$ rpki-client -vvf rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/YBC8xly5zPAs9-0p7HXk1iK98_A.mft File: YBC8xly5zPAs9-0p7HXk1iK98_A.mft (raw, json) Hash identifier: OsS9YRPdA5ojWAjGKDRr7vU02X/OUABu4cTuOk93uJw= Subject key identifier: FF:4F:B5:00:C7:6C:8D:2C:73:21:0C:99:74:5E:3F:4E:40:EB:57:FF Authority key identifier: 60:10:BC:C6:5C:B9:CC:F0:2C:F7:ED:29:EC:75:E4:D6:22:BD:F3:F0 Certificate issuer: /CN=A9144F45/serialNumber=6010BCC65CB9CCF02CF7ED29EC75E4D622BDF3F0 Certificate serial: 047A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBC8xly5zPAs9-0p7HXk1iK98_A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/YBC8xly5zPAs9-0p7HXk1iK98_A.mft Manifest number: 0476 Signing time: Sat 29 Mar 2025 00:21:24 +0000 Manifest this update: Sat 29 Mar 2025 00:21:24 +0000 Manifest next update: Sat 05 Apr 2025 00:21:24 +0000 Files and hashes: 1: YBC8xly5zPAs9-0p7HXk1iK98_A.crl (hash: a7HIJobtyihp+ySfZeJu4wiryszJ5dhH7jGASA3FAI0=) 2: E225E68E397411EC8120D135C4F9AE02.roa (hash: GWZiL4+KkXKacwwHdWBVfV3QtoEcyH45HgJbisXMlBM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/YBC8xly5zPAs9-0p7HXk1iK98_A.crl rsync://rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/YBC8xly5zPAs9-0p7HXk1iK98_A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBC8xly5zPAs9-0p7HXk1iK98_A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 00:21:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1146 (0x47a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144F45 Validity Not Before: Mar 29 00:21:24 2025 GMT Not After : Apr 5 00:21:24 2025 GMT Subject: CN=67e73d04-037c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:e4:1c:e7:b0:9b:7c:35:a9:41:bf:c6:9d:f6: 6a:a0:32:36:34:14:1e:43:14:22:48:3c:c3:fd:98: 28:4d:7f:9b:e0:58:63:9b:81:b1:51:60:db:dd:48: ce:76:7f:91:0b:58:1c:cf:d7:08:c4:62:8c:7e:49: b4:88:ca:8b:b8:08:02:0b:c0:c5:eb:98:89:04:59: af:1e:19:a8:14:7f:8d:c3:03:d3:e9:a1:4b:47:ff: 99:b7:e8:46:ec:c4:48:c9:9b:6a:ab:9f:9b:c2:37: 0d:e7:9d:c7:8d:ae:29:0d:9b:af:6f:f7:33:95:e9: 0f:b2:f6:66:78:30:69:45:1d:f8:a0:17:2d:de:85: b2:db:b9:43:f9:4a:2e:d0:cd:78:92:6c:b1:b0:a2: a0:cf:bc:80:92:bb:36:0b:2a:1f:70:0c:b9:46:59: 93:7a:36:32:20:26:15:a6:82:ea:21:de:91:76:d3: 03:6f:d6:5b:d3:4d:c6:85:0e:23:5a:ac:f7:c7:48: 51:bf:78:c8:54:78:f7:9b:00:21:b1:08:9f:01:fa: 64:af:27:53:a3:f9:1b:7e:8c:5a:4f:ba:f5:66:6e: dc:60:2b:ba:fc:37:0b:17:14:5b:80:be:7d:f3:43: a3:49:49:dc:3b:e9:3b:78:c8:3e:e1:f3:e2:fa:ee: 3b:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:4F:B5:00:C7:6C:8D:2C:73:21:0C:99:74:5E:3F:4E:40:EB:57:FF X509v3 Authority Key Identifier: