$ rpki-client -vvf rpki.apnic.net/member_repository/A9162CCE/B755DA28B99411EB93F8265DC4F9AE02/YfRdxU9H4lL6xlUt27OWWFTGyAE.mft File: YfRdxU9H4lL6xlUt27OWWFTGyAE.mft (raw, json) Hash identifier: FuRmiQ/64KF4DUnsrGeeEFyQka7QGcJ/FnWVzbuYUtQ= Subject key identifier: 77:AC:83:C9:2C:8D:C4:1C:0E:B8:01:55:54:4F:C8:A7:62:21:F1:3C Authority key identifier: 61:F4:5D:C5:4F:47:E2:52:FA:C6:55:2D:DB:B3:96:58:54:C6:C8:01 Certificate issuer: /CN=A9162CCE/serialNumber=61F45DC54F47E252FAC6552DDBB3965854C6C801 Certificate serial: 05D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfRdxU9H4lL6xlUt27OWWFTGyAE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9162CCE/B755DA28B99411EB93F8265DC4F9AE02/YfRdxU9H4lL6xlUt27OWWFTGyAE.mft Manifest number: 05CA Signing time: Thu 24 Apr 2025 22:50:49 +0000 Manifest this update: Thu 24 Apr 2025 22:50:48 +0000 Manifest next update: Thu 01 May 2025 22:50:48 +0000 Files and hashes: 1: YfRdxU9H4lL6xlUt27OWWFTGyAE.crl (hash: pGQt/mIsLYdJE/qHeR2h7Wc57k7oHVY7kcaa1uzc9Vo=) 2: 6D5F7C74B99611EBB5E9AE5EC4F9AE02.roa (hash: bUC1i6U8bBn9UfWkY4L4fN9q3qdDlIRzcJbNDpJZl6I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9162CCE/B755DA28B99411EB93F8265DC4F9AE02/YfRdxU9H4lL6xlUt27OWWFTGyAE.crl rsync://rpki.apnic.net/member_repository/A9162CCE/B755DA28B99411EB93F8265DC4F9AE02/YfRdxU9H4lL6xlUt27OWWFTGyAE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfRdxU9H4lL6xlUt27OWWFTGyAE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:50:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1489 (0x5d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162CCE, serialNumber=61F45DC54F47E252FAC6552DDBB3965854C6C801 Validity Not Before: Apr 24 22:50:48 2025 GMT Not After : May 1 22:50:48 2025 GMT Subject: CN=680ac048-60a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:28:0f:4e:35:d6:59:4b:38:97:ec:7a:49:90: d1:63:82:db:f6:c6:bf:73:e9:48:51:c3:a3:16:4e: c6:00:e9:b0:41:47:05:0f:33:11:8b:d3:f5:50:26: da:a7:78:de:81:c2:bb:9f:68:02:54:08:c8:1f:e4: 99:b8:9b:a1:94:d2:44:96:a6:e8:54:e7:0c:4f:c3: fc:ff:41:15:74:43:70:37:60:84:7a:f2:39:26:f8: be:63:16:e5:5b:f4:55:13:a1:60:c3:f3:e9:d7:8e: 06:ea:ec:17:f1:f0:7f:1d:46:89:77:8c:e7:9b:be: 6f:66:82:10:a6:8f:11:f9:3e:0f:2c:2d:4b:e5:29: 64:0e:20:cb:fd:2c:04:41:d5:3b:6b:b3:08:35:df: 50:ec:76:9c:ea:b2:51:4b:63:2b:2c:18:27:e2:f2: 67:d3:ac:d3:1f:2a:46:fc:20:e8:2e:a5:17:e4:99: a2:66:e5:0d:31:3b:33:51:c6:f5:fb:b9:6c:9c:71: 18:d0:e2:2a:d4:ba:31:43:7c:c7:9d:80:c9:9e:05: 1e:2d:d4:f4:98:d6:af:d2:d5:a3:2a:7f:0e:da:8c: cb:a0:23:2a:4e:9e:00:82:95:b6:18:45:a7:c7:d2: e0:a3:01:9b:7b:37:f4:82:c5:34:9d:59:70:eb:b2: 52:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:AC:83:C9:2C:8D:C4:1C:0E:B8:01:55:54:4F:C8:A7:62:21:F1:3C X509v3 Authority Key Identifier: keyid:61:F4:5D:C5:4F:47:E2:52:FA:C6:55:2D:DB:B3:96:58:54:C6:C8:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9162CCE/B755DA28B99411EB93F8265DC4F9AE02/YfRdxU9H4lL6xlUt27OWWFTGyAE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfRdxU9H4lL6xlUt27OWWFTGyAE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9162CCE/B755DA28B99411EB93F8265DC4F9AE02/YfRdxU9H4lL6xlUt27OWWFTGyAE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:a6:68:b9:0b:e3:86:dc:8f:55:84:33:21:74:42:0a:b0:9e: 39:6e:b6:62:01:6e:09:77:2e:cc:c7:95:ee:15:c9:d9:d1:13: f6:b5:05:41:f0:aa:61:9a:5f:ad:82:a5:8f:98:ae:ec:8e:b2: 6a:fa:8a:98:a4:de:83:af:85:d3:ff:35:67:b3:1f:f6:3e:bf: c4:f9:6f:13:50:44:b9:10:85:97:80:3f:14:20:aa:ba:f9:7d: 8c:63:3e:85:1d:01:d7:1f:ea:c2:78:82:5e:37:f9:7d:5a:58: 95:33:32:c5:94:73:8c:fa:12:91:94:a8:de:26:f0:83:38:6d: c3:53:d1:fb:d9:06:ae:d8:94:ce:71:3f:3a:27:79:e3:f5:36: 10:bd:0c:a9:62:6c:08:5d:48:d4:e1:ef:57:e8:76:16:f8:d5: 1f:7d:35:52:52:4d:fa:3f:63:39:31:14:e5:ee:ad:25:c5:07: 88:8d:39:4f:44:6b:ae:43:17:29:83:e8:26:c5:f7:50:89:54: 60:37:69:84:cd:66:2d:28:54:7c:f5:60:64:bf:a1:6e:ce:a1: 9b:5b:d2:95:d2:2c:bc:31:d6:fe:8f:8a:4d:15:fc:b5:87:f7: 34:bf:6e:bf:71:58:c3:2f:7a:c1:45:28:97:5c:24:60:d8:cc: 1a:44:99:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjJDQ0UxMTAvBgNVBAUTKDYxRjQ1REM1NEY0N0UyNTJGQUM2NTUyRERCQjM5NjU4 NTRDNkM4MDEwHhcNMjUwNDI0MjI1MDQ4WhcNMjUwNTAxMjI1MDQ4WjAYMRYwFAYD VQQDEw02ODBhYzA0OC02MGE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoCgPTjXWWUs4l+x6SZDRY4Lb9sa/c+lIUcOjFk7GAOmwQUcFDzMRi9P1UCba p3jegcK7n2gCVAjIH+SZuJuhlNJElqboVOcMT8P8/0EVdENwN2CEevI5Jvi+Yxbl W/RVE6Fgw/Pp144G6uwX8fB/HUaJd4znm75vZoIQpo8R+T4PLC1L5SlkDiDL/SwE QdU7a7MINd9Q7Hac6rJRS2MrLBgn4vJn06zTHypG/CDoLqUX5JmiZuUNMTszUcb1 +7lsnHEY0OIq1LoxQ3zHnYDJngUeLdT0mNav0tWjKn8O2ozLoCMqTp4AgpW2GEWn x9LgowGbezf0gsU0nVlw67JSTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHesg8ks jcQcDrgBVVRPyKdiIfE8MB8GA1UdIwQYMBaAFGH0XcVPR+JS+sZVLduzllhUxsgB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MkNDRS9CNzU1REEyOEI5 OTQxMUVCOTNGODI2NURDNEY5QUUwMi9ZZlJkeFU5SDRsTDZ4bFV0MjdPV1dGVEd5 QUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lmUmR4VTlINGxMNnhsVXQyN09XV0ZUR3lBRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MkNDRS9CNzU1REEyOEI5OTQxMUVCOTNGODI2NURDNEY5QUUwMi9ZZlJkeFU5SDRs TDZ4bFV0MjdPV1dGVEd5QUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZpmi5C+OG3I9VhDMhdEIKsJ45brZiAW4Jdy7Mx5XuFcnZ0RP2tQVB 8Kphml+tgqWPmK7sjrJq+oqYpN6Dr4XT/zVnsx/2Pr/E+W8TUES5EIWXgD8UIKq6 +X2MYz6FHQHXH+rCeIJeN/l9WliVMzLFlHOM+hKRlKjeJvCDOG3DU9H72Qau2JTO cT86J3nj9TYQvQypYmwIXUjU4e9X6HYW+NUffTVSUk36P2M5MRTl7q0lxQeIjTlP RGuuQxcpg+gmxfdQiVRgN2mEzWYtKFR89WBkv6FuzqGbW9KV0iy8Mdb+j4pNFfy1 h/c0v26/cVjDL3rBRSiXXCRg2MwaRJkK -----END CERTIFICATE-----Generated at Sat Apr 26 12:22:08 2025 by rpki-client