$ rpki-client -vvf rpki.apnic.net/member_repository/A914275E/4DF7DB04911811E994793C4DC4F9AE02/YoQgfQ0noui_TS6xT7EpytT2zD8.mft File: YoQgfQ0noui_TS6xT7EpytT2zD8.mft (raw, json) Hash identifier: q1IU00yyt+iR7JPso3aYjOop1OBI9ihINNi2p8tPrrE= Subject key identifier: 14:09:E5:39:C3:65:2B:C0:B0:46:46:0F:EF:7A:BC:E1:DC:ED:73:43 Authority key identifier: 62:84:20:7D:0D:27:A2:E8:BF:4D:2E:B1:4F:B1:29:CA:D4:F6:CC:3F Certificate issuer: /CN=A914275E/serialNumber=6284207D0D27A2E8BF4D2EB14FB129CAD4F6CC3F Certificate serial: 0E8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YoQgfQ0noui_TS6xT7EpytT2zD8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914275E/4DF7DB04911811E994793C4DC4F9AE02/YoQgfQ0noui_TS6xT7EpytT2zD8.mft Manifest number: 0E74 Signing time: Fri 04 Apr 2025 17:50:19 +0000 Manifest this update: Fri 04 Apr 2025 17:50:18 +0000 Manifest next update: Fri 11 Apr 2025 17:50:18 +0000 Files and hashes: 1: YoQgfQ0noui_TS6xT7EpytT2zD8.crl (hash: aLTGdrHq6GqaPdsv2gbAR2SlcGUFsCvTke7E4zDVcFI=) 2: 58105BCA5ACB11EA84F2392EC4F9AE02.roa (hash: VOr56XdXHCfTJb7vCteXD3c/7SeyxHXCJjM/HYRl50c=) 3: 50E999AA911911E9BEF5F94EC4F9AE02.roa (hash: oCjpYZp3Jq8v9CYytKf/Jy8pzYlTc/kezyUqPc+tK1E=) 4: 2012E112712611EB8BCB2B84C4F9AE02.roa (hash: yrTYzTGLD7DdI6Sq4pABNT1xu81eDL8OtDlxoy9a6BI=) 5: 504E3B04911911E9BEF5F94EC4F9AE02.roa (hash: XFUDQ5YpEwqHQdCoCuZZOQlERoKAxzu3Gpexl3i5/54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914275E/4DF7DB04911811E994793C4DC4F9AE02/YoQgfQ0noui_TS6xT7EpytT2zD8.crl rsync://rpki.apnic.net/member_repository/A914275E/4DF7DB04911811E994793C4DC4F9AE02/YoQgfQ0noui_TS6xT7EpytT2zD8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YoQgfQ0noui_TS6xT7EpytT2zD8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:50:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3727 (0xe8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914275E Validity Not Before: Apr 4 17:50:18 2025 GMT Not After : Apr 11 17:50:18 2025 GMT Subject: CN=67f01bda-e563 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:de:4e:8f:6c:52:af:33:5a:9c:24:c7:cd:0b: f1:99:52:88:bf:98:d5:fb:76:b9:21:00:3f:e1:d2: 63:b1:59:ec:32:26:38:63:63:b4:91:27:2e:37:12: cc:f7:e9:6d:40:c9:c5:05:7f:d0:97:33:3b:57:91: 30:ef:7b:ac:34:fe:c7:29:57:08:77:74:0a:b8:11: a1:7e:67:d8:2f:28:fb:ed:a4:66:11:72:75:50:60: bd:b4:47:2b:dd:f2:79:69:11:d2:d9:ae:1b:67:b9: 39:8b:ab:b9:b0:db:45:9a:06:39:c2:67:76:48:53: 9b:b4:62:87:03:d0:c6:cc:99:0c:93:30:93:4b:7a: de:08:6c:7e:9e:a8:32:10:7f:a7:ca:80:00:cb:03: c9:85:0c:6c:c8:a9:0a:68:04:54:c3:ff:98:f4:92: c2:9f:60:b1:fb:0e:6f:1b:88:53:b6:29:0b:f0:5e: 44:06:cc:64:66:ec:f4:f9:a3:74:06:2b:9f:3c:aa: 3e:db:71:49:fe:a1:5f:93:49:a0:28:a9:c0:a1:d2: 36:fc:96:78:a3:03:43:ad:98:3a:b0:5c:d0:8c:cd: ca:94:8d:ac:62:14:52:b2:4f:38:2e:9c:80:64:33: bb:e8:28:80:8c:a3:08:ea:92:23:ed:a3:11:f2:1d: 9d:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:09:E5:39:C3:65:2B:C0:B0:46:46:0F:EF:7A:BC:E1:DC:ED:73:43 