$ rpki-client -vvf rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.mft File: yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.mft (raw, json) Hash identifier: ry0L7VTJTLNom4jlLb8fSOeUtBtpL+3oU0h8IysJluw= Subject key identifier: 98:0A:5D:BF:BA:77:41:B5:32:02:D9:02:A1:C0:7D:2A:B5:DF:FA:2B Authority key identifier: C8:24:34:74:25:BA:C8:AF:59:B4:E1:96:6B:C1:0D:BF:A8:BD:AB:82 Certificate issuer: /CN=A912B2EE/serialNumber=C824347425BAC8AF59B4E1966BC10DBFA8BDAB82 Certificate serial: 0F5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.mft Manifest number: 0F48 Signing time: Sun 06 Apr 2025 17:30:14 +0000 Manifest this update: Sun 06 Apr 2025 17:30:13 +0000 Manifest next update: Sun 13 Apr 2025 17:30:13 +0000 Files and hashes: 1: yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.crl (hash: Zk4z5IevoqLteQ60AfnACpTWjhfuSqpkFRgVtGr3bD0=) 2: 05449490E17B11EC93AB7473C4F9AE02.roa (hash: PcZWjC6UVwgJAg7JfBerYqiOjHVIHel2AtVeK/QvypU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.crl rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3932 (0xf5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B2EE Validity Not Before: Apr 6 17:30:13 2025 GMT Not After : Apr 13 17:30:13 2025 GMT Subject: CN=67f2ba26-60c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:5c:c0:c7:4d:16:b4:f3:28:e8:02:55:c5:b0: 6d:1a:de:d5:df:8b:ac:05:f9:0c:1f:14:88:de:53: c4:8b:ff:2b:70:a7:45:db:71:e0:b4:76:a9:a6:44: 3c:a2:3b:08:74:63:82:52:bf:7b:25:bf:92:e8:dc: 57:6b:0e:1a:f4:36:54:82:d2:4c:6d:a4:74:13:60: e2:88:00:60:72:41:6b:47:67:20:af:7c:02:63:eb: c0:52:d8:9a:80:67:5a:14:4f:69:9a:48:0d:19:89: 00:32:6b:1a:a6:ba:3a:bf:21:ab:cb:85:88:1c:e3: a0:31:2c:43:4b:68:ce:84:44:13:a4:33:f8:4c:67: bc:79:7f:d3:6a:e6:0e:b0:87:f0:ea:25:74:05:f0: 4b:09:c3:e3:d1:44:c2:e5:b1:71:11:27:d1:03:c6: 48:5e:81:da:de:38:75:f6:17:a4:24:00:22:b0:8c: 69:27:fd:5d:ea:6e:32:01:8d:af:9b:2c:09:c5:f0: 7e:e9:53:64:2b:9a:82:47:46:8d:ba:95:41:18:9f: 36:d5:dd:5e:29:c9:ad:37:bb:63:4a:17:ca:e4:ef: fe:1a:4d:50:bb:c1:5e:86:8b:31:43:75:c0:b2:92: 0c:62:c2:7c:08:28:77:ff:8c:e0:1d:53:f8:53:49: 9e:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:0A:5D:BF:BA:77:41:B5:32:02:D9:02:A1:C0:7D:2A:B5:DF:FA:2B X509v3 Authority Key Identifier: keyid:C8:24:34:74:25:BA:C8:AF:59:B4:E1:96:6B:C1:0D:BF:A8:BD:AB:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:c8:50:58:0a:0a:96:58:07:50:f7:5b:2c:96:13:14:1e:45: 