$ rpki-client -vvf rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft File: kY5yieKMGkkiojy1Zb2CG34gphE.mft (raw, json) Hash identifier: NT928RXW1lRzR1KPh2WbdGMfm+UEiCrI5QGpkg293VU= Subject key identifier: B0:53:97:12:31:09:A7:6C:94:AE:30:54:17:8B:5A:63:79:5E:FE:2D Authority key identifier: 91:8E:72:89:E2:8C:1A:49:22:A2:3C:B5:65:BD:82:1B:7E:20:A6:11 Certificate issuer: /CN=A9171B1A/serialNumber=918E7289E28C1A4922A23CB565BD821B7E20A611 Certificate serial: 0C91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft Manifest number: 0C85 Signing time: Thu 24 Apr 2025 18:09:29 +0000 Manifest this update: Thu 24 Apr 2025 18:09:28 +0000 Manifest next update: Thu 01 May 2025 18:09:28 +0000 Files and hashes: 1: kY5yieKMGkkiojy1Zb2CG34gphE.crl (hash: CvUdfqzVzN+u+vVvT9PogG6gN4I9GGku/gz1hCpJeCc=) 2: 6D9433B0F41211E9AAF5924EC4F9AE02.roa (hash: hSO23qhSJreuhOLk9R8p+4DtFYxsss4sjYdKljRJK2k=) 3: 6E3B1338F41211E9AAF5924EC4F9AE02.roa (hash: 7iLE2NbcVEE13k7k5xb5wiFVYhBSAES33qNPZQmTZqs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.crl rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:09:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3217 (0xc91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171B1A, serialNumber=918E7289E28C1A4922A23CB565BD821B7E20A611 Validity Not Before: Apr 24 18:09:28 2025 GMT Not After : May 1 18:09:28 2025 GMT Subject: CN=680a7e59-c72a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:5a:db:af:3a:0d:fd:db:7f:9b:90:6e:95:60: 2f:ff:67:73:89:8d:7e:e0:2c:9d:9a:de:d3:57:96: 24:c6:2b:73:90:df:6c:a6:e4:40:fd:cc:4a:6e:65: 55:84:74:d7:8d:17:06:ee:73:5d:77:db:9c:19:b1: 82:dc:04:ba:cf:14:bd:83:c2:49:8b:2f:27:88:ca: 9f:64:56:76:a0:86:bd:31:e5:b9:90:67:0b:43:a3: f1:1f:d3:b3:f9:8a:d3:81:14:65:33:a6:9d:38:42: 60:c7:ce:51:b4:7f:2e:88:f9:d7:d0:be:68:ba:0f: 47:8d:04:10:99:c2:24:d5:06:c0:85:d2:9c:f3:6d: 09:f0:70:8b:6b:aa:61:bc:26:3f:df:89:3e:97:33: f6:ff:bc:b7:8a:53:7b:50:93:7d:3f:d5:b2:c6:7b: cf:32:c9:1a:bd:ce:77:c7:a0:f8:c1:28:1f:c5:6d: 73:d8:3b:a7:67:d0:e0:2d:b6:72:67:27:01:8a:d3: 5c:a5:6a:e8:73:96:1b:f2:66:aa:a6:6e:b3:63:51: ee:03:c8:58:21:b8:56:b0:93:90:b9:06:4b:f8:73: bf:1f:a5:5a:b4:cc:78:10:47:11:8e:0e:93:3a:3f: 5b:a8:d9:af:fb:27:84:a7:d8:77:77:66:02:09:dc: 1a:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:53:97:12:31:09:A7:6C:94:AE:30:54:17:8B:5A:63:79:5E:FE:2D X509v3 Authority Key Identifier: