$ rpki-client -vvf rpki.apnic.net/member_repository/A919E1FC/5B325FA6E9B911EFB6DA414CC4F9AE02/yl96MSHB9fmJUgx6UZcT-zpoyn4.mft File: yl96MSHB9fmJUgx6UZcT-zpoyn4.mft (raw, json) Hash identifier: gpdoBS6oRqGF9eHzQN+ydSHL04UD1Cxxx3Rb0mNcfZM= Subject key identifier: E7:96:A8:43:9D:35:50:54:34:A9:03:21:71:5F:1E:36:1A:B6:C9:9D Authority key identifier: CA:5F:7A:31:21:C1:F5:F9:89:52:0C:7A:51:97:13:FB:3A:68:CA:7E Certificate issuer: /CN=A919E1FC/serialNumber=CA5F7A3121C1F5F989520C7A519713FB3A68CA7E Certificate serial: 2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yl96MSHB9fmJUgx6UZcT-zpoyn4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E1FC/5B325FA6E9B911EFB6DA414CC4F9AE02/yl96MSHB9fmJUgx6UZcT-zpoyn4.mft Manifest number: 27 Signing time: Fri 25 Apr 2025 06:44:57 +0000 Manifest this update: Fri 25 Apr 2025 06:44:56 +0000 Manifest next update: Fri 02 May 2025 06:44:56 +0000 Files and hashes: 1: yl96MSHB9fmJUgx6UZcT-zpoyn4.crl (hash: Y9jRxEHEgkoupGFuI5qZm8yqIXaE+xUwIlUkmVE4K04=) 2: 09852FF6E9FC11EF9D3DE972C4F9AE02.roa (hash: LcUO14s0wegdTiNX+dgH1WWwhW/HYrgfbp8JINcrU+U=) 3: F70CBA98E9B911EFB5B54650C4F9AE02.roa (hash: FSLv08dRTBFk7OJGwtktmBOjNRJNtTBGwj1NskH7kyw=) 4: 0A34182CE9FC11EF9D3DE972C4F9AE02.roa (hash: mLH/qF33HuSxb2ZOhtlDD/C41cd08Ge05vK6Yy9o0+Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E1FC/5B325FA6E9B911EFB6DA414CC4F9AE02/yl96MSHB9fmJUgx6UZcT-zpoyn4.crl rsync://rpki.apnic.net/member_repository/A919E1FC/5B325FA6E9B911EFB6DA414CC4F9AE02/yl96MSHB9fmJUgx6UZcT-zpoyn4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yl96MSHB9fmJUgx6UZcT-zpoyn4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:44:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E1FC, serialNumber=CA5F7A3121C1F5F989520C7A519713FB3A68CA7E Validity Not Before: Apr 25 06:44:56 2025 GMT Not After : May 2 06:44:56 2025 GMT Subject: CN=680b2f68-e293 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:a3:f7:e1:bb:c3:20:52:49:7b:6d:fe:21:f0: 0b:87:a2:83:43:75:0d:a0:56:44:65:fb:30:72:bc: f0:d7:9c:2d:e7:d1:3a:49:3b:ee:4f:b0:6f:a8:bc: 53:74:74:96:74:ff:f7:64:7f:e8:dd:5b:28:cc:d6: c2:7d:ab:b1:9f:38:49:ac:32:e7:47:bd:40:e6:e8: 34:b2:1d:0a:29:e0:c6:9c:35:6e:de:ac:22:5c:29: d6:c7:1f:b9:79:63:db:8b:74:16:6d:af:a5:f5:01: 99:aa:03:af:58:c9:a7:84:fa:d1:d7:e1:3d:49:09: 1b:52:fd:ad:c6:21:ee:60:05:12:8e:2d:3d:4b:04: c4:5b:21:81:8f:23:59:24:e6:40:37:c0:a1:0d:43: 5d:c4:e6:cc:57:c3:31:00:90:0c:66:26:78:58:70: e1:ae:55:27:6a:7b:7b:89:58:27:d0:d1:c3:13:a6: 29:aa:4c:d3:b3:00:7d:ff:ae:41:09:f7:08:ba:22: fd:ae:47:2c:c6:07:ab:19:2b:23:aa:84:26:98:e3: 6e:df:e7:7a:ad:81:cf:85:2f:79:1a:30:00:7b:9c: 70:4d:eb:3e:67:7f:89:b6:06:31:cb:07:4f:8a:15: 1e:20:c4:25:0a:42:44:4a:d1:40:da:ce:9e:46:14: bb:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:96:A8:43:9D:35:50:54:34:A9:03:21:71:5F:1E:36:1A:B6:C9:9D X509v3 