$ rpki-client -vvf rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft File: YBi5hcOZywcxwWNM_ktHkS8q9dE.mft (raw, json) Hash identifier: I7dxyq5wKT5pNOQxYVUt6cVuYfBiSzBSYcHUvmjIawg= Subject key identifier: AB:4C:21:55:EC:46:A0:8C:BE:7E:2B:10:39:23:19:AB:73:38:74:CE Authority key identifier: 60:18:B9:85:C3:99:CB:07:31:C1:63:4C:FE:4B:47:91:2F:2A:F5:D1 Certificate issuer: /CN=A9183BA5/serialNumber=6018B985C399CB0731C1634CFE4B47912F2AF5D1 Certificate serial: 01C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft Manifest number: 01C3 Signing time: Fri 25 Apr 2025 02:10:13 +0000 Manifest this update: Fri 25 Apr 2025 02:10:12 +0000 Manifest next update: Fri 02 May 2025 02:10:12 +0000 Files and hashes: 1: YBi5hcOZywcxwWNM_ktHkS8q9dE.crl (hash: 1jhrQF1YKJdfK+3pSbMFcthbDsBhUG31uWYeTYXs9bE=) 2: C386C06A706211EDA9CCDB76C4F9AE02.roa (hash: kCv4bHKTur2lJoL7asgYL11dC+z1ZsHw44gWQxYmfaI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.crl rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:10:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 455 (0x1c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9183BA5, serialNumber=6018B985C399CB0731C1634CFE4B47912F2AF5D1 Validity Not Before: Apr 25 02:10:12 2025 GMT Not After : May 2 02:10:12 2025 GMT Subject: CN=680aef04-baff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:8c:2f:7b:df:b9:7a:38:c6:d3:7d:2f:55:f1: 25:9e:60:36:f8:e4:12:16:ce:a6:7c:fe:f6:29:10: 53:78:8f:1a:ca:b3:9f:88:97:62:3d:f4:42:a8:a5: ce:9f:ca:30:05:cb:12:f6:5d:e4:76:a8:f6:3a:6b: ea:cb:5a:57:6c:21:b9:e8:e8:11:46:2a:3a:da:7b: 1b:a9:a6:95:55:0f:3e:af:e3:57:8e:bd:35:94:e3: 1b:99:59:98:7d:51:86:49:e7:89:5d:2a:ab:79:86: 84:aa:35:08:6a:23:0d:eb:7b:11:59:9e:45:c3:bc: c7:77:cb:dc:51:62:c1:cb:07:c9:30:41:76:49:eb: 4c:e8:4b:c7:2b:9f:31:9c:e7:57:e1:98:96:1d:3d: f7:9f:06:c3:37:98:12:ab:3b:52:c2:2d:76:06:49: 8b:32:d1:6e:3f:f4:53:37:1a:36:ee:dd:a4:c7:2b: 27:61:7d:49:5e:57:1d:25:09:a7:30:12:74:d3:bc: 0b:ed:b4:06:ca:a0:f0:08:d2:93:05:99:b4:12:ef: 06:df:8d:96:58:88:78:ef:4b:0c:e8:6b:fc:49:42: c5:a9:a1:1e:24:cb:03:7c:fb:5e:07:66:ec:41:f2: 8a:2f:71:7e:e9:ec:71:bf:1f:db:9f:8b:ab:58:6e: ff:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:4C:21:55:EC:46:A0:8C:BE:7E:2B:10:39:23:19:AB:73:38:74:CE X509v3 Authority Key Identifier: keyid:60:18:B9:85:C3:99:CB:07:31:C1:63:4C:FE:4B:47:91:2F:2A:F5:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:bc:07:21:9a:ce:63:fa:13:3f:fa:cf:7d:4a:6b:44:f2:e8: cf:0c:f1:83:6a:30:77:0e:a4:ff:31:3d:62:54:50:c0:c8:6d: 9d:e7:3d:1c:aa:d3:12:cf:fc:67:72:7b:04:57:31:96:5a:ea: f9:f7:15:cd:bd:fc:1f:1e:2b:42:9a:4a:25:be:21:8a:71:68: 83:11:be:da:ca:78:b1:0b:3f:66:0f:55:c3:02:c0:a4:54:ac: 8b:92:e2:59:ee:00:d4:3b:b0:43:8b:c4:80:da:c8:de:ac:f0: 01:3a:b2:6e:3d:b9:ac:f9:62:42:55:42:96:7a:fd:9a:5b:9b: 44:b6:04:e1:64:e5:e1:13:86:7c:72:5d:4d:b7:30:cd:bb:10: cf:7e:7b:15:79:60:74:cb:de:f6:c2:bf:94:0e:15:a2:f8:71: 0b:c2:05:41:57:bb:9e:33:41:9a:d4:c6:45:41:96:51:9b:7e: e0:73:26:8e:35:b4:70:74:a5:5e:58:45:5c:ca:e7:49:95:29: fd:78:c2:79:20:b1:fd:08:1f:ce:ad:f8:d2:55:eb:ed:fa:76: c0:d1:e7:1f:df:d5:d8:e2:09:18:15:0f:87:5d:0e:ab:de:7f: 07:89:ff:e1:18:96:8d:94:db:23:ab:e2:75:cd:e3:30:66:8c: fd:44:4a:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAccwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODNCQTUxMTAvBgNVBAUTKDYwMThCOTg1QzM5OUNCMDczMUMxNjM0Q0ZFNEI0Nzkx MkYyQUY1RDEwHhcNMjUwNDI1MDIxMDEyWhcNMjUwNTAyMDIxMDEyWjAYMRYwFAYD VQQDEw02ODBhZWYwNC1iYWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApowve9+5ejjG030vVfElnmA2+OQSFs6mfP72KRBTeI8ayrOfiJdiPfRCqKXO n8owBcsS9l3kdqj2Omvqy1pXbCG56OgRRio62nsbqaaVVQ8+r+NXjr01lOMbmVmY fVGGSeeJXSqreYaEqjUIaiMN63sRWZ5Fw7zHd8vcUWLBywfJMEF2SetM6EvHK58x nOdX4ZiWHT33nwbDN5gSqztSwi12BkmLMtFuP/RTNxo27t2kxysnYX1JXlcdJQmn MBJ007wL7bQGyqDwCNKTBZm0Eu8G342WWIh470sM6Gv8SULFqaEeJMsDfPteB2bs QfKKL3F+6exxvx/bn4urWG7/xQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKtMIVXs RqCMvn4rEDkjGatzOHTOMB8GA1UdIwQYMBaAFGAYuYXDmcsHMcFjTP5LR5EvKvXR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4M0JBNS8yODYyMENDNDcw NUUxMUVEQkMwN0YxNThDNEY5QUUwMi9ZQmk1aGNPWnl3Y3h3V05NX2t0SGtTOHE5 ZEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lCaTVoY09aeXdjeHdXTk1fa3RIa1M4cTlkRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 M0JBNS8yODYyMENDNDcwNUUxMUVEQkMwN0YxNThDNEY5QUUwMi9ZQmk1aGNPWnl3 Y3h3V05NX2t0SGtTOHE5ZEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPvAchms5j+hM/+s99SmtE8ujPDPGDajB3DqT/MT1iVFDAyG2d5z0c qtMSz/xncnsEVzGWWur59xXNvfwfHitCmkolviGKcWiDEb7aynixCz9mD1XDAsCk VKyLkuJZ7gDUO7BDi8SA2sjerPABOrJuPbms+WJCVUKWev2aW5tEtgThZOXhE4Z8 cl1NtzDNuxDPfnsVeWB0y972wr+UDhWi+HELwgVBV7ueM0Ga1MZFQZZRm37gcyaO NbRwdKVeWEVcyudJlSn9eMJ5ILH9CB/OrfjSVevt+nbA0ecf39XY4gkYFQ+HXQ6r 3n8Hif/hGJaNlNsjq+J1zeMwZoz9REoG -----END CERTIFICATE-----Generated at Sat Apr 26 04:18:26 2025 by rpki-client