$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft File: yozvXh2MPaWsm67lsZbvBmCaOVk.mft (raw, json) Hash identifier: okIMSO1wgXtOY8BDbYcsveXgWC8bc2aaQexiIZbXKEQ= Subject key identifier: 22:B7:A6:AC:35:14:8F:FA:8D:52:E9:44:32:91:BC:FD:BA:70:BC:E2 Authority key identifier: CA:8C:EF:5E:1D:8C:3D:A5:AC:9B:AE:E5:B1:96:EF:06:60:9A:39:59 Certificate issuer: /CN=A911B5BA/serialNumber=CA8CEF5E1D8C3DA5AC9BAEE5B196EF06609A3959 Certificate serial: 0B0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yozvXh2MPaWsm67lsZbvBmCaOVk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft Manifest number: 0B09 Signing time: Fri 18 Apr 2025 19:19:32 +0000 Manifest this update: Fri 18 Apr 2025 19:19:32 +0000 Manifest next update: Fri 25 Apr 2025 19:19:32 +0000 Files and hashes: 1: yozvXh2MPaWsm67lsZbvBmCaOVk.crl (hash: X34ndOhqABMBpdUUSZDxrYx2QgD994FtN7IOWiBErCc=) 2: 410BAD2095F011EFA9137C67C4F9AE02.roa (hash: SNO/bBZDGGjsIOKkc1Q9a6n7NxtIrWP6e7L/IhWULh8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.crl rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yozvXh2MPaWsm67lsZbvBmCaOVk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Apr 2025 19:19:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2827 (0xb0b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5BA, serialNumber=CA8CEF5E1D8C3DA5AC9BAEE5B196EF06609A3959 Validity Not Before: Apr 18 19:19:32 2025 GMT Not After : Apr 25 19:19:32 2025 GMT Subject: CN=6802a5c4-95fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:03:59:4c:77:96:62:c1:5e:65:e1:4c:47:34: fe:1a:60:55:71:76:e0:c9:1c:12:2e:5d:dd:d1:9c: 60:ca:47:1d:7c:39:b4:e8:47:03:a2:5b:d8:ba:c3: 33:42:c7:64:36:26:69:4a:c9:be:62:6d:cf:b9:16: 18:26:71:2f:ed:e2:4a:e0:ac:b1:d1:70:f3:f7:1e: 2e:10:f6:92:8d:49:24:77:b4:fb:c1:ac:c7:5a:d7: 44:4a:82:07:57:be:9b:96:de:d5:49:b4:6e:07:56: a0:79:d8:5d:16:4a:88:18:e6:7a:13:d7:20:66:1f: 98:8c:e5:71:15:81:0a:7f:e1:1f:02:61:d1:6d:c2: 91:79:0b:0d:7e:e9:b8:e0:e7:6b:99:96:2c:c9:a3: ff:3b:54:83:26:e6:91:19:77:76:0a:e2:13:ef:16: 4c:5c:1c:4a:89:2e:b9:fe:a1:aa:de:1b:fe:72:b1: f8:eb:9f:c2:32:f9:be:05:21:8c:ef:d4:83:69:15: 67:05:57:32:52:cb:9f:0b:a8:48:57:05:c2:3b:fb: 23:10:4d:1d:1a:9c:48:4b:c7:ed:8e:07:e2:ec:b6: bb:6c:33:93:4a:9e:b9:dc:08:f7:63:bc:00:62:3c: 76:cb:d6:0d:e2:39:16:af:8a:02:0d:fa:10:77:33: af:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:B7:A6:AC:35:14:8F:FA:8D:52:E9:44:32:91:BC:FD:BA:70:BC:E2 X509v3 Authority Key Identifier: keyid:CA:8C:EF:5E:1D:8C:3D:A5:AC:9B:AE:E5:B1:96:EF:06:60:9A:39:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yozvXh2MPaWsm67lsZbvBmCaOVk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:1e:31:25:38:ca:39:0c:56:03:3e:22:6b:3f:a1:ef:0a:76: 55:ef:15:aa:e8:e5:e4:ab:81:45:95:ed:30:8b:56:2a:a4:ee: 51:b5:f6:d1:2d:54:f9:39:5e:83:5a:15:fe:96:6a:d6:07:51: d5:6e:af:19:d6:63:21:f6:80:13:38:b8:30:94:a8:8f:b5:71: c3:68:08:01:ae:22:c0:f8:0b:a3:3a:d6:fb:37:15:7d:12:8e: 5f:14:07:8c:65:10:c4:da:7b:6c:be:bb:e8:8a:25:72:bc:72: 36:f2:4a:42:da:fc:a7:31:cb:c5:8d:8b:ba:67:20:aa:79:09: 65:4e:f7:bc:21:98:55:1f:79:4f:b0:94:3c:86:30:57:7e:3e: 24:19:5a:54:c4:f4:5a:71:1f:ea:61:3c:a5:25:d7:f0:02:22: 43:f9:71:8a:df:53:62:c0:38:e9:ef:ed:65:fc:04:bd:d5:3d: c6:b3:6e:8d:51:ce:d2:82:e8:30:42:6d:21:ba:55:3e:1f:1d: 04:2c:66:9e:f5:5f:5d:ed:b3:78:0f:8f:d2:ff:4a:dc:83:2d: bb:ff:dd:11:c7:5c:ad:cd:64:d9:da:86:10:96:66:c0:a6:ee: 11:00:0e:95:b1:10:cd:00:2e:37:3e:9d:60:64:9c:cd:25:4c: 5c:72:c8:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1QkExMTAvBgNVBAUTKENBOENFRjVFMUQ4QzNEQTVBQzlCQUVFNUIxOTZFRjA2 NjA5QTM5NTkwHhcNMjUwNDE4MTkxOTMyWhcNMjUwNDI1MTkxOTMyWjAYMRYwFAYD VQQDEw02ODAyYTVjNC05NWZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7gNZTHeWYsFeZeFMRzT+GmBVcXbgyRwSLl3d0ZxgykcdfDm06EcDolvYusMz QsdkNiZpSsm+Ym3PuRYYJnEv7eJK4Kyx0XDz9x4uEPaSjUkkd7T7wazHWtdESoIH V76blt7VSbRuB1agedhdFkqIGOZ6E9cgZh+YjOVxFYEKf+EfAmHRbcKReQsNfum4 4OdrmZYsyaP/O1SDJuaRGXd2CuIT7xZMXBxKiS65/qGq3hv+crH465/CMvm+BSGM 79SDaRVnBVcyUsufC6hIVwXCO/sjEE0dGpxIS8ftjgfi7La7bDOTSp653Aj3Y7wA Yjx2y9YN4jkWr4oCDfoQdzOvjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCK3pqw1 FI/6jVLpRDKRvP26cLziMB8GA1UdIwQYMBaAFMqM714djD2lrJuu5bGW7wZgmjlZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVCQS85M0UyRkIwQzNE QTMxMUVBQTREQzNBNTlDNEY5QUUwMi95b3p2WGgyTVBhV3NtNjdsc1pidkJtQ2FP VmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lvenZYaDJNUGFXc202N2xzWmJ2Qm1DYU9Way5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjVCQS85M0UyRkIwQzNEQTMxMUVBQTREQzNBNTlDNEY5QUUwMi95b3p2WGgyTVBh V3NtNjdsc1pidkJtQ2FPVmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtHjElOMo5DFYDPiJrP6HvCnZV7xWq6OXkq4FFle0wi1YqpO5RtfbR LVT5OV6DWhX+lmrWB1HVbq8Z1mMh9oATOLgwlKiPtXHDaAgBriLA+AujOtb7NxV9 Eo5fFAeMZRDE2ntsvrvoiiVyvHI28kpC2vynMcvFjYu6ZyCqeQllTve8IZhVH3lP sJQ8hjBXfj4kGVpUxPRacR/qYTylJdfwAiJD+XGK31NiwDjp7+1l/AS91T3Gs26N Uc7SgugwQm0hulU+Hx0ELGae9V9d7bN4D4/S/0rcgy27/90Rx1ytzWTZ2oYQlmbA pu4RAA6VsRDNAC43Pp1gZJzNJUxccsgF -----END CERTIFICATE-----Generated at Sat Apr 19 05:57:05 2025 by rpki-client