$ rpki-client -vvf rpki.apnic.net/member_repository/A9188CC3/EDDA36E2D72311EFA2269419C4F9AE02/yRauWpUgtfZ2fnnJFa-hv25JGJk.mft File: yRauWpUgtfZ2fnnJFa-hv25JGJk.mft (raw, json) Hash identifier: AiVlUPY5WDe+L9e8x8akwsWGsqeRPi7c2QtspiJNkXI= Subject key identifier: E4:E0:B5:C7:44:37:BA:1D:29:74:A7:AD:40:F6:F5:3E:CB:7D:4D:91 Authority key identifier: C9:16:AE:5A:95:20:B5:F6:76:7E:79:C9:15:AF:A1:BF:6E:49:18:99 Certificate issuer: /CN=A9188CC3/serialNumber=C916AE5A9520B5F6767E79C915AFA1BF6E491899 Certificate serial: 35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yRauWpUgtfZ2fnnJFa-hv25JGJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9188CC3/EDDA36E2D72311EFA2269419C4F9AE02/yRauWpUgtfZ2fnnJFa-hv25JGJk.mft Manifest number: 34 Signing time: Fri 25 Apr 2025 06:37:48 +0000 Manifest this update: Fri 25 Apr 2025 06:37:48 +0000 Manifest next update: Fri 02 May 2025 06:37:48 +0000 Files and hashes: 1: yRauWpUgtfZ2fnnJFa-hv25JGJk.crl (hash: SyPZs23Y2RIdOLTEel30sjPwXqQ+zpAhbgTTB97Lyk0=) 2: DAB3F33EDE0B11EF8FDDD043C4F9AE02.roa (hash: Rb4ZTb+DIpBolhpNi77VSAYUPtHpBMXs9JxNCJqiIFg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9188CC3/EDDA36E2D72311EFA2269419C4F9AE02/yRauWpUgtfZ2fnnJFa-hv25JGJk.crl rsync://rpki.apnic.net/member_repository/A9188CC3/EDDA36E2D72311EFA2269419C4F9AE02/yRauWpUgtfZ2fnnJFa-hv25JGJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yRauWpUgtfZ2fnnJFa-hv25JGJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:37:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53 (0x35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9188CC3, serialNumber=C916AE5A9520B5F6767E79C915AFA1BF6E491899 Validity Not Before: Apr 25 06:37:48 2025 GMT Not After : May 2 06:37:48 2025 GMT Subject: CN=680b2dbc-6029 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:70:d7:6d:06:ec:2b:72:de:06:f0:4a:52:f5: 4d:bd:44:98:89:a8:2b:6b:5e:a9:66:9b:cb:98:c3: ec:3b:ea:b4:cd:47:bd:84:32:3b:50:92:d2:43:03: dc:6a:25:0a:e3:4f:83:33:0b:4b:61:d6:0a:2c:db: be:99:90:3b:f6:d1:dc:39:eb:0d:74:ca:ec:53:d6: ef:c1:07:40:74:53:aa:19:17:85:70:ed:9e:47:24: ed:ec:49:6a:42:9e:38:94:97:3c:d1:26:38:67:b9: bc:5b:36:38:5d:38:7f:2a:28:64:9a:a3:b3:8a:d9: 34:1c:dc:aa:8c:03:5a:9d:ef:df:2b:89:a2:37:5c: d7:c3:6b:cc:e0:23:eb:f9:33:5b:eb:7e:89:c3:eb: 8a:f2:b4:5f:77:ac:d1:f9:51:59:af:2b:e1:75:31: fc:86:fb:49:14:5a:a1:10:47:82:60:df:93:b7:10: 1a:59:aa:7c:d8:fc:46:76:6c:ec:6b:46:60:b8:21: b9:74:e4:e4:83:c7:5b:1d:27:cb:41:2e:cd:df:a3: 16:44:4c:d4:de:38:4b:70:7a:ef:27:ef:ec:90:83: 5a:4f:75:22:e1:14:4e:ef:a8:5c:5a:7c:28:68:57: 29:98:7d:10:a8:48:10:5c:84:fe:2c:f1:87:17:59: 76:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:E0:B5:C7:44:37:BA:1D:29:74:A7:AD:40:F6:F5:3E:CB:7D:4D:91 X509v3 Authority Key Identifier: keyid:C9:16:AE:5A:95:20:B5:F6:76:7E:79:C9:15:AF:A1:BF:6E:49:18:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9188CC3/EDDA36E2D72311EFA2269419C4F9AE02/yRauWpUgtfZ2fnnJFa-hv25JGJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yRauWpUgtfZ2fnnJFa-hv25JGJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188CC3/EDDA36E2D72311EFA2269419C4F9AE02/yRauWpUgtfZ2fnnJFa-hv25JGJk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:f1:7b:61:04:de:e2:2d:00:78:96:b5:68:db:c2:7e:16:6d: ac:6e:af:00:a6:be:08:42:90:5c:3b:47:de:af:ea:2d:f1:3e: d6:4e:ab:31:02:5e:70:b3:8d:ae:e5:05:dc:29:55:3c:3a:c6: 2d:f9:43:fc:3e:59:f5:61:a9:4f:31:62:b2:f3:97:54:e6:8a: 1e:8d:af:b1:d7:5c:e0:e4:3d:b9:42:c5:65:da:e0:80:4f:50: 0f:10:d2:36:b0:21:89:5f:ed:80:f9:f7:d0:53:f9:5b:2a:6f: 8b:14:39:e1:3c:6e:f7:67:84:5c:41:00:47:13:d1:73:77:dc: 5b:27:fd:70:50:a3:1a:6d:95:ea:d9:84:ea:74:0e:53:f6:33: a0:09:60:88:39:4f:a2:75:18:55:93:52:31:fa:8f:35:66:80: bf:f0:ee:14:0e:30:b8:fa:eb:b3:fe:66:da:53:63:b4:95:76: 84:4a:1e:82:b9:cd:da:63:d3:13:b8:b3:8a:3c:82:d1:3c:0a: e0:64:5b:01:69:6f:ac:cc:d4:0c:05:a0:62:a5:c4:6f:dc:4e: 09:3b:cf:70:78:eb:e9:0d:05:75:60:8d:d4:a2:7e:94:f1:a2: 55:a9:59:1f:8e:56:44:01:76:18:a9:12:fd:52:b2:c8:c1:11: b2:76:4f:18 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 OENDMzExMC8GA1UEBRMoQzkxNkFFNUE5NTIwQjVGNjc2N0U3OUM5MTVBRkExQkY2 RTQ5MTg5OTAeFw0yNTA0MjUwNjM3NDhaFw0yNTA1MDIwNjM3NDhaMBgxFjAUBgNV BAMTDTY4MGIyZGJjLTYwMjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQChcNdtBuwrct4G8EpS9U29RJiJqCtrXqlmm8uYw+w76rTNR72EMjtQktJDA9xq JQrjT4MzC0th1gos276ZkDv20dw56w10yuxT1u/BB0B0U6oZF4Vw7Z5HJO3sSWpC njiUlzzRJjhnubxbNjhdOH8qKGSao7OK2TQc3KqMA1qd798riaI3XNfDa8zgI+v5 M1vrfonD64rytF93rNH5UVmvK+F1MfyG+0kUWqEQR4Jg35O3EBpZqnzY/EZ2bOxr RmC4Ibl05OSDx1sdJ8tBLs3foxZETNTeOEtweu8n7+yQg1pPdSLhFE7vqFxafCho VymYfRCoSBBchP4s8YcXWXZzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU5OC1x0Q3 uh0pdKetQPb1Pst9TZEwHwYDVR0jBBgwFoAUyRauWpUgtfZ2fnnJFa+hv25JGJkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg4Q0MzL0VEREEzNkUyRDcy MzExRUZBMjI2OTQxOUM0RjlBRTAyL3lSYXVXcFVndGZaMmZubkpGYS1odjI1SkdK ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveVJhdVdwVWd0ZloyZm5uSkZhLWh2MjVKR0prLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg4 Q0MzL0VEREEzNkUyRDcyMzExRUZBMjI2OTQxOUM0RjlBRTAyL3lSYXVXcFVndGZa MmZubkpGYS1odjI1SkdKay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFbxe2EE3uItAHiWtWjbwn4WbaxurwCmvghCkFw7R96v6i3xPtZOqzEC XnCzja7lBdwpVTw6xi35Q/w+WfVhqU8xYrLzl1Tmih6Nr7HXXODkPblCxWXa4IBP UA8Q0jawIYlf7YD599BT+Vsqb4sUOeE8bvdnhFxBAEcT0XN33Fsn/XBQoxptlerZ hOp0DlP2M6AJYIg5T6J1GFWTUjH6jzVmgL/w7hQOMLj667P+ZtpTY7SVdoRKHoK5 zdpj0xO4s4o8gtE8CuBkWwFpb6zM1AwFoGKlxG/cTgk7z3B46+kNBXVgjdSifpTx olWpWR+OVkQBdhipEv1SssjBEbJ2Txg= -----END CERTIFICATE-----Generated at Sat Apr 26 13:03:20 2025 by rpki-client