Authority Key Identifier: keyid:CA:5F:7A:31:21:C1:F5:F9:89:52:0C:7A:51:97:13:FB:3A:68:CA:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E1FC/5B325FA6E9B911EFB6DA414CC4F9AE02/yl96MSHB9fmJUgx6UZcT-zpoyn4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yl96MSHB9fmJUgx6UZcT-zpoyn4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E1FC/5B325FA6E9B911EFB6DA414CC4F9AE02/yl96MSHB9fmJUgx6UZcT-zpoyn4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:d9:a0:89:2d:95:6a:74:15:38:d2:c1:4c:65:1b:9b:e1:0a: f2:90:81:5d:29:73:8b:95:03:a2:05:17:7b:b4:e1:25:8b:0e: f1:5a:d0:bb:ea:a3:50:98:af:95:a5:ef:0f:61:cd:b2:7d:e2: 74:f7:42:bc:cf:c1:01:7c:8c:7a:02:a0:7a:e9:e3:2f:af:b6: 17:fb:3e:a1:9a:7c:2e:f4:a7:18:e0:b2:74:8f:25:0a:05:66: 20:24:51:8c:bb:b9:6d:1f:f2:1d:4a:ca:4c:40:07:c0:c6:59: e3:34:5c:67:57:ec:6a:8c:c4:47:7e:b9:20:0e:31:e4:1f:13: 3e:17:d5:5e:1f:cf:9f:4e:39:d6:2c:f5:24:a2:ad:74:94:17: e5:ff:59:13:3b:bd:97:8b:1e:8a:86:c5:20:2c:e2:0c:86:f2: 34:96:60:8d:10:a2:60:c7:eb:f8:fd:ec:d4:e0:e6:69:be:6d: 48:01:54:34:7c:e3:9b:49:ec:fa:a6:ef:62:a8:fc:27:12:1c: c5:fc:48:43:00:56:6d:e1:0f:52:df:da:5d:22:20:17:5c:f8: f2:0a:c0:34:9a:dd:85:6b:dc:48:c6:2e:7e:90:b5:32:ee:eb: 19:fd:0d:a9:e4:74:ec:02:1a:10:0f:21:6d:f9:1e:40:d8:b5: a2:e5:92:0d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RTFGQzExMC8GA1UEBRMoQ0E1RjdBMzEyMUMxRjVGOTg5NTIwQzdBNTE5NzEzRkIz QTY4Q0E3RTAeFw0yNTA0MjUwNjQ0NTZaFw0yNTA1MDIwNjQ0NTZaMBgxFjAUBgNV BAMTDTY4MGIyZjY4LWUyOTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDwo/fhu8MgUkl7bf4h8AuHooNDdQ2gVkRl+zByvPDXnC3n0TpJO+5PsG+ovFN0 dJZ0//dkf+jdWyjM1sJ9q7GfOEmsMudHvUDm6DSyHQop4MacNW7erCJcKdbHH7l5 Y9uLdBZtr6X1AZmqA69YyaeE+tHX4T1JCRtS/a3GIe5gBRKOLT1LBMRbIYGPI1kk 5kA3wKENQ13E5sxXwzEAkAxmJnhYcOGuVSdqe3uJWCfQ0cMTpimqTNOzAH3/rkEJ 9wi6Iv2uRyzGB6sZKyOqhCaY427f53qtgc+FL3kaMAB7nHBN6z5nf4m2BjHLB0+K FR4gxCUKQkRK0UDazp5GFLs7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU55aoQ501 UFQ0qQMhcV8eNhq2yZ0wHwYDVR0jBBgwFoAUyl96MSHB9fmJUgx6UZcT+zpoyn4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlFMUZDLzVCMzI1RkE2RTlC OTExRUZCNkRBNDE0Q0M0RjlBRTAyL3lsOTZNU0hCOWZtSlVneDZVWmNULXpwb3lu NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveWw5Nk1TSEI5Zm1KVWd4NlVaY1QtenBveW40LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlF MUZDLzVCMzI1RkE2RTlCOTExRUZCNkRBNDE0Q0M0RjlBRTAyL3lsOTZNU0hCOWZt SlVneDZVWmNULXpwb3luNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHHZoIktlWp0FTjSwUxlG5vhCvKQgV0pc4uVA6IFF3u04SWLDvFa0Lvq o1CYr5Wl7w9hzbJ94nT3QrzPwQF8jHoCoHrp4y+vthf7PqGafC70pxjgsnSPJQoF ZiAkUYy7uW0f8h1KykxAB8DGWeM0XGdX7GqMxEd+uSAOMeQfEz4X1V4fz59OOdYs 9SSirXSUF+X/WRM7vZeLHoqGxSAs4gyG8jSWYI0QomDH6/j97NTg5mm+bUgBVDR8 45tJ7Pqm72Ko/CcSHMX8SEMAVm3hD1Lf2l0iIBdc+PIKwDSa3YVr3EjGLn6QtTLu 6xn9DankdOwCGhAPIW35HkDYtaLlkg0= -----END CERTIFICATE-----Generated at Sat Apr 26 04:04:52 2025 by rpki-client