$ rpki-client -vvf rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.mft File: 1y6SQ1zn27d4myQ4pI8hHEMcWAI.mft (raw, json) Hash identifier: +c3jH2CxVBLmVdyQBVMHP8RUj5LoUC/2FNnri9pBlGk= Subject key identifier: 6C:14:5D:62:B7:E0:AB:83:02:FC:F8:7F:86:4A:E4:11:F0:F9:BE:CD Authority key identifier: D7:2E:92:43:5C:E7:DB:B7:78:9B:24:38:A4:8F:21:1C:43:1C:58:02 Certificate issuer: /CN=A911F5B7/serialNumber=D72E92435CE7DBB7789B2438A48F211C431C5802 Certificate serial: 0160 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1y6SQ1zn27d4myQ4pI8hHEMcWAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.mft Manifest number: 0BFA Signing time: Fri 28 Mar 2025 19:44:29 +0000 Manifest this update: Fri 28 Mar 2025 19:44:28 +0000 Manifest next update: Fri 04 Apr 2025 19:44:28 +0000 Files and hashes: 1: 1y6SQ1zn27d4myQ4pI8hHEMcWAI.crl (hash: aC0AIuiqJwoCK/JS0hhr+NigcKDh+UeXPvAcJa/xXvg=) 2: 751E90665BAB11EFB9769A80C4F9AE02.roa (hash: pngEMElUQhJzXqzsiNvTLHbivykY5C0Rhd7ZreZTEyc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.crl rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1y6SQ1zn27d4myQ4pI8hHEMcWAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 19:44:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 352 (0x160) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F5B7 Validity Not Before: Mar 28 19:44:28 2025 GMT Not After : Apr 4 19:44:28 2025 GMT Subject: CN=67e6fc1d-1752 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:b5:0f:50:29:be:b1:a9:71:33:c7:22:1e:64: fc:f3:85:62:6d:d2:c3:16:a6:c0:1b:79:f1:e8:ab: 46:6e:83:2c:3e:5a:07:37:23:ad:9b:c4:fa:b2:9e: 6b:10:65:10:cb:73:ba:ce:3f:5f:f0:91:3a:f3:e0: 74:91:6b:9e:1f:4f:be:09:ef:48:42:a1:bd:87:ab: dc:63:6f:b4:ec:22:00:ad:d4:f5:c1:56:d2:a4:e7: 07:41:2c:40:6a:48:0e:ab:0a:f5:2b:5d:d2:47:02: 00:e3:96:2d:de:77:29:3c:b9:de:a5:36:3f:9b:1b: 3d:78:84:3e:5a:81:4e:7b:b0:56:cc:57:2d:f0:8d: 4c:54:0b:d7:a7:ed:cd:37:c7:aa:3f:2c:79:0a:32: 5a:00:2a:7a:27:ec:e0:9c:e1:1f:ef:a8:59:84:fd: ea:89:6b:0e:ae:cc:8d:47:4a:13:c0:82:6a:f9:1f: 78:b4:60:0e:dc:85:41:4f:a4:0f:e9:6f:e0:c6:1a: 43:54:99:ac:96:4c:ae:2c:e8:45:cd:5e:a1:bd:30: 3b:31:08:03:20:cd:ec:80:64:5f:87:cf:5d:e6:6f: 78:57:fe:7f:eb:0d:45:e3:2a:55:6f:a4:75:69:c6: c9:45:f8:c2:f8:4b:94:63:a6:0b:56:2c:22:10:ce: 71:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:14:5D:62:B7:E0:AB:83:02:FC:F8:7F:86:4A:E4:11:F0:F9:BE:CD X509v3 Authority Key Identifier: keyid:D7:2E:92:43:5C:E7:DB:B7:78:9B:24:38:A4:8F:21:1C:43:1C:58:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1y6SQ1zn27d4myQ4pI8hHEMcWAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:03:12:fe:b5:98:7a:4a:5a:fb:6b:93:61:8a:99:cf:8c:77: d0:fd:f3:06:50:d2:18:7f:af:48:48:46:ec:57:7f:43:1e:b3: 30:e4:7e:b5:42:04:9e:9d:3c:92:3e:24:16:03:67:09:ed:3e: bb:45:d5:75:c7:c7:d7:67:72:7a:32:2d:92:d4:ba:e5:0e:bd: 3f:10:c1:21:27:7e:c1:ec:da:17:87:88:a6:00:44:31:53:14: 60:96:ab:50:31:df:c7:2e:d0:47:15:6e:df:4e:29:39:3c:55: cb:21:e2:e0:60:da:7f:99:dc:5b:7a:b3:79:4d:38:8b:a8:b1: 1e:ba:05:54:5a:5b:21:a3:a5:db:98:be:48:f2:d0:a3:90:83: 8d:2e:2d:49:6d:9f:82:d8:24:3a:d4:ef:3c:71:d3:42:b2:58: 65:2a:19:16:38:d3:90:46:ef:57:43:0c:b4:cf:3a:92:41:68: f8:9b:d4:41:01:b5:7c:07:03:b9:0d:8f:d6:78:cf:fa:c6:cc: 05:c4:e2:c2:c2:0c:0d:2a:24:16:01:57:6a:d2:f9:2e:ed:f5: 1f:11:54:ab:8d:39:72:72:a6:46:11:4b:7c:c7:a8:4b:e0:c2: e6:c5:3e:5c:49:c4:b8:30:bc:e0:68:27:4d:f2:d3:a1:0b:57: 4f:dc:dd:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY1QjcxMTAvBgNVBAUTKEQ3MkU5MjQzNUNFN0RCQjc3ODlCMjQzOEE0OEYyMTFD NDMxQzU4MDIwHhcNMjUwMzI4MTk0NDI4WhcNMjUwNDA0MTk0NDI4WjAYMRYwFAYD VQQDEw02N2U2ZmMxZC0xNzUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA37UPUCm+salxM8ciHmT884VibdLDFqbAG3nx6KtGboMsPloHNyOtm8T6sp5r EGUQy3O6zj9f8JE68+B0kWueH0++Ce9IQqG9h6vcY2+07CIArdT1wVbSpOcHQSxA akgOqwr1K13SRwIA45Yt3ncpPLnepTY/mxs9eIQ+WoFOe7BWzFct8I1MVAvXp+3N N8eqPyx5CjJaACp6J+zgnOEf76hZhP3qiWsOrsyNR0oTwIJq+R94tGAO3IVBT6QP 6W/gxhpDVJmslkyuLOhFzV6hvTA7MQgDIM3sgGRfh89d5m94V/5/6w1F4ypVb6R1 acbJRfjC+EuUY6YLViwiEM5xqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGwUXWK3 4KuDAvz4f4ZK5BHw+b7NMB8GA1UdIwQYMBaAFNcukkNc59u3eJskOKSPIRxDHFgC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjVCNy83MUU3QTIyMjUx OTUxMUVBODQ2NEJBNzhDNEY5QUUwMi8xeTZTUTF6bjI3ZDRteVE0cEk4aEhFTWNX QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzF5NlNRMXpuMjdkNG15UTRwSThoSEVNY1dBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjVCNy83MUU3QTIyMjUxOTUxMUVBODQ2NEJBNzhDNEY5QUUwMi8xeTZTUTF6bjI3 ZDRteVE0cEk4aEhFTWNXQUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEAxL+tZh6Slr7a5NhipnPjHfQ/fMGUNIYf69ISEbsV39DHrMw5H61 QgSenTySPiQWA2cJ7T67RdV1x8fXZ3J6Mi2S1LrlDr0/EMEhJ37B7NoXh4imAEQx UxRglqtQMd/HLtBHFW7fTik5PFXLIeLgYNp/mdxberN5TTiLqLEeugVUWlsho6Xb mL5I8tCjkIONLi1JbZ+C2CQ61O88cdNCslhlKhkWONOQRu9XQwy0zzqSQWj4m9RB AbV8BwO5DY/WeM/6xswFxOLCwgwNKiQWAVdq0vku7fUfEVSrjTlycqZGEUt8x6hL 4MLmxT5cScS4MLzgaCdN8tOhC1dP3N3V -----END CERTIFICATE-----Generated at Fri Apr 4 18:29:10 2025 by rpki-client