$ rpki-client -vvf rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.mft File: yCt7N51v7So8MMRTfg-HzLYIIus.mft (raw, json) Hash identifier: BsX8NWVf/dN/OViUyA6aE36XnxLnZneOrMiniKPAlVY= Subject key identifier: 5D:6F:AE:EB:76:AC:8D:08:39:E5:22:2F:D0:C8:BA:BC:BD:AD:66:67 Authority key identifier: C8:2B:7B:37:9D:6F:ED:2A:3C:30:C4:53:7E:0F:87:CC:B6:08:22:EB Certificate issuer: /CN=A917EB96/serialNumber=C82B7B379D6FED2A3C30C4537E0F87CCB60822EB Certificate serial: 0156 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCt7N51v7So8MMRTfg-HzLYIIus.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.mft Manifest number: 0152 Signing time: Fri 25 Apr 2025 03:15:21 +0000 Manifest this update: Fri 25 Apr 2025 03:15:21 +0000 Manifest next update: Fri 02 May 2025 03:15:21 +0000 Files and hashes: 1: yCt7N51v7So8MMRTfg-HzLYIIus.crl (hash: LwU9mFcKvtDlY+OabKT7A0ZaGVfE46x2dzwgPb1iSpI=) 2: B50ECD32A57E11EEB4533738C4F9AE02.roa (hash: BkdlPGBhBetu9r/R8RI86aafR+sAmMSSEW9hm5cCW00=) 3: 348BAEE41C2D11EEB362491FC4F9AE02.roa (hash: ABPxiDdG7YwQPZkFSTV8BYz3BNZi1RIYblf+R4M0eLY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.crl rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCt7N51v7So8MMRTfg-HzLYIIus.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:15:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 342 (0x156) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917EB96, serialNumber=C82B7B379D6FED2A3C30C4537E0F87CCB60822EB Validity Not Before: Apr 25 03:15:21 2025 GMT Not After : May 2 03:15:21 2025 GMT Subject: CN=680afe49-235a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c9:b2:6d:a3:d3:61:d4:ac:19:1f:0d:26:87: b7:99:0e:4c:e9:7c:1b:b2:0b:ce:2e:0e:75:03:b1: 83:00:8f:bf:60:e8:8d:41:74:46:a7:6d:be:d5:b9: 35:74:43:54:74:89:5b:23:05:0a:63:e7:98:f6:8e: ff:b0:c2:21:76:e3:aa:08:a3:ba:ee:77:23:bf:3f: 27:1f:19:d0:6c:3c:17:16:e1:5e:07:9e:00:62:ff: af:e9:33:e5:67:00:c7:cd:a3:d6:60:ab:b1:c7:10: 4d:76:b8:07:a9:fd:18:27:11:ce:0b:5c:54:1b:e9: 68:6b:23:0e:07:4c:b4:79:a9:d4:3a:54:2c:4f:d7: f5:88:c9:94:76:75:38:71:d0:29:64:59:00:de:03: 7c:20:61:43:de:22:f0:7c:15:07:5c:4d:4d:b6:1c: e4:4c:c2:70:9f:85:63:40:42:d9:e2:e5:2b:eb:0e: c7:aa:72:b0:77:a9:6f:b9:f9:ba:b1:0e:5e:b9:8a: 07:6e:03:56:70:03:e7:61:94:62:2c:86:51:29:b3: db:ba:5d:7c:6e:d4:a0:e7:bd:a1:3d:13:4f:34:99: 01:45:97:71:55:1b:17:f0:42:18:f5:f4:4c:28:f2: 1d:91:98:2c:8d:77:13:a7:52:98:13:92:d6:1d:c1: 58:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:6F:AE:EB:76:AC:8D:08:39:E5:22:2F:D0:C8:BA:BC:BD:AD:66:67 X509v3 Authority Key Identifier: keyid:C8:2B:7B:37:9D:6F:ED:2A:3C:30:C4:53:7E:0F:87:CC:B6:08:22:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCt7N51v7So8MMRTfg-HzLYIIus.