$ rpki-client -vvf rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/vY9TgeGI5FgPskcsJxoFQp4tXCI.mft File: vY9TgeGI5FgPskcsJxoFQp4tXCI.mft (raw, json) Hash identifier: JM5kCq/7247+HVZqP38cV/hTilfpL24z3gBN1HzvEK4= Subject key identifier: B4:53:FC:B1:E1:2A:54:98:A5:FE:B3:B3:E2:A9:4D:71:7B:07:5E:AB Authority key identifier: BD:8F:53:81:E1:88:E4:58:0F:B2:47:2C:27:1A:05:42:9E:2D:5C:22 Certificate issuer: /CN=A915D66D/serialNumber=BD8F5381E188E4580FB2472C271A05429E2D5C22 Certificate serial: 1AE9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vY9TgeGI5FgPskcsJxoFQp4tXCI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/vY9TgeGI5FgPskcsJxoFQp4tXCI.mft Manifest number: 1ADF Signing time: Thu 24 Apr 2025 16:19:16 +0000 Manifest this update: Thu 24 Apr 2025 16:19:16 +0000 Manifest next update: Thu 01 May 2025 16:19:16 +0000 Files and hashes: 1: vY9TgeGI5FgPskcsJxoFQp4tXCI.crl (hash: srdot1pocS3v3rYjGAiR5Ojpwg54KhNCNGiSe+vf5hA=) 2: 59029A32233A11E78D48837AC4F9AE02.roa (hash: fZ4rzQw+k1I7EBhPTcblakdeeuKhaVvBsWtldnvXI0s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/vY9TgeGI5FgPskcsJxoFQp4tXCI.crl rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/vY9TgeGI5FgPskcsJxoFQp4tXCI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vY9TgeGI5FgPskcsJxoFQp4tXCI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:19:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6889 (0x1ae9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D66D, serialNumber=BD8F5381E188E4580FB2472C271A05429E2D5C22 Validity Not Before: Apr 24 16:19:16 2025 GMT Not After : May 1 16:19:16 2025 GMT Subject: CN=680a6484-d0d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:fe:92:b0:90:61:a6:7a:28:f0:45:27:cd:79: 7b:41:f9:26:30:eb:ca:fb:63:73:e3:a0:d5:8a:19: 38:ab:56:bf:30:85:e4:39:27:4a:8d:80:7d:2c:cd: 82:45:ec:ba:f3:92:fa:8c:9e:57:20:6b:5b:dd:8b: fe:8c:9d:24:2e:01:b3:63:09:82:77:3b:fb:fc:c8: 21:6c:90:fe:50:bd:70:30:d0:84:a9:48:e3:15:6e: 95:50:36:35:22:44:bd:2b:d2:5f:ab:ea:bb:0e:16: b9:f1:24:ec:9d:0a:49:b3:b0:f5:ce:a4:a3:c2:c4: 16:57:3e:ec:f4:90:4a:b0:5b:bc:1c:73:74:d6:60: d9:5d:6d:31:18:b4:3a:99:5c:b2:a1:1b:c8:1b:de: 11:10:f5:cb:54:ee:5d:e4:77:1f:ae:05:6a:2a:0c: 79:7a:62:ef:3f:de:f5:41:6d:2b:1b:90:13:5c:2d: 0a:10:90:3f:03:a2:c6:c8:1c:c7:9d:57:1b:31:75: 9e:87:1f:0f:48:09:aa:3a:f7:cd:9b:b9:32:d3:bb: 6b:03:5d:b6:9c:eb:ac:11:1a:12:2e:0c:e7:d3:17: 6b:83:97:15:7c:84:28:4a:23:e6:bb:4d:25:37:da: f6:e9:c0:63:6a:52:34:e6:bd:d6:d9:4a:8f:79:6c: 1a:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:53:FC:B1:E1:2A:54:98:A5:FE:B3:B3:E2:A9:4D:71:7B:07:5E:AB X509v3 Authority Key Identifier: keyid:BD:8F:53:81:E1:88:E4:58:0F:B2:47:2C:27:1A:05:42:9E:2D:5C:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/vY9TgeGI5FgPskcsJxoFQp4tXCI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vY9TgeGI5FgPskcsJxoFQp4tXCI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/vY9TgeGI5FgPskcsJxoFQp4tXCI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:6d:83:f4:c4:dd:65:a9:fa:2b:57:43:bf:78:f7:fd:de:3b: e8:31:7c:91:5f:ca:4c:f8:16:83:da:7d:6b:85:f9:1d:01:5d: 33:0e:ed:0f:d3:7c:d6:a9:99:ec:1a:ad:b6:75:44:67:56:d8: 53:63:3e:46:60:6f:5a:ad:ee:8a:42:7d:d0:6b:2f:e6:47:91: c4:fb:ce:cb:c4:4a:4c:5c:82:62:03:53:9c:24:51:b4:f8:f4: 7f:18:5a:1b:d4:b7:ad:4f:84:ec:ec:03:4b:50:d4:1e:6f:be: c7:4e:16:62:92:60:c6:d9:1f:57:08:12:5f:28:d5:25:b5:ee: e1:4b:5d:86:ba:5a:38:1d:60:ba:92:69:6a:e9:88:86:69:ef: f1:98:ce:9f:37:dc:46:6b:ab:77:64:ea:fc:56:b3:91:bf:07: 6a:06:9d:1d:74:68:02:b6:78:c9:64:90:e5:25:ba:ef:d1:36: c0:72:83:ee:49:8e:7d:bd:9a:f9:40:65:0d:e7:cf:ce:bc:4c: 0d:02:7b:48:6f:04:85:ff:c1:67:59:e6:1c:dc:5c:3a:5c:39: 28:8e:e4:88:16:d4:17:0c:5e:6a:b5:da:86:47:b7:11:ec:77: 3a:92:9d:42:85:07:d8:bd:37:3f:c9:71:00:75:3a:fb:ea:f8: 82:9e:d1:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGukwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQ2NkQxMTAvBgNVBAUTKEJEOEY1MzgxRTE4OEU0NTgwRkIyNDcyQzI3MUEwNTQy OUUyRDVDMjIwHhcNMjUwNDI0MTYxOTE2WhcNMjUwNTAxMTYxOTE2WjAYMRYwFAYD VQQDEw02ODBhNjQ4NC1kMGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr/6SsJBhpnoo8EUnzXl7QfkmMOvK+2Nz46DVihk4q1a/MIXkOSdKjYB9LM2C Rey685L6jJ5XIGtb3Yv+jJ0kLgGzYwmCdzv7/MghbJD+UL1wMNCEqUjjFW6VUDY1 IkS9K9Jfq+q7Dha58STsnQpJs7D1zqSjwsQWVz7s9JBKsFu8HHN01mDZXW0xGLQ6 mVyyoRvIG94REPXLVO5d5HcfrgVqKgx5emLvP971QW0rG5ATXC0KEJA/A6LGyBzH nVcbMXWehx8PSAmqOvfNm7ky07trA122nOusERoSLgzn0xdrg5cVfIQoSiPmu00l N9r26cBjalI05r3W2UqPeWwabQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLRT/LHh KlSYpf6zs+KpTXF7B16rMB8GA1UdIwQYMBaAFL2PU4HhiORYD7JHLCcaBUKeLVwi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDY2RC8xRUIwOTI1NDIz MzkxMUU3QTA2QjI1NzlDNEY5QUUwMi92WTlUZ2VHSTVGZ1Bza2NzSnhvRlFwNHRY Q0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZZOVRnZUdJNUZnUHNrY3NKeG9GUXA0dFhDSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDY2RC8xRUIwOTI1NDIzMzkxMUU3QTA2QjI1NzlDNEY5QUUwMi92WTlUZ2VHSTVG Z1Bza2NzSnhvRlFwNHRYQ0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAbYP0xN1lqforV0O/ePf93jvoMXyRX8pM+BaD2n1rhfkdAV0zDu0P 03zWqZnsGq22dURnVthTYz5GYG9are6KQn3Qay/mR5HE+87LxEpMXIJiA1OcJFG0 +PR/GFob1LetT4Ts7ANLUNQeb77HThZikmDG2R9XCBJfKNUlte7hS12Gulo4HWC6 kmlq6YiGae/xmM6fN9xGa6t3ZOr8VrORvwdqBp0ddGgCtnjJZJDlJbrv0TbAcoPu SY59vZr5QGUN58/OvEwNAntIbwSF/8FnWeYc3Fw6XDkojuSIFtQXDF5qtdqGR7cR 7Hc6kp1ChQfYvTc/yXEAdTr76viCntF1 -----END CERTIFICATE-----Generated at Sat Apr 26 12:25:25 2025 by rpki-client