6d:8c:f3:4c:a5:22:b1:89: 00:e1:44:7e:fc:69:54:64:05:55:fa:89:d0:41:f5:5a:fa:94: cc:12:e7:f0:67:c9:6e:5a:83:90:d0:0c:d7:7a:74:12:7e:6e: 9c:aa:1b:45:2c:72:95:0e:ee:5a:7d:ec:26:31:f1:47:01:7e: 95:73:80:e0:5d:fd:5e:a3:4d:d4:27:a5:7d:50:8d:fd:db:5d: f9:65:83:2c:05:56:d9:a9:73:42:3d:47:fa:24:e5:22:5a:4b: 97:13:2a:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJEMjUxMTAvBgNVBAUTKEM5MDlCREIyODRFNERGMDg0Nzc2NjBENjgyQjdDQjNG NTk0ODMxRTMwHhcNMjUwNDI0MTg0MjUyWhcNMjUwNTAxMTg0MjUyWjAYMRYwFAYD VQQDEw02ODBhODYyYy1kNjczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz4Kx2KfiCCTJ/EZXF7vWO8z/kq0kRg30q4kci7rtxpO0e4aYZ7g4lHAa5+OG D4MevZmYPdPWgaqTKfj2810BdRnlYbFGEBOA731t4uRk40G5q/MTogVXI/VtPq15 2hQUKOBd0Iofr/yGryZZhqjHKWk+BZ5YIyDnL4WAT/MPXok10WN6VqGYkaOSOXsP F9UtSZWFUS7fHYX73dCHS4OgalVINv+UJ5xXYB/9gEOxMcJX0FHII4Q72K/ZyU/O 9rG/eznHE4Ejvd49vv03Lycyl9SPxPd4GozL2bihgO4xMN/WMVIyLHqQ5uCROr6K 1t2WoNHq3GMagGoRIb3++NZuxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHB4eC7T nqKYI95F2TE7xnUvXatdMB8GA1UdIwQYMBaAFMkJvbKE5N8IR3Zg1oK3yz9ZSDHj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkQyNS8wN0Y4MjE0QTE0 RTQxMUVBODc2RTg2NDBDNEY5QUUwMi95UW05c29UazN3aEhkbURXZ3JmTFAxbElN ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lRbTlzb1RrM3doSGRtRFdncmZMUDFsSU1lTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkQyNS8wN0Y4MjE0QTE0RTQxMUVBODc2RTg2NDBDNEY5QUUwMi95UW05c29UazN3 aEhkbURXZ3JmTFAxbElNZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBur4BjWhlBqoxIiw9nP7+6lHixIfok9txLkHzfj6WDPpXoCOy5IvWr 0Zvl79QmZJ+EzCOEsk6h9p1+060TRmUsgJuYAc+aD11jyQbIyLNhyqC4wKHdPRRu 7jnFDw/wvvUrH9JJr6VI9km27BjMb1zzYIZNoN5VSrXjPQHHxeKsR01B6XxHopos xdwnkD+QHZHZ6YA6Ys0/Auw5bYzzTKUisYkA4UR+/GlUZAVV+onQQfVa+pTMEufw Z8luWoOQ0AzXenQSfm6cqhtFLHKVDu5afewmMfFHAX6Vc4DgXf1eo03UJ6V9UI39 2135ZYMsBVbZqXNCPUf6JOUiWkuXEyqO -----END CERTIFICATE-----Generated at Sat Apr 26 04:26:22 2025 by rpki-client