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:c3:0f:8e:fc:91:76:fb:85:8c:9e:1b:94:f5:a0:7b:12:dc: 80:09:e9:cd:03:cf:90:2c:68:ac:3d:4e:1a:98:1b:fd:8b:eb: 9c:22:5c:57:85:39:3b:7b:1f:9a:d2:6f:79:13:4f:15:2a:d2: f2:34:f3:cb:2d:98:70:9d:7a:d0:8d:4d:a4:2c:26:ad:ca:a1: fb:71:74:2d:4e:d3:6c:e0:dd:85:37:0f:b3:f4:a0:f4:a2:a9: db:ab:c1:d2:c7:e9:c9:17:8b:f4:dc:2c:b7:48:0a:30:11:47: 13:78:70:38:d3:f5:63:f0:fe:3c:c0:d8:97:71:28:16:ad:40: c9:a4:0f:7b:90:6d:2e:2a:5e:2a:7f:5c:f7:09:50:c3:2f:25: b6:e5:1a:f9:b6:0b:08:70:42:28:01:04:22:b9:a8:cc:f8:b1: aa:99:d4:31:df:83:33:e0:38:5a:92:7f:34:45:94:d3:05:24: 4a:9e:23:2e:71:a8:39:84:80:68:57:92:de:fd:a7:a7:4d:15: eb:b6:11:6d:4c:e6:1e:fd:3c:e0:c4:91:5e:00:f5:b5:a2:1e: 4c:6c:b8:45:12:a9:33:2c:b8:50:77:6a:64:15:a1:f6:df:cc: 62:13:67:04:74:4a:87:70:f4:04:00:dd:76:9d:e8:10:f4:28: e8:4b:b5:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VCOTYxMTAvBgNVBAUTKEM4MkI3QjM3OUQ2RkVEMkEzQzMwQzQ1MzdFMEY4N0ND QjYwODIyRUIwHhcNMjUwNDI1MDMxNTIxWhcNMjUwNTAyMDMxNTIxWjAYMRYwFAYD VQQDEw02ODBhZmU0OS0yMzVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvsmybaPTYdSsGR8NJoe3mQ5M6XwbsgvOLg51A7GDAI+/YOiNQXRGp22+1bk1 dENUdIlbIwUKY+eY9o7/sMIhduOqCKO67ncjvz8nHxnQbDwXFuFeB54AYv+v6TPl ZwDHzaPWYKuxxxBNdrgHqf0YJxHOC1xUG+loayMOB0y0eanUOlQsT9f1iMmUdnU4 cdApZFkA3gN8IGFD3iLwfBUHXE1NthzkTMJwn4VjQELZ4uUr6w7HqnKwd6lvufm6 sQ5euYoHbgNWcAPnYZRiLIZRKbPbul18btSg572hPRNPNJkBRZdxVRsX8EIY9fRM KPIdkZgsjXcTp1KYE5LWHcFYeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF1vrut2 rI0IOeUiL9DIury9rWZnMB8GA1UdIwQYMBaAFMgrezedb+0qPDDEU34Ph8y2CCLr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUI5Ni82NEQ2QkRDQzFD MjkxMUVFOUQwNkY5MEFDNEY5QUUwMi95Q3Q3TjUxdjdTbzhNTVJUZmctSHpMWUlJ dXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lDdDdONTF2N1NvOE1NUlRmZy1IekxZSUl1cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RUI5Ni82NEQ2QkRDQzFDMjkxMUVFOUQwNkY5MEFDNEY5QUUwMi95Q3Q3TjUxdjdT bzhNTVJUZmctSHpMWUlJdXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuww+O/JF2+4WMnhuU9aB7EtyACenNA8+QLGisPU4amBv9i+ucIlxX hTk7ex+a0m95E08VKtLyNPPLLZhwnXrQjU2kLCatyqH7cXQtTtNs4N2FNw+z9KD0 oqnbq8HSx+nJF4v03Cy3SAowEUcTeHA40/Vj8P48wNiXcSgWrUDJpA97kG0uKl4q f1z3CVDDLyW25Rr5tgsIcEIoAQQiuajM+LGqmdQx34Mz4Dhakn80RZTTBSRKniMu cag5hIBoV5Le/aenTRXrthFtTOYe/TzgxJFeAPW1oh5MbLhFEqkzLLhQd2pkFaH2 38xiE2cEdEqHcPQEAN12negQ9CjoS7XI -----END CERTIFICATE-----Generated at Sat Apr 26 04:24:45 2025 by rpki-client