keyid:91:8E:72:89:E2:8C:1A:49:22:A2:3C:B5:65:BD:82:1B:7E:20:A6:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:f5:0b:51:5e:3f:f7:e8:22:b5:a6:b7:90:27:e3:f8:d9:c3: 6e:03:bb:c5:7b:7b:a7:a4:5b:90:c5:51:bf:61:bf:48:f1:53: 21:92:a6:fc:70:00:ad:61:32:77:1a:34:3f:b1:d5:55:b7:a2: 95:da:b9:c2:3b:75:6d:41:3a:f2:8f:d4:19:41:99:db:88:ee: e2:a1:d9:97:8c:37:ab:84:05:57:b6:34:28:2f:32:75:51:00: 76:8e:e2:06:72:68:02:f4:54:1d:8f:92:3e:45:6e:ad:76:6e: 99:a7:48:28:7e:6d:5b:0c:e6:91:3d:85:39:2c:84:fd:93:65: 2a:9d:e8:39:9c:24:7c:0e:bd:67:46:4a:31:5a:e4:88:d0:3d: 6b:41:c3:87:ed:02:00:b6:ed:9c:00:71:77:9c:0f:36:af:5d: 44:2f:ec:ba:ec:da:b9:99:52:95:8a:d8:38:98:cd:97:1f:83: 89:aa:cc:6d:6c:7e:81:5d:13:d2:6b:10:c6:0f:e6:50:71:76: 44:ac:a2:01:c3:b3:64:ba:63:dd:c0:3e:fe:d5:98:aa:08:33: 9f:89:af:84:83:75:f8:ff:8e:d2:cf:50:b4:ba:78:e2:2a:63: b8:f3:7a:41:1a:8e:e2:ca:1d:81:cb:2a:e2:5c:50:fe:dd:98: b2:e2:bd:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFCMUExMTAvBgNVBAUTKDkxOEU3Mjg5RTI4QzFBNDkyMkEyM0NCNTY1QkQ4MjFC N0UyMEE2MTEwHhcNMjUwNDI0MTgwOTI4WhcNMjUwNTAxMTgwOTI4WjAYMRYwFAYD VQQDEw02ODBhN2U1OS1jNzJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1lrbrzoN/dt/m5BulWAv/2dziY1+4Cydmt7TV5YkxitzkN9spuRA/cxKbmVV hHTXjRcG7nNdd9ucGbGC3AS6zxS9g8JJiy8niMqfZFZ2oIa9MeW5kGcLQ6PxH9Oz +YrTgRRlM6adOEJgx85RtH8uiPnX0L5oug9HjQQQmcIk1QbAhdKc820J8HCLa6ph vCY/34k+lzP2/7y3ilN7UJN9P9WyxnvPMskavc53x6D4wSgfxW1z2DunZ9DgLbZy ZycBitNcpWroc5Yb8maqpm6zY1HuA8hYIbhWsJOQuQZL+HO/H6VatMx4EEcRjg6T Oj9bqNmv+yeEp9h3d2YCCdwaPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLBTlxIx CadslK4wVBeLWmN5Xv4tMB8GA1UdIwQYMBaAFJGOconijBpJIqI8tWW9ght+IKYR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUIxQS81MUZGQzRFNEY0 MTExMUU5QTQzNUIwNENDNEY5QUUwMi9rWTV5aWVLTUdra2lvankxWmIyQ0czNGdw aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tZNXlpZUtNR2traW9qeTFaYjJDRzM0Z3BoRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUIxQS81MUZGQzRFNEY0MTExMUU5QTQzNUIwNENDNEY5QUUwMi9rWTV5aWVLTUdr a2lvankxWmIyQ0czNGdwaEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCB9QtRXj/36CK1preQJ+P42cNuA7vFe3unpFuQxVG/Yb9I8VMhkqb8 cACtYTJ3GjQ/sdVVt6KV2rnCO3VtQTryj9QZQZnbiO7iodmXjDerhAVXtjQoLzJ1 UQB2juIGcmgC9FQdj5I+RW6tdm6Zp0gofm1bDOaRPYU5LIT9k2Uqneg5nCR8Dr1n RkoxWuSI0D1rQcOH7QIAtu2cAHF3nA82r11EL+y67Nq5mVKVitg4mM2XH4OJqsxt bH6BXRPSaxDGD+ZQcXZErKIBw7NkumPdwD7+1ZiqCDOfia+Eg3X4/47Sz1C0unji KmO483pBGo7iyh2ByyriXFD+3Ziy4r0/ -----END CERTIFICATE-----Generated at Sat Apr 26 15:11:18 2025 by rpki-client