$ rpki-client -vvf rpki.apnic.net/member_repository/A9144261/D065BC4C934211EEA8C15478C4F9AE02/zYmoJo6xHjMPvUTASHINEyXFpgs.mft File: zYmoJo6xHjMPvUTASHINEyXFpgs.mft (raw, json) Hash identifier: GEGh1bsmLfyzxkuWg2g9Ttp7QuSU3YmyCmLI+hDCk1w= Subject key identifier: 6D:B8:0B:F1:8C:70:94:D1:0F:83:16:A2:FF:52:AD:87:59:81:E7:7A Authority key identifier: CD:89:A8:26:8E:B1:1E:33:0F:BD:44:C0:48:72:0D:13:25:C5:A6:0B Certificate issuer: /CN=A9144261/serialNumber=CD89A8268EB11E330FBD44C048720D1325C5A60B Certificate serial: 0111 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zYmoJo6xHjMPvUTASHINEyXFpgs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144261/D065BC4C934211EEA8C15478C4F9AE02/zYmoJo6xHjMPvUTASHINEyXFpgs.mft Manifest number: 010D Signing time: Fri 25 Apr 2025 04:07:28 +0000 Manifest this update: Fri 25 Apr 2025 04:07:27 +0000 Manifest next update: Fri 02 May 2025 04:07:27 +0000 Files and hashes: 1: zYmoJo6xHjMPvUTASHINEyXFpgs.crl (hash: 9TGSjF/9UxtcnHuo0V55kk9PYlIYHKuoYmzICezpaWI=) 2: 0DFFB0D2989111EEB7938523C4F9AE02.roa (hash: 05BxmRyvKNcOlG0da2lnXsYOxEsMKdSx2ZRkaVaMWv4=) 3: EEF965C0989011EE982B5B23C4F9AE02.roa (hash: cOcYEcKHuf/JYD0AEBC5IpcPkABHQnNi85MejRVjkMU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144261/D065BC4C934211EEA8C15478C4F9AE02/zYmoJo6xHjMPvUTASHINEyXFpgs.crl rsync://rpki.apnic.net/member_repository/A9144261/D065BC4C934211EEA8C15478C4F9AE02/zYmoJo6xHjMPvUTASHINEyXFpgs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zYmoJo6xHjMPvUTASHINEyXFpgs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:07:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 273 (0x111) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144261, serialNumber=CD89A8268EB11E330FBD44C048720D1325C5A60B Validity Not Before: Apr 25 04:07:27 2025 GMT Not After : May 2 04:07:27 2025 GMT Subject: CN=680b0a7f-8bbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:41:d0:ae:ae:24:d1:b6:ec:8c:50:80:89:d7: 03:0e:d0:b0:b6:c7:27:b7:0e:54:46:03:d9:46:be: 62:1e:97:4a:12:75:5a:05:fe:b6:f7:1a:d0:c7:8a: 25:f2:1f:ae:3e:cb:43:c0:68:2f:1c:4c:56:ab:85: e5:c8:ad:a2:ca:f2:7e:48:16:6b:7b:bf:b9:50:93: 27:96:1b:63:13:51:3e:e4:44:68:c0:54:f0:ba:c6: e9:8c:27:ac:b0:b2:a2:f0:2d:df:72:2a:e7:af:3a: 87:ef:dd:7b:14:fa:73:5e:21:f7:6f:11:8a:e5:64: e9:06:b3:5d:7a:a7:22:c1:7a:e7:3b:a6:d6:67:98: a6:39:14:af:8a:2a:b1:92:53:2c:58:2b:49:07:ac: c9:dd:35:c5:46:58:30:59:96:35:49:11:89:11:5e: f9:c2:88:37:42:1a:0b:65:a1:3e:12:8e:5c:42:c2: e0:9c:f3:ae:1e:1d:a1:55:33:7f:6a:b2:76:b8:f4: af:8c:68:b6:9d:83:c2:0d:2b:05:9e:e3:00:2e:92: d8:57:5d:a7:74:e0:56:c5:d7:67:18:5b:85:0d:c8: a9:a5:7c:43:1a:1d:16:68:23:32:df:4b:a9:53:2e: aa:76:34:45:3a:46:65:4b:32:91:75:9b:db:d6:b8: 71:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:B8:0B:F1:8C:70:94:D1:0F:83:16:A2:FF:52:AD:87:59:81:E7:7A X509v3 Authority