$ rpki-client -vvf rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft File: gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft (raw, json) Hash identifier: XMFTt2SA6e+YyBsXWuE4KHho2k66HM0gKcVeliSbjYU= Subject key identifier: 43:72:C8:F4:66:95:DE:79:0D:03:F4:50:E3:6A:10:B7:19:B9:B9:F9 Authority key identifier: 83:2F:E5:61:4E:02:D3:50:F8:86:79:0D:E4:BD:C9:9F:42:64:55:E4 Certificate issuer: /CN=A9171669/serialNumber=832FE5614E02D350F886790DE4BDC99F426455E4 Certificate serial: 025D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft Manifest number: 025A Signing time: Thu 03 Apr 2025 01:47:08 +0000 Manifest this update: Thu 03 Apr 2025 01:47:07 +0000 Manifest next update: Thu 10 Apr 2025 01:47:07 +0000 Files and hashes: 1: gy_lYU4C01D4hnkN5L3Jn0JkVeQ.crl (hash: +P2WbDGjadpzvVvJl6V3XuyZ8GWSFgX8o/LUz6vXQVY=) 2: 91BBC8880D9711ED8F09C27DC4F9AE02.roa (hash: iNGLEhZ74V/teXh5s40LgFHohuZJ0yOem+a3lr8uSKQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.crl rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 01:47:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 605 (0x25d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171669 Validity Not Before: Apr 3 01:47:07 2025 GMT Not After : Apr 10 01:47:07 2025 GMT Subject: CN=67ede89c-efc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:bc:20:91:de:66:b6:1f:84:2f:10:04:bc:f7: 5a:0b:e2:ff:fd:51:8b:1a:52:01:cd:bd:af:9f:fd: 0e:48:21:8e:8e:e8:19:f9:97:97:31:bf:60:84:47: 33:e7:1d:1d:8f:57:51:e8:86:5e:6d:64:3e:27:1b: 8c:f8:59:8a:f1:b5:d9:06:87:d6:15:b1:a8:7b:3c: ed:e2:83:74:df:16:27:65:a7:0e:42:6c:a9:91:d1: 16:44:a9:f3:7a:a5:9c:d2:ee:e2:4b:bd:56:c8:d3: 86:7c:f9:6a:2a:66:15:b7:82:79:29:90:a7:ba:92: 3f:e5:cb:09:e9:e2:39:47:ed:ab:10:d9:87:2c:08: 11:fe:af:8b:f8:d8:fb:82:7a:54:d2:92:e7:0e:63: 50:26:18:6e:ba:1b:e5:55:7f:26:d8:bb:75:be:b6: 73:61:af:92:a1:9b:76:4f:d5:82:c3:07:97:3f:40: b7:e9:b3:22:25:e2:39:51:63:b8:21:74:50:26:a8: 34:b8:0d:40:e7:75:a4:83:1b:0e:68:bb:5c:86:e5: 1d:f7:4a:08:5b:46:80:10:2e:c6:22:40:dc:2c:2e: 54:6f:52:91:42:c7:47:e7:f9:95:3a:8b:a8:f5:ab: 46:49:a8:35:d0:4d:04:dc:8a:87:60:4f:db:fa:dd: e4:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:72:C8:F4:66:95:DE:79:0D:03:F4:50:E3:6A:10:B7:19:B9:B9:F9 X509v3 Authority Key Identifier: keyid:83:2F:E5:61:4E:02:D3:50:F8:86:79:0D:E4:BD:C9:9F:42:64:55:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:23:30:56:95:12:f7:fe:29:5e:2e:ab:de:0d:fb:02:d9:d9: fd:c8:ca:4c:d2:ed:b3:fb:3a:bf:18:7e:a0:0d:3c:c6:87:c7: b7:04:b5:c9:cc:e1:19:49:01:dd:b4:a9:3e:35:76:0f:ae:4b: 59:4e:c7:44:d3:ec:ab:bd:39:81:a6:39:ae:db:27:d5:7a:a7: 96:be:19:84:6f:b6:c7:1b:17:b6:2b:34:c4:38:07:62:6e:c1: df:3c:a4:ee:0c:ba:a1:05:df:9f:d9:24:2f:99:a4:9d:63:8c: 38:56:f8:93:d3:71:65:58:ea:46:57:17:12:80:76:96:7e:55: ed:59:f8:f5:4e:78:b9:94:8e:00:c6:5b:c4:d7:2f:60:16:a3: e0:5c:10:ea:d4:e4:cc:f3:c4:fd:e8:b6:e6:3a:df:d7:fb:8b: 7c:55:d7:4e:ee:f5:98:7c:86:3c:b3:d3:e1:a4:72:89:e3:79: 6b:1a:10:86:a3:3d:5a:bf:87:de:d5:d4:2f:f2:8b:dc:f3:79: 60:ce:b2:30:5b:d8:f7:97:34:8e:58:65:04:b7:2f:af:21:c8: 8f:7f:ca:e6:77:c7:51:98:19:08:31:d4:bf:01:02:8d:cb:a1: 46:5c:9a:1a:91:0c:39:48:89:d9:db:c6:63:92:16:6d:2c:fc: 96:95:f9:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAl0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE2NjkxMTAvBgNVBAUTKDgzMkZFNTYxNEUwMkQzNTBGODg2NzkwREU0QkRDOTlG NDI2NDU1RTQwHhcNMjUwNDAzMDE0NzA3WhcNMjUwNDEwMDE0NzA3WjAYMRYwFAYD VQQDEw02N2VkZTg5Yy1lZmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1bwgkd5mth+ELxAEvPdaC+L//VGLGlIBzb2vn/0OSCGOjugZ+ZeXMb9ghEcz 5x0dj1dR6IZebWQ+JxuM+FmK8bXZBofWFbGoezzt4oN03xYnZacOQmypkdEWRKnz eqWc0u7iS71WyNOGfPlqKmYVt4J5KZCnupI/5csJ6eI5R+2rENmHLAgR/q+L+Nj7 gnpU0pLnDmNQJhhuuhvlVX8m2Lt1vrZzYa+SoZt2T9WCwweXP0C36bMiJeI5UWO4 IXRQJqg0uA1A53WkgxsOaLtchuUd90oIW0aAEC7GIkDcLC5Ub1KRQsdH5/mVOouo 9atGSag10E0E3IqHYE/b+t3kWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFENyyPRm ld55DQP0UONqELcZubn5MB8GA1UdIwQYMBaAFIMv5WFOAtNQ+IZ5DeS9yZ9CZFXk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTY2OS9CNTU4QkEwNjBE OTQxMUVEQTVENEUwNTFDNEY5QUUwMi9neV9sWVU0QzAxRDRobmtONUwzSm4wSmtW ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d5X2xZVTRDMDFENGhua041TDNKbjBKa1ZlUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTY2OS9CNTU4QkEwNjBEOTQxMUVEQTVENEUwNTFDNEY5QUUwMi9neV9sWVU0QzAx RDRobmtONUwzSm4wSmtWZVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJIzBWlRL3/ileLqveDfsC2dn9yMpM0u2z+zq/GH6gDTzGh8e3BLXJ zOEZSQHdtKk+NXYPrktZTsdE0+yrvTmBpjmu2yfVeqeWvhmEb7bHGxe2KzTEOAdi bsHfPKTuDLqhBd+f2SQvmaSdY4w4VviT03FlWOpGVxcSgHaWflXtWfj1Tni5lI4A xlvE1y9gFqPgXBDq1OTM88T96LbmOt/X+4t8VddO7vWYfIY8s9PhpHKJ43lrGhCG oz1av4fe1dQv8ovc83lgzrIwW9j3lzSOWGUEty+vIciPf8rmd8dRmBkIMdS/AQKN y6FGXJoakQw5SInZ28ZjkhZtLPyWlfk+ -----END CERTIFICATE-----Generated at Fri Apr 4 22:32:13 2025 by rpki-client