$ rpki-client -vvf rpki.apnic.net/member_repository/A9138D62/BCB40A585FCF11EC8CF1E07BC4F9AE02/YhuBwQnlqnjYKfMKV9o1MwglT2k.mft File: YhuBwQnlqnjYKfMKV9o1MwglT2k.mft (raw, json) Hash identifier: XFXPDIRiGkzrhWDRqoljB3S0OLzSn2XKdEba3hB3i/k= Subject key identifier: BB:D3:FA:A4:A6:DE:44:2B:01:02:8B:3A:7E:7F:99:A3:AE:E9:E9:83 Authority key identifier: 62:1B:81:C1:09:E5:AA:78:D8:29:F3:0A:57:DA:35:33:08:25:4F:69 Certificate issuer: /CN=A9138D62/serialNumber=621B81C109E5AA78D829F30A57DA353308254F69 Certificate serial: 0429 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YhuBwQnlqnjYKfMKV9o1MwglT2k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138D62/BCB40A585FCF11EC8CF1E07BC4F9AE02/YhuBwQnlqnjYKfMKV9o1MwglT2k.mft Manifest number: 0423 Signing time: Fri 25 Apr 2025 00:09:46 +0000 Manifest this update: Fri 25 Apr 2025 00:09:46 +0000 Manifest next update: Fri 02 May 2025 00:09:46 +0000 Files and hashes: 1: YhuBwQnlqnjYKfMKV9o1MwglT2k.crl (hash: z2mVFus6eBNuT7Is0SS3qevtJvUL6ERqCB/WIL0sbEg=) 2: 31E51BB65FD311EC9AA5DA4EC4F9AE02.roa (hash: bAaCSc9TYM7K2UkBDoNWyjDrI2lpV2TgVDZgy3NjGCg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138D62/BCB40A585FCF11EC8CF1E07BC4F9AE02/YhuBwQnlqnjYKfMKV9o1MwglT2k.crl rsync://rpki.apnic.net/member_repository/A9138D62/BCB40A585FCF11EC8CF1E07BC4F9AE02/YhuBwQnlqnjYKfMKV9o1MwglT2k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YhuBwQnlqnjYKfMKV9o1MwglT2k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:09:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1065 (0x429) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138D62, serialNumber=621B81C109E5AA78D829F30A57DA353308254F69 Validity Not Before: Apr 25 00:09:46 2025 GMT Not After : May 2 00:09:46 2025 GMT Subject: CN=680ad2ca-04c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:c0:e3:b8:38:6f:08:2f:57:1d:ad:ae:2e:5f: 50:d1:b5:a3:5b:7d:53:ac:95:df:10:6f:4c:d9:c4: 1b:52:7f:5e:6d:1a:78:ec:78:3a:59:fe:17:9c:cd: 22:70:5f:75:55:a6:ec:46:90:aa:c7:34:78:17:4b: 5f:2f:5f:04:10:a9:3f:45:c5:ae:86:25:51:26:c0: 09:be:ca:73:a1:c7:98:62:69:96:0a:83:dc:28:22: 4b:96:43:4a:55:f9:a9:57:63:e2:8e:82:47:cc:95: ce:da:bf:82:e1:19:45:0c:7d:47:17:73:a1:d5:68: 3a:7c:3b:5e:7d:8e:86:8a:7a:05:cb:67:eb:ab:9d: a6:be:f6:0d:0e:a7:e0:f2:8a:f8:aa:2e:4d:0c:88: 75:29:f8:56:b7:41:0b:2a:31:21:96:63:a3:92:08: bd:cb:a4:e6:7a:e9:64:c7:15:d9:bf:a0:6e:57:d5: b2:28:03:b1:d3:50:42:db:87:9e:54:f6:a3:91:f3: 37:38:be:6a:cd:25:79:e3:32:a0:28:73:3a:55:a9: b2:df:3b:2b:db:20:5c:1d:f9:05:c0:48:e6:ea:c1: c0:01:3e:34:81:ff:68:db:f5:28:3f:b2:fd:d3:e7: 26:5e:6d:a6:00:6d:79:3c:69:a9:88:a9:bb:41:30: 0a:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:D3:FA:A4:A6:DE:44:2B:01:02:8B:3A:7E:7F:99:A3:AE:E9:E9:83 X509v3 Authority Key Identifier: