$ rpki-client -vvf rpki.apnic.net/member_repository/A9148488/5D26834A838F11EAB7031862C4F9AE02/YHbFE51Mz968pEoUvbcxaIj6Y0Q.mft File: YHbFE51Mz968pEoUvbcxaIj6Y0Q.mft (raw, json) Hash identifier: jl6CuHmdjs/IP2w6JpTVGP1l/j216ATk3ZxRtvKBRHw= Subject key identifier: 3E:01:B6:56:24:F2:D8:81:17:14:D8:CB:99:27:39:33:36:45:BD:40 Authority key identifier: 60:76:C5:13:9D:4C:CF:DE:BC:A4:4A:14:BD:B7:31:68:88:FA:63:44 Certificate issuer: /CN=A9148488/serialNumber=6076C5139D4CCFDEBCA44A14BDB7316888FA6344 Certificate serial: 09AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YHbFE51Mz968pEoUvbcxaIj6Y0Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148488/5D26834A838F11EAB7031862C4F9AE02/YHbFE51Mz968pEoUvbcxaIj6Y0Q.mft Manifest number: 09A5 Signing time: Thu 24 Apr 2025 19:55:32 +0000 Manifest this update: Thu 24 Apr 2025 19:55:32 +0000 Manifest next update: Thu 01 May 2025 19:55:31 +0000 Files and hashes: 1: YHbFE51Mz968pEoUvbcxaIj6Y0Q.crl (hash: QjQEZpKq8wibAYpMXnpwMG4d+KbyVC638lqmgwS6Cts=) 2: 5C8929C8839011EAB5B82263C4F9AE02.roa (hash: Jr5A5EFDHOtjVbEZUPlRHjoDRI+w8P0c18JoA/Eyebg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148488/5D26834A838F11EAB7031862C4F9AE02/YHbFE51Mz968pEoUvbcxaIj6Y0Q.crl rsync://rpki.apnic.net/member_repository/A9148488/5D26834A838F11EAB7031862C4F9AE02/YHbFE51Mz968pEoUvbcxaIj6Y0Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YHbFE51Mz968pEoUvbcxaIj6Y0Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:55:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2475 (0x9ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148488, serialNumber=6076C5139D4CCFDEBCA44A14BDB7316888FA6344 Validity Not Before: Apr 24 19:55:32 2025 GMT Not After : May 1 19:55:31 2025 GMT Subject: CN=680a9734-94f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:87:7b:8b:81:16:f3:e6:8a:fa:36:b5:d7:60: 13:c3:c5:55:f3:49:94:6a:f7:f5:20:49:35:6e:8e: d7:e2:48:20:c4:25:e7:c5:89:17:2b:12:ec:de:4e: 30:3f:eb:e5:71:82:28:90:5c:8d:62:94:60:4f:d6: 35:c5:00:61:e2:63:00:ea:56:d1:1d:9a:d5:26:40: c0:93:e4:39:4e:6e:b7:94:7e:45:6f:6d:3c:40:c8: d6:bb:1d:2e:29:f7:44:ed:8e:88:1c:d6:be:c6:98: 15:b6:49:e1:bd:97:c9:84:26:22:d0:a6:10:4d:dc: 6a:43:26:40:9e:24:aa:1c:64:2b:36:ba:87:20:e5: 38:dd:e8:52:19:8e:65:11:6c:8a:4a:da:27:71:5a: e4:0e:ad:8c:b8:59:e7:76:c6:6f:21:f6:41:85:3e: 9b:16:c3:27:5d:6d:55:4a:18:2a:32:01:da:9e:f4: f7:66:a1:44:d0:fd:de:02:26:6e:9d:fb:5e:3d:6a: 4a:1d:b1:7b:a1:32:fb:b1:b4:c4:09:b5:09:7d:59: ea:c1:cf:48:1c:46:ed:1d:32:b3:22:1b:84:50:6a: 73:05:85:bd:60:ca:99:a3:21:3e:6a:e0:97:f8:bd: 3e:04:62:45:1c:2a:2c:b0:ec:9d:4c:90:77:a1:4c: 08:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:01:B6:56:24:F2:D8:81:17:14:D8:CB:99:27:39:33:36:45:BD:40 X509v3 Authority Key Identifier: