$ rpki-client -vvf rpki.apnic.net/member_repository/A9153675/915A28660EB311EF89CAD12CC4F9AE02/yiRYMQb7VJhMeBWJXj4Z7fecmL8.mft File: yiRYMQb7VJhMeBWJXj4Z7fecmL8.mft (raw, json) Hash identifier: sPz4Yh+SERyf4azMjBG3qDOvEaMEjW5f0WhrVpiwSXw= Subject key identifier: 41:84:39:D5:5E:65:4A:BA:48:BC:DA:2E:37:FC:2F:29:4F:2C:58:7C Authority key identifier: CA:24:58:31:06:FB:54:98:4C:78:15:89:5E:3E:19:ED:F7:9C:98:BF Certificate issuer: /CN=A9153675/serialNumber=CA24583106FB54984C7815895E3E19EDF79C98BF Certificate serial: B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yiRYMQb7VJhMeBWJXj4Z7fecmL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153675/915A28660EB311EF89CAD12CC4F9AE02/yiRYMQb7VJhMeBWJXj4Z7fecmL8.mft Manifest number: B7 Signing time: Fri 25 Apr 2025 05:00:12 +0000 Manifest this update: Fri 25 Apr 2025 05:00:11 +0000 Manifest next update: Fri 02 May 2025 05:00:11 +0000 Files and hashes: 1: yiRYMQb7VJhMeBWJXj4Z7fecmL8.crl (hash: QLIbzoMT6wRGGeUTsI7j8mnkbFFyu6FSaQA4hPr+C80=) 2: F8636CC60F9D11EFA1E14343C4F9AE02.roa (hash: tBki4iy/q8HliVYsXbIzEJgcPuIm2NjXgIYSPz8ugw8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153675/915A28660EB311EF89CAD12CC4F9AE02/yiRYMQb7VJhMeBWJXj4Z7fecmL8.crl rsync://rpki.apnic.net/member_repository/A9153675/915A28660EB311EF89CAD12CC4F9AE02/yiRYMQb7VJhMeBWJXj4Z7fecmL8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yiRYMQb7VJhMeBWJXj4Z7fecmL8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 185 (0xb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153675, serialNumber=CA24583106FB54984C7815895E3E19EDF79C98BF Validity Not Before: Apr 25 05:00:11 2025 GMT Not After : May 2 05:00:11 2025 GMT Subject: CN=680b16dc-fd02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:13:09:61:7d:68:4f:14:1e:b2:18:ae:47:20: fb:af:4e:cc:a3:55:d1:56:ad:e6:28:ca:08:ae:26: 29:2f:64:e2:1e:b9:d4:be:01:40:b4:ae:3d:96:5c: 3f:47:69:3e:72:6e:19:e3:00:46:f1:52:c7:26:b6: f2:d8:7b:60:1c:9b:ce:2f:01:1c:01:53:d1:ed:c3: c9:b3:77:fb:eb:cb:7e:b6:42:a6:24:9f:26:e3:f7: a3:59:2f:bd:7f:3f:dd:94:07:b1:ae:4b:59:dc:9d: 9d:31:ae:61:76:8b:ba:83:90:7d:6d:d5:ef:e9:99: b4:14:72:b9:2e:b7:98:40:84:37:a2:8d:dd:0a:8d: e4:1e:70:f9:76:64:7f:8f:02:44:44:2a:0c:67:40: 54:da:cd:48:81:5f:77:ce:43:87:5d:01:11:d3:8d: 7e:4d:88:42:3a:7b:26:e6:12:8a:35:14:7d:7a:4e: 1c:fc:a8:f5:4a:2f:87:57:60:1c:39:a4:be:7f:49: 78:e0:80:70:27:3d:5b:ba:8f:d3:82:11:64:72:26: ff:a6:d1:79:ed:a8:e9:5f:86:b5:11:3c:34:76:a9: 9c:06:1e:77:06:07:d9:d6:70:b5:3e:08:d3:f4:7e: e7:71:48:33:05:de:b9:f8:45:0e:52:e6:d3:8f:13: 75:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:84:39:D5:5E:65:4A:BA:48:BC:DA:2E:37:FC:2F:29:4F:2C:58:7C X509v3 Authority Key Identifier: keyid:CA:24:58:31:06:FB:54:98:4C:78:15:89:5E:3E:19:ED:F7:9C:98:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153675/915A28660EB311EF89CAD12CC4F9AE02/yiRYMQb7VJhMeBWJXj4Z7fecmL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yiRYMQb7VJhMeBWJXj4Z7fecmL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153675/915A28660EB311EF89CAD12CC4F9AE02/yiRYMQb7VJhMeBWJXj4Z7fecmL8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:d2:05:a7:21:8d:49:59:d2:37:ed:99:8e:b4:6d:d8:b6:3c: 2f:e5:83:bb:9b:89:a4:06:0f:e3:2b:4e:c6:67:fe:e2:ed:cf: d7:dc:84:4f:1b:72:4c:f7:e1:c2:5c:c9:ec:b1:c0:3f:81:a2: 50:41:c8:fe:39:2c:f6:53:7d:dc:89:51:8d:9d:5d:e9:32:13: fc:90:d2:b3:0b:75:d6:12:63:3b:da:08:bc:fd:f5:2b:37:9f: 9c:67:9d:e8:52:20:a8:2b:00:b6:bb:f0:c2:eb:ce:6c:da:90: a5:ad:23:49:5a:08:64:f7:ef:7d:a6:0e:9a:b0:d4:2a:08:cf: 86:85:d7:54:f0:ee:e2:7c:8f:32:b8:90:41:e4:c0:cb:43:bb: c9:2f:bd:c4:dd:3d:33:6f:ad:86:6e:15:72:01:39:dd:0b:da: 0b:4a:09:c0:f5:f7:b3:ff:4d:2b:45:d6:18:1b:f9:04:bf:3f: 23:14:f8:26:fc:87:8d:86:51:e4:6e:38:ba:d8:2e:81:49:2f: 01:2f:94:52:49:e9:4a:31:3d:67:f8:c8:2c:3b:1a:dc:53:24: 09:6b:8f:9c:8e:eb:05:a0:8f:2f:60:8b:36:80:9a:b4:d4:b9: c5:a2:b6:2a:55:32:6a:8e:06:57:5f:ce:a5:f3:69:3d:64:51: f7:ea:61:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM2NzUxMTAvBgNVBAUTKENBMjQ1ODMxMDZGQjU0OTg0Qzc4MTU4OTVFM0UxOUVE Rjc5Qzk4QkYwHhcNMjUwNDI1MDUwMDExWhcNMjUwNTAyMDUwMDExWjAYMRYwFAYD VQQDEw02ODBiMTZkYy1mZDAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoBMJYX1oTxQeshiuRyD7r07Mo1XRVq3mKMoIriYpL2TiHrnUvgFAtK49llw/ R2k+cm4Z4wBG8VLHJrby2HtgHJvOLwEcAVPR7cPJs3f768t+tkKmJJ8m4/ejWS+9 fz/dlAexrktZ3J2dMa5hdou6g5B9bdXv6Zm0FHK5LreYQIQ3oo3dCo3kHnD5dmR/ jwJERCoMZ0BU2s1IgV93zkOHXQER041+TYhCOnsm5hKKNRR9ek4c/Kj1Si+HV2Ac OaS+f0l44IBwJz1buo/TghFkcib/ptF57ajpX4a1ETw0dqmcBh53BgfZ1nC1PgjT 9H7ncUgzBd65+EUOUubTjxN17QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEGEOdVe ZUq6SLzaLjf8LylPLFh8MB8GA1UdIwQYMBaAFMokWDEG+1SYTHgViV4+Ge33nJi/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzY3NS85MTVBMjg2NjBF QjMxMUVGODlDQUQxMkNDNEY5QUUwMi95aVJZTVFiN1ZKaE1lQldKWGo0WjdmZWNt TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lpUllNUWI3VkpoTWVCV0pYajRaN2ZlY21MOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzY3NS85MTVBMjg2NjBFQjMxMUVGODlDQUQxMkNDNEY5QUUwMi95aVJZTVFiN1ZK aE1lQldKWGo0WjdmZWNtTDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCc0gWnIY1JWdI37ZmOtG3Ytjwv5YO7m4mkBg/jK07GZ/7i7c/X3IRP G3JM9+HCXMnsscA/gaJQQcj+OSz2U33ciVGNnV3pMhP8kNKzC3XWEmM72gi8/fUr N5+cZ53oUiCoKwC2u/DC685s2pClrSNJWghk9+99pg6asNQqCM+GhddU8O7ifI8y uJBB5MDLQ7vJL73E3T0zb62GbhVyATndC9oLSgnA9fez/00rRdYYG/kEvz8jFPgm /IeNhlHkbji62C6BSS8BL5RSSelKMT1n+MgsOxrcUyQJa4+cjusFoI8vYIs2gJq0 1LnForYqVTJqjgZXX86l82k9ZFH36mHq -----END CERTIFICATE-----Generated at Sat Apr 26 05:15:13 2025 by rpki-client