Key Identifier: keyid:CD:89:A8:26:8E:B1:1E:33:0F:BD:44:C0:48:72:0D:13:25:C5:A6:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144261/D065BC4C934211EEA8C15478C4F9AE02/zYmoJo6xHjMPvUTASHINEyXFpgs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zYmoJo6xHjMPvUTASHINEyXFpgs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144261/D065BC4C934211EEA8C15478C4F9AE02/zYmoJo6xHjMPvUTASHINEyXFpgs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:13:d3:38:b4:d7:d1:94:0b:a1:9e:1f:02:a8:f7:b3:4e:c0: fb:41:10:b5:8b:16:b6:b7:04:4d:d5:f6:18:26:2f:30:dc:a6: 2b:28:7c:99:51:71:6f:25:d8:4a:d8:0a:a8:8a:31:9f:9f:c6: 2e:69:83:7c:af:6c:61:18:48:c3:71:bb:3e:d7:13:ad:0c:1f: 15:35:ae:8d:c8:0c:18:ff:55:78:e0:9c:f6:e4:6f:ba:36:ab: dd:d3:6f:26:fb:ff:fe:5f:d1:d6:33:b9:f7:22:8a:6e:20:a6: 0f:40:a4:43:60:f9:c0:73:00:f1:42:40:05:41:30:2d:e6:de: 7c:55:71:e1:fd:ec:31:90:e4:02:02:4a:f6:0d:93:59:4f:c0: 68:30:ac:2e:b8:5b:a4:41:3b:0f:3a:a7:0c:65:ff:8f:0c:84: ff:5a:6d:3c:9d:4b:b3:6b:36:9e:db:4a:aa:82:f3:98:03:90: 6b:73:6c:a5:3a:c6:2d:8e:cb:17:f0:6a:ef:69:0b:2f:60:23: f8:88:24:96:ba:37:78:ac:4c:19:54:d0:17:73:4f:d1:e9:56: 68:9c:7a:1b:9d:f8:f6:fe:02:50:ab:1c:68:ef:24:9d:6e:42: 90:ba:c4:e8:69:16:a3:20:bc:2b:84:ba:d1:fd:36:de:2a:f5: cd:32:5b:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQyNjExMTAvBgNVBAUTKENEODlBODI2OEVCMTFFMzMwRkJENDRDMDQ4NzIwRDEz MjVDNUE2MEIwHhcNMjUwNDI1MDQwNzI3WhcNMjUwNTAyMDQwNzI3WjAYMRYwFAYD VQQDEw02ODBiMGE3Zi04YmJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtEHQrq4k0bbsjFCAidcDDtCwtscntw5URgPZRr5iHpdKEnVaBf629xrQx4ol 8h+uPstDwGgvHExWq4XlyK2iyvJ+SBZre7+5UJMnlhtjE1E+5ERowFTwusbpjCes sLKi8C3fcirnrzqH7917FPpzXiH3bxGK5WTpBrNdeqciwXrnO6bWZ5imORSviiqx klMsWCtJB6zJ3TXFRlgwWZY1SRGJEV75wog3QhoLZaE+Eo5cQsLgnPOuHh2hVTN/ arJ2uPSvjGi2nYPCDSsFnuMALpLYV12ndOBWxddnGFuFDcippXxDGh0WaCMy30up Uy6qdjRFOkZlSzKRdZvb1rhxAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG24C/GM cJTRD4MWov9SrYdZged6MB8GA1UdIwQYMBaAFM2JqCaOsR4zD71EwEhyDRMlxaYL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDI2MS9EMDY1QkM0Qzkz NDIxMUVFQThDMTU0NzhDNEY5QUUwMi96WW1vSm82eEhqTVB2VVRBU0hJTkV5WEZw Z3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pZbW9KbzZ4SGpNUHZVVEFTSElORXlYRnBncy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDI2MS9EMDY1QkM0QzkzNDIxMUVFQThDMTU0NzhDNEY5QUUwMi96WW1vSm82eEhq TVB2VVRBU0hJTkV5WEZwZ3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBE9M4tNfRlAuhnh8CqPezTsD7QRC1ixa2twRN1fYYJi8w3KYrKHyZ UXFvJdhK2AqoijGfn8YuaYN8r2xhGEjDcbs+1xOtDB8VNa6NyAwY/1V44Jz25G+6 Nqvd028m+//+X9HWM7n3IopuIKYPQKRDYPnAcwDxQkAFQTAt5t58VXHh/ewxkOQC Akr2DZNZT8BoMKwuuFukQTsPOqcMZf+PDIT/Wm08nUuzazae20qqgvOYA5Brc2yl OsYtjssX8GrvaQsvYCP4iCSWujd4rEwZVNAXc0/R6VZonHobnfj2/gJQqxxo7ySd bkKQusToaRajILwrhLrR/TbeKvXNMlvm -----END CERTIFICATE-----Generated at Sat Apr 26 14:56:01 2025 by rpki-client