$ rpki-client -vvf rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/RYzdyj6PtkydGiNJJSi6d3_N0jQ.mft File: RYzdyj6PtkydGiNJJSi6d3_N0jQ.mft (raw, json) Hash identifier: XAA8im9RfKspEx7kQe5KGT9PsqIqLWojq2RdeFdHgKI= Subject key identifier: BF:5F:EE:42:72:72:47:2A:8C:8A:0C:9F:5E:9F:F3:4C:52:FC:41:0B Authority key identifier: 45:8C:DD:CA:3E:8F:B6:4C:9D:1A:23:49:25:28:BA:77:7F:CD:D2:34 Certificate issuer: /CN=A9174589/serialNumber=458CDDCA3E8FB64C9D1A23492528BA777FCDD234 Certificate serial: 013A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYzdyj6PtkydGiNJJSi6d3_N0jQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/RYzdyj6PtkydGiNJJSi6d3_N0jQ.mft Manifest number: 012D Signing time: Thu 03 Apr 2025 04:01:05 +0000 Manifest this update: Thu 03 Apr 2025 04:01:04 +0000 Manifest next update: Thu 10 Apr 2025 04:01:04 +0000 Files and hashes: 1: RYzdyj6PtkydGiNJJSi6d3_N0jQ.crl (hash: iygXm/+q1hQibz9kpUvKg7YEscu5/y3zZNsrsapYnLI=) 2: 5D4FB6AA9AB711EE86E1D058C4F9AE02.roa (hash: /lY6MRoQmBol07GaZSzAkv2Tfx/7fsrdKUpKLuZMxDs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/RYzdyj6PtkydGiNJJSi6d3_N0jQ.crl rsync://rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/RYzdyj6PtkydGiNJJSi6d3_N0jQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYzdyj6PtkydGiNJJSi6d3_N0jQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 04:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 314 (0x13a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174589 Validity Not Before: Apr 3 04:01:04 2025 GMT Not After : Apr 10 04:01:04 2025 GMT Subject: CN=67ee0800-8cc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:32:80:da:fd:03:3d:02:b6:98:c6:5a:39:a5: aa:a1:05:a0:fe:e8:3a:85:6d:b5:fe:0a:2b:5e:8d: ba:3c:39:ea:04:09:20:26:8a:87:36:23:aa:b1:fb: c7:12:a7:3c:71:95:d8:c1:66:2f:14:f4:49:c4:f2: 95:1d:87:a4:a2:16:99:71:0c:a7:94:7c:2e:0a:94: 42:f2:50:0e:41:db:cc:13:15:45:21:c8:f2:f3:b0: ba:47:54:05:27:24:46:77:35:ea:61:8c:7e:f5:17: c4:69:29:98:4a:dc:ef:ae:a3:6d:b2:0a:ec:41:cb: 2e:eb:3c:fa:b2:56:96:f7:ad:6f:e3:ca:23:dc:28: 83:6f:10:c0:96:b3:b9:ed:24:b4:83:e1:c5:da:a3: b4:35:92:0c:d6:55:b2:74:c1:be:40:3c:c5:8e:94: f3:7c:5f:5d:12:59:05:b3:f2:0d:6f:2a:1d:0a:ad: 46:b8:4c:47:0e:68:75:fb:15:a3:64:d8:34:14:12: ab:ac:77:81:2d:e5:55:c6:43:31:d0:52:18:c9:bd: c3:6d:1c:e4:aa:af:1b:46:50:f8:85:d8:3e:4c:82: 15:66:15:fe:78:1b:8f:e9:b6:18:c0:f2:59:ca:60: 38:a9:d6:24:30:77:fe:99:e5:30:18:81:3a:4a:83: 6e:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:5F:EE:42:72:72:47:2A:8C:8A:0C:9F:5E:9F:F3:4C:52:FC:41:0B X509v3 Authority Key Identifier: keyid:45:8C:DD:CA:3E:8F:B6:4C:9D:1A:23:49:25:28:BA:77:7F:CD:D2:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/RYzdyj6PtkydGiNJJSi6d3_N0jQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYzdyj6PtkydGiNJJSi6d3_N0jQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/RYzdyj6PtkydGiNJJSi6d3_N0jQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:d4:61:37:ff:f8:57:ac:45:9f:a8:3d:76:71:65:db:94:61: 54:2a:ec:f9:91:c8:91:83:5d:88:d9:61:73:fe:38:b5:70:53: 41:17:1a:0c:e9:1f:65:e1:0a:2b:d0:49:5f:ed:74:9c:3c:d7: ad:22:11:8f:95:8c:ec:ad:c2:a0:d6:29:5a:84:8f:70:12:c0: a3:d3:ec:5f:42:77:10:6a:3f:d6:87:84:30:11:b6:77:07:2e: 95:f8:a5:d6:c9:95:c4:37:d9:af:d4:d6:c8:15:00:05:30:32: 06:70:45:c9:6f:47:e4:1b:54:83:53:46:95:1d:c2:82:4d:18: 71:5f:4c:98:b1:8f:4f:7b:a8:c6:6e:0d:b1:57:5e:c3:ed:04: 04:9d:a0:d1:e2:71:32:ad:0b:2b:33:d4:10:2f:43:31:0c:01: f2:c9:b8:3f:a1:91:93:d5:da:9f:f6:23:e0:5c:96:5e:f5:12: 92:ed:ac:20:7d:4d:25:57:27:f3:ac:ae:3b:a5:cf:c2:29:a1: aa:9d:ca:e7:3d:68:9a:b2:6b:4b:53:02:69:c0:1b:e3:48:99: 74:d0:8f:cb:32:ff:dd:68:38:21:7e:bf:28:2d:fb:da:81:4b: b7:54:1c:92:04:0f:e7:f9:b9:87:13:90:86:ca:f3:d1:74:a1: 04:3e:36:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQ1ODkxMTAvBgNVBAUTKDQ1OENERENBM0U4RkI2NEM5RDFBMjM0OTI1MjhCQTc3 N0ZDREQyMzQwHhcNMjUwNDAzMDQwMTA0WhcNMjUwNDEwMDQwMTA0WjAYMRYwFAYD VQQDEw02N2VlMDgwMC04Y2MxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtzKA2v0DPQK2mMZaOaWqoQWg/ug6hW21/gorXo26PDnqBAkgJoqHNiOqsfvH Eqc8cZXYwWYvFPRJxPKVHYekohaZcQynlHwuCpRC8lAOQdvMExVFIcjy87C6R1QF JyRGdzXqYYx+9RfEaSmYStzvrqNtsgrsQcsu6zz6slaW961v48oj3CiDbxDAlrO5 7SS0g+HF2qO0NZIM1lWydMG+QDzFjpTzfF9dElkFs/INbyodCq1GuExHDmh1+xWj ZNg0FBKrrHeBLeVVxkMx0FIYyb3DbRzkqq8bRlD4hdg+TIIVZhX+eBuP6bYYwPJZ ymA4qdYkMHf+meUwGIE6SoNujwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL9f7kJy ckcqjIoMn16f80xS/EELMB8GA1UdIwQYMBaAFEWM3co+j7ZMnRojSSUound/zdI0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDU4OS81RkM2MjdDNDYx QzQxMUVFQkIxNTFDNEJDNEY5QUUwMi9SWXpkeWo2UHRreWRHaU5KSlNpNmQzX04w alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JZemR5ajZQdGt5ZEdpTkpKU2k2ZDNfTjBqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDU4OS81RkM2MjdDNDYxQzQxMUVFQkIxNTFDNEJDNEY5QUUwMi9SWXpkeWo2UHRr eWRHaU5KSlNpNmQzX04walEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBe1GE3//hXrEWfqD12cWXblGFUKuz5kciRg12I2WFz/ji1cFNBFxoM 6R9l4Qor0Elf7XScPNetIhGPlYzsrcKg1ilahI9wEsCj0+xfQncQaj/Wh4QwEbZ3 By6V+KXWyZXEN9mv1NbIFQAFMDIGcEXJb0fkG1SDU0aVHcKCTRhxX0yYsY9Pe6jG bg2xV17D7QQEnaDR4nEyrQsrM9QQL0MxDAHyybg/oZGT1dqf9iPgXJZe9RKS7awg fU0lVyfzrK47pc/CKaGqncrnPWiasmtLUwJpwBvjSJl00I/LMv/daDghfr8oLfva gUu3VBySBA/n+bmHE5CGyvPRdKEEPjYH -----END CERTIFICATE-----Generated at Fri Apr 4 22:26:57 2025 by rpki-client