$ rpki-client -vvf rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.mft File: yQm9soTk3whHdmDWgrfLP1lIMeM.mft (raw, json) Hash identifier: dk6Mz4H25aymTgkPf+NFe4OxPHuuMZWMFkwvMpm8oJ4= Subject key identifier: 55:28:3C:AF:E1:CE:09:B9:DA:60:1C:3C:00:D3:47:AF:F0:27:E0:08 Authority key identifier: C9:09:BD:B2:84:E4:DF:08:47:76:60:D6:82:B7:CB:3F:59:48:31:E3 Certificate issuer: /CN=A912BD25/serialNumber=C909BDB284E4DF08477660D682B7CB3F594831E3 Certificate serial: 0BE1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yQm9soTk3whHdmDWgrfLP1lIMeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.mft Manifest number: 0BD8 Signing time: Fri 04 Apr 2025 18:55:06 +0000 Manifest this update: Fri 04 Apr 2025 18:55:06 +0000 Manifest next update: Fri 11 Apr 2025 18:55:06 +0000 Files and hashes: 1: yQm9soTk3whHdmDWgrfLP1lIMeM.crl (hash: 34KKRXtepQNcrBRIzJ93tsR8YvsTOat/wRg185NHj7Q=) 2: CF3378E272DB11ED8483E95DC4F9AE02.roa (hash: 7P+2TWLqfeVNyGM33Rg8heOwqWfXOoMC0kS7Ev1IOzE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.crl rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yQm9soTk3whHdmDWgrfLP1lIMeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:55:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3041 (0xbe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BD25 Validity Not Before: Apr 4 18:55:06 2025 GMT Not After : Apr 11 18:55:06 2025 GMT Subject: CN=67f02b0a-cc81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:cc:2e:b0:28:f7:e4:ee:b3:3d:c6:9f:bc:c0: cb:8d:21:8b:80:46:bc:a7:5a:a4:00:28:7a:92:db: 44:04:46:4c:6f:72:a3:30:a5:57:63:c1:f7:3f:60: dc:ca:48:d1:05:20:4c:56:d4:a7:ce:8b:02:1e:32: ed:72:44:90:28:ae:71:83:4c:1c:39:12:a4:c2:a9: 40:a0:92:14:b5:e3:a1:23:c9:46:c4:9d:f8:b0:f3: 53:31:d0:9a:02:a4:ba:79:83:38:91:cc:dd:71:c4: 4b:2f:cb:f7:2a:ac:8f:10:2e:18:fd:c0:7a:68:cf: d8:42:d3:c0:cb:f3:e0:63:81:30:10:c5:61:96:8f: c8:58:e2:00:02:ff:27:11:f9:b0:8a:24:cd:f1:3a: 19:60:f3:da:5b:43:6c:1d:be:89:ef:93:58:33:96: e9:f7:1c:72:18:b5:f8:1a:e2:ce:0d:5b:c4:05:91: 65:71:14:40:a1:41:31:51:3f:db:f0:7a:51:36:f8: 1f:63:d5:f5:5c:8f:07:85:2d:09:00:ce:c7:fd:a0: 09:c3:9b:26:ee:93:8a:8a:89:c4:1a:7b:14:11:3d: 98:32:fd:f6:73:2b:41:4a:90:9a:82:7a:33:cf:f1: 1f:f8:cd:34:10:d6:61:7a:e1:29:a6:f2:68:47:de: ae:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:28:3C:AF:E1:CE:09:B9:DA:60:1C:3C:00:D3:47:AF:F0:27:E0:08 X509v3 Authority Key Identifier: