$ rpki-client -vvf rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.mft File: Y04osQAuVW6OsU-VPq1jttZ3WAk.mft (raw, json) Hash identifier: rQ0wSJwNXtTdG2OVsuC6x6O3cOnIbVclVpHmgt76AG0= Subject key identifier: D7:90:24:60:64:C9:76:DF:44:94:22:A7:EB:2A:10:77:39:6F:78:AB Authority key identifier: 63:4E:28:B1:00:2E:55:6E:8E:B1:4F:95:3E:AD:63:B6:D6:77:58:09 Certificate issuer: /CN=A9194C0D/serialNumber=634E28B1002E556E8EB14F953EAD63B6D6775809 Certificate serial: 0160 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y04osQAuVW6OsU-VPq1jttZ3WAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.mft Manifest number: 014D Signing time: Fri 25 Apr 2025 03:40:07 +0000 Manifest this update: Fri 25 Apr 2025 03:40:07 +0000 Manifest next update: Fri 02 May 2025 03:40:06 +0000 Files and hashes: 1: Y04osQAuVW6OsU-VPq1jttZ3WAk.crl (hash: 13CdPAhen0jrnrPajwDuYE+wJqnmj4b/FWHtH0LRHJI=) 2: F6FAEC5CCB0411EEAB05F93CC4F9AE02.roa (hash: 0UB6vf7tsJ4/eqdU0xPwdgNnTiXM+SW0/ez8sQsDOEw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.crl rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y04osQAuVW6OsU-VPq1jttZ3WAk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:40:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 352 (0x160) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194C0D, serialNumber=634E28B1002E556E8EB14F953EAD63B6D6775809 Validity Not Before: Apr 25 03:40:07 2025 GMT Not After : May 2 03:40:06 2025 GMT Subject: CN=680b0417-02a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:78:c0:bc:fe:2f:77:4a:ce:57:52:95:6b:a6: 9a:80:c1:f1:1b:3b:7b:51:78:4c:c7:5f:1b:44:81: 92:92:a7:9c:f0:08:ad:9d:2a:60:bd:ca:41:3d:8d: c8:4d:42:88:4f:72:ab:d3:7e:88:56:c8:d5:7a:8c: ee:4d:05:94:9e:b0:45:56:cf:65:67:a5:d0:1e:3e: 71:38:39:02:ff:59:2c:87:09:f2:4b:73:da:47:fd: 4e:e7:30:70:6d:8d:b4:60:f9:d2:32:57:6d:30:88: 64:26:00:1d:8c:f7:e0:3f:df:ed:3e:68:0d:e2:23: e4:89:72:5d:e6:61:38:69:70:b3:66:36:1a:78:ee: d8:22:24:c6:05:98:69:0c:33:29:90:97:08:95:9a: 9e:8d:f2:6c:4e:38:63:b2:aa:7f:70:23:0b:79:cf: 9b:50:c5:91:7e:bf:e1:a9:1b:95:90:37:dd:34:37: c2:a0:4c:f9:f8:df:bb:ec:ec:8e:89:ba:c9:31:45: 88:99:cf:68:21:7e:b5:00:e8:0f:ad:6f:73:7e:4a: 0d:d6:f5:6e:24:97:c5:39:b6:c2:7a:16:f0:a3:fd: 36:3d:e3:d9:1d:86:14:46:a2:76:61:25:7e:e2:fb: b9:cf:49:ce:5b:b0:61:fa:c0:08:8d:08:eb:d8:5b: 35:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:90:24:60:64:C9:76:DF:44:94:22:A7:EB:2A:10:77:39:6F:78:AB X509v3 Authority Key Identifier: