$ rpki-client -vvf rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft File: Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft (raw, json) Hash identifier: quzDZnkCiYGnmkCzKusgua66Bg7CnHSPZyxEO5av7Oc= Subject key identifier: 5A:96:44:9B:54:0D:85:42:EB:07:6C:48:6B:0C:8A:D5:E4:BF:84:5C Authority key identifier: 63:E4:87:62:A8:93:08:09:67:73:D9:E1:C9:D1:A9:99:80:35:67:0D Certificate issuer: /CN=A9147B58/serialNumber=63E48762A89308096773D9E1C9D1A9998035670D Certificate serial: 05A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft Manifest number: 059B Signing time: Thu 24 Apr 2025 23:00:38 +0000 Manifest this update: Thu 24 Apr 2025 23:00:37 +0000 Manifest next update: Thu 01 May 2025 23:00:37 +0000 Files and hashes: 1: Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl (hash: oBduIMfTZQ9E1JnaBQdGIJizVEIQOyljlyJ8MOceJHo=) 2: 657BCA62CABC11EB8D6D063BC4F9AE02.roa (hash: tl2kppVQ05tVhEGA0iZghAdvk5il8hkt04HkORheCWE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1441 (0x5a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147B58, serialNumber=63E48762A89308096773D9E1C9D1A9998035670D Validity Not Before: Apr 24 23:00:37 2025 GMT Not After : May 1 23:00:37 2025 GMT Subject: CN=680ac296-7e4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:51:38:5d:77:06:4b:ed:65:c3:27:ae:f6:f4: bf:46:f9:1c:41:1e:e3:e7:9b:01:50:84:93:a7:81: d2:4a:5e:0f:8f:ea:4d:a1:bf:b3:0f:03:51:02:4b: fd:8b:78:d8:78:22:70:49:86:25:14:24:ae:e2:96: 4f:d9:69:b4:bc:59:1b:d3:1e:22:aa:6d:8d:90:53: 7a:16:14:01:d1:8d:76:6a:2a:9f:db:6e:80:83:4f: ee:ef:38:65:44:39:34:8d:3a:d6:44:f5:c8:49:7e: fe:c9:c4:4c:59:3d:91:dc:5e:ce:3d:fe:ef:25:16: d4:ab:66:13:37:6b:6f:27:45:fb:a4:d5:d7:c6:68: a4:bc:46:51:d6:d4:79:e8:27:70:c9:f3:ad:4d:ad: 01:c6:24:27:a8:c9:0a:fe:e3:c7:b3:56:65:06:c6: 78:56:c1:ef:af:67:a1:52:86:52:4d:e4:c0:ff:66: ca:76:bb:12:c2:4b:08:d9:1f:a5:31:87:2a:70:2a: fe:e7:75:94:a0:ad:a7:51:28:40:5c:df:29:97:9b: 14:07:c9:8b:a8:a9:e8:71:13:ee:2b:91:1e:c0:c6: 52:b4:cb:7f:31:b7:30:b6:58:47:40:5a:1d:06:80: 02:3d:92:b3:ff:46:e3:48:0d:3a:8c:cb:6c:d6:11: 67:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:96:44:9B:54:0D:85:42:EB:07:6C:48:6B:0C:8A:D5:E4:BF:84:5C X509v3 Authority Key Identifier: keyid:63:E4:87:62:A8:93:08:09:67:73:D9:E1:C9:D1:A9:99:80:35:67:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:5d:be:3c:8f:c3:16:28:4b:82:a5:11:8e:f6:2a:af:e3:b7: e2:cb:d7:6a:ed:31:f1:84:47:46:00:0c:95:c1:34:08:b4:b7: f1:f5:77:52:da:9b:25:f7:5d:6b:48:e0:4d:58:6c:83:ab:70: ae:0e:66:49:b3:4f:49:f0:b4:38:80:6a:ae:38:19:51:06:5c: 71:37:3e:5b:d3:2d:f7:57:68:85:97:05:1c:a9:d2:08:3c:aa: e7:32:66:19:67:fe:7a:83:d5:12:f7:a2:85:29:fe:cc:af:9b: ad:78:88:6b:30:c1:e8:65:08:80:78:ae:5c:fa:c7:6d:d4:29: 9c:cf:27:d5:22:50:3d:0f:d9:b6:ed:7b:e9:08:1c:6c:ca:15: 4d:ef:c2:b6:f1:c9:7c:82:f3:88:c7:8c:db:d7:ee:b3:39:89: 4f:89:e1:4e:17:96:7c:31:f9:ac:f1:7b:be:82:6b:b3:73:9a: 08:48:43:5f:1d:3d:c6:c5:45:18:fc:f8:16:97:cd:45:93:7c: b1:13:2e:83:e6:d1:9a:ed:4a:cc:e0:30:e9:b8:84:60:a5:f1: 64:87:52:00:0d:1d:6e:9d:08:c8:57:47:89:f7:b3:cc:e0:f1: be:c9:03:bc:25:06:39:88:54:5b:5a:4d:d4:84:a8:7b:0f:20: cb:c9:4d:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBaEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdCNTgxMTAvBgNVBAUTKDYzRTQ4NzYyQTg5MzA4MDk2NzczRDlFMUM5RDFBOTk5 ODAzNTY3MEQwHhcNMjUwNDI0MjMwMDM3WhcNMjUwNTAxMjMwMDM3WjAYMRYwFAYD VQQDEw02ODBhYzI5Ni03ZTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqVE4XXcGS+1lwyeu9vS/RvkcQR7j55sBUISTp4HSSl4Pj+pNob+zDwNRAkv9 i3jYeCJwSYYlFCSu4pZP2Wm0vFkb0x4iqm2NkFN6FhQB0Y12aiqf226Ag0/u7zhl RDk0jTrWRPXISX7+ycRMWT2R3F7OPf7vJRbUq2YTN2tvJ0X7pNXXxmikvEZR1tR5 6CdwyfOtTa0BxiQnqMkK/uPHs1ZlBsZ4VsHvr2ehUoZSTeTA/2bKdrsSwksI2R+l MYcqcCr+53WUoK2nUShAXN8pl5sUB8mLqKnocRPuK5EewMZStMt/MbcwtlhHQFod BoACPZKz/0bjSA06jMts1hFnlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFqWRJtU DYVC6wdsSGsMitXkv4RcMB8GA1UdIwQYMBaAFGPkh2KokwgJZ3PZ4cnRqZmANWcN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0I1OC9BQUMyMUM3RUNB QjgxMUVCODQxNTUzMzZDNEY5QUUwMi9ZLVNIWXFpVENBbG5jOW5oeWRHcG1ZQTFa dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ktU0hZcWlUQ0FsbmM5bmh5ZEdwbVlBMVp3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0I1OC9BQUMyMUM3RUNBQjgxMUVCODQxNTUzMzZDNEY5QUUwMi9ZLVNIWXFpVENB bG5jOW5oeWRHcG1ZQTFadzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwXb48j8MWKEuCpRGO9iqv47fiy9dq7THxhEdGAAyVwTQItLfx9XdS 2psl911rSOBNWGyDq3CuDmZJs09J8LQ4gGquOBlRBlxxNz5b0y33V2iFlwUcqdII PKrnMmYZZ/56g9US96KFKf7Mr5uteIhrMMHoZQiAeK5c+sdt1CmczyfVIlA9D9m2 7XvpCBxsyhVN78K28cl8gvOIx4zb1+6zOYlPieFOF5Z8Mfms8Xu+gmuzc5oISENf HT3GxUUY/PgWl81Fk3yxEy6D5tGa7UrM4DDpuIRgpfFkh1IADR1unQjIV0eJ97PM 4PG+yQO8JQY5iFRbWk3UhKh7DyDLyU2L -----END CERTIFICATE-----Generated at Sat Apr 26 15:18:41 2025 by rpki-client