$ rpki-client -vvf rpki.apnic.net/member_repository/A9186193/1D51405E8FB311EAB7126C57C4F9AE02/YQPK5q-yXkC6nl2kxULP4JtndCo.mft File: YQPK5q-yXkC6nl2kxULP4JtndCo.mft (raw, json) Hash identifier: 1iSsPtQsqYAtk9qs/zEh3zYqlSllNdcAyHTMxSNA+h0= Subject key identifier: D5:BD:05:F6:73:98:6B:D3:07:EA:7A:C5:80:E9:E7:6F:33:55:CF:83 Authority key identifier: 61:03:CA:E6:AF:B2:5E:40:BA:9E:5D:A4:C5:42:CF:E0:9B:67:74:2A Certificate issuer: /CN=A9186193/serialNumber=6103CAE6AFB25E40BA9E5DA4C542CFE09B67742A Certificate serial: 0972 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YQPK5q-yXkC6nl2kxULP4JtndCo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186193/1D51405E8FB311EAB7126C57C4F9AE02/YQPK5q-yXkC6nl2kxULP4JtndCo.mft Manifest number: 096A Signing time: Thu 24 Apr 2025 20:03:59 +0000 Manifest this update: Thu 24 Apr 2025 20:03:59 +0000 Manifest next update: Thu 01 May 2025 20:03:59 +0000 Files and hashes: 1: YQPK5q-yXkC6nl2kxULP4JtndCo.crl (hash: tNsP9C3YiqLl7HBJtLk4HDRc7DsMeg5d8dEg4Cv8RV0=) 2: B781FD5C8FB411EAA396FB5CC4F9AE02.roa (hash: kppfjOmUGO+tWg93gbF2w14mllXA4v8g2v3smcz3zqY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186193/1D51405E8FB311EAB7126C57C4F9AE02/YQPK5q-yXkC6nl2kxULP4JtndCo.crl rsync://rpki.apnic.net/member_repository/A9186193/1D51405E8FB311EAB7126C57C4F9AE02/YQPK5q-yXkC6nl2kxULP4JtndCo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YQPK5q-yXkC6nl2kxULP4JtndCo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:03:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2418 (0x972) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186193, serialNumber=6103CAE6AFB25E40BA9E5DA4C542CFE09B67742A Validity Not Before: Apr 24 20:03:59 2025 GMT Not After : May 1 20:03:59 2025 GMT Subject: CN=680a992f-965e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:d4:01:05:4d:30:a3:a2:fb:2c:3f:7c:b9:89: a9:4b:d8:5c:68:34:1e:0e:79:3a:4b:0e:33:3b:70: 68:6c:56:0f:6b:0b:49:09:ac:b8:d8:46:8b:48:4d: 6e:49:7d:62:7f:42:d0:aa:69:8d:14:c8:eb:06:17: 16:5a:6f:31:d7:0a:aa:ec:cf:9f:0c:90:c1:ac:f1: 6d:cd:df:15:bb:e5:22:f0:5e:80:13:ca:18:7a:52: fb:42:83:ad:9e:0a:82:66:84:ae:ac:24:ce:23:01: dc:0f:81:b2:4c:4a:f7:1f:e1:50:88:b0:ba:8f:e2: a3:59:d5:fe:41:fa:28:92:81:73:82:7e:b3:51:67: 86:36:6a:f2:8d:07:5e:ff:45:c0:c7:84:20:da:cb: 2c:bb:50:c4:ed:c4:b4:b2:8f:39:54:be:e8:ec:c8: 56:26:8e:a0:2e:16:4f:bd:61:04:bd:f2:ce:04:85: ce:19:e5:10:0e:f5:c5:cd:11:7c:19:2e:c4:76:27: cc:6d:1e:ef:4a:b6:4b:f0:61:82:1e:3e:b5:9f:aa: 02:fb:d0:45:ff:e2:db:b9:9b:52:3d:2e:ac:5c:f8: 52:ee:13:77:50:08:93:d1:ce:2f:d3:a0:2b:9d:1a: eb:01:65:b8:31:a4:90:42:38:ee:be:03:3d:69:7c: 24:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:BD:05:F6:73:98:6B:D3:07:EA:7A:C5:80:E9:E7:6F:33:55:CF:83 X509v3 Authority Key Identifier: