$ rpki-client -vvf rpki.apnic.net/member_repository/A919A824/8BFF3BB46E7F11EA95EF1861C4F9AE02/YeQBev9HdnE8_cggXML7IXhGK6E.mft File: YeQBev9HdnE8_cggXML7IXhGK6E.mft (raw, json) Hash identifier: TNYbvDBhhAveJqiXXXbZO+pvZ7Fdn2IyncR+aoCYeo8= Subject key identifier: AC:B9:3D:10:24:FD:D4:0E:84:53:C8:46:96:FA:CE:F1:F9:C6:EE:28 Authority key identifier: 61:E4:01:7A:FF:47:76:71:3C:FD:C8:20:5C:C2:FB:21:78:46:2B:A1 Certificate issuer: /CN=A919A824/serialNumber=61E4017AFF4776713CFDC8205CC2FB2178462BA1 Certificate serial: 0A29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeQBev9HdnE8_cggXML7IXhGK6E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A824/8BFF3BB46E7F11EA95EF1861C4F9AE02/YeQBev9HdnE8_cggXML7IXhGK6E.mft Manifest number: 0A1C Signing time: Sat 26 Apr 2025 19:36:10 +0000 Manifest this update: Sat 26 Apr 2025 19:36:09 +0000 Manifest next update: Sat 03 May 2025 19:36:09 +0000 Files and hashes: 1: YeQBev9HdnE8_cggXML7IXhGK6E.crl (hash: GhSro0mKP7ObdYUJ1+SIrB2Voalg+QKw0jeux9gGots=) 2: E3DD6362787A11ED89732760C4F9AE02.roa (hash: VMcYRd+8siR3JswMEyznU2Fdgu69nUJbPEZeRjRvvQ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A824/8BFF3BB46E7F11EA95EF1861C4F9AE02/YeQBev9HdnE8_cggXML7IXhGK6E.crl rsync://rpki.apnic.net/member_repository/A919A824/8BFF3BB46E7F11EA95EF1861C4F9AE02/YeQBev9HdnE8_cggXML7IXhGK6E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeQBev9HdnE8_cggXML7IXhGK6E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 19:36:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2601 (0xa29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A824, serialNumber=61E4017AFF4776713CFDC8205CC2FB2178462BA1 Validity Not Before: Apr 26 19:36:09 2025 GMT Not After : May 3 19:36:09 2025 GMT Subject: CN=680d35aa-0258 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:3e:7c:a7:b1:d0:d7:58:83:da:b8:61:21:3c: 81:8e:05:6b:7f:a9:f0:9f:b1:8e:c7:a6:35:31:1d: 3a:a5:a5:84:9f:1f:d2:d5:2c:fb:98:58:e4:e5:3e: 42:f6:0b:b5:37:99:46:3b:67:a1:82:21:2d:18:14: 0e:6c:4e:c1:6e:a3:32:c6:a3:51:71:a8:94:e1:8b: 6b:11:0c:5f:d8:02:cb:9a:72:c2:5c:df:aa:3e:dd: c1:7a:c4:06:11:80:37:59:a8:3f:6b:2b:eb:8e:0c: c4:63:e6:bb:66:54:e1:da:97:45:fc:e6:47:da:bf: 7e:8a:45:13:1b:92:84:5a:18:1d:32:c4:fc:22:c7: 00:fb:3c:1b:50:2f:69:68:a5:07:c0:e4:e4:0d:95: 8d:d8:20:d6:ec:ab:33:a5:c2:07:7a:4f:59:bc:d1: 88:ff:59:66:30:78:8e:8d:01:06:69:7e:4a:0f:dd: a3:00:fe:5b:01:94:45:3f:54:47:b1:5a:f3:24:86: e4:1c:dc:1a:46:7e:01:d2:2f:19:d9:d1:85:53:c5: f0:6d:89:a9:37:08:39:71:7b:8a:ad:ff:64:1e:c0: b7:52:f9:fc:80:ab:a1:3b:80:df:32:b2:9d:a6:b0: c7:6e:3b:06:7d:fa:82:88:aa:d4:d7:19:ca:a3:6d: e8:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:B9:3D:10:24:FD:D4:0E:84:53:C8:46:96:FA:CE:F1:F9:C6:EE:28 X509v3 Authority Key Identifier: