$ rpki-client -vvf rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft File: y6GXwEyqm9KV9XiEcqahCqP773A.mft (raw, json) Hash identifier: XHfFyefA+Of0FMRgI8dEJH9Zn7ZIo1UCLyYhS2iodyg= Subject key identifier: DD:84:DB:0D:5B:52:BD:C8:5E:20:0A:97:02:8C:80:F1:B0:F9:7B:65 Authority key identifier: CB:A1:97:C0:4C:AA:9B:D2:95:F5:78:84:72:A6:A1:0A:A3:FB:EF:70 Certificate issuer: /CN=A9143CB3/serialNumber=CBA197C04CAA9BD295F5788472A6A10AA3FBEF70 Certificate serial: 1B19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft Manifest number: 1AED Signing time: Thu 24 Apr 2025 16:19:52 +0000 Manifest this update: Thu 24 Apr 2025 16:19:51 +0000 Manifest next update: Thu 01 May 2025 16:19:51 +0000 Files and hashes: 1: y6GXwEyqm9KV9XiEcqahCqP773A.crl (hash: 45YUNpMfz5y7o3gAvyImT2YLNSEStXJwMQqHDWoqxfE=) 2: D90961489C1311EFA0BF1480C4F9AE02.roa (hash: Jv1d6fF3qu1qMz0c/kGUVQ3xOsIZk2UWH2dC2+4vagE=) 3: DE0A76C805B511EE95562E2AC4F9AE02.roa (hash: hMIakiTTivB+fRa4Rnc2jL//XFH58YMCoj5LWIbNoBM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.crl rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:19:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6937 (0x1b19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143CB3, serialNumber=CBA197C04CAA9BD295F5788472A6A10AA3FBEF70 Validity Not Before: Apr 24 16:19:51 2025 GMT Not After : May 1 16:19:51 2025 GMT Subject: CN=680a64a7-edcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:1b:f0:5f:2e:00:a0:4d:9a:89:90:0c:0b:77: 68:4a:31:99:ad:30:9a:69:b5:45:b3:dd:3c:e5:43: 03:88:cb:ed:3e:99:1a:39:0a:1d:9b:de:80:6e:2a: 77:29:9f:4f:2a:7a:f5:87:01:2a:81:8e:a5:22:4f: d7:ad:90:16:73:b6:43:2c:22:d6:05:cc:43:41:e7: ad:2f:42:78:d6:1b:f4:99:34:46:65:64:f8:8b:b0: 7c:5d:54:78:26:e6:5f:0a:12:e0:ac:e8:6f:46:57: 3b:fc:a0:f7:e8:76:ef:9a:91:bb:e3:21:d0:e7:8c: ff:ff:c1:66:07:ae:30:14:b1:7c:2f:e5:fa:1b:44: f7:5d:1f:c7:a7:26:a5:d7:e9:3b:eb:00:ed:8b:c2: 1b:b8:26:e4:1f:08:eb:22:84:7c:03:9b:3e:4c:e8: 61:58:d9:76:62:ce:e8:b1:d4:27:ae:01:87:11:86: 30:e9:09:e8:93:96:e9:53:92:33:22:df:29:08:90: f0:50:59:75:10:39:e4:af:81:11:7c:a6:70:12:08: 96:e9:63:01:03:ae:78:e9:4a:b4:b1:cc:78:95:98: 70:3e:c3:35:cc:ea:6f:b2:19:44:8b:99:6e:d2:e5: 08:56:8f:cd:7f:fa:43:18:d9:71:e4:91:80:e4:3f: 15:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:84:DB:0D:5B:52:BD:C8:5E:20:0A:97:02:8C:80:F1:B0:F9:7B:65 X509v3 Authority Key Identifier: keyid:CB:A1:97:C0:4C:AA:9B:D2:95:F5:78:84:72:A6:A1:0A:A3:FB:EF:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:d8:57:15:0d:52:5d:a2:b6:17:7f:13:18:69:2f:82:da:38: 