0c:6f:c8:20:33:dd:7d:13:bf:25:0b:d3:ca:94:1b:f9:ba:98: f3:d4:af:aa:f0:cf:14:67:10:95:a7:f0:55:ab:bc:02:52:0c: 2f:bc:9c:6a:85:7c:78:81:7b:47:1f:f2:cd:c2:21:c4:77:3b: e6:56:30:67:7f:02:89:91:28:8a:65:ba:8b:74:e4:ef:90:c0: 23:2c:d6:01:55:1e:45:ae:fc:78:df:42:74:ab:8b:b0:69:94: 33:a5:42:e6:1a:08:2a:b6:11:23:7f:94:f6:f7:12:f4:52:d8: 3e:c6:6f:c8:68:5c:dd:de:05:af:72:55:f2:ef:41:53:48:84: a2:ce:e1:e8:2d:af:0a:dd:68:62:e1:f7:1e:07:a7:b3:5f:58: d5:87:4e:1c:7b:5f:f6:2c:d9:65:0f:8e:ac:3b:4e:b5:98:77: 22:b2:ea:fc:8f:9a:61:0f:85:49:72:11:38:5d:b8:28:51:ba: f2:06:08:a7:ca:19:47:d6:29:4d:0f:b3:d8:35:be:d0:c0:c6: 98:1b:78:16:cd:bd:4f:28:7e:99:ec:63:42:c7:4d:be:87:84: 1e:57:ff:18:0e:e4:a2:b5:8e:92:68:0b:e2:1d:4d:e4:34:89: 80:48:20:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD1wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkIyRUUxMTAvBgNVBAUTKEM4MjQzNDc0MjVCQUM4QUY1OUI0RTE5NjZCQzEwREJG QThCREFCODIwHhcNMjUwNDA2MTczMDEzWhcNMjUwNDEzMTczMDEzWjAYMRYwFAYD VQQDEw02N2YyYmEyNi02MGM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvVzAx00WtPMo6AJVxbBtGt7V34usBfkMHxSI3lPEi/8rcKdF23HgtHappkQ8 ojsIdGOCUr97Jb+S6NxXaw4a9DZUgtJMbaR0E2DiiABgckFrR2cgr3wCY+vAUtia gGdaFE9pmkgNGYkAMmsapro6vyGry4WIHOOgMSxDS2jOhEQTpDP4TGe8eX/TauYO sIfw6iV0BfBLCcPj0UTC5bFxESfRA8ZIXoHa3jh19hekJAAisIxpJ/1d6m4yAY2v mywJxfB+6VNkK5qCR0aNupVBGJ821d1eKcmtN7tjShfK5O/+Gk1Qu8FehosxQ3XA spIMYsJ8CCh3/4zgHVP4U0meewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJgKXb+6 d0G1MgLZAqHAfSq13/orMB8GA1UdIwQYMBaAFMgkNHQlusivWbThlmvBDb+ovauC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjJFRS8xRjQxMUY1ODZD MjExMUU5Qjc2RkE5MDlDNEY5QUUwMi95Q1EwZENXNnlLOVp0T0dXYThFTnY2aTlx NEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lDUTBkQ1c2eUs5WnRPR1dhOEVOdjZpOXE0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QjJFRS8xRjQxMUY1ODZDMjExMUU5Qjc2RkE5MDlDNEY5QUUwMi95Q1EwZENXNnlL OVp0T0dXYThFTnY2aTlxNEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvyFBYCgqWWAdQ91sslhMUHkUMb8ggM919E78lC9PKlBv5upjz1K+q 8M8UZxCVp/BVq7wCUgwvvJxqhXx4gXtHH/LNwiHEdzvmVjBnfwKJkSiKZbqLdOTv kMAjLNYBVR5Frvx430J0q4uwaZQzpULmGggqthEjf5T29xL0Utg+xm/IaFzd3gWv clXy70FTSISizuHoLa8K3Whi4fceB6ezX1jVh04ce1/2LNllD46sO061mHcisur8 j5phD4VJchE4XbgoUbryBginyhlH1ilND7PYNb7QwMaYG3gWzb1PKH6Z7GNCx02+ h4QeV/8YDuSitY6SaAviHU3kNImASCB0 -----END CERTIFICATE-----Generated at Sun Apr 6 19:42:49 2025 by rpki-client