$ rpki-client -vvf rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.mft File: YCgZkDDJlCoUSqFr-zB450H27CM.mft (raw, json) Hash identifier: YDMP3OzFwp9J3JlyZ/tcihz2fVC0EhdJKE/AeRJOsX4= Subject key identifier: F1:A8:37:31:F4:C7:8C:E8:28:21:B0:24:D1:D0:AF:19:FB:BA:66:BA Authority key identifier: 60:28:19:90:30:C9:94:2A:14:4A:A1:6B:FB:30:78:E7:41:F6:EC:23 Certificate issuer: /CN=A9175D4F/serialNumber=6028199030C9942A144AA16BFB3078E741F6EC23 Certificate serial: 09F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCgZkDDJlCoUSqFr-zB450H27CM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.mft Manifest number: 09E4 Signing time: Thu 24 Apr 2025 19:47:16 +0000 Manifest this update: Thu 24 Apr 2025 19:47:15 +0000 Manifest next update: Thu 01 May 2025 19:47:15 +0000 Files and hashes: 1: YCgZkDDJlCoUSqFr-zB450H27CM.crl (hash: n8cwz/tiapaogNUtgykPbkNQOUU0qrqFR7qbVvukcXk=) 2: 5D2B0616A9C011EABAAB4624C4F9AE02.roa (hash: yiUTn34nFtRxV5JAhkPGjI3Dqg4FJfadYSzxX54DxmU=) 3: 5C1CF19EA9C011EABAAB4624C4F9AE02.roa (hash: z0HhZvByumG+3blwc24Ax6Cba3C3ly99sGI80bagaU0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.crl rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCgZkDDJlCoUSqFr-zB450H27CM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:47:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2546 (0x9f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175D4F, serialNumber=6028199030C9942A144AA16BFB3078E741F6EC23 Validity Not Before: Apr 24 19:47:15 2025 GMT Not After : May 1 19:47:15 2025 GMT Subject: CN=680a9544-6b9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:00:af:9b:1f:d5:85:54:27:fb:62:35:3f:3b: 40:88:49:51:59:46:e0:36:19:b6:ba:ff:52:fd:ec: 77:c4:9d:88:5a:c8:28:a1:86:0b:2f:19:e7:15:66: c1:23:b4:e1:79:07:13:35:6d:c9:e2:54:7c:f1:e4: dc:06:6c:76:d0:db:43:de:b8:4d:83:f8:6c:73:cd: 52:d3:1b:fe:ca:46:88:d3:11:47:85:ad:c1:60:53: a1:90:b1:cd:48:4e:a2:32:93:a7:63:f9:7e:2e:6c: 9a:93:b7:df:2c:f8:c1:06:5b:19:9f:62:d9:62:13: 19:29:83:66:a4:f1:c5:9f:d6:de:d8:dd:78:87:70: 8b:69:b5:db:19:74:a2:df:a9:21:f1:77:ba:d9:06: 44:75:90:d1:b0:6a:9c:59:30:88:47:2f:d7:9c:8e: 31:fe:0e:e0:c9:8a:98:95:db:ca:86:32:80:05:ba: 55:a0:5f:74:0e:40:fd:94:98:5e:b7:a4:ca:f7:c7: 21:e3:ca:fa:29:8d:e4:14:99:c2:35:a5:6d:fd:9c: 98:af:15:32:81:2e:9d:40:27:25:2c:52:16:e4:da: 93:21:7e:94:3b:e8:0e:bd:0a:f7:ca:0a:dd:3c:c4: c3:4a:0e:6a:b7:b1:9d:e8:fc:5c:fc:f6:c1:b1:b0: f7:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:A8:37:31:F4:C7:8C:E8:28:21:B0:24:D1:D0:AF:19:FB:BA:66:BA X509v3 Authority Key Identifier: keyid:60:28:19:90:30:C9:94:2A:14:4A:A1:6B:FB:30:78:E7:41:F6:EC:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCgZkDDJlCoUSqFr-zB450H27CM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:c8:4b:c4:36:e6:34:28:88:38:0f:c5:c7:0b:54:7f:0b:b2: 20:4b:06:bc:f3:b4:c3:e0:59:7e:5d:4b:7b:d8:09:ac:0b:85: ee:75:0d:16:ca:09:8a:2e:f7:e6:47:be:e6:3d:d2:df:b8:6e: 85:7e:e8:10:f8:9e:e0:58:f1:18:78:a9:68:bf:54:4c:f1:14: f1:ac:f6:47:be:9e:d5:dd:65:d3:8d:03:79:d5:d8:a9:fd:30: ab:97:29:ab:66:56:56:bf:1e:84:bd:4d:07:07:4c:cb:aa:46: 4c:f3:a5:4b:57:2d:00:4e:06:de:da:6a:83:8a:ea:1f:aa:28: 13:16:5f:39:5a:7e:f9:48:3a:b5:45:37:34:8d:ba:2c:6c:42: e1:a5:e8:5a:b9:6d:6e:b5:03:85:b6:ed:46:6f:77:7e:e2:89: 64:c3:40:3a:b2:25:ee:97:38:eb:44:d0:7e:ed:c5:2a:7f:12: d8:75:74:fa:bc:02:10:13:71:0e:71:3f:76:c5:e7:c1:34:91: 76:07:36:2b:8a:20:ce:f7:15:bd:ce:65:b2:e1:d2:25:c8:a1: 0d:ba:dc:7f:af:18:de:93:67:5c:fb:3a:91:85:c9:56:c5:52: db:70:59:26:f9:eb:d0:c2:59:01:d7:a7:fb:92:50:d0:6e:ca: 90:5e:10:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzVENEYxMTAvBgNVBAUTKDYwMjgxOTkwMzBDOTk0MkExNDRBQTE2QkZCMzA3OEU3 NDFGNkVDMjMwHhcNMjUwNDI0MTk0NzE1WhcNMjUwNTAxMTk0NzE1WjAYMRYwFAYD VQQDEw02ODBhOTU0NC02YjliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArwCvmx/VhVQn+2I1PztAiElRWUbgNhm2uv9S/ex3xJ2IWsgooYYLLxnnFWbB I7TheQcTNW3J4lR88eTcBmx20NtD3rhNg/hsc81S0xv+ykaI0xFHha3BYFOhkLHN SE6iMpOnY/l+Lmyak7ffLPjBBlsZn2LZYhMZKYNmpPHFn9be2N14h3CLabXbGXSi 36kh8Xe62QZEdZDRsGqcWTCIRy/XnI4x/g7gyYqYldvKhjKABbpVoF90DkD9lJhe t6TK98ch48r6KY3kFJnCNaVt/ZyYrxUygS6dQCclLFIW5NqTIX6UO+gOvQr3ygrd PMTDSg5qt7Gd6Pxc/PbBsbD3QQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPGoNzH0 x4zoKCGwJNHQrxn7uma6MB8GA1UdIwQYMBaAFGAoGZAwyZQqFEqha/sweOdB9uwj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NUQ0Ri81ODVGNEQwRTc4 NzkxMUVBQUVCQTNCMzhDNEY5QUUwMi9ZQ2daa0RESmxDb1VTcUZyLXpCNDUwSDI3 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lDZ1prRERKbENvVVNxRnItekI0NTBIMjdDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NUQ0Ri81ODVGNEQwRTc4NzkxMUVBQUVCQTNCMzhDNEY5QUUwMi9ZQ2daa0RESmxD b1VTcUZyLXpCNDUwSDI3Q00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYyEvENuY0KIg4D8XHC1R/C7IgSwa887TD4Fl+XUt72AmsC4XudQ0W ygmKLvfmR77mPdLfuG6FfugQ+J7gWPEYeKlov1RM8RTxrPZHvp7V3WXTjQN51dip /TCrlymrZlZWvx6EvU0HB0zLqkZM86VLVy0ATgbe2mqDiuofqigTFl85Wn75SDq1 RTc0jbosbELhpehauW1utQOFtu1Gb3d+4olkw0A6siXulzjrRNB+7cUqfxLYdXT6 vAIQE3EOcT92xefBNJF2BzYriiDO9xW9zmWy4dIlyKENutx/rxjek2dc+zqRhclW xVLbcFkm+evQwlkB16f7klDQbsqQXhAW -----END CERTIFICATE-----Generated at Sat Apr 26 12:34:47 2025 by rpki-client