$ rpki-client -vvf rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft File: YNExg9Od5pVlYCMefgMX5py8bA8.mft (raw, json) Hash identifier: 3KMBVG1N2luXdt+UJxIxgMFJrgbOv71Sx7wtRdxq4Bw= Subject key identifier: 09:1E:15:BD:90:90:E0:3A:E5:70:5E:79:C7:0F:FC:AC:5D:63:E7:1E Authority key identifier: 60:D1:31:83:D3:9D:E6:95:65:60:23:1E:7E:03:17:E6:9C:BC:6C:0F Certificate issuer: /CN=A9131D31/serialNumber=60D13183D39DE6956560231E7E0317E69CBC6C0F Certificate serial: 10B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft Manifest number: 10A7 Signing time: Sun 06 Apr 2025 17:14:29 +0000 Manifest this update: Sun 06 Apr 2025 17:14:28 +0000 Manifest next update: Sun 13 Apr 2025 17:14:28 +0000 Files and hashes: 1: YNExg9Od5pVlYCMefgMX5py8bA8.crl (hash: vgihVbv5Slfhdt+xJ3nel0lZl3CVJxy/mXv/crYm6OQ=) 2: 1F8D757623B811E9971D8168C4F9AE02.roa (hash: EGwNt3ye+JZB2ATROMeS/SxXvTNPBGs0hQuYVVL6cZA=) 3: BA310DEC23B611E98E5E6062C4F9AE02.roa (hash: rL0eA9WxxXy7qJR0cFKLjwuUGHn478UB0XIva7x35CY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.crl rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 17:14:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4278 (0x10b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131D31 Validity Not Before: Apr 6 17:14:28 2025 GMT Not After : Apr 13 17:14:28 2025 GMT Subject: CN=67f2b674-642f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:9c:65:c2:72:fc:fc:8c:84:4b:3a:f5:30:21: 31:7c:1e:92:5f:a5:10:aa:fa:70:d1:b9:be:21:45: 8f:07:5b:7e:e4:96:bf:62:52:b9:99:fb:9d:e2:45: 39:d8:1e:24:96:ca:cd:29:99:af:79:57:fe:22:a5: cb:f8:c0:3e:8a:4d:c2:7a:0b:53:e6:c7:4a:74:ba: 3a:c3:e0:e3:29:89:13:30:d9:02:df:8f:82:b7:dc: 96:e9:c9:d1:cb:bb:97:82:28:57:e5:9d:61:65:60: bd:43:0c:75:fa:96:fa:20:60:3e:d7:28:81:ff:8f: f7:87:3d:31:9c:73:5d:7a:56:ec:ad:46:d9:e4:24: 7f:51:76:c9:93:ee:18:d1:d5:da:99:c4:0b:57:50: 18:83:d0:c2:cc:e9:65:ec:ad:cd:14:e3:03:8e:a6: 4d:1e:cf:6c:57:fc:47:15:c5:7e:76:3b:31:a8:9d: a3:e3:56:e5:b3:e0:ca:81:32:4d:d6:23:e1:3c:2f: 3e:c2:39:ba:6e:19:34:43:bc:ff:c5:fd:9c:3a:c2: f4:d9:90:9f:a2:9a:79:1b:73:22:15:31:b1:ed:75: a2:d7:46:d3:c1:51:25:a2:1e:39:9e:5a:38:ef:97: c0:8e:ac:a0:03:c5:c8:e1:e3:37:c5:47:50:3d:02: db:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:1E:15:BD:90:90:E0:3A:E5:70:5E:79:C7:0F:FC:AC:5D:63:E7:1E X509v3 Authority Key Identifier: keyid:60:D1:31:83:D3:9D:E6:95:65:60:23:1E:7E:03:17:E6:9C:BC:6C:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:f8:b8:0b:91:32:0c:bb:63:c0:b9:aa:a3:65:1c:39:ed:33: