$ rpki-client -vvf rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft File: YBi5hcOZywcxwWNM_ktHkS8q9dE.mft (raw, json) Hash identifier: tgampXtUThingbG9ZkKmakf2D/Nbm1EDnLTSaS5a0jE= Subject key identifier: 6E:60:4E:ED:98:35:6B:FC:46:93:3E:D9:7C:D8:DA:E6:42:EB:13:A0 Authority key identifier: 60:18:B9:85:C3:99:CB:07:31:C1:63:4C:FE:4B:47:91:2F:2A:F5:D1 Certificate issuer: /CN=A9183BA5/serialNumber=6018B985C399CB0731C1634CFE4B47912F2AF5D1 Certificate serial: 01BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft Manifest number: 01BB Signing time: Wed 09 Apr 2025 02:05:56 +0000 Manifest this update: Wed 09 Apr 2025 02:05:55 +0000 Manifest next update: Wed 16 Apr 2025 02:05:55 +0000 Files and hashes: 1: YBi5hcOZywcxwWNM_ktHkS8q9dE.crl (hash: ySUCYn0t8boxYN4jxe/ALPutMVoEgWR3mZW3N3axshk=) 2: C386C06A706211EDA9CCDB76C4F9AE02.roa (hash: kCv4bHKTur2lJoL7asgYL11dC+z1ZsHw44gWQxYmfaI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.crl rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 02:05:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 447 (0x1bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9183BA5 Validity Not Before: Apr 9 02:05:55 2025 GMT Not After : Apr 16 02:05:55 2025 GMT Subject: CN=67f5d604-09dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:90:2e:ee:3b:0c:fe:c0:e9:6b:43:b8:6e:53: f4:db:14:d2:ae:56:2d:a2:77:b4:f7:f7:33:b2:36: 3b:9e:cf:f7:92:a3:57:8f:03:b5:26:01:6f:e9:ac: d6:d9:25:b6:3a:b6:a8:ab:2c:b6:ec:6c:78:08:17: 72:8f:89:52:56:35:f6:b8:21:1c:46:1a:4f:25:f6: 5c:8a:f2:02:c2:70:05:c4:37:36:aa:13:5f:2f:b4: 66:ce:6e:0b:e4:4f:d6:14:10:81:aa:c9:04:ca:aa: c8:9f:a2:4b:30:b7:1d:88:34:91:b8:e8:ee:e3:f8: e7:03:07:90:95:eb:cd:2c:4b:2d:aa:c5:7f:aa:7f: ff:9d:b6:c1:72:b7:52:c2:7c:b5:00:5f:6c:26:dd: 64:22:e1:2d:f4:5e:7b:82:cc:7e:b0:d6:11:cf:95: 80:03:b6:94:f3:27:c8:d8:a0:c7:3c:d3:a2:24:c9: e2:c3:4d:c7:de:88:25:a2:1d:31:54:c5:e1:4b:9f: 21:2f:d3:1b:11:c0:c4:2a:3e:d0:c7:d6:6d:18:ca: d8:e4:98:cf:46:c1:f8:40:0f:c8:87:cf:50:28:b3: f3:3d:c0:d7:8e:ce:06:b2:6f:14:0e:bf:97:a5:67: 62:d1:07:21:86:66:71:8c:3e:4e:d7:1c:57:ff:5c: 50:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:60:4E:ED:98:35:6B:FC:46:93:3E:D9:7C:D8:DA:E6:42:EB:13:A0 X509v3 Authority Key Identifier: keyid:60:18:B9:85:C3:99:CB:07:31:C1:63:4C:FE:4B:47:91:2F:2A:F5:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:c4:8f:32:73:5e:7d:d9:64:78:aa:55:37:0e:f6:98:a7:e2: 