$ rpki-client -vvf rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft File: gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft (raw, json) Hash identifier: ZYVCmXX/8kIXybEdDPEQeZDm2MneeQ01swns5OzTI5w= Subject key identifier: 70:72:E0:82:31:8C:BA:CF:7C:A1:51:B2:40:7C:51:52:AE:E0:D0:64 Authority key identifier: 83:2F:E5:61:4E:02:D3:50:F8:86:79:0D:E4:BD:C9:9F:42:64:55:E4 Certificate issuer: /CN=A9171669/serialNumber=832FE5614E02D350F886790DE4BDC99F426455E4 Certificate serial: 0268 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft Manifest number: 0265 Signing time: Fri 25 Apr 2025 01:31:29 +0000 Manifest this update: Fri 25 Apr 2025 01:31:28 +0000 Manifest next update: Fri 02 May 2025 01:31:28 +0000 Files and hashes: 1: gy_lYU4C01D4hnkN5L3Jn0JkVeQ.crl (hash: +DTShDSDwlScMTnNPKMrDc2e1O3rmG4CLykghvfBdkQ=) 2: 91BBC8880D9711ED8F09C27DC4F9AE02.roa (hash: iNGLEhZ74V/teXh5s40LgFHohuZJ0yOem+a3lr8uSKQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.crl rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:31:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 616 (0x268) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171669, serialNumber=832FE5614E02D350F886790DE4BDC99F426455E4 Validity Not Before: Apr 25 01:31:28 2025 GMT Not After : May 2 01:31:28 2025 GMT Subject: CN=680ae5f0-7e58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:e7:d9:91:a4:86:ad:0b:2d:d1:ef:67:6c:1e: ec:52:46:3d:0b:8b:0d:b2:ed:68:1a:7b:c0:3a:59: 4a:34:72:1d:b8:f1:33:06:17:e0:bd:52:77:02:24: 05:65:5a:69:6c:9e:52:54:cf:90:35:98:8f:a5:3a: 98:1a:01:ba:ad:1e:b5:94:91:f0:b5:67:64:a3:f0: 4b:00:d9:7f:d9:a0:42:d2:2c:1f:5c:32:5f:0d:d7: ee:f3:50:12:3d:da:22:70:74:cd:22:ad:53:44:94: fe:82:40:a2:52:76:17:28:b2:45:98:32:f1:0e:62: ef:4f:e8:6d:bf:a6:0b:7a:47:a0:d0:95:71:ce:e2: cf:44:77:76:f0:ae:4c:98:a0:e7:24:ad:f7:31:9d: af:3c:3a:ea:58:4d:b0:aa:4f:31:8b:fe:b8:f4:4b: 17:c9:16:ca:ab:5c:d1:40:c6:d9:94:c5:63:f6:fa: 09:e3:bb:e1:21:2d:09:79:79:4a:24:3f:4b:16:10: 9e:c3:87:df:c8:78:59:24:e5:2c:a7:2f:42:08:3b: 4c:b0:92:cf:b7:0f:62:9d:dc:b1:28:37:c8:a7:80: ab:47:b0:d5:d0:05:46:d4:a8:4c:2c:95:78:96:1f: 39:67:45:54:8a:89:79:3d:48:2f:81:2a:ec:61:6a: 89:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:72:E0:82:31:8C:BA:CF:7C:A1:51:B2:40:7C:51:52:AE:E0:D0:64 X509v3 Authority Key Identifier: keyid:83:2F:E5:61:4E:02:D3:50:F8:86:79:0D:E4:BD:C9:9F:42:64:55:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:81:5a:e0:3c:fb:72:d8:bb:e5:3c:6b:67:66:95:36:3b:3d: bd:56:2e:d6:ef:6c:82:04:a6:f2:1f:d9:d3:f7:90:cc:9a:a5: 25:fe:46:4d:0d:a5:68:d7:3a:45:fe:0f:db:8a:8c:b7:23:2a: 8e:2a:76:7b:64:48:54:45:1e:59:ca:08:72:3f:82:b2:5e:43: 57:b8:8e:13:2f:f7:2f:d3:b7:5f:77:07:d2:43:ff:fa:06:75: 84:c7:83:06:a4:3f:b7:c6:93:a2:3f:4e:85:0e:a9:58:77:40: 8f:e5:aa:9a:1a:7d:36:d4:6d:7f:bc:bf:c9:ad:40:27:b6:0a: 02:6c:e5:54:0b:50:99:d3:a9:8a:a8:5d:55:87:99:ae:75:1c: 4e:7d:e3:ec:1b:5a:6d:67:a9:42:9f:25:63:b5:ca:d7:e4:1f: c4:46:6e:72:3c:15:1e:3c:03:1f:d2:ef:16:5c:f7:4c:99:a5: 91:3c:03:74:4b:3f:0d:2c:4c:99:50:71:f9:3d:6d:fa:e5:22: 9d:00:c4:78:b8:1b:e0:1c:a5:85:06:91:ce:0e:aa:1a:e9:33: 4e:32:0d:68:12:8f:ef:6d:33:70:be:60:4c:07:0b:9b:f5:6e: af:a7:fa:e5:ca:65:b9:c3:07:95:f3:fb:d5:40:18:c1:2c:f6: 0d:bc:41:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE2NjkxMTAvBgNVBAUTKDgzMkZFNTYxNEUwMkQzNTBGODg2NzkwREU0QkRDOTlG NDI2NDU1RTQwHhcNMjUwNDI1MDEzMTI4WhcNMjUwNTAyMDEzMTI4WjAYMRYwFAYD VQQDEw02ODBhZTVmMC03ZTU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0+fZkaSGrQst0e9nbB7sUkY9C4sNsu1oGnvAOllKNHIduPEzBhfgvVJ3AiQF ZVppbJ5SVM+QNZiPpTqYGgG6rR61lJHwtWdko/BLANl/2aBC0iwfXDJfDdfu81AS PdoicHTNIq1TRJT+gkCiUnYXKLJFmDLxDmLvT+htv6YLekeg0JVxzuLPRHd28K5M mKDnJK33MZ2vPDrqWE2wqk8xi/649EsXyRbKq1zRQMbZlMVj9voJ47vhIS0JeXlK JD9LFhCew4ffyHhZJOUspy9CCDtMsJLPtw9indyxKDfIp4CrR7DV0AVG1KhMLJV4 lh85Z0VUiol5PUgvgSrsYWqJkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHBy4IIx jLrPfKFRskB8UVKu4NBkMB8GA1UdIwQYMBaAFIMv5WFOAtNQ+IZ5DeS9yZ9CZFXk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTY2OS9CNTU4QkEwNjBE OTQxMUVEQTVENEUwNTFDNEY5QUUwMi9neV9sWVU0QzAxRDRobmtONUwzSm4wSmtW ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d5X2xZVTRDMDFENGhua041TDNKbjBKa1ZlUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTY2OS9CNTU4QkEwNjBEOTQxMUVEQTVENEUwNTFDNEY5QUUwMi9neV9sWVU0QzAx RDRobmtONUwzSm4wSmtWZVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQgVrgPPty2LvlPGtnZpU2Oz29Vi7W72yCBKbyH9nT95DMmqUl/kZN DaVo1zpF/g/bioy3IyqOKnZ7ZEhURR5ZyghyP4KyXkNXuI4TL/cv07dfdwfSQ//6 BnWEx4MGpD+3xpOiP06FDqlYd0CP5aqaGn021G1/vL/JrUAntgoCbOVUC1CZ06mK qF1Vh5mudRxOfePsG1ptZ6lCnyVjtcrX5B/ERm5yPBUePAMf0u8WXPdMmaWRPAN0 Sz8NLEyZUHH5PW365SKdAMR4uBvgHKWFBpHODqoa6TNOMg1oEo/vbTNwvmBMBwub 9W6vp/rlymW5wweV8/vVQBjBLPYNvEEj -----END CERTIFICATE-----Generated at Sat Apr 26 17:11:42 2025 by rpki-client