keyid:60:10:BC:C6:5C:B9:CC:F0:2C:F7:ED:29:EC:75:E4:D6:22:BD:F3:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/YBC8xly5zPAs9-0p7HXk1iK98_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBC8xly5zPAs9-0p7HXk1iK98_A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/YBC8xly5zPAs9-0p7HXk1iK98_A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:d2:c8:6d:7b:76:ea:06:6e:d2:eb:0b:0c:7d:9e:c0:f5:a1: ba:fd:81:37:15:b0:85:1c:75:36:17:0c:ef:7b:4b:70:8c:2f: 81:fa:4e:f6:41:bf:a3:db:a5:70:bd:63:da:b9:aa:35:7f:cd: e8:fe:5b:1c:67:59:b8:57:47:d3:61:30:6a:3a:4d:06:a9:53: 7a:df:41:d5:35:a0:b7:84:48:0a:ac:e8:b6:c5:a1:a4:1b:d3: 84:18:b8:55:c3:e8:be:4f:62:63:6c:47:e4:73:88:20:c2:2d: 13:38:c9:04:da:60:04:d0:32:22:f6:65:07:22:7e:39:09:ae: bd:5d:e2:09:56:c7:bd:c8:84:a7:68:db:95:03:f3:49:fa:cd: 1e:36:75:fe:69:d9:2f:0a:0c:41:12:10:20:b6:8e:ac:49:dc: d9:2a:60:38:61:9c:20:39:7c:17:07:15:ef:2e:cc:b2:49:b4: d5:5d:10:7f:83:b8:29:85:5b:59:a3:5d:2b:8e:27:6e:45:13: 6a:1c:a2:23:c0:50:64:0d:c8:6a:2d:06:b0:36:1c:5f:87:37: 5e:ad:10:58:f3:0b:11:03:03:73:56:14:15:95:02:7b:23:77: 33:f5:8b:d8:58:bd:dd:6d:7c:d4:ff:8b:72:b5:82:4b:05:05: 4b:31:ae:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRGNDUxMTAvBgNVBAUTKDYwMTBCQ0M2NUNCOUNDRjAyQ0Y3RUQyOUVDNzVFNEQ2 MjJCREYzRjAwHhcNMjUwMzI5MDAyMTI0WhcNMjUwNDA1MDAyMTI0WjAYMRYwFAYD VQQDEw02N2U3M2QwNC0wMzdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu+Qc57CbfDWpQb/GnfZqoDI2NBQeQxQiSDzD/ZgoTX+b4Fhjm4GxUWDb3UjO dn+RC1gcz9cIxGKMfkm0iMqLuAgCC8DF65iJBFmvHhmoFH+NwwPT6aFLR/+Zt+hG 7MRIyZtqq5+bwjcN553Hja4pDZuvb/czlekPsvZmeDBpRR34oBct3oWy27lD+Uou 0M14kmyxsKKgz7yAkrs2CyofcAy5RlmTejYyICYVpoLqId6RdtMDb9Zb003GhQ4j Wqz3x0hRv3jIVHj3mwAhsQifAfpkrydTo/kbfoxaT7r1Zm7cYCu6/DcLFxRbgL59 80OjSUncO+k7eMg+4fPi+u47qQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP9PtQDH bI0scyEMmXReP05A61f/MB8GA1UdIwQYMBaAFGAQvMZcuczwLPftKex15NYivfPw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEY0NS9ENzZGRjA0NDM5 NzAxMUVDOUI2NUJBMTZDNEY5QUUwMi9ZQkM4eGx5NXpQQXM5LTBwN0hYazFpSzk4 X0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lCQzh4bHk1elBBczktMHA3SFhrMWlLOThfQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NEY0NS9ENzZGRjA0NDM5NzAxMUVDOUI2NUJBMTZDNEY5QUUwMi9ZQkM4eGx5NXpQ QXM5LTBwN0hYazFpSzk4X0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBg0shte3bqBm7S6wsMfZ7A9aG6/YE3FbCFHHU2Fwzve0twjC+B+k72 Qb+j26VwvWPauao1f83o/lscZ1m4V0fTYTBqOk0GqVN630HVNaC3hEgKrOi2xaGk G9OEGLhVw+i+T2JjbEfkc4ggwi0TOMkE2mAE0DIi9mUHIn45Ca69XeIJVse9yISn aNuVA/NJ+s0eNnX+adkvCgxBEhAgto6sSdzZKmA4YZwgOXwXBxXvLsyySbTVXRB/ g7gphVtZo10rjiduRRNqHKIjwFBkDchqLQawNhxfhzderRBY8wsRAwNzVhQVlQJ7 I3cz9YvYWL3dbXzU/4tytYJLBQVLMa72 -----END CERTIFICATE-----Generated at Fri Apr 4 22:29:59 2025 by rpki-client