$ rpki-client -vvf rpki.apnic.net/member_repository/A9152787/2B1C47FE8F7911EF92AC781EC4F9AE02/7YKi_X3hR1J8_MQkeiVsGg7bTtM.mft File: 7YKi_X3hR1J8_MQkeiVsGg7bTtM.mft (raw, json) Hash identifier: Xs+l2fiRR+PiUUiUOt1w79BTALtZLD1x7gquRXGzykk= Subject key identifier: 46:61:DE:F2:E0:3F:F1:C2:32:59:64:3E:AD:22:A6:B7:6C:9C:59:05 Authority key identifier: ED:82:A2:FD:7D:E1:47:52:7C:FC:C4:24:7A:25:6C:1A:0E:DB:4E:D3 Certificate issuer: /CN=A9152787/serialNumber=ED82A2FD7DE147527CFCC4247A256C1A0EDB4ED3 Certificate serial: 57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7YKi_X3hR1J8_MQkeiVsGg7bTtM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152787/2B1C47FE8F7911EF92AC781EC4F9AE02/7YKi_X3hR1J8_MQkeiVsGg7bTtM.mft Manifest number: 56 Signing time: Thu 03 Apr 2025 06:25:43 +0000 Manifest this update: Thu 03 Apr 2025 06:25:42 +0000 Manifest next update: Thu 10 Apr 2025 06:25:42 +0000 Files and hashes: 1: 7YKi_X3hR1J8_MQkeiVsGg7bTtM.crl (hash: B7rSGLe00XaPDo+BR7kADYU6O9IGN4i1z8yZqWl531Y=) 2: 45D37CC28F8111EFB699FB63C4F9AE02.roa (hash: 559cCrhl2gmU3vGuvWQWRr1GfQBHKWRfQIAknTBhv8k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152787/2B1C47FE8F7911EF92AC781EC4F9AE02/7YKi_X3hR1J8_MQkeiVsGg7bTtM.crl rsync://rpki.apnic.net/member_repository/A9152787/2B1C47FE8F7911EF92AC781EC4F9AE02/7YKi_X3hR1J8_MQkeiVsGg7bTtM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7YKi_X3hR1J8_MQkeiVsGg7bTtM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 06:25:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 87 (0x57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152787 Validity Not Before: Apr 3 06:25:42 2025 GMT Not After : Apr 10 06:25:42 2025 GMT Subject: CN=67ee29e6-7d64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:22:45:21:47:41:be:4a:8f:0d:91:c0:bf:fb: f7:3b:bd:07:91:6a:a6:10:fd:f2:c5:ff:2c:fb:b6: 9c:aa:10:40:57:ea:5e:8b:e4:b9:6f:a5:fa:39:81: c3:b4:b5:a0:3b:76:42:d0:b1:f8:5c:73:07:bf:3e: 7d:2a:0b:a2:3c:c9:f0:39:3c:cf:d8:b2:2f:d0:32: 8e:9d:2e:d8:4e:39:be:0a:d7:b6:3c:90:1f:17:25: 70:71:a6:5d:80:d0:ff:8f:2d:f5:c9:de:42:f1:77: d3:fb:e3:3f:a8:ea:e1:db:70:4d:20:fa:b5:e0:60: e7:49:26:4c:2b:d0:2d:17:a8:3f:40:03:f2:ab:5c: 0c:4a:76:ad:52:fa:6f:23:83:31:26:2f:20:84:fb: 04:69:b3:88:27:bb:50:79:a4:c6:9b:69:4d:05:a9: de:7a:1b:05:7b:0f:23:1f:98:b0:c3:03:90:dd:70: cb:97:e9:8e:b2:27:5f:19:b7:aa:0b:6d:92:99:3c: 29:e2:84:cf:32:5e:d3:a7:b7:76:e8:a5:ec:b5:0c: d3:02:7d:8a:a7:de:29:29:fb:58:43:0a:a5:02:24: ba:6b:7d:7f:25:4c:86:60:af:3f:9d:2f:af:dc:a7: 14:f8:e9:f3:82:c6:0b:55:52:b6:c8:12:e0:31:28: 3c:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:61:DE:F2:E0:3F:F1:C2:32:59:64:3E:AD:22:A6:B7:6C:9C:59:05 X509v3 Authority Key Identifier: