$ rpki-client -vvf rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.mft File: y3TVYT1zQs-5t_ed7wyfrYhceCI.mft (raw, json) Hash identifier: EPBIuPnZIejEx3gt5HkkwPr8RvogZ5oNZ3TQk7hhKdI= Subject key identifier: 3E:DE:34:2F:A2:30:09:99:8D:9D:9C:7A:6E:91:58:7D:E2:B6:4D:76 Authority key identifier: CB:74:D5:61:3D:73:42:CF:B9:B7:F7:9D:EF:0C:9F:AD:88:5C:78:22 Certificate issuer: /CN=A917845B/serialNumber=CB74D5613D7342CFB9B7F79DEF0C9FAD885C7822 Certificate serial: 0150 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y3TVYT1zQs-5t_ed7wyfrYhceCI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.mft Manifest number: 014E Signing time: Fri 25 Apr 2025 03:17:50 +0000 Manifest this update: Fri 25 Apr 2025 03:17:49 +0000 Manifest next update: Fri 02 May 2025 03:17:49 +0000 Files and hashes: 1: y3TVYT1zQs-5t_ed7wyfrYhceCI.crl (hash: xLFs93nn/QPg7RfmUxP/iFqaWpw8Z96RtUkI9gnsNyk=) 2: D5981734217611EE9EBE2F70C4F9AE02.roa (hash: mEyirxNNF/HUjbME+0mygxI2/51XwzfUXk7qYYI6cLw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.crl rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y3TVYT1zQs-5t_ed7wyfrYhceCI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:17:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 336 (0x150) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917845B, serialNumber=CB74D5613D7342CFB9B7F79DEF0C9FAD885C7822 Validity Not Before: Apr 25 03:17:49 2025 GMT Not After : May 2 03:17:49 2025 GMT Subject: CN=680afedd-9293 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:98:50:30:cf:66:94:92:dc:f0:4d:c8:b0:38: 46:58:a6:6a:e7:76:b5:55:17:29:b4:c0:b7:71:46: f2:0b:da:de:9b:26:fa:89:87:ab:4f:4e:38:93:86: eb:9e:dd:3c:93:cc:86:cf:05:5b:4b:bb:1a:fa:42: fb:76:0f:ca:ca:4d:08:68:6b:9a:b6:ba:c1:50:03: 4c:bb:f7:a5:75:81:7c:ba:3b:43:b5:e6:0f:d8:57: 48:96:b0:bf:d9:c3:5b:27:e9:68:3e:62:4b:65:02: 45:31:ab:cb:cb:fd:5e:bc:e0:1f:a5:d6:22:9a:97: 25:eb:d9:1f:04:ba:88:65:75:a8:06:fd:2c:ca:58: e9:a3:03:02:b8:c9:07:dd:7b:be:6a:2b:3b:20:0f: b9:b2:98:53:31:dc:1f:4e:d0:8b:09:3e:3c:5b:df: 4f:5b:4e:be:a4:d0:14:2d:2a:0a:47:0e:fc:89:c6: 92:b4:2c:e5:ef:ba:d0:ae:37:11:72:95:e3:55:1a: f2:63:54:a3:71:71:80:fe:0a:d4:b4:00:b0:a2:1a: d3:f3:b9:56:c5:d1:92:33:c9:5d:88:76:cf:e6:ee: 2d:61:be:a4:7b:9a:08:a8:fb:19:1e:3b:6f:10:7b: d8:1b:07:2c:ad:b7:9e:42:78:df:e2:72:cf:90:3f: 1a:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:DE:34:2F:A2:30:09:99:8D:9D:9C:7A:6E:91:58:7D:E2:B6:4D:76 X509v3 Authority Key Identifier: keyid:CB:74:D5:61:3D:73:42:CF:B9:B7:F7:9D:EF:0C:9F:AD:88:5C:78:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y3TVYT1zQs-5t_ed7wyfrYhceCI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:76:cb:26:66:1d:4e:78:6d:a5:97:03:58:ba:13:b8:53:5d: 50:d6:7b:67:b3:ff:d0:36:fd:7c:aa:6b:d9:87:ad:a8:10:0e: 76:32:40:64:0f:ae:64:e1:02:7a:ac:24:4d:26:79:7c:e4:84: 35:6b:ed:eb:9e:fc:f0:c1:74:ff:04:e2:c0:03:51:d3:79:7c: 0b:f4:15:f3:45:c4:c4:6b:c1:6f:71:d5:dd:18:fe:dd:91:8f: 19:0d:12:24:f4:bb:48:6a:19:ab:9f:0d:7f:72:6c:38:1e:dd: 55:da:60:56:ed:7a:2f:98:e3:ff:59:91:49:d7:3e:e1:d9:9d: 78:d4:b8:2b:95:9e:74:8e:17:b2:fa:43:f8:7f:b4:1b:14:b8: 44:48:3c:b1:4d:9e:c6:0e:4d:71:cc:e1:2d:b8:6a:ab:9e:45: f8:11:9a:03:34:60:81:aa:02:c0:f6:75:aa:ac:e2:71:bd:16: 90:57:f2:33:ff:7e:b6:e9:96:61:79:5c:df:49:d9:e8:19:17: 65:67:ef:e5:46:c3:7e:bf:f0:82:c0:4f:43:ef:af:31:ba:92: f4:df:ce:39:65:5f:2d:e2:65:d4:50:65:f0:68:25:77:a5:ba: ca:45:b3:08:ce:e4:89:a6:7e:36:88:f7:b9:f9:41:7e:2b:27: 5c:db:78:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzg0NUIxMTAvBgNVBAUTKENCNzRENTYxM0Q3MzQyQ0ZCOUI3Rjc5REVGMEM5RkFE ODg1Qzc4MjIwHhcNMjUwNDI1MDMxNzQ5WhcNMjUwNTAyMDMxNzQ5WjAYMRYwFAYD VQQDEw02ODBhZmVkZC05MjkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7ZhQMM9mlJLc8E3IsDhGWKZq53a1VRcptMC3cUbyC9remyb6iYerT044k4br nt08k8yGzwVbS7sa+kL7dg/Kyk0IaGuatrrBUANMu/eldYF8ujtDteYP2FdIlrC/ 2cNbJ+loPmJLZQJFMavLy/1evOAfpdYimpcl69kfBLqIZXWoBv0syljpowMCuMkH 3Xu+ais7IA+5sphTMdwfTtCLCT48W99PW06+pNAULSoKRw78icaStCzl77rQrjcR cpXjVRryY1SjcXGA/grUtACwohrT87lWxdGSM8ldiHbP5u4tYb6ke5oIqPsZHjtv EHvYGwcsrbeeQnjf4nLPkD8a/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD7eNC+i MAmZjZ2cem6RWH3itk12MB8GA1UdIwQYMBaAFMt01WE9c0LPubf3ne8Mn62IXHgi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3ODQ1Qi85NzM2OUI0NjIx NzYxMUVFQjRGM0FENkZDNEY5QUUwMi95M1RWWVQxelFzLTV0X2VkN3d5ZnJZaGNl Q0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kzVFZZVDF6UXMtNXRfZWQ3d3lmclloY2VDSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 ODQ1Qi85NzM2OUI0NjIxNzYxMUVFQjRGM0FENkZDNEY5QUUwMi95M1RWWVQxelFz LTV0X2VkN3d5ZnJZaGNlQ0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAedssmZh1OeG2llwNYuhO4U11Q1ntns//QNv18qmvZh62oEA52MkBk D65k4QJ6rCRNJnl85IQ1a+3rnvzwwXT/BOLAA1HTeXwL9BXzRcTEa8FvcdXdGP7d kY8ZDRIk9LtIahmrnw1/cmw4Ht1V2mBW7XovmOP/WZFJ1z7h2Z141LgrlZ50jhey +kP4f7QbFLhESDyxTZ7GDk1xzOEtuGqrnkX4EZoDNGCBqgLA9nWqrOJxvRaQV/Iz /3626ZZheVzfSdnoGRdlZ+/lRsN+v/CCwE9D768xupL03845ZV8t4mXUUGXwaCV3 pbrKRbMIzuSJpn42iPe5+UF+Kydc23g5 -----END CERTIFICATE-----Generated at Sat Apr 26 04:31:20 2025 by rpki-client