$ rpki-client -vvf rpki.apnic.net/member_repository/A915479A/2E10EDB2E37911EFB4666B31C4F9AE02/dYrCvtrcujrXOBafs4nVCLVNdL8.mft File: dYrCvtrcujrXOBafs4nVCLVNdL8.mft (raw, json) Hash identifier: cev7sGCmD2Y/zRvWZLd6gT4koO/A2QL15sViU3q8Pic= Subject key identifier: DF:1C:85:63:89:5A:C5:3E:13:66:DA:63:9D:5A:3D:62:D2:0F:CE:AD Authority key identifier: 75:8A:C2:BE:DA:DC:BA:3A:D7:38:16:9F:B3:89:D5:08:B5:4D:74:BF Certificate issuer: /CN=A915479A/serialNumber=758AC2BEDADCBA3AD738169FB389D508B54D74BF Certificate serial: 2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dYrCvtrcujrXOBafs4nVCLVNdL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915479A/2E10EDB2E37911EFB4666B31C4F9AE02/dYrCvtrcujrXOBafs4nVCLVNdL8.mft Manifest number: 2A Signing time: Fri 25 Apr 2025 06:42:31 +0000 Manifest this update: Fri 25 Apr 2025 06:42:30 +0000 Manifest next update: Fri 02 May 2025 06:42:30 +0000 Files and hashes: 1: dYrCvtrcujrXOBafs4nVCLVNdL8.crl (hash: maueas9T9E4ILuxIJwQq2Uo3PdZ4su+Z6d0PrNgk/JA=) 2: 88A1F6DEE37B11EFB4D75458C4F9AE02.roa (hash: cprKT/vfUwI6vjvLZuHXw1YhqI0bQrhQTc7WaG1olUM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915479A/2E10EDB2E37911EFB4666B31C4F9AE02/dYrCvtrcujrXOBafs4nVCLVNdL8.crl rsync://rpki.apnic.net/member_repository/A915479A/2E10EDB2E37911EFB4666B31C4F9AE02/dYrCvtrcujrXOBafs4nVCLVNdL8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dYrCvtrcujrXOBafs4nVCLVNdL8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:42:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915479A, serialNumber=758AC2BEDADCBA3AD738169FB389D508B54D74BF Validity Not Before: Apr 25 06:42:30 2025 GMT Not After : May 2 06:42:30 2025 GMT Subject: CN=680b2ed6-aef1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:41:56:f8:e6:15:39:4c:61:91:c8:a0:c3:7e: c4:bf:22:01:65:8b:a4:76:63:eb:79:58:b9:ea:31: f0:51:82:1c:1d:a5:93:90:02:a9:84:9c:70:d1:96: 12:69:cc:44:af:92:de:76:a4:5b:7e:68:17:44:2c: 9e:6f:01:9a:a9:bf:f1:27:23:b3:f6:5b:72:56:ec: 13:28:9f:1e:a5:86:80:39:09:53:9f:9d:3f:05:a2: 71:32:0a:cd:ad:65:fd:cb:1d:66:5a:e7:8e:6c:2a: 84:c9:17:25:41:e7:97:81:98:66:9a:a7:10:d6:ce: 36:9f:9f:c2:22:f2:f2:6f:cc:1f:87:33:3f:95:d8: a6:bf:d8:bb:8e:27:62:fa:94:e8:93:fb:8b:57:a9: c4:56:62:bb:69:35:4d:e6:d5:66:ea:45:7a:1b:b6: 20:27:14:db:85:f0:c3:d6:83:c9:fa:3e:8c:89:19: 18:75:18:a8:c1:7c:07:6d:68:11:14:9c:dc:2e:cf: a7:e8:a8:2d:92:58:bd:ff:90:9d:5b:84:ab:e9:2d: 79:71:54:9a:57:52:d5:c7:46:69:98:74:22:49:30: 1f:cb:c5:92:3d:8a:bb:73:72:db:40:a2:14:3f:31: 95:91:f7:0a:26:0a:44:a1:1b:9a:1c:b1:5e:db:36: 49:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:1C:85:63:89:5A:C5:3E:13:66:DA:63:9D:5A:3D:62:D2:0F:CE:AD X509v3 Authority Key Identifier: keyid:75:8A:C2:BE:DA:DC:BA:3A:D7:38:16:9F:B3:89:D5:08:B5:4D:74:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915479A/2E10EDB2E37911EFB4666B31C4F9AE02/dYrCvtrcujrXOBafs4nVCLVNdL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dYrCvtrcujrXOBafs4nVCLVNdL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915479A/2E10EDB2E37911EFB4666B31C4F9AE02/dYrCvtrcujrXOBafs4nVCLVNdL8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:0d:4a:67:7a:b0:ae:c3:ed:50:28:7d:68:c2:e9:79:b9:cc: 22:4d:25:f4:48:5a:2c:29:09:8d:f7:b5:65:e8:d8:69:3b:e5: 9a:8a:3b:63:1e:45:a9:c3:ab:9a:e1:8e:45:6e:6b:da:a9:b6: a3:fb:60:33:e9:18:a3:f3:20:1f:50:1d:d7:15:3a:7e:07:e1: 5a:30:bd:c2:a1:a2:b7:dc:d9:3b:8b:e0:57:2c:71:f8:c7:f5: 63:05:73:d1:70:60:2e:61:51:63:5d:28:71:09:df:a7:9f:b4: f3:1a:e5:df:d3:6b:37:d7:7f:16:e5:72:0e:32:8e:70:ac:90: cc:6c:37:a5:dd:c9:a3:ad:8c:7d:c7:00:5a:0d:6d:03:a2:bb: 7f:82:00:bd:8f:31:c0:e7:91:04:dd:91:41:bb:62:4b:6f:b6: 21:33:df:e3:02:04:5c:2d:2b:82:66:32:78:47:9b:ac:df:9f: 28:08:59:33:e7:75:79:31:c6:57:75:fe:1f:80:dc:fb:ad:78: dc:af:9a:06:12:9d:f3:fe:84:bd:c2:da:e6:32:72:95:30:c9: 6b:58:e9:67:ab:c6:72:ae:1a:e3:b2:ce:87:52:5f:88:fb:5b: ee:8c:9c:8a:b1:14:f5:62:a8:c7:ea:0a:93:9a:6b:42:02:69: ce:08:a8:2c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NDc5QTExMC8GA1UEBRMoNzU4QUMyQkVEQURDQkEzQUQ3MzgxNjlGQjM4OUQ1MDhC NTRENzRCRjAeFw0yNTA0MjUwNjQyMzBaFw0yNTA1MDIwNjQyMzBaMBgxFjAUBgNV BAMTDTY4MGIyZWQ2LWFlZjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDfQVb45hU5TGGRyKDDfsS/IgFli6R2Y+t5WLnqMfBRghwdpZOQAqmEnHDRlhJp zESvkt52pFt+aBdELJ5vAZqpv/EnI7P2W3JW7BMonx6lhoA5CVOfnT8FonEyCs2t Zf3LHWZa545sKoTJFyVB55eBmGaapxDWzjafn8Ii8vJvzB+HMz+V2Ka/2LuOJ2L6 lOiT+4tXqcRWYrtpNU3m1WbqRXobtiAnFNuF8MPWg8n6PoyJGRh1GKjBfAdtaBEU nNwuz6foqC2SWL3/kJ1bhKvpLXlxVJpXUtXHRmmYdCJJMB/LxZI9irtzcttAohQ/ MZWR9womCkShG5ocsV7bNkm/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU3xyFY4la xT4TZtpjnVo9YtIPzq0wHwYDVR0jBBgwFoAUdYrCvtrcujrXOBafs4nVCLVNdL8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU0NzlBLzJFMTBFREIyRTM3 OTExRUZCNDY2NkIzMUM0RjlBRTAyL2RZckN2dHJjdWpyWE9CYWZzNG5WQ0xWTmRM OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZFlyQ3Z0cmN1anJYT0JhZnM0blZDTFZOZEw4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU0 NzlBLzJFMTBFREIyRTM3OTExRUZCNDY2NkIzMUM0RjlBRTAyL2RZckN2dHJjdWpy WE9CYWZzNG5WQ0xWTmRMOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAC0NSmd6sK7D7VAofWjC6Xm5zCJNJfRIWiwpCY33tWXo2Gk75ZqKO2Me RanDq5rhjkVua9qptqP7YDPpGKPzIB9QHdcVOn4H4VowvcKhorfc2TuL4FcscfjH 9WMFc9FwYC5hUWNdKHEJ36eftPMa5d/TazfXfxblcg4yjnCskMxsN6XdyaOtjH3H AFoNbQOiu3+CAL2PMcDnkQTdkUG7YktvtiEz3+MCBFwtK4JmMnhHm6zfnygIWTPn dXkxxld1/h+A3PuteNyvmgYSnfP+hL3C2uYycpUwyWtY6WerxnKuGuOyzodSX4j7 W+6MnIqxFPViqMfqCpOaa0ICac4IqCw= -----END CERTIFICATE-----Generated at Sat Apr 26 15:04:05 2025 by rpki-client