$ rpki-client -vvf rpki.apnic.net/member_repository/A917314A/5EF8A91600EA11ED9C0CB332C4F9AE02/JyyuXyHIv2trSRWvAATH78_H2z0.mft File: JyyuXyHIv2trSRWvAATH78_H2z0.mft (raw, json) Hash identifier: d1FIogefPBuBY6PYOZwJasTBt4ofmtsRKcAcoZvnRj8= Subject key identifier: 9A:FA:0A:38:64:83:DC:88:00:10:83:DF:36:19:E1:59:C2:FD:26:E8 Authority key identifier: 27:2C:AE:5F:21:C8:BF:6B:6B:49:15:AF:00:04:C7:EF:CF:C7:DB:3D Certificate issuer: /CN=A917314A/serialNumber=272CAE5F21C8BF6B6B4915AF0004C7EFCFC7DB3D Certificate serial: 0289 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JyyuXyHIv2trSRWvAATH78_H2z0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917314A/5EF8A91600EA11ED9C0CB332C4F9AE02/JyyuXyHIv2trSRWvAATH78_H2z0.mft Manifest number: 0284 Signing time: Sat 05 Apr 2025 01:44:56 +0000 Manifest this update: Sat 05 Apr 2025 01:44:55 +0000 Manifest next update: Sat 12 Apr 2025 01:44:55 +0000 Files and hashes: 1: JyyuXyHIv2trSRWvAATH78_H2z0.crl (hash: zj2hqryZhUn4+cF06S0q3jIwtugftSjYsZoEsyjq/1A=) 2: 8620180E00EE11EDBC60AA4FC4F9AE02.roa (hash: 8amN8Nk9oVQpcGLG743ZVOV+dvrusSJP1h0AZ4Q+u2o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917314A/5EF8A91600EA11ED9C0CB332C4F9AE02/JyyuXyHIv2trSRWvAATH78_H2z0.crl rsync://rpki.apnic.net/member_repository/A917314A/5EF8A91600EA11ED9C0CB332C4F9AE02/JyyuXyHIv2trSRWvAATH78_H2z0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JyyuXyHIv2trSRWvAATH78_H2z0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 01:44:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 649 (0x289) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917314A Validity Not Before: Apr 5 01:44:55 2025 GMT Not After : Apr 12 01:44:55 2025 GMT Subject: CN=67f08b17-ecaf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:52:f8:ea:59:fb:dd:e9:62:a2:50:14:b3:2e: a2:1d:40:db:99:3a:0e:b5:61:7d:4d:a7:04:6c:f6: 81:42:90:a2:83:9b:9a:5a:65:91:7f:12:45:1f:09: be:3b:d9:67:34:27:b6:23:6e:70:b6:9f:5e:d0:a2: 06:a1:be:00:47:3c:e3:aa:f8:e7:c1:7b:a7:b7:6f: db:25:45:84:4a:53:4b:f6:a7:b8:6a:0b:3f:3a:65: 9a:bd:3b:c5:6d:e1:f8:aa:00:ee:ab:05:eb:94:09: f1:a2:8a:07:7a:66:91:d2:d1:b1:57:78:99:72:24: f3:e5:b6:89:0b:d4:ac:2e:7f:78:5e:29:78:59:8e: c8:1c:76:41:cb:c6:f5:e5:b5:71:c7:4a:62:e0:f3: d7:8b:d9:82:11:64:03:5e:d9:1f:b8:fb:e8:f6:3b: e4:c6:3d:88:c8:8a:95:fc:7d:43:b4:c1:be:23:93: 17:01:29:9b:c3:db:d4:63:02:9e:b3:64:6e:a3:61: 28:fa:78:42:c3:0a:57:16:52:5d:4f:8f:a7:c0:ad: 7d:8f:80:80:ce:27:28:25:a7:2c:eb:24:45:ed:6a: d9:8e:32:fa:70:13:3a:0d:b1:8e:e2:a3:a2:52:5f: c1:fe:6a:53:0e:f6:05:50:80:fc:87:f9:ab:33:14: 50:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:FA:0A:38:64:83:DC:88:00:10:83:DF:36:19:E1:59:C2:FD:26:E8 X509v3 Authority Key Identifier: keyid:27:2C:AE:5F:21:C8:BF:6B:6B:49:15:AF:00:04:C7:EF:CF:C7:DB:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917314A/5EF8A91600EA11ED9C0CB332C4F9AE02/JyyuXyHIv2trSRWvAATH78_H2z0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JyyuXyHIv2trSRWvAATH78_H2z0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917314A/5EF8A91600EA11ED9C0CB332C4F9AE02/JyyuXyHIv2trSRWvAATH78_H2z0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:d1:40:e2:cc:9b:98:e9:bb:e3:72:7e:ec:57:c6:dd:7c:fe: 8f:e8:61:eb:74:84:07:aa:83:a7:fa:af:5f:d3:d9:a0:b7:30: 13:11:10:9b:44:60:29:96:4c:99:f9:7e:f2:5b:c0:44:6b:9d: 51:36:74:9d:73:95:d0:91:b1:3f:d4:80:29:f2:25:57:e5:f6: cd:53:b3:4f:d0:a2:87:f0:58:5c:20:1d:73:fa:c6:10:04:58: 02:12:1d:3e:6e:6a:93:ab:9d:e9:f3:f4:86:28:28:11:fc:54: a2:42:d7:cc:da:1e:96:fd:ed:7a:3e:61:b5:72:58:eb:4f:d5: 98:74:43:21:35:27:87:45:87:0b:d5:5f:d6:83:4e:d5:66:7a: ef:cf:72:ce:7d:d4:75:ce:d9:88:1d:22:d1:2a:a3:11:bd:56: 92:fd:57:08:30:7a:3d:8a:d0:0a:34:71:9a:0c:cb:cb:b1:5e: 5a:68:f7:7e:05:2a:d7:ee:53:63:ce:3b:25:3f:39:29:f5:21: 7e:90:6f:80:bc:40:93:17:fd:f3:cf:c7:32:41:51:e9:12:22: a9:55:32:e4:0e:08:bf:fa:3c:c9:ff:06:1f:a1:10:7d:5a:d0: 6c:8f:84:11:14:47:b5:ca:a8:50:b2:db:7c:d5:99:3c:91:6d: 08:e9:a6:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAokwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzMxNEExMTAvBgNVBAUTKDI3MkNBRTVGMjFDOEJGNkI2QjQ5MTVBRjAwMDRDN0VG Q0ZDN0RCM0QwHhcNMjUwNDA1MDE0NDU1WhcNMjUwNDEyMDE0NDU1WjAYMRYwFAYD VQQDEw02N2YwOGIxNy1lY2FmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyVL46ln73eliolAUsy6iHUDbmToOtWF9TacEbPaBQpCig5uaWmWRfxJFHwm+ O9lnNCe2I25wtp9e0KIGob4ARzzjqvjnwXunt2/bJUWESlNL9qe4ags/OmWavTvF beH4qgDuqwXrlAnxoooHemaR0tGxV3iZciTz5baJC9SsLn94Xil4WY7IHHZBy8b1 5bVxx0pi4PPXi9mCEWQDXtkfuPvo9jvkxj2IyIqV/H1DtMG+I5MXASmbw9vUYwKe s2Ruo2Eo+nhCwwpXFlJdT4+nwK19j4CAzicoJacs6yRF7WrZjjL6cBM6DbGO4qOi Ul/B/mpTDvYFUID8h/mrMxRQowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJr6Cjhk g9yIABCD3zYZ4VnC/SboMB8GA1UdIwQYMBaAFCcsrl8hyL9ra0kVrwAEx+/Px9s9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzE0QS81RUY4QTkxNjAw RUExMUVEOUMwQ0IzMzJDNEY5QUUwMi9KeXl1WHlISXYydHJTUld2QUFUSDc4X0gy ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0p5eXVYeUhJdjJ0clNSV3ZBQVRINzhfSDJ6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzE0QS81RUY4QTkxNjAwRUExMUVEOUMwQ0IzMzJDNEY5QUUwMi9KeXl1WHlISXYy dHJTUld2QUFUSDc4X0gyejAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBo0UDizJuY6bvjcn7sV8bdfP6P6GHrdIQHqoOn+q9f09mgtzATERCb RGAplkyZ+X7yW8BEa51RNnSdc5XQkbE/1IAp8iVX5fbNU7NP0KKH8FhcIB1z+sYQ BFgCEh0+bmqTq53p8/SGKCgR/FSiQtfM2h6W/e16PmG1cljrT9WYdEMhNSeHRYcL 1V/Wg07VZnrvz3LOfdR1ztmIHSLRKqMRvVaS/VcIMHo9itAKNHGaDMvLsV5aaPd+ BSrX7lNjzjslPzkp9SF+kG+AvECTF/3zz8cyQVHpEiKpVTLkDgi/+jzJ/wYfoRB9 WtBsj4QRFEe1yqhQstt81Zk8kW0I6ab9 -----END CERTIFICATE-----Generated at Sun Apr 6 21:11:02 2025 by rpki-client