$ rpki-client -vvf rpki.apnic.net/member_repository/A9138D62/BCB40A585FCF11EC8CF1E07BC4F9AE02/YhuBwQnlqnjYKfMKV9o1MwglT2k.mft File: YhuBwQnlqnjYKfMKV9o1MwglT2k.mft (raw, json) Hash identifier: /MQjBEhLZuJeDu//5rZY9uUCWRhcyNEg4/SoNskfU/k= Subject key identifier: 2E:73:77:4D:71:7F:FD:54:EE:57:D3:20:08:FF:2B:22:88:ED:D6:E5 Authority key identifier: 62:1B:81:C1:09:E5:AA:78:D8:29:F3:0A:57:DA:35:33:08:25:4F:69 Certificate issuer: /CN=A9138D62/serialNumber=621B81C109E5AA78D829F30A57DA353308254F69 Certificate serial: 041F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YhuBwQnlqnjYKfMKV9o1MwglT2k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138D62/BCB40A585FCF11EC8CF1E07BC4F9AE02/YhuBwQnlqnjYKfMKV9o1MwglT2k.mft Manifest number: 0419 Signing time: Sat 05 Apr 2025 00:31:32 +0000 Manifest this update: Sat 05 Apr 2025 00:31:31 +0000 Manifest next update: Sat 12 Apr 2025 00:31:31 +0000 Files and hashes: 1: YhuBwQnlqnjYKfMKV9o1MwglT2k.crl (hash: YwWmLF7MbGY2pincYGmZz/jDeWyg1nzbNKCFrXtu128=) 2: 31E51BB65FD311EC9AA5DA4EC4F9AE02.roa (hash: bAaCSc9TYM7K2UkBDoNWyjDrI2lpV2TgVDZgy3NjGCg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138D62/BCB40A585FCF11EC8CF1E07BC4F9AE02/YhuBwQnlqnjYKfMKV9o1MwglT2k.crl rsync://rpki.apnic.net/member_repository/A9138D62/BCB40A585FCF11EC8CF1E07BC4F9AE02/YhuBwQnlqnjYKfMKV9o1MwglT2k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YhuBwQnlqnjYKfMKV9o1MwglT2k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 00:31:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1055 (0x41f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138D62 Validity Not Before: Apr 5 00:31:31 2025 GMT Not After : Apr 12 00:31:31 2025 GMT Subject: CN=67f079e3-825c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:73:ae:3b:75:97:16:e9:c4:c9:74:fd:88:35: a0:43:d9:41:3f:80:13:1d:85:e3:c0:9c:29:72:7d: 9d:cc:48:be:65:56:41:82:6d:86:bb:ce:7b:56:11: 91:26:4d:ce:21:c7:d4:7a:70:d9:6a:bc:34:66:75: 54:ec:b1:59:6a:c4:9e:04:4d:c2:bc:0d:69:59:4f: 85:a8:6b:b9:66:d9:ea:e0:4d:25:5c:0a:2e:d1:e6: ac:c2:c5:7d:f6:80:a2:bc:a1:49:59:0c:81:f7:1c: d5:f4:08:e1:97:f5:57:0f:2f:43:5b:32:c2:cc:f3: f0:c5:90:87:c4:10:6f:5a:3b:f8:f6:f5:04:e8:9c: ae:71:37:fc:51:2a:7d:e7:d5:ed:ad:62:28:22:ce: 7e:ef:71:0e:15:d5:54:b5:ac:31:3b:f0:a8:43:a7: 75:d0:fc:fa:f3:0d:91:77:15:a0:39:8c:85:bd:be: b3:62:a5:75:18:81:e9:7c:34:d2:03:e4:fb:1f:b2: fb:4a:7e:ce:6a:22:26:bd:93:f5:67:48:1a:1c:19: 84:78:cb:75:d0:09:97:6a:4e:20:10:35:c5:03:d1: 93:c6:95:a7:86:20:7c:52:df:29:93:42:6f:c9:a0: 7b:20:8c:8d:77:0e:67:a7:90:e7:8a:71:5b:4d:4d: f2:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:73:77:4D:71:7F:FD:54:EE:57:D3:20:08:FF:2B:22:88:ED:D6:E5 X509v3 Authority Key Identifier: keyid:62:1B:81:C1:09:E5:AA:78:D8:29:F3:0A:57:DA:35:33:08:25:4F:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138D62/BCB40A585FCF11EC8CF1E07BC4F9AE02/YhuBwQnlqnjYKfMKV9o1MwglT2k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YhuBwQnlqnjYKfMKV9o1MwglT2k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138D62/BCB40A585FCF11EC8CF1E07BC4F9AE02/YhuBwQnlqnjYKfMKV9o1MwglT2k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:81:0c:b2:55:5c:73:cc:9a:67:8f:d2:e8:cd:0f:dd:92:42: 2f:fd:1f:51:91:0b:fa:ce:35:cd:4d:b9:70:21:de:60:06:69: 52:6d:0e:a6:98:b0:17:42:f2:e4:21:86:99:a0:bd:cd:48:fe: 1f:05:a6:9e:66:ed:ba:31:f5:41:3e:6f:7b:06:1f:dd:0c:eb: 33:4c:55:e8:1d:ef:dc:2f:ed:19:dd:dc:25:85:5e:ff:c0:88: 4c:cd:a7:46:46:4d:2b:8b:9b:1b:d2:5b:f4:65:43:97:42:93: ae:ed:c1:cf:97:ae:6f:ee:a6:b3:49:f8:71:e0:75:48:8d:34: 56:b3:ac:fc:ce:8d:ca:d9:99:aa:94:1b:49:80:14:d5:03:bd: 5f:72:29:9a:92:1f:5a:db:db:c5:62:02:92:0e:2b:d0:59:18: 98:5d:7b:0d:15:d6:46:c5:d2:a8:9b:b7:84:f0:f4:c2:b5:b0: 8e:f3:3f:94:0c:13:c5:cf:5f:62:bf:dc:3e:9a:06:f6:3b:d1: bd:43:b6:d9:27:15:5f:68:ff:85:00:31:a4:fc:2a:22:46:c6: ad:c8:cd:17:48:9f:5f:41:61:61:6a:c6:d4:ea:d5:32:18:f4: d6:b9:83:98:9e:72:ae:7b:7e:36:08:3e:71:5a:8a:25:6e:72: aa:b7:03:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBB8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzhENjIxMTAvBgNVBAUTKDYyMUI4MUMxMDlFNUFBNzhEODI5RjMwQTU3REEzNTMz MDgyNTRGNjkwHhcNMjUwNDA1MDAzMTMxWhcNMjUwNDEyMDAzMTMxWjAYMRYwFAYD VQQDEw02N2YwNzllMy04MjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqHOuO3WXFunEyXT9iDWgQ9lBP4ATHYXjwJwpcn2dzEi+ZVZBgm2Gu857VhGR Jk3OIcfUenDZarw0ZnVU7LFZasSeBE3CvA1pWU+FqGu5Ztnq4E0lXAou0easwsV9 9oCivKFJWQyB9xzV9Ajhl/VXDy9DWzLCzPPwxZCHxBBvWjv49vUE6JyucTf8USp9 59XtrWIoIs5+73EOFdVUtawxO/CoQ6d10Pz68w2RdxWgOYyFvb6zYqV1GIHpfDTS A+T7H7L7Sn7OaiImvZP1Z0gaHBmEeMt10AmXak4gEDXFA9GTxpWnhiB8Ut8pk0Jv yaB7IIyNdw5np5DninFbTU3yJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC5zd01x f/1U7lfTIAj/KyKI7dblMB8GA1UdIwQYMBaAFGIbgcEJ5ap42CnzClfaNTMIJU9p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOEQ2Mi9CQ0I0MEE1ODVG Q0YxMUVDOENGMUUwN0JDNEY5QUUwMi9ZaHVCd1FubHFuallLZk1LVjlvMU13Z2xU MmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lodUJ3UW5scW5qWUtmTUtWOW8xTXdnbFQyay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OEQ2Mi9CQ0I0MEE1ODVGQ0YxMUVDOENGMUUwN0JDNEY5QUUwMi9ZaHVCd1FubHFu allLZk1LVjlvMU13Z2xUMmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4gQyyVVxzzJpnj9LozQ/dkkIv/R9RkQv6zjXNTblwId5gBmlSbQ6m mLAXQvLkIYaZoL3NSP4fBaaeZu26MfVBPm97Bh/dDOszTFXoHe/cL+0Z3dwlhV7/ wIhMzadGRk0ri5sb0lv0ZUOXQpOu7cHPl65v7qazSfhx4HVIjTRWs6z8zo3K2Zmq lBtJgBTVA71fcimakh9a29vFYgKSDivQWRiYXXsNFdZGxdKom7eE8PTCtbCO8z+U DBPFz19iv9w+mgb2O9G9Q7bZJxVfaP+FADGk/CoiRsatyM0XSJ9fQWFhasbU6tUy GPTWuYOYnnKue342CD5xWoolbnKqtwPf -----END CERTIFICATE-----Generated at Sun Apr 6 09:04:56 2025 by rpki-client