db:c9:d1:60:50:e9:9f:ef:81:32:a0:dd:e5:41:57:72:2a:79: 49:42:37:aa:05:76:1c:4a:ae:f6:6f:10:4d:9b:c4:31:fa:61: be:2a:d3:c9:08:c1:2a:b2:95:17:45:09:0f:42:35:cc:77:fe: 2f:50:e0:86:46:e6:bf:32:5c:f6:df:c1:cb:b4:01:43:48:d4: 20:2c:12:5e:8e:dd:be:c1:7e:b1:1b:14:95:d2:4c:ad:19:62: c2:68:d7:72:52:92:31:f6:7f:b8:b6:c9:ef:45:51:19:65:54: d5:a2:74:35:e6:8c:2c:e6:dc:5d:01:51:08:b8:f2:ed:29:62: 55:83:e7:83:5d:05:35:fd:97:87:a9:cf:7e:84:e1:d0:99:fe: 22:04:dd:32:ff:55:1a:74:b5:1e:47:d3:f2:bf:08:67:75:bc: bc:f0:4d:f6:aa:6c:fd:15:3a:e7:cf:f6:c7:a1:99:7a:b5:33: e7:74:e3:0b:0d:d9:8c:0e:a8:1d:8d:ce:27:bf:5c:4e:ec:0e: 28:5c:d7:94:72:64:af:19:2d:21:7f:cf:9d:5f:fd:1b:5d:eb: 96:05:3b:43:66:ab:ae:62:aa:e7:54:ee:95:4c:b3:b8:59:39: 0a:2c:29:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICELYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFEMzExMTAvBgNVBAUTKDYwRDEzMTgzRDM5REU2OTU2NTYwMjMxRTdFMDMxN0U2 OUNCQzZDMEYwHhcNMjUwNDA2MTcxNDI4WhcNMjUwNDEzMTcxNDI4WjAYMRYwFAYD VQQDEw02N2YyYjY3NC02NDJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3pxlwnL8/IyESzr1MCExfB6SX6UQqvpw0bm+IUWPB1t+5Ja/YlK5mfud4kU5 2B4klsrNKZmveVf+IqXL+MA+ik3CegtT5sdKdLo6w+DjKYkTMNkC34+Ct9yW6cnR y7uXgihX5Z1hZWC9Qwx1+pb6IGA+1yiB/4/3hz0xnHNdelbsrUbZ5CR/UXbJk+4Y 0dXamcQLV1AYg9DCzOll7K3NFOMDjqZNHs9sV/xHFcV+djsxqJ2j41bls+DKgTJN 1iPhPC8+wjm6bhk0Q7z/xf2cOsL02ZCfopp5G3MiFTGx7XWi10bTwVEloh45nlo4 75fAjqygA8XI4eM3xUdQPQLbXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAkeFb2Q kOA65XBeeccP/KxdY+ceMB8GA1UdIwQYMBaAFGDRMYPTneaVZWAjHn4DF+acvGwP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUQzMS82NUVGMjk2QTIz MTMxMUU5QTI5QkIxNzRDNEY5QUUwMi9ZTkV4ZzlPZDVwVmxZQ01lZmdNWDVweThi QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lORXhnOU9kNXBWbFlDTWVmZ01YNXB5OGJBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUQzMS82NUVGMjk2QTIzMTMxMUU5QTI5QkIxNzRDNEY5QUUwMi9ZTkV4ZzlPZDVw VmxZQ01lZmdNWDVweThiQTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAS+LgLkTIMu2PAuaqjZRw57TPbydFgUOmf74EyoN3lQVdyKnlJQjeq BXYcSq72bxBNm8Qx+mG+KtPJCMEqspUXRQkPQjXMd/4vUOCGRua/Mlz238HLtAFD SNQgLBJejt2+wX6xGxSV0kytGWLCaNdyUpIx9n+4tsnvRVEZZVTVonQ15ows5txd AVEIuPLtKWJVg+eDXQU1/ZeHqc9+hOHQmf4iBN0y/1UadLUeR9Pyvwhndby88E32 qmz9FTrnz/bHoZl6tTPndOMLDdmMDqgdjc4nv1xO7A4oXNeUcmSvGS0hf8+dX/0b XeuWBTtDZquuYqrnVO6VTLO4WTkKLCkp -----END CERTIFICATE-----Generated at Tue Apr 8 14:01:20 2025 by rpki-client