$ rpki-client -vvf rpki.apnic.net/member_repository/A913A839/C0E03CF46C2F11EA8CEC946EC4F9AE02/YKs8_6uIpRNCuBbwWQGfBz6VAKo.mft File: YKs8_6uIpRNCuBbwWQGfBz6VAKo.mft (raw, json) Hash identifier: NukiDSlXTQGRIFYmXWICI73388wT2qb/C+pN7cS1axM= Subject key identifier: F4:28:14:BF:D5:96:14:A7:8C:4F:D9:62:3F:BD:F5:48:D5:A5:18:75 Authority key identifier: 60:AB:3C:FF:AB:88:A5:13:42:B8:16:F0:59:01:9F:07:3E:95:00:AA Certificate issuer: /CN=A913A839/serialNumber=60AB3CFFAB88A51342B816F059019F073E9500AA Certificate serial: 0A28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YKs8_6uIpRNCuBbwWQGfBz6VAKo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A839/C0E03CF46C2F11EA8CEC946EC4F9AE02/YKs8_6uIpRNCuBbwWQGfBz6VAKo.mft Manifest number: 0A22 Signing time: Mon 28 Apr 2025 20:11:37 +0000 Manifest this update: Mon 28 Apr 2025 20:11:36 +0000 Manifest next update: Mon 05 May 2025 20:11:36 +0000 Files and hashes: 1: YKs8_6uIpRNCuBbwWQGfBz6VAKo.crl (hash: EWVyc7QX4rIRuUKjClmu/UNjMeYAHh9sZM38wCxiP+g=) 2: 0DCB1BDC6C3111EA8F4E9B70C4F9AE02.roa (hash: Hp6K1tI8/RrDTW95E3dlGX3/hbhtzZBhD6rGFjZDwK8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A839/C0E03CF46C2F11EA8CEC946EC4F9AE02/YKs8_6uIpRNCuBbwWQGfBz6VAKo.crl rsync://rpki.apnic.net/member_repository/A913A839/C0E03CF46C2F11EA8CEC946EC4F9AE02/YKs8_6uIpRNCuBbwWQGfBz6VAKo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YKs8_6uIpRNCuBbwWQGfBz6VAKo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:11:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2600 (0xa28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A839, serialNumber=60AB3CFFAB88A51342B816F059019F073E9500AA Validity Not Before: Apr 28 20:11:36 2025 GMT Not After : May 5 20:11:36 2025 GMT Subject: CN=680fe0f9-e8ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:16:86:7f:d4:97:64:b5:a3:35:bf:d0:f6:09: db:89:6e:0d:6e:8c:aa:06:c8:1d:9a:0e:43:ca:12: ef:d3:04:14:e2:c6:73:03:19:02:a6:20:c2:ee:d1: f6:0b:87:23:78:60:a0:4d:a0:71:6b:26:79:ca:b9: ae:32:30:6f:1e:35:66:e8:a9:05:76:9b:25:1e:0e: f1:61:f9:69:85:a9:ab:76:8f:a2:0d:b6:72:a4:08: 5c:b3:80:b7:6b:e0:b6:f6:89:81:74:d7:90:ea:bc: 22:0a:3b:f0:7c:81:70:b0:e8:4a:8a:f7:31:c8:26: 1f:01:1f:ae:06:25:47:6d:e7:6b:a8:2d:4e:c4:5b: 79:24:c3:01:cb:6b:46:3a:9e:c7:78:c8:19:74:bf: eb:ac:3a:62:0e:f2:46:bb:35:31:8e:07:88:19:85: 78:43:8a:a2:2f:01:11:95:90:fe:ce:d7:a4:6f:f1: 73:66:92:3f:1a:54:e1:56:0a:10:46:c5:fb:e9:e3: ab:a8:84:b5:7e:03:81:8c:fb:7e:33:b5:02:2b:35: 79:a2:35:fa:1b:0b:b5:85:a7:8c:b5:c4:ff:be:b8: 4a:2a:b6:09:8c:5c:e7:5a:aa:f6:46:90:4e:77:f7: 4e:97:ae:78:71:07:b8:8c:ee:f7:ee:d5:f0:e3:c2: 1a:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:28:14:BF:D5:96:14:A7:8C:4F:D9:62:3F:BD:F5:48:D5:A5:18:75 X509v3 Authority Key Identifier: keyid:60:AB:3C:FF:AB:88:A5:13:42:B8:16:F0:59:01:9F:07:3E:95:00:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A839/C0E03CF46C2F11EA8CEC946EC4F9AE02/YKs8_6uIpRNCuBbwWQGfBz6VAKo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YKs8_6uIpRNCuBbwWQGfBz6VAKo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A839/C0E03CF46C2F11EA8CEC946EC4F9AE02/YKs8_6uIpRNCuBbwWQGfBz6VAKo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:35:cf:a8:ce:18:a1:0c:00:06:7c:59:54:94:41:76:78:f0: 7f:b1:88:1d:90:af:9d:6f:1c:4d:51:a0:e1:0a:7a:31:8e:cd: a5:d2:46:18:60:8b:79:2f:56:70:88:94:28:94:05:9a:0a:de: 87:e9:be:fb:54:5c:1a:fe:45:06:93:aa:d7:2a:60:c8:87:79: fa:4a:2c:8d:1b:c2:6d:de:ea:b2:de:2a:bd:fb:3a:ac:17:23: b5:3a:b4:b1:5b:72:fa:db:ed:ff:44:dd:08:f2:9e:cc:6b:e0: 65:da:74:7d:64:63:f4:9e:1b:93:65:e2:51:e3:64:d8:a0:6b: 0c:27:e2:9a:aa:47:f9:08:d4:cd:67:14:72:ab:31:4b:8f:cc: 09:3b:10:5a:a7:9d:61:5f:5e:40:48:58:2c:6b:95:28:14:8c: 3d:d0:5c:49:38:1a:0d:84:cf:2f:8e:80:5a:6e:cf:d9:56:43: 04:12:4b:00:50:f3:b4:82:35:fc:a5:8a:3e:79:3a:f2:cc:e4: e0:4f:31:12:8c:3f:c0:b2:b5:e4:50:b7:2d:3d:ce:5c:0a:a1: af:24:a2:dd:de:f9:c1:1b:5c:da:55:cd:0f:ad:54:ed:f2:7b: 4f:3e:f4:6c:01:09:0a:c4:e9:fa:fa:fa:67:b6:b9:ff:ec:8d: ed:ad:20:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCigwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E4MzkxMTAvBgNVBAUTKDYwQUIzQ0ZGQUI4OEE1MTM0MkI4MTZGMDU5MDE5RjA3 M0U5NTAwQUEwHhcNMjUwNDI4MjAxMTM2WhcNMjUwNTA1MjAxMTM2WjAYMRYwFAYD VQQDEw02ODBmZTBmOS1lOGZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxhaGf9SXZLWjNb/Q9gnbiW4NboyqBsgdmg5DyhLv0wQU4sZzAxkCpiDC7tH2 C4cjeGCgTaBxayZ5yrmuMjBvHjVm6KkFdpslHg7xYflphamrdo+iDbZypAhcs4C3 a+C29omBdNeQ6rwiCjvwfIFwsOhKivcxyCYfAR+uBiVHbedrqC1OxFt5JMMBy2tG Op7HeMgZdL/rrDpiDvJGuzUxjgeIGYV4Q4qiLwERlZD+ztekb/FzZpI/GlThVgoQ RsX76eOrqIS1fgOBjPt+M7UCKzV5ojX6Gwu1haeMtcT/vrhKKrYJjFznWqr2RpBO d/dOl654cQe4jO737tXw48IaVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPQoFL/V lhSnjE/ZYj+99UjVpRh1MB8GA1UdIwQYMBaAFGCrPP+riKUTQrgW8FkBnwc+lQCq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTgzOS9DMEUwM0NGNDZD MkYxMUVBOENFQzk0NkVDNEY5QUUwMi9ZS3M4XzZ1SXBSTkN1QmJ3V1FHZkJ6NlZB S28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lLczhfNnVJcFJOQ3VCYndXUUdmQno2VkFLby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTgzOS9DMEUwM0NGNDZDMkYxMUVBOENFQzk0NkVDNEY5QUUwMi9ZS3M4XzZ1SXBS TkN1QmJ3V1FHZkJ6NlZBS28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9Nc+ozhihDAAGfFlUlEF2ePB/sYgdkK+dbxxNUaDhCnoxjs2l0kYY YIt5L1ZwiJQolAWaCt6H6b77VFwa/kUGk6rXKmDIh3n6SiyNG8Jt3uqy3iq9+zqs FyO1OrSxW3L62+3/RN0I8p7Ma+Bl2nR9ZGP0nhuTZeJR42TYoGsMJ+Kaqkf5CNTN ZxRyqzFLj8wJOxBap51hX15ASFgsa5UoFIw90FxJOBoNhM8vjoBabs/ZVkMEEksA UPO0gjX8pYo+eTryzOTgTzESjD/AsrXkULctPc5cCqGvJKLd3vnBG1zaVc0PrVTt 8ntPPvRsAQkKxOn6+vpntrn/7I3trSBd -----END CERTIFICATE-----Generated at Tue Apr 29 07:24:58 2025 by rpki-client