$ rpki-client -vvf rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.mft File: yyTPMxKhYnFYzDraiI5bywxnzqE.mft (raw, json) Hash identifier: ViywqMafJ0D1CpkwB2l0TgR1OPfYyn6WBL9yY87Vh2E= Subject key identifier: CD:95:F8:8B:51:12:CB:74:A7:B9:14:46:E3:40:99:C7:86:D4:95:87 Authority key identifier: CB:24:CF:33:12:A1:62:71:58:CC:3A:DA:88:8E:5B:CB:0C:67:CE:A1 Certificate issuer: /CN=A9122342/serialNumber=CB24CF3312A1627158CC3ADA888E5BCB0C67CEA1 Certificate serial: 0975 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yyTPMxKhYnFYzDraiI5bywxnzqE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.mft Manifest number: 096E Signing time: Sun 20 Apr 2025 19:55:15 +0000 Manifest this update: Sun 20 Apr 2025 19:55:15 +0000 Manifest next update: Sun 27 Apr 2025 19:55:15 +0000 Files and hashes: 1: yyTPMxKhYnFYzDraiI5bywxnzqE.crl (hash: OncPer6KAVC9w/zj+6RdE5VyDss5jMqvrnxUb1wegKc=) 2: 4D23A77E8E8F11EAB30DCA1AC4F9AE02.roa (hash: lg62QlYMqjfdPrlhdfFEapPKxJAEOZfWw6bA0op19ko=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.crl rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yyTPMxKhYnFYzDraiI5bywxnzqE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 19:55:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2421 (0x975) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122342, serialNumber=CB24CF3312A1627158CC3ADA888E5BCB0C67CEA1 Validity Not Before: Apr 20 19:55:15 2025 GMT Not After : Apr 27 19:55:15 2025 GMT Subject: CN=68055123-b3ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:84:3b:96:9e:db:43:b0:46:a7:66:38:02:cd: 93:a6:c7:ee:b7:e8:df:48:d0:c8:1d:ac:1b:00:38: cd:cd:b4:8b:c2:8a:3c:a4:88:c6:0f:24:db:76:b4: cb:1d:d2:1d:cd:0a:bc:62:17:9a:8a:e4:ae:d5:ce: eb:bf:37:eb:9d:0a:ea:49:4a:c2:2e:1e:80:0e:4a: c2:e9:d2:c3:5f:52:fa:d2:18:d7:c1:39:84:7b:d8: b4:f4:6d:c8:76:5c:87:d0:43:5f:73:56:28:38:dc: 1d:ea:4e:b4:bd:74:f4:7e:cd:89:d0:fb:27:84:ea: ef:b4:7e:26:aa:dd:70:c6:5c:29:d2:d7:64:86:b2: 55:80:34:c4:3f:3b:61:3d:9f:f5:ae:7a:29:69:6e: 4b:ad:db:1f:a4:17:5d:5c:52:52:40:f5:f2:b6:08: 5f:95:22:30:70:67:96:e7:64:13:55:da:81:d1:63: f6:1a:93:ed:16:6b:3e:69:4f:21:da:8d:f8:0d:15: ab:12:ec:d0:2d:8e:30:7e:a0:88:29:f4:2b:b8:00: b2:cd:4d:5a:0d:e7:3a:07:66:0c:6f:70:d1:41:5f: e8:28:f9:22:bd:a4:16:b8:db:8c:6c:10:0d:09:fc: 1c:5f:91:e7:c4:28:87:97:a2:ef:f6:46:24:22:dc: e9:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:95:F8:8B:51:12:CB:74:A7:B9:14:46:E3:40:99:C7:86:D4:95:87 X509v3 Authority Key Identifier: keyid:CB:24:CF:33:12:A1:62:71:58:CC:3A:DA:88:8E:5B:CB:0C:67:CE:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yyTPMxKhYnFYzDraiI5bywxnzqE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:83:fa:96:95:e2:53:d6:11:fc:44:2d:3c:95:a6:b0:71:6d: 69:dd:d5:6f:a5:7a:19:e5:d9:e9:c5:ca:66:83:55:7b:24:3f: b4:cc:66:a8:da:0c:75:12:f3:2f:a1:9f:27:e2:c2:ae:f4:81: b4:ee:d4:ef:72:9a:9a:f1:ff:70:69:0d:b5:f7:a9:bc:5a:7b: e9:f7:4f:06:06:62:24:41:80:78:2a:bf:45:0b:11:ae:cc:41: 25:60:b1:bb:59:e0:89:ff:01:c4:57:44:de:0b:57:d3:c5:d3: d5:8e:15:3d:b6:89:f6:fb:3d:15:14:80:2a:34:d2:2a:bd:d1: 47:fc:c5:ca:fc:53:90:29:54:7a:0e:b0:3b:f6:1b:44:5a:bc: c1:32:66:0e:75:ed:40:3e:62:3a:6d:b2:ff:29:29:0e:cd:f3: bd:b2:9d:89:c7:b2:c6:c0:53:dd:af:df:90:72:11:43:19:b6: 0b:62:84:d7:69:8f:30:4c:22:7e:ad:7b:23:36:05:1b:a1:03: d8:f1:eb:6d:4e:77:77:28:36:9d:38:c5:a4:3d:15:8e:b4:9e: 11:41:62:b3:8f:e1:50:53:d9:42:16:77:5c:40:13:dc:d0:0a: ef:75:49:2a:18:1b:c3:7d:79:7f:7e:ff:67:b3:84:49:72:b6: 06:ac:48:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCXUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjIzNDIxMTAvBgNVBAUTKENCMjRDRjMzMTJBMTYyNzE1OENDM0FEQTg4OEU1QkNC MEM2N0NFQTEwHhcNMjUwNDIwMTk1NTE1WhcNMjUwNDI3MTk1NTE1WjAYMRYwFAYD VQQDEw02ODA1NTEyMy1iM2NhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzYQ7lp7bQ7BGp2Y4As2Tpsfut+jfSNDIHawbADjNzbSLwoo8pIjGDyTbdrTL HdIdzQq8YheaiuSu1c7rvzfrnQrqSUrCLh6ADkrC6dLDX1L60hjXwTmEe9i09G3I dlyH0ENfc1YoONwd6k60vXT0fs2J0PsnhOrvtH4mqt1wxlwp0tdkhrJVgDTEPzth PZ/1rnopaW5LrdsfpBddXFJSQPXytghflSIwcGeW52QTVdqB0WP2GpPtFms+aU8h 2o34DRWrEuzQLY4wfqCIKfQruACyzU1aDec6B2YMb3DRQV/oKPkivaQWuNuMbBAN CfwcX5HnxCiHl6Lv9kYkItzpFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM2V+ItR Est0p7kURuNAmceG1JWHMB8GA1UdIwQYMBaAFMskzzMSoWJxWMw62oiOW8sMZ86h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjM0Mi8wQjQxMDBDMDhF OEMxMUVBQkQzNDU4MTFDNEY5QUUwMi95eVRQTXhLaFluRll6RHJhaUk1Ynl3eG56 cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3l5VFBNeEtoWW5GWXpEcmFpSTVieXd4bnpxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjM0Mi8wQjQxMDBDMDhFOEMxMUVBQkQzNDU4MTFDNEY5QUUwMi95eVRQTXhLaFlu Rll6RHJhaUk1Ynl3eG56cUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/g/qWleJT1hH8RC08laawcW1p3dVvpXoZ5dnpxcpmg1V7JD+0zGao 2gx1EvMvoZ8n4sKu9IG07tTvcpqa8f9waQ2196m8Wnvp908GBmIkQYB4Kr9FCxGu zEElYLG7WeCJ/wHEV0TeC1fTxdPVjhU9ton2+z0VFIAqNNIqvdFH/MXK/FOQKVR6 DrA79htEWrzBMmYOde1APmI6bbL/KSkOzfO9sp2Jx7LGwFPdr9+QchFDGbYLYoTX aY8wTCJ+rXsjNgUboQPY8ettTnd3KDadOMWkPRWOtJ4RQWKzj+FQU9lCFndcQBPc 0ArvdUkqGBvDfXl/fv9ns4RJcrYGrEjz -----END CERTIFICATE-----Generated at Tue Apr 22 14:37:26 2025 by rpki-client