$ rpki-client -vvf rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft File: yZ1gB81HfYmzWcM8k8qptbsQYBo.mft (raw, json) Hash identifier: 1aOEEEjsPIt2UwxDhLrn9tFjNZY0b0G/qfw6RQpcV/I= Subject key identifier: 72:E2:FE:7B:AB:AD:DB:0B:EB:C8:24:1A:13:BF:25:D7:9A:24:74:1F Authority key identifier: C9:9D:60:07:CD:47:7D:89:B3:59:C3:3C:93:CA:A9:B5:BB:10:60:1A Certificate issuer: /CN=A9173F03/serialNumber=C99D6007CD477D89B359C33C93CAA9B5BB10601A Certificate serial: 0C18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ1gB81HfYmzWcM8k8qptbsQYBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft Manifest number: 0C08 Signing time: Sat 12 Apr 2025 18:32:14 +0000 Manifest this update: Sat 12 Apr 2025 18:32:14 +0000 Manifest next update: Sat 19 Apr 2025 18:32:14 +0000 Files and hashes: 1: yZ1gB81HfYmzWcM8k8qptbsQYBo.crl (hash: WXEqdUDooUd7t5cYm+NUguY7cOe+AgrvWHEU4clAsjY=) 2: 7D16D03C861A11EF99D32B66C4F9AE02.roa (hash: LFZ6uBkW6voau17buZXmD8B1WuozeZe536RV9ixDxuw=) 3: 1F3C6E3C6E6811EF93F0A64EC4F9AE02.roa (hash: KCbvW2+iTb2FhCUJSCAthuyvDnx7MU5+U8PZ8z1pu+g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.crl rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ1gB81HfYmzWcM8k8qptbsQYBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 18:32:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3096 (0xc18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173F03, serialNumber=C99D6007CD477D89B359C33C93CAA9B5BB10601A Validity Not Before: Apr 12 18:32:14 2025 GMT Not After : Apr 19 18:32:14 2025 GMT Subject: CN=67fab1ae-88b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:12:07:6e:74:5c:49:06:80:b1:fa:4d:30:27: df:4f:98:3a:4d:84:e8:18:84:66:ee:fb:a6:54:df: b8:68:52:d9:8c:85:c3:27:dc:32:07:f4:f3:97:a3: 62:10:17:9c:7d:a6:47:77:e9:f7:35:62:f6:73:46: 9c:51:85:63:78:a1:5c:42:57:41:8b:c2:d2:5d:6c: 3d:89:f2:6e:41:74:b8:5d:15:a4:c6:49:37:59:a1: ac:8d:25:0d:a6:5d:85:66:f2:1a:58:1f:db:63:52: 6b:85:eb:0a:49:6d:e5:16:15:18:2a:20:3a:d2:9c: 6d:b5:c8:51:47:35:ac:55:b3:a6:67:2b:72:09:47: 7a:8d:30:5a:32:a7:86:34:f9:e3:2b:d2:b6:c1:b4: fb:2a:4f:a5:62:58:fb:b1:31:4a:42:ee:99:ef:ca: f2:74:79:e9:ef:e4:cd:e9:d9:b0:e3:31:63:dc:15: e4:40:1c:72:8f:36:48:3d:51:e0:80:d5:ad:26:ae: 31:ce:0a:96:ae:74:2e:bf:3b:81:e9:74:20:1c:ae: da:a4:42:b8:04:90:64:06:b6:b0:fa:61:75:22:51: dc:d6:10:c9:cc:d9:7b:be:ad:ec:81:42:c0:6b:1a: 7b:f1:ac:c1:ce:f0:01:4f:9a:bd:a6:cd:e7:51:74: 0d:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:E2:FE:7B:AB:AD:DB:0B:EB:C8:24:1A:13:BF:25:D7:9A:24:74:1F X509v3 Authority Key Identifier: keyid:C9:9D:60:07:CD:47:7D:89:B3:59:C3:3C:93:CA:A9:B5:BB:10:60:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ1gB81HfYmzWcM8k8qptbsQYBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:16:82:42:33:7e:f8:30:88:e5:61:36:7e:bb:b8:78:cc:72: a0:e9:8a:0d:d7:4f:af:c4:56:1f:25:7c:cf:a9:96:71:b0:94: 22:ba:04:2a:30:af:3b:ad:45:91:10:41:27:b4:14:ed:50:be: 6e:d3:6d:30:20:47:45:f6:23:50:ee:25:bc:d5:41:ca:cf:60: 6f:64:0e:5b:92:ff:86:a0:fd:07:1c:65:9f:bd:c9:a2:aa:71: b6:86:0d:5c:e2:4b:ae:5a:a9:75:b2:33:7a:45:ab:4d:6a:97: 72:ed:00:8a:e9:f2:c6:76:08:f6:dc:40:ca:0b:78:20:d8:16: d6:3c:a1:08:e3:6f:27:f9:b3:84:6e:34:bf:cf:b2:6b:90:14: 06:9a:f5:8c:92:18:eb:b7:8c:8f:fe:1d:99:43:7e:fb:1c:bc: a6:a4:0d:f7:6a:b4:52:a0:73:a3:03:f5:f9:dd:22:a6:97:e3: 37:70:47:2a:2c:f0:85:11:9c:13:da:9a:3f:cb:a4:2f:79:d1: ec:e6:97:51:b4:de:fb:6f:70:9a:62:48:53:17:59:07:47:d2: 2d:33:1c:c9:c4:2d:3a:6c:63:5f:d6:58:56:bd:d5:55:47:a3: db:2f:1a:53:0b:48:c9:33:3e:73:6a:6f:72:3d:99:71:6a:8d: cf:b1:7a:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDBgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNGMDMxMTAvBgNVBAUTKEM5OUQ2MDA3Q0Q0NzdEODlCMzU5QzMzQzkzQ0FBOUI1 QkIxMDYwMUEwHhcNMjUwNDEyMTgzMjE0WhcNMjUwNDE5MTgzMjE0WjAYMRYwFAYD VQQDEw02N2ZhYjFhZS04OGI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxRIHbnRcSQaAsfpNMCffT5g6TYToGIRm7vumVN+4aFLZjIXDJ9wyB/Tzl6Ni EBecfaZHd+n3NWL2c0acUYVjeKFcQldBi8LSXWw9ifJuQXS4XRWkxkk3WaGsjSUN pl2FZvIaWB/bY1JrhesKSW3lFhUYKiA60pxttchRRzWsVbOmZytyCUd6jTBaMqeG NPnjK9K2wbT7Kk+lYlj7sTFKQu6Z78rydHnp7+TN6dmw4zFj3BXkQBxyjzZIPVHg gNWtJq4xzgqWrnQuvzuB6XQgHK7apEK4BJBkBraw+mF1IlHc1hDJzNl7vq3sgULA axp78azBzvABT5q9ps3nUXQNfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHLi/nur rdsL68gkGhO/JdeaJHQfMB8GA1UdIwQYMBaAFMmdYAfNR32Js1nDPJPKqbW7EGAa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0YwMy82NEY2QzI4RTBE RTExMUVBOTk2Njk4ODVDNEY5QUUwMi95WjFnQjgxSGZZbXpXY004azhxcHRic1FZ Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3laMWdCODFIZllteldjTThrOHFwdGJzUVlCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0YwMy82NEY2QzI4RTBERTExMUVBOTk2Njk4ODVDNEY5QUUwMi95WjFnQjgxSGZZ bXpXY004azhxcHRic1FZQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArFoJCM374MIjlYTZ+u7h4zHKg6YoN10+vxFYfJXzPqZZxsJQiugQq MK87rUWREEEntBTtUL5u020wIEdF9iNQ7iW81UHKz2BvZA5bkv+GoP0HHGWfvcmi qnG2hg1c4kuuWql1sjN6RatNapdy7QCK6fLGdgj23EDKC3gg2BbWPKEI428n+bOE bjS/z7JrkBQGmvWMkhjrt4yP/h2ZQ377HLympA33arRSoHOjA/X53SKml+M3cEcq LPCFEZwT2po/y6QvedHs5pdRtN77b3CaYkhTF1kHR9ItMxzJxC06bGNf1lhWvdVV R6PbLxpTC0jJMz5zam9yPZlxao3PsXpP -----END CERTIFICATE-----Generated at Sun Apr 13 06:00:10 2025 by rpki-client