$ rpki-client -vvf rpki.apnic.net/member_repository/A9150733/217868CE3DB511EAA6491312C4F9AE02/y539cqjfUOBlAEN4BraiAY7Mvf0.mft File: y539cqjfUOBlAEN4BraiAY7Mvf0.mft (raw, json) Hash identifier: 37D++g0CeQ0Fj4/XNMu/W0zHEDoQ0/IKB+xD14a5JkE= Subject key identifier: E2:E9:5A:A4:8A:84:5E:65:81:FC:53:C7:F7:D1:3B:5D:CD:4C:48:8B Authority key identifier: CB:9D:FD:72:A8:DF:50:E0:65:00:43:78:06:B6:A2:01:8E:CC:BD:FD Certificate issuer: /CN=A9150733/serialNumber=CB9DFD72A8DF50E06500437806B6A2018ECCBDFD Certificate serial: 0B1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y539cqjfUOBlAEN4BraiAY7Mvf0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150733/217868CE3DB511EAA6491312C4F9AE02/y539cqjfUOBlAEN4BraiAY7Mvf0.mft Manifest number: 0C66 Signing time: Thu 24 Apr 2025 19:09:10 +0000 Manifest this update: Thu 24 Apr 2025 19:09:10 +0000 Manifest next update: Thu 01 May 2025 19:09:10 +0000 Files and hashes: 1: y539cqjfUOBlAEN4BraiAY7Mvf0.crl (hash: sFkqRJezz1RXbUsTGjd/CfOpqQvEUt/FjJk0i0VNwVg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150733/217868CE3DB511EAA6491312C4F9AE02/y539cqjfUOBlAEN4BraiAY7Mvf0.crl rsync://rpki.apnic.net/member_repository/A9150733/217868CE3DB511EAA6491312C4F9AE02/y539cqjfUOBlAEN4BraiAY7Mvf0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y539cqjfUOBlAEN4BraiAY7Mvf0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:09:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2842 (0xb1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150733, serialNumber=CB9DFD72A8DF50E06500437806B6A2018ECCBDFD Validity Not Before: Apr 24 19:09:10 2025 GMT Not After : May 1 19:09:10 2025 GMT Subject: CN=680a8c56-93ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d8:6a:7e:2b:8c:05:a3:20:a1:8a:e4:25:2f: d1:d5:b7:fe:c9:31:dd:70:5c:0e:8f:a7:c2:72:b7: 6a:08:b8:84:53:7a:9d:f7:0c:a5:dc:68:e3:f6:0a: b8:e9:17:2b:04:04:af:0a:92:5c:97:cb:fb:8e:52: 31:5d:93:ac:51:a7:8c:b8:16:0b:7d:07:13:1c:eb: 09:a4:23:91:0d:d3:f6:18:cf:eb:56:c9:2a:53:cf: ae:f7:da:d2:ed:86:ac:a2:46:49:0f:d7:c4:6b:b4: 45:e0:b6:60:8a:d9:90:eb:1b:1f:58:70:21:16:8d: 19:93:44:f4:82:1a:d8:96:d8:ea:e4:2c:1b:73:88: 8d:9c:5a:c2:b7:ca:47:0d:7c:85:95:90:0d:d5:eb: f9:e5:1a:19:97:d6:9d:0b:ba:3a:e3:25:c1:92:e9: bc:10:ec:93:44:f3:e5:07:e7:f9:56:6b:77:3f:50: b4:36:4d:2d:3b:88:f1:aa:4a:1c:77:2a:c2:24:71: 5e:3b:d4:b9:e3:29:12:60:ea:56:56:71:0d:b4:ea: 5e:23:90:ee:22:24:b3:ed:e8:e4:f5:d2:89:6b:49: d9:7b:3a:ef:f7:10:f9:c4:d2:20:c5:d1:8c:a7:33: 9a:3b:95:cd:63:be:01:09:b8:6f:6f:33:be:97:a6: a0:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:E9:5A:A4:8A:84:5E:65:81:FC:53:C7:F7:D1:3B:5D:CD:4C:48:8B X509v3 Authority Key Identifier: keyid:CB:9D:FD:72:A8:DF:50:E0:65:00:43:78:06:B6:A2:01:8E:CC:BD:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150733/217868CE3DB511EAA6491312C4F9AE02/y539cqjfUOBlAEN4BraiAY7Mvf0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y539cqjfUOBlAEN4BraiAY7Mvf0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150733/217868CE3DB511EAA6491312C4F9AE02/y539cqjfUOBlAEN4BraiAY7Mvf0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:a4:de:e0:aa:87:00:c8:ad:65:98:96:b2:a0:4e:ff:94:95: dc:3e:d3:8d:68:49:3d:7e:8f:2c:c0:96:25:1a:c5:2f:f7:0d: c8:66:d7:a3:71:03:6b:35:b1:69:5a:1d:88:af:20:2c:8e:f6: 7e:79:6c:44:fb:16:b2:eb:f5:84:93:e8:8d:84:f5:5a:9a:fa: 27:72:03:13:b4:31:df:3f:64:f8:03:e2:e7:b9:9c:f8:65:30: 33:ef:f9:39:97:98:c1:9b:16:35:3d:e4:de:e6:3f:8a:43:e4: 77:d7:44:28:86:5a:a5:75:aa:fa:f0:46:00:92:cc:31:33:0e: 13:45:70:61:f2:2f:7f:5c:35:0d:79:ea:e3:bf:35:e4:71:96: be:5f:8f:c1:e0:2e:db:dd:73:8f:4f:55:37:d9:5c:3d:13:8a: 5d:5b:e5:c5:e7:74:50:0f:6e:75:5d:cf:df:a4:6f:80:6b:54: 76:f9:3c:b6:9f:77:67:48:0a:5a:1a:70:45:5d:8f:53:94:d1: b5:fe:93:a8:21:76:fc:3e:58:d4:96:83:2f:c0:ce:e9:b1:20: 33:05:1f:ae:b9:7d:0f:4d:ca:bd:d9:46:09:f0:b3:f1:2a:d3: af:48:a4:99:b8:89:f2:b5:eb:18:01:63:85:2b:92:09:a5:4c: 68:dc:74:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA3MzMxMTAvBgNVBAUTKENCOURGRDcyQThERjUwRTA2NTAwNDM3ODA2QjZBMjAx OEVDQ0JERkQwHhcNMjUwNDI0MTkwOTEwWhcNMjUwNTAxMTkwOTEwWjAYMRYwFAYD VQQDEw02ODBhOGM1Ni05M2NlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwNhqfiuMBaMgoYrkJS/R1bf+yTHdcFwOj6fCcrdqCLiEU3qd9wyl3Gjj9gq4 6RcrBASvCpJcl8v7jlIxXZOsUaeMuBYLfQcTHOsJpCORDdP2GM/rVskqU8+u99rS 7YasokZJD9fEa7RF4LZgitmQ6xsfWHAhFo0Zk0T0ghrYltjq5Cwbc4iNnFrCt8pH DXyFlZAN1ev55RoZl9adC7o64yXBkum8EOyTRPPlB+f5Vmt3P1C0Nk0tO4jxqkoc dyrCJHFeO9S54ykSYOpWVnENtOpeI5DuIiSz7ejk9dKJa0nZezrv9xD5xNIgxdGM pzOaO5XNY74BCbhvbzO+l6agfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOLpWqSK hF5lgfxTx/fRO13NTEiLMB8GA1UdIwQYMBaAFMud/XKo31DgZQBDeAa2ogGOzL39 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDczMy8yMTc4NjhDRTNE QjUxMUVBQTY0OTEzMTJDNEY5QUUwMi95NTM5Y3FqZlVPQmxBRU40QnJhaUFZN012 ZjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3k1MzljcWpmVU9CbEFFTjRCcmFpQVk3TXZmMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDczMy8yMTc4NjhDRTNEQjUxMUVBQTY0OTEzMTJDNEY5QUUwMi95NTM5Y3FqZlVP QmxBRU40QnJhaUFZN012ZjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCpN7gqocAyK1lmJayoE7/lJXcPtONaEk9fo8swJYlGsUv9w3IZtej cQNrNbFpWh2IryAsjvZ+eWxE+xay6/WEk+iNhPVamvoncgMTtDHfP2T4A+LnuZz4 ZTAz7/k5l5jBmxY1PeTe5j+KQ+R310Qohlqldar68EYAkswxMw4TRXBh8i9/XDUN eerjvzXkcZa+X4/B4C7b3XOPT1U32Vw9E4pdW+XF53RQD251Xc/fpG+Aa1R2+Ty2 n3dnSApaGnBFXY9TlNG1/pOoIXb8PljUloMvwM7psSAzBR+uuX0PTcq92UYJ8LPx KtOvSKSZuInytesYAWOFK5IJpUxo3HQF -----END CERTIFICATE-----Generated at Sat Apr 26 04:30:28 2025 by rpki-client