keyid:61:E4:01:7A:FF:47:76:71:3C:FD:C8:20:5C:C2:FB:21:78:46:2B:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A824/8BFF3BB46E7F11EA95EF1861C4F9AE02/YeQBev9HdnE8_cggXML7IXhGK6E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeQBev9HdnE8_cggXML7IXhGK6E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A824/8BFF3BB46E7F11EA95EF1861C4F9AE02/YeQBev9HdnE8_cggXML7IXhGK6E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:bc:d5:e2:78:83:fd:bb:38:a8:b4:10:cf:b4:69:39:c5:bb: 81:3d:41:31:4b:a7:cf:84:51:75:af:9f:e9:a3:3d:68:7c:db: f0:33:52:df:0b:06:aa:c3:b6:37:05:0d:ac:39:a3:3f:5e:f0: 28:e7:39:99:20:fd:4b:e1:7d:52:a1:6d:15:a9:b1:4a:94:0b: 45:54:a9:28:b0:b9:5d:f6:18:3e:aa:7d:f7:a6:de:df:32:c8: 0b:49:14:52:19:fc:5e:18:83:c0:c5:1c:b2:37:9e:30:0a:12: db:c1:bc:1b:cb:32:44:4a:fb:ac:5b:2e:20:f9:73:ab:6c:6d: 54:1e:b2:1a:3e:56:14:96:84:8f:ef:0d:50:9c:d6:47:cd:7e: 9d:c5:4a:63:a4:30:19:fb:30:9f:ea:f6:f3:20:13:27:51:ac: fe:e3:e0:88:02:63:82:bc:d7:4d:45:d1:8a:b6:5f:07:e1:07: 31:f3:fd:71:45:a9:81:a1:4c:26:e1:b8:84:3e:f7:ce:82:78: 49:92:a9:d3:96:a6:8d:cf:32:a9:42:b8:ea:db:ce:72:b9:29: 20:2f:77:22:8f:04:96:2d:ef:64:2c:d6:5e:ba:bc:99:2d:58: 7b:ab:e7:c9:94:9e:79:2b:0e:02:de:d9:2c:2c:54:1f:ef:57: 24:51:71:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCikwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE4MjQxMTAvBgNVBAUTKDYxRTQwMTdBRkY0Nzc2NzEzQ0ZEQzgyMDVDQzJGQjIx Nzg0NjJCQTEwHhcNMjUwNDI2MTkzNjA5WhcNMjUwNTAzMTkzNjA5WjAYMRYwFAYD VQQDEw02ODBkMzVhYS0wMjU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyz58p7HQ11iD2rhhITyBjgVrf6nwn7GOx6Y1MR06paWEnx/S1Sz7mFjk5T5C 9gu1N5lGO2ehgiEtGBQObE7BbqMyxqNRcaiU4YtrEQxf2ALLmnLCXN+qPt3BesQG EYA3Wag/ayvrjgzEY+a7ZlTh2pdF/OZH2r9+ikUTG5KEWhgdMsT8IscA+zwbUC9p aKUHwOTkDZWN2CDW7KszpcIHek9ZvNGI/1lmMHiOjQEGaX5KD92jAP5bAZRFP1RH sVrzJIbkHNwaRn4B0i8Z2dGFU8XwbYmpNwg5cXuKrf9kHsC3Uvn8gKuhO4DfMrKd prDHbjsGffqCiKrU1xnKo23oQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKy5PRAk /dQOhFPIRpb6zvH5xu4oMB8GA1UdIwQYMBaAFGHkAXr/R3ZxPP3IIFzC+yF4Riuh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTgyNC84QkZGM0JCNDZF N0YxMUVBOTVFRjE4NjFDNEY5QUUwMi9ZZVFCZXY5SGRuRThfY2dnWE1MN0lYaEdL NkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1llUUJldjlIZG5FOF9jZ2dYTUw3SVhoR0s2RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTgyNC84QkZGM0JCNDZFN0YxMUVBOTVFRjE4NjFDNEY5QUUwMi9ZZVFCZXY5SGRu RThfY2dnWE1MN0lYaEdLNkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5vNXieIP9uziotBDPtGk5xbuBPUExS6fPhFF1r5/poz1ofNvwM1Lf Cwaqw7Y3BQ2sOaM/XvAo5zmZIP1L4X1SoW0VqbFKlAtFVKkosLld9hg+qn33pt7f MsgLSRRSGfxeGIPAxRyyN54wChLbwbwbyzJESvusWy4g+XOrbG1UHrIaPlYUloSP 7w1QnNZHzX6dxUpjpDAZ+zCf6vbzIBMnUaz+4+CIAmOCvNdNRdGKtl8H4Qcx8/1x RamBoUwm4biEPvfOgnhJkqnTlqaNzzKpQrjq285yuSkgL3cijwSWLe9kLNZeuryZ LVh7q+fJlJ55Kw4C3tksLFQf71ckUXH2 -----END CERTIFICATE-----Generated at Mon Apr 28 19:13:39 2025 by rpki-client