$ rpki-client -vvf rpki.apnic.net/member_repository/A917174E/54AA149CAAF611E99C5EE259C4F9AE02/cYBzCYrwOW_Y4zCaG5-28-6xeuc.mft File: cYBzCYrwOW_Y4zCaG5-28-6xeuc.mft (raw, json) Hash identifier: +3lDVn2Ds1gio7d2mlS5CRswbh4n+3RhRT19WR085eQ= Subject key identifier: 06:FD:D2:B5:14:F5:EC:9C:D9:05:01:48:7F:FE:0F:13:9F:1F:16:11 Authority key identifier: 71:80:73:09:8A:F0:39:6F:D8:E3:30:9A:1B:9F:B6:F3:EE:B1:7A:E7 Certificate issuer: /CN=A917174E/serialNumber=718073098AF0396FD8E3309A1B9FB6F3EEB17AE7 Certificate serial: 0DEF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cYBzCYrwOW_Y4zCaG5-28-6xeuc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917174E/54AA149CAAF611E99C5EE259C4F9AE02/cYBzCYrwOW_Y4zCaG5-28-6xeuc.mft Manifest number: 0DEE Signing time: Tue 08 Apr 2025 17:49:53 +0000 Manifest this update: Tue 08 Apr 2025 17:49:53 +0000 Manifest next update: Tue 15 Apr 2025 17:49:53 +0000 Files and hashes: 1: cYBzCYrwOW_Y4zCaG5-28-6xeuc.crl (hash: N+sHudXPznT47utdl6kZlGE1eYFbxJSADU52ja+fzF8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917174E/54AA149CAAF611E99C5EE259C4F9AE02/cYBzCYrwOW_Y4zCaG5-28-6xeuc.crl rsync://rpki.apnic.net/member_repository/A917174E/54AA149CAAF611E99C5EE259C4F9AE02/cYBzCYrwOW_Y4zCaG5-28-6xeuc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cYBzCYrwOW_Y4zCaG5-28-6xeuc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 17:49:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3567 (0xdef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917174E Validity Not Before: Apr 8 17:49:53 2025 GMT Not After : Apr 15 17:49:53 2025 GMT Subject: CN=67f561c1-c7d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d7:a7:ad:67:08:c7:f7:d7:99:95:7d:4e:2c: d4:cc:f7:d9:e8:5e:6b:96:2b:63:2b:81:6a:7b:a5: 6e:50:30:8c:bb:a0:09:c4:f6:9d:9e:48:29:4f:db: 7d:b1:73:f6:8b:86:d9:84:2a:cd:3e:7d:19:85:2d: 09:2a:d0:d3:a9:38:8e:c2:ec:12:64:18:9f:b4:47: 21:12:83:22:a5:8d:30:b4:0f:7a:c5:0c:7c:09:8b: 0a:10:04:69:cc:67:f2:ee:27:27:69:96:7d:2e:64: 25:c6:cd:5a:1b:56:ef:b2:cb:25:09:1a:d3:db:5c: 1a:0d:6d:78:1a:1d:98:87:91:e0:4b:35:0f:a6:14: d1:e7:ba:83:8a:3a:db:e3:f0:38:29:35:a4:3b:05: 62:cc:74:02:59:b4:d8:9a:eb:b6:14:85:50:e7:33: a6:19:81:0e:7f:54:b7:45:21:6f:ca:f2:81:20:c3: be:b1:c5:7c:f8:43:ac:b8:3f:a3:f4:8b:8a:00:07: d7:3b:6a:ee:7b:be:b5:7d:87:66:f9:a3:a1:8b:59: 29:44:85:ae:d2:e7:55:08:91:96:4e:30:eb:c7:c8: 98:74:65:f8:7b:f2:04:18:d6:94:57:9d:7a:55:8f: 4c:a8:de:40:d7:f4:6c:14:f2:6e:eb:3d:65:6d:14: fc:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:FD:D2:B5:14:F5:EC:9C:D9:05:01:48:7F:FE:0F:13:9F:1F:16:11 X509v3 Authority Key Identifier: keyid:71:80:73:09:8A:F0:39:6F:D8:E3:30:9A:1B:9F:B6:F3:EE:B1:7A:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917174E/54AA149CAAF611E99C5EE259C4F9AE02/cYBzCYrwOW_Y4zCaG5-28-6xeuc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cYBzCYrwOW_Y4zCaG5-28-6xeuc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917174E/54AA149CAAF611E99C5EE259C4F9AE02/cYBzCYrwOW_Y4zCaG5-28-6xeuc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:e9:06:cc:8a:e5:9a:e2:0c:93:6e:0d:29:af:79:65:14:c3: 71:07:2e:36:a5:77:e0:f7:e2:75:d6:2c:29:a3:8b:22:59:24: 26:23:9a:49:9f:0b:9f:36:96:20:2f:f8:8b:f5:6b:18:89:22: 49:10:6f:38:18:1f:6e:4c:23:0b:cc:dc:28:66:d3:73:e9:25: 50:0a:39:c3:a7:82:3a:93:76:e7:2f:4c:c8:30:6a:9f:43:47: ba:a8:63:21:58:bf:76:d2:61:e1:67:cb:de:b8:a1:61:1e:59: 1d:fa:ec:10:e0:1f:f4:c5:c4:28:1e:5e:80:ff:5a:75:7e:51: db:4e:89:90:69:6a:27:c9:7e:13:e1:9e:81:bf:68:58:bf:7c: 13:c6:d4:e3:4d:e2:b5:76:c2:7c:03:90:a9:62:53:cb:25:eb: e9:07:3a:e6:7c:99:49:db:f3:ef:7e:5a:9c:44:7e:c6:c4:23: 3b:5d:4b:37:a9:c6:28:7b:43:8c:1a:7f:46:e4:79:6f:cd:09: 7c:91:5f:33:1b:7e:d6:02:dc:3d:1d:50:98:1d:09:b7:63:cd: 73:fc:89:63:08:a7:3c:8f:2d:3b:bc:7a:35:aa:73:83:69:5c: a6:63:69:c6:1a:c0:ba:f2:b4:71:e0:36:dc:a1:0e:5b:a9:2f: 77:7a:57:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE3NEUxMTAvBgNVBAUTKDcxODA3MzA5OEFGMDM5NkZEOEUzMzA5QTFCOUZCNkYz RUVCMTdBRTcwHhcNMjUwNDA4MTc0OTUzWhcNMjUwNDE1MTc0OTUzWjAYMRYwFAYD VQQDEw02N2Y1NjFjMS1jN2QzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv9enrWcIx/fXmZV9TizUzPfZ6F5rlitjK4Fqe6VuUDCMu6AJxPadnkgpT9t9 sXP2i4bZhCrNPn0ZhS0JKtDTqTiOwuwSZBiftEchEoMipY0wtA96xQx8CYsKEARp zGfy7icnaZZ9LmQlxs1aG1bvssslCRrT21waDW14Gh2Yh5HgSzUPphTR57qDijrb 4/A4KTWkOwVizHQCWbTYmuu2FIVQ5zOmGYEOf1S3RSFvyvKBIMO+scV8+EOsuD+j 9IuKAAfXO2rue761fYdm+aOhi1kpRIWu0udVCJGWTjDrx8iYdGX4e/IEGNaUV516 VY9MqN5A1/RsFPJu6z1lbRT8BwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAb90rUU 9eyc2QUBSH/+DxOfHxYRMB8GA1UdIwQYMBaAFHGAcwmK8Dlv2OMwmhuftvPusXrn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTc0RS81NEFBMTQ5Q0FB RjYxMUU5OUM1RUUyNTlDNEY5QUUwMi9jWUJ6Q1lyd09XX1k0ekNhRzUtMjgtNnhl dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NZQnpDWXJ3T1dfWTR6Q2FHNS0yOC02eGV1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTc0RS81NEFBMTQ5Q0FBRjYxMUU5OUM1RUUyNTlDNEY5QUUwMi9jWUJ6Q1lyd09X X1k0ekNhRzUtMjgtNnhldWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBp6QbMiuWa4gyTbg0pr3llFMNxBy42pXfg9+J11iwpo4siWSQmI5pJ nwufNpYgL/iL9WsYiSJJEG84GB9uTCMLzNwoZtNz6SVQCjnDp4I6k3bnL0zIMGqf Q0e6qGMhWL920mHhZ8veuKFhHlkd+uwQ4B/0xcQoHl6A/1p1flHbTomQaWonyX4T 4Z6Bv2hYv3wTxtTjTeK1dsJ8A5CpYlPLJevpBzrmfJlJ2/PvflqcRH7GxCM7XUs3 qcYoe0OMGn9G5HlvzQl8kV8zG37WAtw9HVCYHQm3Y81z/IljCKc8jy07vHo1qnOD aVymY2nGGsC68rRx4DbcoQ5bqS93eldV -----END CERTIFICATE-----Generated at Thu Apr 10 17:45:48 2025 by rpki-client