X509v3 Authority Key Identifier: keyid:62:84:20:7D:0D:27:A2:E8:BF:4D:2E:B1:4F:B1:29:CA:D4:F6:CC:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914275E/4DF7DB04911811E994793C4DC4F9AE02/YoQgfQ0noui_TS6xT7EpytT2zD8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YoQgfQ0noui_TS6xT7EpytT2zD8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914275E/4DF7DB04911811E994793C4DC4F9AE02/YoQgfQ0noui_TS6xT7EpytT2zD8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:96:76:4e:70:a9:6a:5c:9c:a0:17:c1:62:c0:d1:a0:57:3f: 31:06:9a:0c:21:b2:ad:d7:22:44:35:94:6e:57:b0:b0:b7:c9: 19:69:84:9a:f1:b9:80:d5:c8:a9:9d:23:76:d9:56:69:9c:67: 34:6a:5e:41:8e:b5:73:88:88:5c:0b:9c:71:84:d8:21:c9:04: 84:35:ec:7e:58:d4:f5:5f:73:0b:54:04:0a:00:09:6c:99:1c: 29:9a:54:e7:2e:75:3c:e3:d1:b9:30:02:ac:ba:77:79:5f:36: 2c:02:0e:1b:ac:84:c2:2e:7d:7b:45:37:af:91:f4:97:d5:8c: ef:b8:f5:fd:53:af:7c:e7:6c:2b:74:73:9f:47:81:51:4a:54: 57:28:fd:f5:cf:77:60:72:e7:22:f3:25:e9:6a:81:61:f5:82: f5:54:c0:58:62:99:b8:1d:cc:13:fd:6f:f1:84:2b:05:cf:ae: 40:cd:2f:4b:f4:54:96:5c:04:4f:f9:5d:84:55:2c:0e:cf:25: b4:9d:09:3b:f1:fa:ba:45:30:27:76:ee:49:bc:2a:d1:13:61: ac:f1:b1:02:78:d1:65:aa:76:f0:73:67:75:15:46:30:7f:84: b8:63:5a:cd:9c:69:93:bf:e5:ab:94:74:fe:9a:1a:63:5f:a4: 27:15:86:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDo8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDI3NUUxMTAvBgNVBAUTKDYyODQyMDdEMEQyN0EyRThCRjREMkVCMTRGQjEyOUNB RDRGNkNDM0YwHhcNMjUwNDA0MTc1MDE4WhcNMjUwNDExMTc1MDE4WjAYMRYwFAYD VQQDEw02N2YwMWJkYS1lNTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzt5Oj2xSrzNanCTHzQvxmVKIv5jV+3a5IQA/4dJjsVnsMiY4Y2O0kScuNxLM 9+ltQMnFBX/QlzM7V5Ew73usNP7HKVcId3QKuBGhfmfYLyj77aRmEXJ1UGC9tEcr 3fJ5aRHS2a4bZ7k5i6u5sNtFmgY5wmd2SFObtGKHA9DGzJkMkzCTS3reCGx+nqgy EH+nyoAAywPJhQxsyKkKaARUw/+Y9JLCn2Cx+w5vG4hTtikL8F5EBsxkZuz0+aN0 BiufPKo+23FJ/qFfk0mgKKnAodI2/JZ4owNDrZg6sFzQjM3KlI2sYhRSsk84LpyA ZDO76CiAjKMI6pIj7aMR8h2dUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBQJ5TnD ZSvAsEZGD+96vOHc7XNDMB8GA1UdIwQYMBaAFGKEIH0NJ6Lov00usU+xKcrU9sw/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Mjc1RS80REY3REIwNDkx MTgxMUU5OTQ3OTNDNERDNEY5QUUwMi9Zb1FnZlEwbm91aV9UUzZ4VDdFcHl0VDJ6 RDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lvUWdmUTBub3VpX1RTNnhUN0VweXRUMnpEOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Mjc1RS80REY3REIwNDkxMTgxMUU5OTQ3OTNDNERDNEY5QUUwMi9Zb1FnZlEwbm91 aV9UUzZ4VDdFcHl0VDJ6RDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARlnZOcKlqXJygF8FiwNGgVz8xBpoMIbKt1yJENZRuV7Cwt8kZaYSa 8bmA1cipnSN22VZpnGc0al5BjrVziIhcC5xxhNghyQSENex+WNT1X3MLVAQKAAls mRwpmlTnLnU849G5MAKsund5XzYsAg4brITCLn17RTevkfSX1YzvuPX9U69852wr dHOfR4FRSlRXKP31z3dgcuci8yXpaoFh9YL1VMBYYpm4HcwT/W/xhCsFz65AzS9L 9FSWXARP+V2EVSwOzyW0nQk78fq6RTAndu5JvCrRE2Gs8bECeNFlqnbwc2d1FUYw f4S4Y1rNnGmTv+WrlHT+mhpjX6QnFYby -----END CERTIFICATE-----Generated at Fri Apr 4 22:10:41 2025 by rpki-client