keyid:ED:82:A2:FD:7D:E1:47:52:7C:FC:C4:24:7A:25:6C:1A:0E:DB:4E:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152787/2B1C47FE8F7911EF92AC781EC4F9AE02/7YKi_X3hR1J8_MQkeiVsGg7bTtM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7YKi_X3hR1J8_MQkeiVsGg7bTtM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152787/2B1C47FE8F7911EF92AC781EC4F9AE02/7YKi_X3hR1J8_MQkeiVsGg7bTtM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:b3:07:e6:46:41:43:6f:25:32:5c:6f:3d:44:9a:71:60:60: 1d:47:48:59:a6:38:ea:c0:81:85:3c:18:b4:b7:c4:b1:f1:14: cf:0f:85:aa:05:09:f5:44:e9:c4:fa:df:75:72:6b:4e:1e:52: 03:5a:30:9f:53:c6:ea:0d:92:55:3d:40:82:3e:96:1d:30:0e: 80:7b:33:2b:aa:58:1c:ad:f4:35:5c:5d:f2:19:c3:44:87:4d: 2b:99:79:3d:3e:2e:42:ba:57:db:59:d8:02:41:4f:d1:7a:4e: 8c:63:7c:9d:0d:c2:3d:73:45:f8:eb:4d:5f:c6:77:d4:7d:b3: 52:61:c6:be:38:ed:b8:6d:a5:1b:de:93:cc:ba:89:63:0c:0b: aa:30:7a:66:79:ec:fe:f2:ff:e0:fb:b7:10:62:2c:d9:ef:4c: 9f:18:7f:3a:77:19:dc:85:75:62:a2:58:d1:0f:43:e5:1b:01: 57:43:8a:a4:b0:48:ad:93:76:20:7d:bf:e3:b4:7d:36:26:b5: 96:0e:0e:b1:42:04:53:12:0b:f4:b3:58:41:af:78:b6:9c:aa: 98:9f:2d:db:30:17:b4:93:87:0f:22:e8:42:6d:51:9e:de:4e: cf:2a:b4:89:c5:ef:d0:52:73:05:bd:f5:84:18:e5:a7:9c:a7: 87:37:2d:42 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 Mjc4NzExMC8GA1UEBRMoRUQ4MkEyRkQ3REUxNDc1MjdDRkNDNDI0N0EyNTZDMUEw RURCNEVEMzAeFw0yNTA0MDMwNjI1NDJaFw0yNTA0MTAwNjI1NDJaMBgxFjAUBgNV BAMTDTY3ZWUyOWU2LTdkNjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7IkUhR0G+So8NkcC/+/c7vQeRaqYQ/fLF/yz7tpyqEEBX6l6L5Llvpfo5gcO0 taA7dkLQsfhccwe/Pn0qC6I8yfA5PM/Ysi/QMo6dLthOOb4K17Y8kB8XJXBxpl2A 0P+PLfXJ3kLxd9P74z+o6uHbcE0g+rXgYOdJJkwr0C0XqD9AA/KrXAxKdq1S+m8j gzEmLyCE+wRps4gnu1B5pMabaU0Fqd56GwV7DyMfmLDDA5DdcMuX6Y6yJ18Zt6oL bZKZPCnihM8yXtOnt3bopey1DNMCfYqn3ikp+1hDCqUCJLprfX8lTIZgrz+dL6/c pxT46fOCxgtVUrbIEuAxKDzrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQURmHe8uA/ 8cIyWWQ+rSKmt2ycWQUwHwYDVR0jBBgwFoAU7YKi/X3hR1J8/MQkeiVsGg7bTtMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUyNzg3LzJCMUM0N0ZFOEY3 OTExRUY5MkFDNzgxRUM0RjlBRTAyLzdZS2lfWDNoUjFKOF9NUWtlaVZzR2c3YlR0 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvN1lLaV9YM2hSMUo4X01Ra2VpVnNHZzdiVHRNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUy Nzg3LzJCMUM0N0ZFOEY3OTExRUY5MkFDNzgxRUM0RjlBRTAyLzdZS2lfWDNoUjFK OF9NUWtlaVZzR2c3YlR0TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKyzB+ZGQUNvJTJcbz1EmnFgYB1HSFmmOOrAgYU8GLS3xLHxFM8PhaoF CfVE6cT633Vya04eUgNaMJ9TxuoNklU9QII+lh0wDoB7MyuqWByt9DVcXfIZw0SH TSuZeT0+LkK6V9tZ2AJBT9F6ToxjfJ0Nwj1zRfjrTV/Gd9R9s1Jhxr447bhtpRve k8y6iWMMC6owemZ57P7y/+D7txBiLNnvTJ8Yfzp3GdyFdWKiWNEPQ+UbAVdDiqSw SK2TdiB9v+O0fTYmtZYODrFCBFMSC/SzWEGveLacqpifLdswF7SThw8i6EJtUZ7e Ts8qtInF79BScwW99YQY5aecp4c3LUI= -----END CERTIFICATE-----Generated at Fri Apr 4 22:15:00 2025 by rpki-client