keyid:61:03:CA:E6:AF:B2:5E:40:BA:9E:5D:A4:C5:42:CF:E0:9B:67:74:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186193/1D51405E8FB311EAB7126C57C4F9AE02/YQPK5q-yXkC6nl2kxULP4JtndCo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YQPK5q-yXkC6nl2kxULP4JtndCo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186193/1D51405E8FB311EAB7126C57C4F9AE02/YQPK5q-yXkC6nl2kxULP4JtndCo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:18:82:2d:71:0e:33:f0:bc:39:1b:cc:97:08:c5:18:8a:59: 97:30:26:7b:71:20:27:c4:ee:8e:78:46:26:37:c8:80:31:9b: 41:86:19:35:45:0f:49:1a:26:55:9d:a9:af:80:71:f7:9c:80: 82:aa:56:7d:34:e0:9e:d0:a2:88:fa:44:ed:46:b0:0d:62:98: 3b:63:89:87:74:c6:12:d3:3f:c0:bd:92:a5:04:c7:e5:75:a4: 30:53:27:20:43:d2:7d:f6:95:a1:61:ef:9a:1f:89:8b:c6:9b: a4:60:b0:2b:d0:e6:de:c0:8b:2f:17:ff:82:71:70:57:41:cd: 8a:b4:3e:7a:b4:6a:aa:73:b2:67:9f:16:a1:c3:74:6f:6d:14: 64:cb:58:92:8a:42:e1:27:52:f4:25:55:7d:d3:24:47:14:8b: 1b:ad:1e:b7:ea:d0:0f:20:d6:77:2c:44:75:2e:23:77:70:78: 23:8f:0b:a4:38:63:16:ae:16:b9:46:fa:46:cb:b7:e0:98:6b: 9f:fc:3a:04:5c:88:98:9b:6e:7f:e5:ac:cc:a8:86:ce:a0:53: ca:f8:29:83:83:28:5f:10:f3:d7:cc:ee:05:36:5a:35:62:5b: c1:da:fb:24:fb:6d:19:c9:20:19:2b:ef:e4:96:ef:ac:b1:c1: 6a:f3:2c:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYxOTMxMTAvBgNVBAUTKDYxMDNDQUU2QUZCMjVFNDBCQTlFNURBNEM1NDJDRkUw OUI2Nzc0MkEwHhcNMjUwNDI0MjAwMzU5WhcNMjUwNTAxMjAwMzU5WjAYMRYwFAYD VQQDEw02ODBhOTkyZi05NjVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqtQBBU0wo6L7LD98uYmpS9hcaDQeDnk6Sw4zO3BobFYPawtJCay42EaLSE1u SX1if0LQqmmNFMjrBhcWWm8x1wqq7M+fDJDBrPFtzd8Vu+Ui8F6AE8oYelL7QoOt ngqCZoSurCTOIwHcD4GyTEr3H+FQiLC6j+KjWdX+QfookoFzgn6zUWeGNmryjQde /0XAx4Qg2sssu1DE7cS0so85VL7o7MhWJo6gLhZPvWEEvfLOBIXOGeUQDvXFzRF8 GS7EdifMbR7vSrZL8GGCHj61n6oC+9BF/+LbuZtSPS6sXPhS7hN3UAiT0c4v06Ar nRrrAWW4MaSQQjjuvgM9aXwkqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNW9BfZz mGvTB+p6xYDp528zVc+DMB8GA1UdIwQYMBaAFGEDyuavsl5Aup5dpMVCz+CbZ3Qq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjE5My8xRDUxNDA1RThG QjMxMUVBQjcxMjZDNTdDNEY5QUUwMi9ZUVBLNXEteVhrQzZubDJreFVMUDRKdG5k Q28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lRUEs1cS15WGtDNm5sMmt4VUxQNEp0bmRDby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjE5My8xRDUxNDA1RThGQjMxMUVBQjcxMjZDNTdDNEY5QUUwMi9ZUVBLNXEteVhr QzZubDJreFVMUDRKdG5kQ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5GIItcQ4z8Lw5G8yXCMUYilmXMCZ7cSAnxO6OeEYmN8iAMZtBhhk1 RQ9JGiZVnamvgHH3nICCqlZ9NOCe0KKI+kTtRrANYpg7Y4mHdMYS0z/AvZKlBMfl daQwUycgQ9J99pWhYe+aH4mLxpukYLAr0ObewIsvF/+CcXBXQc2KtD56tGqqc7Jn nxahw3RvbRRky1iSikLhJ1L0JVV90yRHFIsbrR636tAPINZ3LER1LiN3cHgjjwuk OGMWrha5RvpGy7fgmGuf/DoEXIiYm25/5azMqIbOoFPK+CmDgyhfEPPXzO4FNlo1 YlvB2vsk+20ZySAZK+/klu+sscFq8ywy -----END CERTIFICATE-----Generated at Sat Apr 26 17:19:51 2025 by rpki-client