$ rpki-client -vvf rpki.apnic.net/member_repository/A918DEF0/820309C20A5F11EEB4FED265C4F9AE02/YRQatT_Urx2yqGr-fsj-yX1eodU.mft File: YRQatT_Urx2yqGr-fsj-yX1eodU.mft (raw, json) Hash identifier: XDDpWCKjkRJrxiYh05PueC2djP6KM7XewOnW3/RfWNY= Subject key identifier: E5:73:B8:17:0F:B0:0C:E7:60:45:5A:EA:9D:0A:5A:F6:BB:92:60:80 Authority key identifier: 61:14:1A:B5:3F:D4:AF:1D:B2:A8:6A:FE:7E:C8:FE:C9:7D:5E:A1:D5 Certificate issuer: /CN=A918DEF0/serialNumber=61141AB53FD4AF1DB2A86AFE7EC8FEC97D5EA1D5 Certificate serial: 0157 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRQatT_Urx2yqGr-fsj-yX1eodU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918DEF0/820309C20A5F11EEB4FED265C4F9AE02/YRQatT_Urx2yqGr-fsj-yX1eodU.mft Manifest number: 0152 Signing time: Sat 29 Mar 2025 03:38:20 +0000 Manifest this update: Sat 29 Mar 2025 03:38:19 +0000 Manifest next update: Sat 05 Apr 2025 03:38:19 +0000 Files and hashes: 1: YRQatT_Urx2yqGr-fsj-yX1eodU.crl (hash: ZbcZCZMAnYqtC70sS8u0bKH8rLwqt9Bhdj72u5tPcas=) 2: 7F4ED0A0B83011EFA5108619C4F9AE02.roa (hash: 0rI/XzwPRIVwwabd+r6TwmOXeplcoAxng7nnkYKOe44=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918DEF0/820309C20A5F11EEB4FED265C4F9AE02/YRQatT_Urx2yqGr-fsj-yX1eodU.crl rsync://rpki.apnic.net/member_repository/A918DEF0/820309C20A5F11EEB4FED265C4F9AE02/YRQatT_Urx2yqGr-fsj-yX1eodU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRQatT_Urx2yqGr-fsj-yX1eodU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 03:38:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 343 (0x157) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918DEF0 Validity Not Before: Mar 29 03:38:19 2025 GMT Not After : Apr 5 03:38:19 2025 GMT Subject: CN=67e76b2c-6368 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:3b:61:57:6f:41:4f:5a:1f:05:dd:4e:20:51: 4b:82:ed:76:5f:28:e4:f6:51:8c:6a:1b:b6:b0:e7: b7:71:5a:57:98:17:51:2e:82:70:93:ae:9b:71:88: a6:3f:ca:20:7e:8b:a0:a1:1c:be:f7:e8:0a:de:da: 02:e3:4d:c6:51:49:ac:c8:c3:4b:c4:d2:32:13:cb: 39:70:2f:a3:9c:f3:e5:ec:ae:40:2e:c9:9a:7d:f4: cd:c9:46:e7:59:3c:08:44:77:24:52:b6:84:61:3c: cf:e5:e2:75:97:95:2f:5c:83:5a:03:e8:d9:4f:64: 06:26:ad:b4:42:69:15:5f:5e:93:e9:81:b0:e9:4a: 11:c2:fb:f3:08:0a:88:bc:52:15:c4:66:64:3f:38: a4:60:fa:74:b8:78:54:3b:de:c3:40:8e:57:ad:22: 2f:af:03:3e:69:32:fd:24:0a:23:bf:07:43:2f:13: 8d:1e:9b:e0:7c:9e:31:b9:c5:fb:40:61:07:68:87: 31:20:f9:de:eb:fa:fe:de:16:07:fb:cc:20:57:b9: e6:d9:49:1d:90:dc:c8:17:93:f1:88:c9:ed:e1:80: 26:bb:02:12:32:4d:ae:4d:d6:9d:fa:3e:41:69:78: bf:cd:11:29:99:db:62:6d:e4:85:0e:83:b8:29:81: ef:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:73:B8:17:0F:B0:0C:E7:60:45:5A:EA:9D:0A:5A:F6:BB:92:60:80 X509v3 Authority Key Identifier: keyid:61:14:1A:B5:3F:D4:AF:1D:B2:A8:6A:FE:7E:C8:FE:C9:7D:5E:A1:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918DEF0/820309C20A5F11EEB4FED265C4F9AE02/YRQatT_Urx2yqGr-fsj-yX1eodU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRQatT_Urx2yqGr-fsj-yX1eodU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918DEF0/820309C20A5F11EEB4FED265C4F9AE02/YRQatT_Urx2yqGr-fsj-yX1eodU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:9e:a0:1d:d9:9e:75:4d:a9:4c:f5:d7:e2:52:56:1b:a2:38: 57:cc:b1:9d:27:00:17:9a:9e:a7:22:e8:a1:65:8d:f8:fd:c9: 7d:79:de:87:04:95:c5:b6:8a:35:5f:00:d7:63:b8:35:18:ff: ae:1f:70:74:06:52:73:cd:b9:2e:0c:19:74:5f:cb:91:a3:cf: b6:1d:95:b1:6a:55:b7:65:b3:74:7b:50:9a:d6:1e:c7:07:fb: a3:82:ba:03:0a:da:e4:22:67:e0:33:76:c6:8b:e7:e3:c9:2e: 3d:50:5a:ae:48:71:48:c0:5e:2a:e9:60:5f:f7:71:c1:8a:34: d0:5f:f6:bf:9d:80:f0:7f:88:b4:dd:11:44:62:2b:4f:29:b5: 38:61:c3:bc:0f:a9:60:04:fd:a9:07:0b:03:36:b3:f3:c7:93: 91:c1:1d:d0:3a:81:06:69:22:46:77:78:63:42:e2:29:22:11: 13:99:28:49:b7:1c:88:38:44:b0:91:39:2a:aa:31:9e:a0:2c: fd:10:f5:ed:8b:52:89:d6:1a:2f:1d:8a:f0:7c:ff:ac:1f:33: 41:ee:4c:22:db:df:fc:8b:90:07:e0:2f:3e:33:90:b4:a6:20: eb:34:5a:ff:fc:a8:e6:9b:b8:7b:71:6b:fb:bc:ca:7a:f4:9b: e5:a2:b9:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OERFRjAxMTAvBgNVBAUTKDYxMTQxQUI1M0ZENEFGMURCMkE4NkFGRTdFQzhGRUM5 N0Q1RUExRDUwHhcNMjUwMzI5MDMzODE5WhcNMjUwNDA1MDMzODE5WjAYMRYwFAYD VQQDEw02N2U3NmIyYy02MzY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArDthV29BT1ofBd1OIFFLgu12Xyjk9lGMahu2sOe3cVpXmBdRLoJwk66bcYim P8ogfougoRy+9+gK3toC403GUUmsyMNLxNIyE8s5cC+jnPPl7K5ALsmaffTNyUbn WTwIRHckUraEYTzP5eJ1l5UvXINaA+jZT2QGJq20QmkVX16T6YGw6UoRwvvzCAqI vFIVxGZkPzikYPp0uHhUO97DQI5XrSIvrwM+aTL9JAojvwdDLxONHpvgfJ4xucX7 QGEHaIcxIPne6/r+3hYH+8wgV7nm2UkdkNzIF5PxiMnt4YAmuwISMk2uTdad+j5B aXi/zREpmdtibeSFDoO4KYHvfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOVzuBcP sAznYEVa6p0KWva7kmCAMB8GA1UdIwQYMBaAFGEUGrU/1K8dsqhq/n7I/sl9XqHV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4REVGMC84MjAzMDlDMjBB NUYxMUVFQjRGRUQyNjVDNEY5QUUwMi9ZUlFhdFRfVXJ4MnlxR3ItZnNqLXlYMWVv ZFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lSUWF0VF9VcngyeXFHci1mc2oteVgxZW9kVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 REVGMC84MjAzMDlDMjBBNUYxMUVFQjRGRUQyNjVDNEY5QUUwMi9ZUlFhdFRfVXJ4 MnlxR3ItZnNqLXlYMWVvZFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1nqAd2Z51TalM9dfiUlYbojhXzLGdJwAXmp6nIuihZY34/cl9ed6H BJXFtoo1XwDXY7g1GP+uH3B0BlJzzbkuDBl0X8uRo8+2HZWxalW3ZbN0e1Ca1h7H B/ujgroDCtrkImfgM3bGi+fjyS49UFquSHFIwF4q6WBf93HBijTQX/a/nYDwf4i0 3RFEYitPKbU4YcO8D6lgBP2pBwsDNrPzx5ORwR3QOoEGaSJGd3hjQuIpIhETmShJ txyIOESwkTkqqjGeoCz9EPXti1KJ1hovHYrwfP+sHzNB7kwi29/8i5AH4C8+M5C0 piDrNFr//Kjmm7h7cWv7vMp69Jvlormj -----END CERTIFICATE-----Generated at Fri Apr 4 22:42:15 2025 by rpki-client