keyid:62:1B:81:C1:09:E5:AA:78:D8:29:F3:0A:57:DA:35:33:08:25:4F:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138D62/BCB40A585FCF11EC8CF1E07BC4F9AE02/YhuBwQnlqnjYKfMKV9o1MwglT2k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YhuBwQnlqnjYKfMKV9o1MwglT2k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138D62/BCB40A585FCF11EC8CF1E07BC4F9AE02/YhuBwQnlqnjYKfMKV9o1MwglT2k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:1a:8f:11:34:4a:30:a8:f8:d6:ed:ba:77:7a:88:6b:26:73: 10:fd:ab:36:4a:8c:21:d4:99:de:d1:46:6d:18:68:0a:df:e6: 7d:b8:7b:2a:c5:fb:95:15:f3:69:9a:98:99:42:8d:31:09:5d: b0:fb:be:fa:44:10:c0:43:c9:d6:0b:fb:4b:3f:79:0e:a0:11: 41:ae:6c:7b:6f:6d:aa:15:47:20:d9:02:38:77:09:6b:38:78: 9e:48:1f:72:29:08:68:3a:6d:18:e9:1e:46:dc:ca:fc:ff:ea: 28:77:a0:85:62:79:44:a1:97:bd:d0:dc:06:e9:ed:cd:84:63: b3:e6:b6:fb:bc:9a:ef:84:d9:3d:9d:8b:e7:42:11:cd:e6:fb: 8a:e1:1d:82:91:7e:22:e7:59:d4:09:2b:63:93:47:4d:09:7d: 46:64:98:9c:95:6f:25:c7:47:cd:0c:31:59:08:75:5d:a7:86: e9:1a:1d:1a:67:76:42:bd:58:46:27:df:ae:5a:bb:00:c5:f9: b9:bc:b0:dc:7e:0e:dd:2e:63:2f:65:40:ed:12:7f:2e:32:c3: f7:0c:28:91:b8:e5:41:ce:83:70:4e:34:e3:6f:f8:7c:33:01: 09:0b:a4:c6:24:c3:b7:37:80:94:e8:78:d4:4f:a2:ea:b0:54: 4f:0a:d7:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzhENjIxMTAvBgNVBAUTKDYyMUI4MUMxMDlFNUFBNzhEODI5RjMwQTU3REEzNTMz MDgyNTRGNjkwHhcNMjUwNDI1MDAwOTQ2WhcNMjUwNTAyMDAwOTQ2WjAYMRYwFAYD VQQDEw02ODBhZDJjYS0wNGMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApMDjuDhvCC9XHa2uLl9Q0bWjW31TrJXfEG9M2cQbUn9ebRp47Hg6Wf4XnM0i cF91VabsRpCqxzR4F0tfL18EEKk/RcWuhiVRJsAJvspzoceYYmmWCoPcKCJLlkNK VfmpV2PijoJHzJXO2r+C4RlFDH1HF3Oh1Wg6fDtefY6GinoFy2frq52mvvYNDqfg 8or4qi5NDIh1KfhWt0ELKjEhlmOjkgi9y6TmeulkxxXZv6BuV9WyKAOx01BC24ee VPajkfM3OL5qzSV54zKgKHM6Vamy3zsr2yBcHfkFwEjm6sHAAT40gf9o2/UoP7L9 0+cmXm2mAG15PGmpiKm7QTAKywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLvT+qSm 3kQrAQKLOn5/maOu6emDMB8GA1UdIwQYMBaAFGIbgcEJ5ap42CnzClfaNTMIJU9p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOEQ2Mi9CQ0I0MEE1ODVG Q0YxMUVDOENGMUUwN0JDNEY5QUUwMi9ZaHVCd1FubHFuallLZk1LVjlvMU13Z2xU MmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lodUJ3UW5scW5qWUtmTUtWOW8xTXdnbFQyay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OEQ2Mi9CQ0I0MEE1ODVGQ0YxMUVDOENGMUUwN0JDNEY5QUUwMi9ZaHVCd1FubHFu allLZk1LVjlvMU13Z2xUMmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIGo8RNEowqPjW7bp3eohrJnMQ/as2Sowh1Jne0UZtGGgK3+Z9uHsq xfuVFfNpmpiZQo0xCV2w+776RBDAQ8nWC/tLP3kOoBFBrmx7b22qFUcg2QI4dwlr OHieSB9yKQhoOm0Y6R5G3Mr8/+ood6CFYnlEoZe90NwG6e3NhGOz5rb7vJrvhNk9 nYvnQhHN5vuK4R2CkX4i51nUCStjk0dNCX1GZJiclW8lx0fNDDFZCHVdp4bpGh0a Z3ZCvVhGJ9+uWrsAxfm5vLDcfg7dLmMvZUDtEn8uMsP3DCiRuOVBzoNwTjTjb/h8 MwEJC6TGJMO3N4CU6HjUT6LqsFRPCtcf -----END CERTIFICATE-----Generated at Sat Apr 26 04:29:44 2025 by rpki-client