$ rpki-client -vvf rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft File: NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft (raw, json) Hash identifier: vXuy+Vr6MuE4KxFtZfIci71xwutAGMH0q3ulGIq4F/4= Subject key identifier: 0D:EB:9D:EA:D7:D9:99:6C:1C:49:A8:BF:F7:45:65:EA:DC:12:4C:5C Authority key identifier: 35:81:4B:15:FB:83:49:39:EE:A8:5C:C4:A6:7C:4E:1A:6A:85:A4:F5 Certificate issuer: /CN=A917FACB/serialNumber=35814B15FB834939EEA85CC4A67C4E1A6A85A4F5 Certificate serial: 43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft Manifest number: 41 Signing time: Sat 05 Apr 2025 06:46:32 +0000 Manifest this update: Sat 05 Apr 2025 06:46:32 +0000 Manifest next update: Sat 12 Apr 2025 06:46:32 +0000 Files and hashes: 1: NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl (hash: HPmpN/cSSpXRdQo5Nzp3cqGGUQ+QYcRerEhrpCoP00g=) 2: 81FC16A6B46511EF86BEAC6BC4F9AE02.roa (hash: 3WNjmfHJVoQBd0rENGvmjv5pVSXIpaYmoJ+4Year8YI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 06:46:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67 (0x43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FACB Validity Not Before: Apr 5 06:46:32 2025 GMT Not After : Apr 12 06:46:32 2025 GMT Subject: CN=67f0d1c8-a587 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:37:3a:8d:8c:0f:76:ad:73:03:a1:d7:f5:17: c8:a7:c7:66:dc:3a:d8:cc:7f:d9:38:13:3d:46:b8: 1a:ea:9f:61:92:5c:8e:b5:29:ae:4a:60:45:c9:42: 5f:7c:1d:d9:c9:7e:6d:1e:09:29:3c:15:4b:a6:3c: 78:9d:b9:d4:2e:82:75:ec:18:f5:e7:a1:89:3f:03: 5f:92:0f:29:3f:40:fd:07:a1:8b:6a:ef:49:2d:6f: 57:1a:74:ca:b1:bf:0d:cb:15:0c:87:9c:6e:04:39: 8c:f0:76:c1:23:22:28:6d:eb:a2:be:6e:40:c8:59: 02:ab:74:f2:df:37:94:48:bd:72:1c:62:11:83:ed: ee:42:46:72:e6:8b:30:24:d5:c5:8c:3b:3b:00:f4: d3:95:7f:9e:e2:9a:79:44:a7:e5:6d:2a:19:b9:a8: c5:85:3b:65:dd:16:86:5a:fe:b7:52:19:ed:34:20: 3e:ce:42:f8:d9:d3:a8:8f:70:4b:95:ca:7e:4d:27: c7:bb:f6:fa:55:f8:4b:93:1e:84:64:92:05:1a:3c: 17:9f:b3:8b:4e:e2:43:4c:58:4d:da:97:e9:49:21: 66:ce:40:89:6c:c5:38:9b:2c:15:39:74:92:d0:24: ec:55:42:27:11:d6:34:f1:c0:df:fe:94:a8:a3:f9: 17:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:EB:9D:EA:D7:D9:99:6C:1C:49:A8:BF:F7:45:65:EA:DC:12:4C:5C X509v3 Authority Key Identifier: keyid:35:81:4B:15:FB:83:49:39:EE:A8:5C:C4:A6:7C:4E:1A:6A:85:A4:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:34:dd:e3:c5:d1:53:fd:36:3c:7b:0a:e3:22:83:49:b2:60: be:ad:b2:b0:de:61:84:a1:e3:c9:07:b0:ae:58:5d:c9:56:b7: ff:7b:27:2e:ef:83:7e:c7:ae:58:34:26:a7:9c:87:64:17:68: 27:bd:27:c2:b7:82:b9:3b:dc:e1:bf:53:4e:e2:24:0d:c0:9f: 51:2f:92:2f:f2:f8:e6:d5:d9:38:da:64:b2:0c:7a:c0:c1:62: 09:20:e9:bd:95:62:a8:92:30:3a:45:45:0a:ff:d5:2c:e8:84: c1:43:67:57:9d:27:f9:6a:cf:24:94:ac:20:1e:15:87:6e:94: 20:72:8c:b0:fe:ad:59:56:6e:76:a1:6d:82:59:50:38:47:98: e3:d5:6c:ba:91:b7:61:0e:7f:1e:f7:f7:0c:38:bb:2c:83:74: df:81:e7:63:79:a7:e5:fb:b2:f5:78:b1:a3:62:02:46:9e:27: 25:b9:15:d4:49:5a:24:20:f2:2c:d1:69:00:d9:c7:2f:c1:74: fd:02:b0:16:08:38:d8:14:0d:56:12:04:16:33:dd:50:64:c4: 7a:5d:d6:48:8c:51:f2:6d:61:fc:4d:d5:a2:68:c7:d4:0d:df: 86:0f:82:43:d3:df:3d:e5:24:75:2b:6a:2e:4d:e9:35:79:dd: ee:e7:89:23 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RkFDQjExMC8GA1UEBRMoMzU4MTRCMTVGQjgzNDkzOUVFQTg1Q0M0QTY3QzRFMUE2 QTg1QTRGNTAeFw0yNTA0MDUwNjQ2MzJaFw0yNTA0MTIwNjQ2MzJaMBgxFjAUBgNV BAMTDTY3ZjBkMWM4LWE1ODcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxNzqNjA92rXMDodf1F8inx2bcOtjMf9k4Ez1GuBrqn2GSXI61Ka5KYEXJQl98 HdnJfm0eCSk8FUumPHidudQugnXsGPXnoYk/A1+SDyk/QP0HoYtq70ktb1cadMqx vw3LFQyHnG4EOYzwdsEjIiht66K+bkDIWQKrdPLfN5RIvXIcYhGD7e5CRnLmizAk 1cWMOzsA9NOVf57imnlEp+VtKhm5qMWFO2XdFoZa/rdSGe00ID7OQvjZ06iPcEuV yn5NJ8e79vpV+EuTHoRkkgUaPBefs4tO4kNMWE3al+lJIWbOQIlsxTibLBU5dJLQ JOxVQicR1jTxwN/+lKij+ReZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUDeud6tfZ mWwcSai/90Vl6twSTFwwHwYDVR0jBBgwFoAUNYFLFfuDSTnuqFzEpnxOGmqFpPUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdGQUNCLzI1RDExODg2QjQ2 NTExRUY5QkZCQUE2N0M0RjlBRTAyL05ZRkxGZnVEU1RudXFGekVwbnhPR21xRnBQ VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTllGTEZmdURTVG51cUZ6RXBueE9HbXFGcFBVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdG QUNCLzI1RDExODg2QjQ2NTExRUY5QkZCQUE2N0M0RjlBRTAyL05ZRkxGZnVEU1Ru dXFGekVwbnhPR21xRnBQVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEo03ePF0VP9Njx7CuMig0myYL6tsrDeYYSh48kHsK5YXclWt/97Jy7v g37Hrlg0Jqech2QXaCe9J8K3grk73OG/U07iJA3An1Evki/y+ObV2TjaZLIMesDB Ygkg6b2VYqiSMDpFRQr/1SzohMFDZ1edJ/lqzySUrCAeFYdulCByjLD+rVlWbnah bYJZUDhHmOPVbLqRt2EOfx739ww4uyyDdN+B52N5p+X7svV4saNiAkaeJyW5FdRJ WiQg8izRaQDZxy/BdP0CsBYIONgUDVYSBBYz3VBkxHpd1kiMUfJtYfxN1aJox9QN 34YPgkPT3z3lJHUrai5N6TV53e7niSM= -----END CERTIFICATE-----Generated at Sun Apr 6 01:27:42 2025 by rpki-client