35:06:7a:1d:f5:a4:f0:66:7f:22:e2:a0:fd:fc:aa:76:1b:7d: 8d:7f:79:a1:25:e1:32:ce:96:a8:54:f1:1f:ca:fe:7a:47:8b: 32:96:12:f5:28:ba:cc:f4:00:94:c9:99:2e:02:be:22:d2:1b: a2:f7:9b:9f:af:d8:51:9a:d6:84:af:95:37:81:8e:d4:f3:e6: 39:83:f7:d5:e0:c7:a4:b2:0c:cf:d5:6b:98:bc:87:90:7f:71: c8:56:78:e2:a6:e4:c8:fc:d3:e1:9f:b8:27:d7:88:cc:70:e5: bd:4c:63:71:bf:83:d2:70:fd:ec:90:d0:36:f0:55:fc:b7:89: f2:fe:15:a2:0f:65:7b:c7:e7:a4:34:3d:c0:49:bc:f7:1b:15: 5d:cd:44:77:ec:f7:51:5f:1c:1c:c5:50:7c:aa:66:3c:90:ef: 7a:63:9f:f4:b6:52:5f:5e:3d:78:e3:3c:50:88:6e:ad:ed:02: 79:53:b0:bc:0f:7c:8b:84:25:77:6b:19:cf:2e:ab:ce:19:a5: c1:26:6c:20:58:1a:83:ec:ab:92:93:77:99:0f:a4:7a:91:a0: 92:b7:61:79:42:66:48:b1:ee:89:ef:29:ad:da:d9:da:2f:40: c7:e4:9b:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGxkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNDQjMxMTAvBgNVBAUTKENCQTE5N0MwNENBQTlCRDI5NUY1Nzg4NDcyQTZBMTBB QTNGQkVGNzAwHhcNMjUwNDI0MTYxOTUxWhcNMjUwNTAxMTYxOTUxWjAYMRYwFAYD VQQDEw02ODBhNjRhNy1lZGNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAohvwXy4AoE2aiZAMC3doSjGZrTCaabVFs9085UMDiMvtPpkaOQodm96Abip3 KZ9PKnr1hwEqgY6lIk/XrZAWc7ZDLCLWBcxDQeetL0J41hv0mTRGZWT4i7B8XVR4 JuZfChLgrOhvRlc7/KD36HbvmpG74yHQ54z//8FmB64wFLF8L+X6G0T3XR/Hpyal 1+k76wDti8IbuCbkHwjrIoR8A5s+TOhhWNl2Ys7osdQnrgGHEYYw6Qnok5bpU5Iz It8pCJDwUFl1EDnkr4ERfKZwEgiW6WMBA6546Uq0scx4lZhwPsM1zOpvshlEi5lu 0uUIVo/Nf/pDGNlx5JGA5D8VaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN2E2w1b Ur3IXiAKlwKMgPGw+XtlMB8GA1UdIwQYMBaAFMuhl8BMqpvSlfV4hHKmoQqj++9w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0NCMy8xREI3OTgzQzI1 OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi95NkdYd0V5cW05S1Y5WGlFY3FhaENxUDc3 M0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3k2R1h3RXlxbTlLVjlYaUVjcWFoQ3FQNzczQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0NCMy8xREI3OTgzQzI1OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi95NkdYd0V5cW05 S1Y5WGlFY3FhaENxUDc3M0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBq2FcVDVJdorYXfxMYaS+C2jg1Bnod9aTwZn8i4qD9/Kp2G32Nf3mh JeEyzpaoVPEfyv56R4sylhL1KLrM9ACUyZkuAr4i0hui95ufr9hRmtaEr5U3gY7U 8+Y5g/fV4MeksgzP1WuYvIeQf3HIVnjipuTI/NPhn7gn14jMcOW9TGNxv4PScP3s kNA28FX8t4ny/hWiD2V7x+ekND3ASbz3GxVdzUR37PdRXxwcxVB8qmY8kO96Y5/0 tlJfXj144zxQiG6t7QJ5U7C8D3yLhCV3axnPLqvOGaXBJmwgWBqD7KuSk3eZD6R6 kaCSt2F5QmZIse6J7ymt2tnaL0DH5JvL -----END CERTIFICATE-----Generated at Sat Apr 26 13:03:25 2025 by rpki-client