$ rpki-client -vvf rpki.apnic.net/member_repository/A9112B24/8A16FF725BA011EF9F2F2361C4F9AE02/ymSxcxGVIJPNTWDarxe2rKD3pRY.mft File: ymSxcxGVIJPNTWDarxe2rKD3pRY.mft (raw, json) Hash identifier: 1n6gE1BHr8HYu6v8A4xdoxPaxxXnaXSo9Z03cdH7ROA= Subject key identifier: 7D:3B:55:A2:56:D7:AF:1B:CB:39:32:08:30:5D:7E:EC:AA:56:AE:5D Authority key identifier: CA:64:B1:73:11:95:20:93:CD:4D:60:DA:AF:17:B6:AC:A0:F7:A5:16 Certificate issuer: /CN=A9112B24/serialNumber=CA64B17311952093CD4D60DAAF17B6ACA0F7A516 Certificate serial: 79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymSxcxGVIJPNTWDarxe2rKD3pRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112B24/8A16FF725BA011EF9F2F2361C4F9AE02/ymSxcxGVIJPNTWDarxe2rKD3pRY.mft Manifest number: 78 Signing time: Thu 03 Apr 2025 05:59:31 +0000 Manifest this update: Thu 03 Apr 2025 05:59:31 +0000 Manifest next update: Thu 10 Apr 2025 05:59:31 +0000 Files and hashes: 1: ymSxcxGVIJPNTWDarxe2rKD3pRY.crl (hash: a55bOR6SuEVI9AtM/Ns55fnkeqQZkzMwkeVfh9vPiNk=) 2: C384F0025BA011EFB7E79861C4F9AE02.roa (hash: HB8QMXYnImTcdy2zBeTOvUb91weeMYAQqjoTwrsvfrA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112B24/8A16FF725BA011EF9F2F2361C4F9AE02/ymSxcxGVIJPNTWDarxe2rKD3pRY.crl rsync://rpki.apnic.net/member_repository/A9112B24/8A16FF725BA011EF9F2F2361C4F9AE02/ymSxcxGVIJPNTWDarxe2rKD3pRY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymSxcxGVIJPNTWDarxe2rKD3pRY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 05:59:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 121 (0x79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112B24 Validity Not Before: Apr 3 05:59:31 2025 GMT Not After : Apr 10 05:59:31 2025 GMT Subject: CN=67ee23c3-a168 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:8f:bb:ba:67:0a:57:b8:32:17:7c:2d:96:2f: ec:fa:c9:ed:93:b5:61:56:36:74:9a:a2:a7:5a:65: ae:00:7c:00:48:2b:4a:bf:ea:de:db:62:36:76:3e: 55:6e:fc:ec:3b:39:60:af:dd:46:a4:a2:71:29:1d: f0:98:82:40:56:c6:a0:f9:57:7a:86:4b:23:c9:ec: b2:04:83:65:be:d7:f7:db:f6:db:99:ce:70:1f:9d: 12:f8:18:c2:6f:7d:21:35:25:21:77:aa:c5:1d:3c: df:24:93:ac:61:ea:8a:d9:59:6f:8f:7d:0a:d0:3f: 1f:54:44:f9:92:e4:17:6a:f9:aa:5c:86:4e:22:f5: f6:7c:e5:0f:e0:92:73:13:fc:c6:48:70:95:4c:7c: ea:c0:be:26:ee:b1:14:2f:ab:17:42:f0:c2:27:98: 83:a6:2d:14:fd:1b:77:29:44:aa:9b:1b:83:af:27: ee:e7:3f:83:f2:da:43:f3:fc:95:ac:0c:e1:5f:dc: 5c:ea:ad:22:ef:76:a3:53:14:55:00:da:fa:d1:24: 4d:51:24:cf:5f:1c:63:59:b6:67:dd:bc:99:ae:c1: 3d:9f:b8:29:3c:f5:31:eb:38:a7:7f:1b:0c:2a:43: 02:07:53:48:22:53:4e:7d:bb:3e:b3:67:00:12:d5: 3e:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:3B:55:A2:56:D7:AF:1B:CB:39:32:08:30:5D:7E:EC:AA:56:AE:5D X509v3 Authority Key Identifier: keyid:CA:64:B1:73:11:95:20:93:CD:4D:60:DA:AF:17:B6:AC:A0:F7:A5:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112B24/8A16FF725BA011EF9F2F2361C4F9AE02/ymSxcxGVIJPNTWDarxe2rKD3pRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymSxcxGVIJPNTWDarxe2rKD3pRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112B24/8A16FF725BA011EF9F2F2361C4F9AE02/ymSxcxGVIJPNTWDarxe2rKD3pRY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:9a:f3:ac:70:a1:bb:89:86:1b:18:68:d9:73:6f:40:9c:8f: e2:b0:7b:de:7c:7c:fd:fb:a2:5f:37:4c:24:29:a8:0d:02:95: 0d:83:52:74:48:4b:e3:14:7f:3c:4b:ce:3f:43:ac:67:5c:18: c1:7f:94:ec:43:94:f9:cb:4b:8c:68:a5:4b:bc:d7:9b:97:ca: ac:ab:d5:d2:3d:98:04:51:2b:01:e5:2f:ab:be:33:b8:f1:a8: 19:1f:a9:37:e0:c6:f1:f0:2d:88:fe:2b:56:3b:d8:16:7b:de: 68:b8:a9:61:38:68:e2:fb:e4:89:66:c9:65:50:4f:24:11:bc: 3e:27:6e:e6:02:30:ed:5b:9d:34:9f:fd:ea:e8:44:34:66:42: a9:a9:54:44:1b:f8:49:fa:ba:8a:e4:08:9b:d2:18:1c:ec:b2: 2a:0a:c1:1e:b8:1a:f9:24:d7:cb:96:e4:a2:9e:b4:49:9d:f8: b2:08:46:61:ab:73:68:12:70:3e:8c:b5:00:82:60:81:36:6c: 4e:bb:ad:1e:25:be:30:63:5d:3a:83:4c:43:fa:e7:80:1a:f1: 71:0a:05:98:b6:26:b9:ac:1b:06:a0:3a:97:87:48:df:7b:d7: f6:60:c6:0b:b3:16:56:fb:10:34:c2:4d:4b:13:05:4a:9b:9b: 74:3c:55:56 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx MkIyNDExMC8GA1UEBRMoQ0E2NEIxNzMxMTk1MjA5M0NENEQ2MERBQUYxN0I2QUNB MEY3QTUxNjAeFw0yNTA0MDMwNTU5MzFaFw0yNTA0MTAwNTU5MzFaMBgxFjAUBgNV BAMTDTY3ZWUyM2MzLWExNjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD1j7u6ZwpXuDIXfC2WL+z6ye2TtWFWNnSaoqdaZa4AfABIK0q/6t7bYjZ2PlVu /Ow7OWCv3UakonEpHfCYgkBWxqD5V3qGSyPJ7LIEg2W+1/fb9tuZznAfnRL4GMJv fSE1JSF3qsUdPN8kk6xh6orZWW+PfQrQPx9URPmS5Bdq+apchk4i9fZ85Q/gknMT /MZIcJVMfOrAvibusRQvqxdC8MInmIOmLRT9G3cpRKqbG4OvJ+7nP4Py2kPz/JWs DOFf3FzqrSLvdqNTFFUA2vrRJE1RJM9fHGNZtmfdvJmuwT2fuCk89THrOKd/Gwwq QwIHU0giU059uz6zZwAS1T7fAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUfTtVolbX rxvLOTIIMF1+7KpWrl0wHwYDVR0jBBgwFoAUymSxcxGVIJPNTWDarxe2rKD3pRYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEyQjI0LzhBMTZGRjcyNUJB MDExRUY5RjJGMjM2MUM0RjlBRTAyL3ltU3hjeEdWSUpQTlRXRGFyeGUycktEM3BS WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveW1TeGN4R1ZJSlBOVFdEYXJ4ZTJyS0QzcFJZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEy QjI0LzhBMTZGRjcyNUJBMDExRUY5RjJGMjM2MUM0RjlBRTAyL3ltU3hjeEdWSUpQ TlRXRGFyeGUycktEM3BSWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACua86xwobuJhhsYaNlzb0Ccj+Kwe958fP37ol83TCQpqA0ClQ2DUnRI S+MUfzxLzj9DrGdcGMF/lOxDlPnLS4xopUu815uXyqyr1dI9mARRKwHlL6u+M7jx qBkfqTfgxvHwLYj+K1Y72BZ73mi4qWE4aOL75IlmyWVQTyQRvD4nbuYCMO1bnTSf /eroRDRmQqmpVEQb+En6uorkCJvSGBzssioKwR64Gvkk18uW5KKetEmd+LIIRmGr c2gScD6MtQCCYIE2bE67rR4lvjBjXTqDTEP654Aa8XEKBZi2JrmsGwagOpeHSN97 1/ZgxguzFlb7EDTCTUsTBUqbm3Q8VVY= -----END CERTIFICATE-----Generated at Fri Apr 4 21:55:40 2025 by rpki-client