$ rpki-client -vvf rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.mft File: y-xvGDkFSHUhx5R7T3v9bLeNpHk.mft (raw, json) Hash identifier: Qyc2LBd30H3khpvWq6ZA/JDRku8k0WujX8Hvp7yNeHg= Subject key identifier: 76:BF:81:97:95:D5:90:7B:AB:1D:26:37:9B:04:55:8C:BA:E6:24:0D Authority key identifier: CB:EC:6F:18:39:05:48:75:21:C7:94:7B:4F:7B:FD:6C:B7:8D:A4:79 Certificate issuer: /CN=A9159FAF/serialNumber=CBEC6F183905487521C7947B4F7BFD6CB78DA479 Certificate serial: 0122 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-xvGDkFSHUhx5R7T3v9bLeNpHk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.mft Manifest number: 011F Signing time: Fri 25 Apr 2025 03:50:54 +0000 Manifest this update: Fri 25 Apr 2025 03:50:53 +0000 Manifest next update: Fri 02 May 2025 03:50:53 +0000 Files and hashes: 1: y-xvGDkFSHUhx5R7T3v9bLeNpHk.crl (hash: YaTx7HRdWWzHf8a0eaMbzs94PKkwyWy6TvVQI7bU800=) 2: 045A4C2A6E4A11EEBADBDC4AC4F9AE02.roa (hash: FlD/q0JbSZGoP+GmyJYdclxWBTvflYZJ2XaDZhQ/500=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.crl rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-xvGDkFSHUhx5R7T3v9bLeNpHk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:50:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 290 (0x122) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159FAF, serialNumber=CBEC6F183905487521C7947B4F7BFD6CB78DA479 Validity Not Before: Apr 25 03:50:53 2025 GMT Not After : May 2 03:50:53 2025 GMT Subject: CN=680b069e-176b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:6a:05:64:58:06:46:c6:82:62:de:19:2e:57: c3:05:f0:69:9b:67:de:31:00:3f:c5:29:95:7d:59: 77:51:1d:2c:6e:4f:a3:d4:89:b5:63:67:b9:70:3e: 47:fa:20:7f:64:21:1b:fe:57:97:6e:c3:f9:ad:0a: f6:6f:66:54:c8:9c:d4:52:3e:69:80:ee:29:f3:69: 69:d4:bb:35:0f:97:4e:39:fa:3e:87:bd:84:7d:90: 25:48:8e:fb:d3:ee:bb:92:f3:a1:d6:5d:5b:6a:ea: 3b:ac:0c:58:8b:e4:db:88:9b:37:55:ee:46:b3:31: 31:04:7d:32:99:69:56:07:4b:12:df:73:f9:59:09: 7f:7f:cb:47:3b:5d:95:30:79:1f:b5:31:e6:2e:5e: 7f:8d:1d:d2:5a:ba:fc:28:08:7e:84:73:80:6f:f0: 65:1f:ad:5c:dc:ba:b7:3e:c2:18:71:43:e9:01:49: 06:ab:89:f4:59:ee:d9:09:f4:8b:e1:a2:c7:be:5b: 22:dd:84:01:86:fb:f3:4a:c7:2c:9d:b8:c2:c4:ca: 48:ee:fb:a6:4c:23:3b:43:b9:4d:a3:f5:1d:8b:c5: 24:66:6b:a4:71:c4:9f:e2:de:0e:aa:94:a7:06:0a: 1b:8b:19:a8:21:ed:b9:01:43:cd:6e:94:57:9a:c7: 8b:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:BF:81:97:95:D5:90:7B:AB:1D:26:37:9B:04:55:8C:BA:E6:24:0D X509v3 Authority Key Identifier: keyid:CB:EC:6F:18:39:05:48:75:21:C7:94:7B:4F:7B:FD:6C:B7:8D:A4:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-xvGDkFSHUhx5R7T3v9bLeNpHk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:e9:c3:3f:aa:92:31:08:e8:6a:a1:ef:83:e3:6f:c6:ba:89: 87:f4:6d:e7:60:c4:b6:09:b1:94:78:4b:6f:de:1f:da:d7:7b: be:aa:e1:ad:e4:11:b3:e3:2e:7f:f2:d9:9d:e7:aa:dc:3b:98: a6:ec:0d:c9:6b:8b:9a:d5:54:2f:cf:dc:3f:c6:03:85:6c:be: 0f:c6:9f:8f:a2:04:66:b4:ec:84:4e:64:2c:3b:fc:2e:b0:16: da:b5:e2:36:36:5d:67:ce:2e:18:c3:f3:cd:f1:0c:6f:6c:bf: 29:c7:c9:eb:a0:e0:d4:d9:a2:f8:8b:02:4a:46:49:64:57:1d: e8:5d:4d:9d:1e:11:c8:74:5f:c7:e1:26:ca:c9:30:86:cb:5c: 99:2f:e4:d4:14:1e:88:72:6d:7a:83:49:fc:cc:ed:c7:2b:61: d5:ea:9e:dd:c6:28:d6:4b:bb:d8:a8:18:1a:3c:68:6c:f0:c4: 5d:7e:95:fe:88:86:ad:54:fc:a7:0a:89:4d:05:93:f5:5c:33: 13:b8:88:bd:1a:5c:21:92:f6:7c:c9:cc:d4:d0:e4:ab:60:7e: 6b:72:24:e8:0f:b0:fb:e4:ec:ec:38:a2:cb:2d:b1:64:c2:03: dd:63:bf:b8:0d:6d:e4:5b:54:fb:80:50:df:6a:78:53:4f:5c: b9:22:6c:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTlGQUYxMTAvBgNVBAUTKENCRUM2RjE4MzkwNTQ4NzUyMUM3OTQ3QjRGN0JGRDZD Qjc4REE0NzkwHhcNMjUwNDI1MDM1MDUzWhcNMjUwNTAyMDM1MDUzWjAYMRYwFAYD VQQDEw02ODBiMDY5ZS0xNzZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuWoFZFgGRsaCYt4ZLlfDBfBpm2feMQA/xSmVfVl3UR0sbk+j1Im1Y2e5cD5H +iB/ZCEb/leXbsP5rQr2b2ZUyJzUUj5pgO4p82lp1Ls1D5dOOfo+h72EfZAlSI77 0+67kvOh1l1bauo7rAxYi+TbiJs3Ve5GszExBH0ymWlWB0sS33P5WQl/f8tHO12V MHkftTHmLl5/jR3SWrr8KAh+hHOAb/BlH61c3Lq3PsIYcUPpAUkGq4n0We7ZCfSL 4aLHvlsi3YQBhvvzSscsnbjCxMpI7vumTCM7Q7lNo/Udi8UkZmukccSf4t4OqpSn BgobixmoIe25AUPNbpRXmseLTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHa/gZeV 1ZB7qx0mN5sEVYy65iQNMB8GA1UdIwQYMBaAFMvsbxg5BUh1IceUe097/Wy3jaR5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OUZBRi8xMjk1NzVDNDZF NDIxMUVFQUI0QzlDNkNDNEY5QUUwMi95LXh2R0RrRlNIVWh4NVI3VDN2OWJMZU5w SGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kteHZHRGtGU0hVaHg1UjdUM3Y5YkxlTnBIay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OUZBRi8xMjk1NzVDNDZFNDIxMUVFQUI0QzlDNkNDNEY5QUUwMi95LXh2R0RrRlNI VWh4NVI3VDN2OWJMZU5wSGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCk6cM/qpIxCOhqoe+D42/GuomH9G3nYMS2CbGUeEtv3h/a13u+quGt 5BGz4y5/8tmd56rcO5im7A3Ja4ua1VQvz9w/xgOFbL4Pxp+PogRmtOyETmQsO/wu sBbateI2Nl1nzi4Yw/PN8QxvbL8px8nroODU2aL4iwJKRklkVx3oXU2dHhHIdF/H 4SbKyTCGy1yZL+TUFB6Icm16g0n8zO3HK2HV6p7dxijWS7vYqBgaPGhs8MRdfpX+ iIatVPynColNBZP1XDMTuIi9GlwhkvZ8yczU0OSrYH5rciToD7D75OzsOKLLLbFk wgPdY7+4DW3kW1T7gFDfanhTT1y5Imy9 -----END CERTIFICATE-----Generated at Sat Apr 26 03:39:40 2025 by rpki-client