1c:12:cc:f7:91:be:ef:6d:11:ee:e4:eb:f9:f8:dd:f2:14:64: bd:57:1c:c9:68:d9:99:4e:01:3d:fa:e4:f0:5b:9a:ac:34:f3: e4:d2:94:de:f0:a3:b8:d5:32:34:a1:8e:81:00:93:44:c2:f9: 85:0d:39:a8:87:9d:72:98:92:42:3f:cf:ff:32:55:3d:95:82: e3:25:18:db:d9:18:41:64:05:d0:91:d2:0e:77:de:59:a4:72: 27:e9:72:c4:eb:21:c6:97:c6:09:08:d2:a1:39:15:ae:c5:b9: 52:15:f8:f1:30:c6:c6:e6:8b:a1:6a:7f:2c:8b:1a:a4:3c:f7: a3:0c:1c:a3:65:d5:b3:f7:a8:35:b1:07:e7:44:be:3e:f1:67: 86:fb:94:7f:34:ce:bf:f8:46:83:df:9a:73:93:a3:72:9a:28: 77:94:c1:1a:51:29:7e:2d:6a:d0:af:c1:ba:f3:01:90:01:95: c3:fa:74:36:93:a0:11:8f:f2:0e:33:37:20:43:ae:ec:c8:71: 9e:8a:0e:7f:3a:52:8e:00:8b:3c:05:1e:7f:12:1b:e8:03:05: e7:fd:83:a2:f0:96:d7:fc:29:13:ec:96:f8:4c:aa:6d:8d:2f: f7:2d:f6:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAb8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODNCQTUxMTAvBgNVBAUTKDYwMThCOTg1QzM5OUNCMDczMUMxNjM0Q0ZFNEI0Nzkx MkYyQUY1RDEwHhcNMjUwNDA5MDIwNTU1WhcNMjUwNDE2MDIwNTU1WjAYMRYwFAYD VQQDEw02N2Y1ZDYwNC0wOWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAupAu7jsM/sDpa0O4blP02xTSrlYtone09/czsjY7ns/3kqNXjwO1JgFv6azW 2SW2Oraoqyy27Gx4CBdyj4lSVjX2uCEcRhpPJfZcivICwnAFxDc2qhNfL7Rmzm4L 5E/WFBCBqskEyqrIn6JLMLcdiDSRuOju4/jnAweQlevNLEstqsV/qn//nbbBcrdS wny1AF9sJt1kIuEt9F57gsx+sNYRz5WAA7aU8yfI2KDHPNOiJMniw03H3ogloh0x VMXhS58hL9MbEcDEKj7Qx9ZtGMrY5JjPRsH4QA/Ih89QKLPzPcDXjs4Gsm8UDr+X pWdi0QchhmZxjD5O1xxX/1xQOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG5gTu2Y NWv8RpM+2XzY2uZC6xOgMB8GA1UdIwQYMBaAFGAYuYXDmcsHMcFjTP5LR5EvKvXR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4M0JBNS8yODYyMENDNDcw NUUxMUVEQkMwN0YxNThDNEY5QUUwMi9ZQmk1aGNPWnl3Y3h3V05NX2t0SGtTOHE5 ZEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lCaTVoY09aeXdjeHdXTk1fa3RIa1M4cTlkRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 M0JBNS8yODYyMENDNDcwNUUxMUVEQkMwN0YxNThDNEY5QUUwMi9ZQmk1aGNPWnl3 Y3h3V05NX2t0SGtTOHE5ZEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjxI8yc1592WR4qlU3DvaYp+IcEsz3kb7vbRHu5Ov5+N3yFGS9VxzJ aNmZTgE9+uTwW5qsNPPk0pTe8KO41TI0oY6BAJNEwvmFDTmoh51ymJJCP8//MlU9 lYLjJRjb2RhBZAXQkdIOd95ZpHIn6XLE6yHGl8YJCNKhORWuxblSFfjxMMbG5ouh an8sixqkPPejDByjZdWz96g1sQfnRL4+8WeG+5R/NM6/+EaD35pzk6Nymih3lMEa USl+LWrQr8G68wGQAZXD+nQ2k6ARj/IOMzcgQ67syHGeig5/OlKOAIs8BR5/Ehvo AwXn/YOi8JbX/CkT7Jb4TKptjS/3LfZJ -----END CERTIFICATE-----Generated at Wed Apr 9 07:43:21 2025 by rpki-client