$ rpki-client -vvf rpki.apnic.net/member_repository/A9118689/515ECB32C4A711EE875D082CC4F9AE02/Y_wvXeCUyDltyLyXRO1oL_SyOIE.mft File: Y_wvXeCUyDltyLyXRO1oL_SyOIE.mft (raw, json) Hash identifier: VHZCu0vE1nDQ5GbpUQDXIL7VMIIsU2EbKQwZtYcKBIE= Subject key identifier: 76:F1:2C:35:14:10:08:2D:37:D0:1C:42:31:6E:7A:A0:7F:82:3F:BE Authority key identifier: 63:FC:2F:5D:E0:94:C8:39:6D:C8:BC:97:44:ED:68:2F:F4:B2:38:81 Certificate issuer: /CN=A9118689/serialNumber=63FC2F5DE094C8396DC8BC9744ED682FF4B23881 Certificate serial: E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y_wvXeCUyDltyLyXRO1oL_SyOIE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118689/515ECB32C4A711EE875D082CC4F9AE02/Y_wvXeCUyDltyLyXRO1oL_SyOIE.mft Manifest number: E1 Signing time: Tue 15 Apr 2025 04:21:16 +0000 Manifest this update: Tue 15 Apr 2025 04:21:15 +0000 Manifest next update: Tue 22 Apr 2025 04:21:15 +0000 Files and hashes: 1: Y_wvXeCUyDltyLyXRO1oL_SyOIE.crl (hash: KPxdGB+mig/SyNHSIVfBEAd9QyQq7GIuQuG2JCcTuqY=) 2: D1D880A6C4FB11EEA30ECF34C4F9AE02.roa (hash: HaM1uGW7CpLpf57Ix2SDrMkVRudstrm9oD5WtSudmS8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118689/515ECB32C4A711EE875D082CC4F9AE02/Y_wvXeCUyDltyLyXRO1oL_SyOIE.crl rsync://rpki.apnic.net/member_repository/A9118689/515ECB32C4A711EE875D082CC4F9AE02/Y_wvXeCUyDltyLyXRO1oL_SyOIE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y_wvXeCUyDltyLyXRO1oL_SyOIE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Apr 2025 04:21:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 227 (0xe3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118689, serialNumber=63FC2F5DE094C8396DC8BC9744ED682FF4B23881 Validity Not Before: Apr 15 04:21:15 2025 GMT Not After : Apr 22 04:21:15 2025 GMT Subject: CN=67fddebb-9d76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:1a:22:25:b5:ed:33:f0:e2:a8:42:58:f8:95: 66:43:16:33:cb:2e:7c:e4:d1:54:05:0e:e9:be:09: e1:86:ad:55:95:21:92:2f:5d:a2:64:1e:4e:e2:e6: 5e:95:77:28:db:c3:a7:be:a1:24:b1:6f:7a:ad:78: a9:a0:6b:71:2e:e4:55:28:44:1c:20:26:fd:2c:a5: 61:2e:d5:16:4f:62:ef:04:36:17:c2:f5:30:0f:c3: 8d:16:b6:7a:9c:44:b5:24:c7:e2:90:55:80:60:48: 3a:f9:bc:72:84:39:f4:66:e0:1d:93:6c:70:27:f2: c4:dd:07:04:75:ee:50:fe:bc:ba:1c:c8:ac:a6:b1: 3f:21:2a:40:71:68:1c:20:aa:88:ab:9a:45:c8:8e: 94:4c:8b:9c:55:df:39:ff:53:cf:4d:8d:b1:4e:1a: 20:32:43:7a:85:15:93:ec:83:37:3a:a7:cf:91:ac: 24:03:08:96:67:90:cd:79:ff:81:66:ce:82:e5:e3: d9:03:e4:a9:68:56:ca:77:9c:0b:97:9e:38:f8:23: 7e:90:48:d8:61:9d:ff:0e:ec:3f:2e:c7:49:d2:d6: 8c:0c:43:bd:16:0d:f6:3a:2b:e0:eb:ef:2a:4d:9a: 64:5f:7d:f9:bb:77:17:9f:01:9c:77:0b:07:fe:ba: c6:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:F1:2C:35:14:10:08:2D:37:D0:1C:42:31:6E:7A:A0:7F:82:3F:BE X509v3 Authority Key Identifier: keyid:63:FC:2F:5D:E0:94:C8:39:6D:C8:BC:97:44:ED:68:2F:F4:B2:38:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118689/515ECB32C4A711EE875D082CC4F9AE02/Y_wvXeCUyDltyLyXRO1oL_SyOIE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y_wvXeCUyDltyLyXRO1oL_SyOIE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118689/515ECB32C4A711EE875D082CC4F9AE02/Y_wvXeCUyDltyLyXRO1oL_SyOIE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:d1:05:e5:01:70:35:95:8f:70:b0:7f:90:8c:d8:6c:51:ca: b1:6c:24:af:30:eb:54:af:7f:d6:c7:81:02:56:fa:b7:d2:63: 11:46:a6:b9:ab:ca:c3:16:cd:2e:d9:f9:28:b5:72:67:b4:68: ed:cf:4b:35:f1:74:14:ce:a2:6c:e4:f0:ba:43:1c:21:0d:6f: f1:b6:a2:14:d7:d9:2f:37:72:0c:64:91:7a:32:32:1c:66:91: 91:72:1e:72:36:9a:f3:f6:2a:26:3e:d1:20:ba:2a:44:ac:71: 44:36:60:3c:ba:85:0f:78:d0:a3:71:d9:a1:da:25:10:32:23: 49:f3:ed:ca:04:40:7d:d3:4e:a6:c1:96:ff:11:62:29:2c:27: b3:0f:51:49:d2:b9:83:9c:d7:f1:15:1f:ad:d2:72:c9:97:6c: fc:4c:ab:a4:f4:ae:88:f1:91:65:b6:db:1e:ca:5a:66:c5:ff: fe:43:4d:92:39:1b:3d:4c:81:5d:1b:40:4c:42:7f:0c:0c:49: 81:8c:94:96:dd:b0:7f:ae:61:1d:18:8d:f3:a5:1c:46:8c:1d: db:fb:c3:8d:5c:e0:e4:bf:ac:44:70:31:a7:08:e0:c0:c5:a2: 4e:0f:d4:83:99:a3:49:4d:33:6a:ed:a0:dc:bd:e5:76:6d:8a: e0:6a:5e:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg2ODkxMTAvBgNVBAUTKDYzRkMyRjVERTA5NEM4Mzk2REM4QkM5NzQ0RUQ2ODJG RjRCMjM4ODEwHhcNMjUwNDE1MDQyMTE1WhcNMjUwNDIyMDQyMTE1WjAYMRYwFAYD VQQDEw02N2ZkZGViYi05ZDc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyBoiJbXtM/DiqEJY+JVmQxYzyy585NFUBQ7pvgnhhq1VlSGSL12iZB5O4uZe lXco28OnvqEksW96rXipoGtxLuRVKEQcICb9LKVhLtUWT2LvBDYXwvUwD8ONFrZ6 nES1JMfikFWAYEg6+bxyhDn0ZuAdk2xwJ/LE3QcEde5Q/ry6HMisprE/ISpAcWgc IKqIq5pFyI6UTIucVd85/1PPTY2xThogMkN6hRWT7IM3OqfPkawkAwiWZ5DNef+B Zs6C5ePZA+SpaFbKd5wLl544+CN+kEjYYZ3/Duw/LsdJ0taMDEO9Fg32Oivg6+8q TZpkX335u3cXnwGcdwsH/rrGEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHbxLDUU EAgtN9AcQjFueqB/gj++MB8GA1UdIwQYMBaAFGP8L13glMg5bci8l0TtaC/0sjiB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODY4OS81MTVFQ0IzMkM0 QTcxMUVFODc1RDA4MkNDNEY5QUUwMi9ZX3d2WGVDVXlEbHR5THlYUk8xb0xfU3lP SUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lfd3ZYZUNVeURsdHlMeVhSTzFvTF9TeU9JRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODY4OS81MTVFQ0IzMkM0QTcxMUVFODc1RDA4MkNDNEY5QUUwMi9ZX3d2WGVDVXlE bHR5THlYUk8xb0xfU3lPSUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBl0QXlAXA1lY9wsH+QjNhsUcqxbCSvMOtUr3/Wx4ECVvq30mMRRqa5 q8rDFs0u2fkotXJntGjtz0s18XQUzqJs5PC6QxwhDW/xtqIU19kvN3IMZJF6MjIc ZpGRch5yNprz9iomPtEguipErHFENmA8uoUPeNCjcdmh2iUQMiNJ8+3KBEB9006m wZb/EWIpLCezD1FJ0rmDnNfxFR+t0nLJl2z8TKuk9K6I8ZFlttseylpmxf/+Q02S ORs9TIFdG0BMQn8MDEmBjJSW3bB/rmEdGI3zpRxGjB3b+8ONXODkv6xEcDGnCODA xaJOD9SDmaNJTTNq7aDcveV2bYrgal5i -----END CERTIFICATE-----Generated at Wed Apr 16 22:21:43 2025 by rpki-client