keyid:63:4E:28:B1:00:2E:55:6E:8E:B1:4F:95:3E:AD:63:B6:D6:77:58:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y04osQAuVW6OsU-VPq1jttZ3WAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:87:41:2f:5c:ab:a8:02:6a:6e:c8:3c:9b:25:40:bb:00:6f: dd:06:19:78:24:9c:56:91:9b:d5:1b:43:a5:5b:db:d6:14:da: 2e:d4:39:e9:28:4f:f3:09:4e:3e:fb:b0:91:d4:a3:f1:3f:23: f2:8d:b3:f3:b5:58:31:08:06:32:94:0f:71:ef:14:8d:50:13: 12:fc:3d:d2:29:ef:a9:c4:1c:a9:d4:23:66:a6:4d:f2:df:42: 8a:2e:97:4a:18:3b:a8:bb:85:80:2e:7f:e5:f9:d9:e9:46:13: 07:21:2f:74:b0:5b:ed:23:58:a4:78:7a:a7:cb:43:31:3d:e1: 10:a2:60:aa:0f:16:48:c0:ef:93:ca:99:6e:ac:ae:96:02:38: 80:f6:92:af:9f:a5:5b:81:07:ce:52:22:46:71:0a:6e:89:98: 21:9d:59:f7:7a:e4:fe:6b:fa:33:66:0c:1f:a8:3d:76:87:2f: b0:b9:1f:d9:25:bd:f2:68:f6:1f:f3:2d:a5:f7:35:be:4a:cc: ae:b5:03:f5:ad:62:cd:0d:6a:05:fb:4a:87:7e:cb:ed:38:35: d1:30:85:dd:5b:5a:35:62:1d:8f:fb:41:7a:d6:83:67:21:50: d6:e1:10:11:8b:5a:0d:a0:43:31:4a:d1:83:bf:40:6b:d4:3d: 67:aa:8d:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRDMEQxMTAvBgNVBAUTKDYzNEUyOEIxMDAyRTU1NkU4RUIxNEY5NTNFQUQ2M0I2 RDY3NzU4MDkwHhcNMjUwNDI1MDM0MDA3WhcNMjUwNTAyMDM0MDA2WjAYMRYwFAYD VQQDEw02ODBiMDQxNy0wMmExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA13jAvP4vd0rOV1KVa6aagMHxGzt7UXhMx18bRIGSkqec8AitnSpgvcpBPY3I TUKIT3Kr036IVsjVeozuTQWUnrBFVs9lZ6XQHj5xODkC/1kshwnyS3PaR/1O5zBw bY20YPnSMldtMIhkJgAdjPfgP9/tPmgN4iPkiXJd5mE4aXCzZjYaeO7YIiTGBZhp DDMpkJcIlZqejfJsTjhjsqp/cCMLec+bUMWRfr/hqRuVkDfdNDfCoEz5+N+77OyO ibrJMUWImc9oIX61AOgPrW9zfkoN1vVuJJfFObbCehbwo/02PePZHYYURqJ2YSV+ 4vu5z0nOW7Bh+sAIjQjr2Fs1gwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNeQJGBk yXbfRJQip+sqEHc5b3irMB8GA1UdIwQYMBaAFGNOKLEALlVujrFPlT6tY7bWd1gJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEMwRC9BRDI1ODg5MDU3 NTQxMUVFOTQwQ0Q5NTRDNEY5QUUwMi9ZMDRvc1FBdVZXNk9zVS1WUHExanR0WjNX QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kwNG9zUUF1Vlc2T3NVLVZQcTFqdHRaM1dBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEMwRC9BRDI1ODg5MDU3NTQxMUVFOTQwQ0Q5NTRDNEY5QUUwMi9ZMDRvc1FBdVZX Nk9zVS1WUHExanR0WjNXQWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkh0EvXKuoAmpuyDybJUC7AG/dBhl4JJxWkZvVG0OlW9vWFNou1Dnp KE/zCU4++7CR1KPxPyPyjbPztVgxCAYylA9x7xSNUBMS/D3SKe+pxByp1CNmpk3y 30KKLpdKGDuou4WALn/l+dnpRhMHIS90sFvtI1ikeHqny0MxPeEQomCqDxZIwO+T yplurK6WAjiA9pKvn6VbgQfOUiJGcQpuiZghnVn3euT+a/ozZgwfqD12hy+wuR/Z Jb3yaPYf8y2l9zW+SsyutQP1rWLNDWoF+0qHfsvtODXRMIXdW1o1Yh2P+0F61oNn IVDW4RARi1oNoEMxStGDv0Br1D1nqo1e -----END CERTIFICATE-----Generated at Sat Apr 26 04:28:19 2025 by rpki-client