$ rpki-client -vvf rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft File: _YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft (raw, json) Hash identifier: 6Le7wTI1nGqbzR9X2YZHCKTsTx71v/lom6Vb/fTmuUk= Subject key identifier: EE:24:EF:77:B0:56:C3:61:76:1E:45:BC:05:DE:E8:4D:60:D0:63:71 Authority key identifier: FD:82:7C:02:6B:39:67:E2:A1:40:D4:D2:31:4E:2B:0E:9C:04:74:30 Certificate issuer: /CN=A9171064/serialNumber=FD827C026B3967E2A140D4D2314E2B0E9C047430 Certificate serial: 0C34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft Manifest number: 0C2E Signing time: Thu 24 Apr 2025 18:24:20 +0000 Manifest this update: Thu 24 Apr 2025 18:24:19 +0000 Manifest next update: Thu 01 May 2025 18:24:19 +0000 Files and hashes: 1: _YJ8Ams5Z-KhQNTSMU4rDpwEdDA.crl (hash: G878Rszo8NfQNVJVfO/ZV/+YvNoQOqem0vd4mPsuCBc=) 2: A2A3D38A05CE11EA80526530C4F9AE02.roa (hash: 5qzdMRlHADmRGjRZ80Eu6WYWmObO/9cRl46Cear7KnU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.crl rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:24:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3124 (0xc34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171064, serialNumber=FD827C026B3967E2A140D4D2314E2B0E9C047430 Validity Not Before: Apr 24 18:24:19 2025 GMT Not After : May 1 18:24:19 2025 GMT Subject: CN=680a81d4-4bf3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:fc:1f:40:6b:dd:9a:43:f7:15:9f:cf:93:6f: ef:1d:27:03:ea:d6:b9:ad:02:f1:c2:0c:cd:32:15: 34:78:26:2d:12:fc:28:17:84:5d:3d:8c:ca:8d:c8: 29:64:45:41:ee:86:11:e9:7b:40:bd:b2:9b:8a:1a: d0:17:9b:20:4c:63:90:bf:cd:8e:9c:28:15:79:55: 2a:61:93:71:a8:1c:86:16:f6:14:68:4c:1d:97:27: 03:6d:65:64:49:11:79:ec:b3:6d:75:01:bb:32:0b: 3a:09:36:c0:7d:0e:33:04:89:57:e2:dc:92:66:cd: 70:1a:42:7d:0b:c5:e3:a1:22:b3:6c:f1:63:b6:a5: ff:a5:86:c1:b4:94:96:46:1a:11:b5:1a:40:c2:2b: 7b:3d:2b:62:4f:7a:30:0e:57:ce:5d:ba:0e:b8:94: c9:c2:86:18:82:cc:95:36:83:82:2d:a5:f0:1b:c9: 0b:c5:c8:99:29:32:d1:22:9b:09:c9:04:33:20:d0: 52:11:3c:83:cf:b9:b4:11:16:17:ae:cf:b7:5f:44: 56:4e:80:4a:e7:af:0f:62:d6:85:e2:4e:c2:7a:a1: 34:62:18:a8:d2:b5:eb:29:18:05:46:d4:07:15:98: dd:58:1f:3c:44:b9:b5:bc:3c:2a:02:18:21:78:d3: 5a:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:24:EF:77:B0:56:C3:61:76:1E:45:BC:05:DE:E8:4D:60:D0:63:71 X509v3 Authority Key Identifier: keyid:FD:82:7C:02:6B:39:67:E2:A1:40:D4:D2:31:4E:2B:0E:9C:04:74:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:61:c8:68:36:b6:b3:85:09:a2:77:2b:fc:d4:1e:11:ca:71: cb:9f:b0:41:0b:d4:ce:8b:fc:a7:50:03:f7:3a:da:57:48:79: d8:ba:37:77:8d:03:c8:98:fd:f6:69:79:47:8c:c5:e7:04:21: f0:df:08:78:c9:52:71:e4:08:1d:7a:dd:33:e4:32:aa:6b:dd: 7f:78:88:cc:8e:b6:37:bd:28:79:84:6e:01:45:8b:bf:0a:90: 40:af:3e:1e:d3:44:49:c7:4d:c5:bf:94:02:63:cd:28:11:7a: 7d:bd:d7:33:e9:af:79:e1:4a:31:7f:24:ec:10:ea:08:5e:5e: f8:e2:06:1b:0b:11:d0:db:a0:ef:ce:44:56:2c:59:cd:ee:b1: 7f:51:0c:31:80:da:95:0c:7b:2d:17:dd:96:d8:d6:66:61:2a: a0:ff:5e:9b:e7:ab:af:04:97:19:eb:74:16:97:b7:17:17:bd: e6:7f:e3:6d:b6:eb:62:7a:d9:2c:f7:e3:fb:45:29:98:c8:2e: fb:ff:17:17:b6:69:31:fc:56:48:e6:a7:da:c2:a4:ae:ef:ad: 68:26:91:ee:b5:f1:7b:ee:c9:ab:d8:d1:70:90:e5:b8:79:12: 41:5f:3c:51:c8:89:f6:8c:7a:0b:51:26:8c:81:bd:41:34:87: 33:c4:ea:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzEwNjQxMTAvBgNVBAUTKEZEODI3QzAyNkIzOTY3RTJBMTQwRDREMjMxNEUyQjBF OUMwNDc0MzAwHhcNMjUwNDI0MTgyNDE5WhcNMjUwNTAxMTgyNDE5WjAYMRYwFAYD VQQDEw02ODBhODFkNC00YmYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn/wfQGvdmkP3FZ/Pk2/vHScD6ta5rQLxwgzNMhU0eCYtEvwoF4RdPYzKjcgp ZEVB7oYR6XtAvbKbihrQF5sgTGOQv82OnCgVeVUqYZNxqByGFvYUaEwdlycDbWVk SRF57LNtdQG7Mgs6CTbAfQ4zBIlX4tySZs1wGkJ9C8XjoSKzbPFjtqX/pYbBtJSW RhoRtRpAwit7PStiT3owDlfOXboOuJTJwoYYgsyVNoOCLaXwG8kLxciZKTLRIpsJ yQQzINBSETyDz7m0ERYXrs+3X0RWToBK568PYtaF4k7CeqE0Yhio0rXrKRgFRtQH FZjdWB88RLm1vDwqAhgheNNaxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO4k73ew VsNhdh5FvAXe6E1g0GNxMB8GA1UdIwQYMBaAFP2CfAJrOWfioUDU0jFOKw6cBHQw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTA2NC8wNzYzOTYyMDA1 MkYxMUVBOEE5RTM5NDdDNEY5QUUwMi9fWUo4QW1zNVotS2hRTlRTTVU0ckRwd0Vk REEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19ZSjhBbXM1Wi1LaFFOVFNNVTRyRHB3RWREQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTA2NC8wNzYzOTYyMDA1MkYxMUVBOEE5RTM5NDdDNEY5QUUwMi9fWUo4QW1zNVot S2hRTlRTTVU0ckRwd0VkREEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqYchoNrazhQmidyv81B4RynHLn7BBC9TOi/ynUAP3OtpXSHnYujd3 jQPImP32aXlHjMXnBCHw3wh4yVJx5Agdet0z5DKqa91/eIjMjrY3vSh5hG4BRYu/ CpBArz4e00RJx03Fv5QCY80oEXp9vdcz6a954UoxfyTsEOoIXl744gYbCxHQ26Dv zkRWLFnN7rF/UQwxgNqVDHstF92W2NZmYSqg/16b56uvBJcZ63QWl7cXF73mf+Nt tutietks9+P7RSmYyC77/xcXtmkx/FZI5qfawqSu761oJpHutfF77smr2NFwkOW4 eRJBXzxRyIn2jHoLUSaMgb1BNIczxOqx -----END CERTIFICATE-----Generated at Sat Apr 26 05:07:59 2025 by rpki-client