$ rpki-client -vvf rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft File: y-PSoWWxlLlY7sO2qURXdyo6CSo.mft (raw, json) Hash identifier: dFGuQW+xrbE3ylkZ3lW5sS2f3vc9pj+0FlI+Izk+u+s= Subject key identifier: DB:9D:4E:AB:9F:1B:E1:FC:35:66:94:8C:4E:97:B8:A1:CD:9D:9B:31 Authority key identifier: CB:E3:D2:A1:65:B1:94:B9:58:EE:C3:B6:A9:44:57:77:2A:3A:09:2A Certificate issuer: /CN=A9154FE7/serialNumber=CBE3D2A165B194B958EEC3B6A94457772A3A092A Certificate serial: 0812 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft Manifest number: 0805 Signing time: Mon 28 Apr 2025 21:20:08 +0000 Manifest this update: Mon 28 Apr 2025 21:20:07 +0000 Manifest next update: Mon 05 May 2025 21:20:07 +0000 Files and hashes: 1: y-PSoWWxlLlY7sO2qURXdyo6CSo.crl (hash: KV625VsUvXAIOzW6Jk+1iHZhAxIuplTPxiYHcHpqe3o=) 2: 4B3AC7DC5FC811ED869A6956C4F9AE02.roa (hash: hwrYZn+i2OUNCmUoK3ena1siLJOV1HVO2m5EjPVb3kw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.crl rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 21:20:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2066 (0x812) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154FE7, serialNumber=CBE3D2A165B194B958EEC3B6A94457772A3A092A Validity Not Before: Apr 28 21:20:07 2025 GMT Not After : May 5 21:20:07 2025 GMT Subject: CN=680ff108-2e88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:37:a2:98:0b:4d:20:50:c4:13:35:f6:e2:96: 8d:97:58:9e:e8:4c:4a:a2:70:46:6b:d7:41:92:a5: e2:24:09:93:3c:0a:64:27:88:b4:2c:70:31:de:65: c7:eb:56:39:06:0a:c6:aa:85:03:9e:6b:9f:db:da: ab:a3:0c:83:21:62:3a:3e:ef:7c:a1:da:f7:7c:14: ef:d2:04:13:fe:11:da:32:66:23:0d:23:0f:de:bd: 8e:a1:cf:da:e7:7a:f1:ad:42:19:e7:9d:67:c9:81: 9d:b2:28:3b:6a:2a:4a:94:1e:e2:8b:f2:d5:28:86: 50:bb:46:3b:54:40:ce:19:48:13:0c:6b:a3:7a:9c: 89:4e:c5:66:53:39:b8:63:10:42:02:ff:16:7b:f6: c5:69:8d:64:31:a3:28:44:50:43:dc:3d:ed:de:89: 4d:2a:71:7e:e5:2b:23:94:e4:f9:5a:f6:a0:ee:79: a2:e9:c1:f4:6a:84:be:68:97:52:df:92:b1:ca:c3: 40:5a:85:75:48:aa:0a:46:ab:21:c0:f7:58:4c:fa: 95:8c:eb:6b:b2:67:02:37:b7:28:2f:13:2e:6c:cf: 29:a4:be:63:72:3a:7c:33:23:3a:ca:92:58:f6:da: 42:7f:c3:61:77:88:b8:5f:bb:e3:6f:04:a0:cc:fd: cb:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:9D:4E:AB:9F:1B:E1:FC:35:66:94:8C:4E:97:B8:A1:CD:9D:9B:31 X509v3 Authority Key Identifier: keyid:CB:E3:D2:A1:65:B1:94:B9:58:EE:C3:B6:A9:44:57:77:2A:3A:09:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:06:d2:6c:91:e9:bf:51:c8:17:00:b2:b7:89:cc:2c:e5:11: a7:31:f0:e5:86:b8:ad:55:5e:76:84:ac:a6:83:61:f5:08:64: 77:68:fa:f4:79:b8:73:1e:78:85:3d:f0:85:0f:eb:16:d5:7a: a3:7a:b7:4c:7f:dd:a6:3f:ea:a7:ab:6b:dc:94:8c:da:8b:cc: 83:a3:bc:36:f3:62:88:66:4f:94:ca:cc:db:49:c0:dd:44:22: 0f:2c:14:8a:6f:aa:dc:f5:1f:c0:42:fe:19:29:d6:e4:92:9d: 72:46:92:d9:18:18:20:cb:34:02:9e:dc:48:02:0f:c8:44:63: 6b:c2:36:2f:34:4e:0e:66:63:4e:b2:14:e6:40:e1:08:a3:54: 90:2e:27:85:5d:14:2c:94:95:b4:1e:e9:ad:53:0d:8a:af:3b: 38:68:7f:54:92:eb:d3:97:4f:9e:fa:87:96:16:55:65:e4:b8: 58:04:cb:44:70:58:15:71:f4:b2:56:99:62:32:1a:58:c9:62: 57:11:da:08:89:a0:37:9d:a9:6d:07:fa:c3:29:a6:ec:93:46: 23:19:f3:2f:dc:5d:67:df:56:f7:c7:ee:1c:d5:34:8d:cc:e6: 15:c8:ba:03:04:17:10:af:2a:6e:e0:60:57:62:c4:3d:4d:68: 34:96:bc:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRGRTcxMTAvBgNVBAUTKENCRTNEMkExNjVCMTk0Qjk1OEVFQzNCNkE5NDQ1Nzc3 MkEzQTA5MkEwHhcNMjUwNDI4MjEyMDA3WhcNMjUwNTA1MjEyMDA3WjAYMRYwFAYD VQQDEw02ODBmZjEwOC0yZTg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2jeimAtNIFDEEzX24paNl1ie6ExKonBGa9dBkqXiJAmTPApkJ4i0LHAx3mXH 61Y5BgrGqoUDnmuf29qrowyDIWI6Pu98odr3fBTv0gQT/hHaMmYjDSMP3r2Ooc/a 53rxrUIZ551nyYGdsig7aipKlB7ii/LVKIZQu0Y7VEDOGUgTDGujepyJTsVmUzm4 YxBCAv8We/bFaY1kMaMoRFBD3D3t3olNKnF+5SsjlOT5Wvag7nmi6cH0aoS+aJdS 35KxysNAWoV1SKoKRqshwPdYTPqVjOtrsmcCN7coLxMubM8ppL5jcjp8MyM6ypJY 9tpCf8Nhd4i4X7vjbwSgzP3LWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNudTquf G+H8NWaUjE6XuKHNnZsxMB8GA1UdIwQYMBaAFMvj0qFlsZS5WO7DtqlEV3cqOgkq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEZFNy81QTJEODlFQURC N0QxMUVBQkNGM0VDM0VDNEY5QUUwMi95LVBTb1dXeGxMbFk3c08ycVVSWGR5bzZD U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ktUFNvV1d4bExsWTdzTzJxVVJYZHlvNkNTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEZFNy81QTJEODlFQURCN0QxMUVBQkNGM0VDM0VDNEY5QUUwMi95LVBTb1dXeGxM bFk3c08ycVVSWGR5bzZDU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsBtJskem/UcgXALK3icws5RGnMfDlhritVV52hKymg2H1CGR3aPr0 ebhzHniFPfCFD+sW1XqjerdMf92mP+qnq2vclIzai8yDo7w282KIZk+UyszbScDd RCIPLBSKb6rc9R/AQv4ZKdbkkp1yRpLZGBggyzQCntxIAg/IRGNrwjYvNE4OZmNO shTmQOEIo1SQLieFXRQslJW0HumtUw2Krzs4aH9UkuvTl0+e+oeWFlVl5LhYBMtE cFgVcfSyVpliMhpYyWJXEdoIiaA3naltB/rDKabsk0YjGfMv3F1n31b3x+4c1TSN zOYVyLoDBBcQrypu4GBXYsQ9TWg0lrxp -----END CERTIFICATE-----Generated at Tue Apr 29 19:19:58 2025 by rpki-client