keyid:C9:09:BD:B2:84:E4:DF:08:47:76:60:D6:82:B7:CB:3F:59:48:31:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yQm9soTk3whHdmDWgrfLP1lIMeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:5a:8d:05:b2:09:2b:2b:b8:0e:3f:e4:9e:49:da:6c:cb:35: f0:ba:71:a6:56:e8:5e:90:37:3f:9b:a7:16:cf:6d:2a:aa:bf: d5:45:87:5f:2f:4e:26:e0:14:01:1a:a9:fb:a8:05:97:fc:65: ed:e4:03:ae:7e:a7:f3:d2:e5:e5:69:a8:88:48:3d:97:de:87: b2:10:1e:aa:ee:a4:35:1b:3f:6a:db:8a:fa:bf:05:d8:ce:28: 89:bb:58:1c:03:b9:9c:84:50:df:ec:6c:d6:e2:4a:ca:52:70: 9d:1c:bb:de:dc:e4:83:3d:e5:ea:c5:9f:e4:19:85:f8:76:b0: 8f:a1:20:d5:48:b9:0f:7f:6c:76:7c:99:c8:6f:ff:fb:5e:31: 48:43:68:13:20:d5:35:c5:14:94:bc:52:95:09:ee:c3:29:e9: ec:ac:61:d5:24:53:65:50:c2:97:b5:be:16:7e:b2:bc:9b:d6: c1:7e:80:ec:ae:06:e1:55:71:f1:9b:54:53:0a:d6:04:ca:10: 2e:59:c7:77:91:4e:52:79:ef:00:64:46:37:23:1f:54:cb:5b: cd:68:f8:0d:c0:b5:45:26:a4:41:d4:d1:71:c4:52:9d:f4:59: 3d:3c:a2:e2:17:15:e9:df:7a:63:5a:07:52:e6:b6:ff:83:1a: df:31:61:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJEMjUxMTAvBgNVBAUTKEM5MDlCREIyODRFNERGMDg0Nzc2NjBENjgyQjdDQjNG NTk0ODMxRTMwHhcNMjUwNDA0MTg1NTA2WhcNMjUwNDExMTg1NTA2WjAYMRYwFAYD VQQDEw02N2YwMmIwYS1jYzgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5MwusCj35O6zPcafvMDLjSGLgEa8p1qkACh6kttEBEZMb3KjMKVXY8H3P2Dc ykjRBSBMVtSnzosCHjLtckSQKK5xg0wcORKkwqlAoJIUteOhI8lGxJ34sPNTMdCa AqS6eYM4kczdccRLL8v3KqyPEC4Y/cB6aM/YQtPAy/PgY4EwEMVhlo/IWOIAAv8n EfmwiiTN8ToZYPPaW0NsHb6J75NYM5bp9xxyGLX4GuLODVvEBZFlcRRAoUExUT/b 8HpRNvgfY9X1XI8HhS0JAM7H/aAJw5sm7pOKionEGnsUET2YMv32cytBSpCagnoz z/Ef+M00ENZheuEppvJoR96upQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFUoPK/h zgm52mAcPADTR6/wJ+AIMB8GA1UdIwQYMBaAFMkJvbKE5N8IR3Zg1oK3yz9ZSDHj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkQyNS8wN0Y4MjE0QTE0 RTQxMUVBODc2RTg2NDBDNEY5QUUwMi95UW05c29UazN3aEhkbURXZ3JmTFAxbElN ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lRbTlzb1RrM3doSGRtRFdncmZMUDFsSU1lTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkQyNS8wN0Y4MjE0QTE0RTQxMUVBODc2RTg2NDBDNEY5QUUwMi95UW05c29UazN3 aEhkbURXZ3JmTFAxbElNZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDWo0FsgkrK7gOP+SeSdpsyzXwunGmVuhekDc/m6cWz20qqr/VRYdf L04m4BQBGqn7qAWX/GXt5AOufqfz0uXlaaiISD2X3oeyEB6q7qQ1Gz9q24r6vwXY ziiJu1gcA7mchFDf7GzW4krKUnCdHLve3OSDPeXqxZ/kGYX4drCPoSDVSLkPf2x2 fJnIb//7XjFIQ2gTINU1xRSUvFKVCe7DKensrGHVJFNlUMKXtb4WfrK8m9bBfoDs rgbhVXHxm1RTCtYEyhAuWcd3kU5See8AZEY3Ix9Uy1vNaPgNwLVFJqRB1NFxxFKd 9Fk9PKLiFxXp33pjWgdS5rb/gxrfMWE9 -----END CERTIFICATE-----Generated at Sun Apr 6 06:27:57 2025 by rpki-client