keyid:60:76:C5:13:9D:4C:CF:DE:BC:A4:4A:14:BD:B7:31:68:88:FA:63:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148488/5D26834A838F11EAB7031862C4F9AE02/YHbFE51Mz968pEoUvbcxaIj6Y0Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YHbFE51Mz968pEoUvbcxaIj6Y0Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148488/5D26834A838F11EAB7031862C4F9AE02/YHbFE51Mz968pEoUvbcxaIj6Y0Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:ac:af:30:79:5d:f7:a9:ef:1a:cd:c2:b2:74:da:49:f6:95: 11:cc:eb:b8:4a:85:c4:cf:e0:30:78:30:b0:45:42:5d:75:c1: 7f:5e:94:49:fd:12:5e:90:8d:4e:4e:98:0b:ed:49:5a:60:e3: 4f:e5:fb:54:bf:5d:c2:53:07:7a:a8:9d:6f:90:dd:60:d1:b7: 07:33:3f:d0:bc:d2:e1:2e:07:a5:81:8f:39:ed:ea:b1:f3:78: 70:91:81:a4:17:5c:8d:09:e0:0b:4d:51:61:93:55:b0:ef:1c: 64:65:6f:df:07:32:31:2b:7f:81:27:47:2d:98:46:82:ca:69: 48:c2:a6:9d:1c:4c:5e:84:60:60:d0:c8:c8:74:7d:77:5a:4b: 29:02:90:81:7d:93:2a:94:bd:22:34:66:8b:29:de:95:a3:22: 44:fa:0b:a1:69:19:06:64:bf:16:04:58:4c:3b:13:7a:bb:95: 9e:46:b7:91:7c:9b:0b:e8:3b:d3:9e:2d:74:be:a4:12:d5:9b: cb:24:55:5d:96:77:a2:9b:8c:57:d8:62:e6:95:73:6e:ec:f8: 92:c9:1a:70:9b:cd:ff:af:4a:bf:f2:5e:5b:bd:66:c2:26:5d: 9b:7f:31:de:86:37:5a:3d:4c:ed:75:ca:4b:66:41:0e:47:3f: 9a:41:d7:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDg0ODgxMTAvBgNVBAUTKDYwNzZDNTEzOUQ0Q0NGREVCQ0E0NEExNEJEQjczMTY4 ODhGQTYzNDQwHhcNMjUwNDI0MTk1NTMyWhcNMjUwNTAxMTk1NTMxWjAYMRYwFAYD VQQDEw02ODBhOTczNC05NGY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlId7i4EW8+aK+ja112ATw8VV80mUavf1IEk1bo7X4kggxCXnxYkXKxLs3k4w P+vlcYIokFyNYpRgT9Y1xQBh4mMA6lbRHZrVJkDAk+Q5Tm63lH5Fb208QMjWux0u KfdE7Y6IHNa+xpgVtknhvZfJhCYi0KYQTdxqQyZAniSqHGQrNrqHIOU43ehSGY5l EWyKStoncVrkDq2MuFnndsZvIfZBhT6bFsMnXW1VShgqMgHanvT3ZqFE0P3eAiZu nftePWpKHbF7oTL7sbTECbUJfVnqwc9IHEbtHTKzIhuEUGpzBYW9YMqZoyE+auCX +L0+BGJFHCossOydTJB3oUwIGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD4BtlYk 8tiBFxTYy5knOTM2Rb1AMB8GA1UdIwQYMBaAFGB2xROdTM/evKRKFL23MWiI+mNE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0ODQ4OC81RDI2ODM0QTgz OEYxMUVBQjcwMzE4NjJDNEY5QUUwMi9ZSGJGRTUxTXo5NjhwRW9VdmJjeGFJajZZ MFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lIYkZFNTFNejk2OHBFb1V2YmN4YUlqNlkwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 ODQ4OC81RDI2ODM0QTgzOEYxMUVBQjcwMzE4NjJDNEY5QUUwMi9ZSGJGRTUxTXo5 NjhwRW9VdmJjeGFJajZZMFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIrK8weV33qe8azcKydNpJ9pURzOu4SoXEz+AweDCwRUJddcF/XpRJ /RJekI1OTpgL7UlaYONP5ftUv13CUwd6qJ1vkN1g0bcHMz/QvNLhLgelgY857eqx 83hwkYGkF1yNCeALTVFhk1Ww7xxkZW/fBzIxK3+BJ0ctmEaCymlIwqadHExehGBg 0MjIdH13WkspApCBfZMqlL0iNGaLKd6VoyJE+guhaRkGZL8WBFhMOxN6u5WeRreR fJsL6DvTni10vqQS1ZvLJFVdlneim4xX2GLmlXNu7PiSyRpwm83/r0q/8l5bvWbC Jl2bfzHehjdaPUztdcpLZkEORz+aQdeJ -----END CERTIFICATE-----Generated at Sat Apr 26 04:38:36 2025 by rpki-client