$ rpki-client -vvf rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.mft File: ypVZFPmLL8kWpFEtpyq3WhHFK9A.mft (raw, json) Hash identifier: WQASz4IGrpPGbAY5Q/04rgg4hPKQ8KWXMSoy65uSQxg= Subject key identifier: 12:E0:DA:E4:E5:21:AE:22:45:19:6A:AA:6D:F6:B4:F8:87:D3:A2:C7 Authority key identifier: CA:95:59:14:F9:8B:2F:C9:16:A4:51:2D:A7:2A:B7:5A:11:C5:2B:D0 Certificate issuer: /CN=A9193037/serialNumber=CA955914F98B2FC916A4512DA72AB75A11C52BD0 Certificate serial: 08EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypVZFPmLL8kWpFEtpyq3WhHFK9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.mft Manifest number: 08E2 Signing time: Wed 16 Apr 2025 20:12:47 +0000 Manifest this update: Wed 16 Apr 2025 20:12:46 +0000 Manifest next update: Wed 23 Apr 2025 20:12:46 +0000 Files and hashes: 1: ypVZFPmLL8kWpFEtpyq3WhHFK9A.crl (hash: c6vdwafbevFiUrHo/3vO0py2bie42RdzSTI1k0YBMOE=) 2: D9C523A0B05A11EAA233021EC4F9AE02.roa (hash: plSH71jqFHiqVOcppEgGivQOT8E3EqzsKsifhjqPdW8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.crl rsync://rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypVZFPmLL8kWpFEtpyq3WhHFK9A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 20:12:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2282 (0x8ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193037, serialNumber=CA955914F98B2FC916A4512DA72AB75A11C52BD0 Validity Not Before: Apr 16 20:12:46 2025 GMT Not After : Apr 23 20:12:46 2025 GMT Subject: CN=68000f3f-54ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:5f:0f:6b:35:02:41:49:0f:2a:a8:a4:87:f2: 02:a3:ff:96:00:bd:36:5e:55:fc:29:df:3e:1d:ed: cb:e7:e2:15:23:53:46:7a:87:c5:73:c8:70:64:25: ef:a2:f7:e6:15:f2:fe:21:4e:80:06:60:8d:ac:03: 73:eb:18:79:39:5e:95:e6:25:a5:10:e7:61:2f:e7: b2:42:f4:48:85:03:45:3a:4f:ba:f6:37:e1:42:38: 9d:b8:e8:d4:e4:84:ce:ef:13:08:fd:37:4b:e9:0e: f9:99:84:55:45:5d:da:51:25:22:01:06:ec:6d:a6: dc:b6:37:ac:97:4c:de:05:a5:de:e6:2b:6e:02:17: c4:62:2c:07:7c:c0:b0:ce:50:48:b8:60:60:95:b4: 76:e0:fe:26:21:e6:0c:9f:ae:29:4e:6b:d4:41:94: e0:1a:7a:25:17:cb:cb:69:92:6d:c3:6c:d3:b6:d6: 67:7f:28:c0:5b:55:61:9b:58:44:ec:54:cd:c9:42: 66:be:cf:d4:ef:dd:07:6e:73:79:97:c1:3d:f5:52: 84:2f:2d:3a:55:cb:d1:21:25:1e:2f:8e:11:01:28: 05:48:85:b9:67:57:2b:49:59:a2:e5:44:29:ba:eb: 9a:1b:c9:a3:16:96:a2:58:fa:5b:69:6d:f0:0f:75: 98:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:E0:DA:E4:E5:21:AE:22:45:19:6A:AA:6D:F6:B4:F8:87:D3:A2:C7 X509v3 Authority Key Identifier: keyid:CA:95:59:14:F9:8B:2F:C9:16:A4:51:2D:A7:2A:B7:5A:11:C5:2B:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypVZFPmLL8kWpFEtpyq3WhHFK9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:4f:7f:9e:2a:f4:bc:a1:9a:71:0a:01:5b:3b:53:ea:fd:6d: 06:dd:11:04:6c:9a:66:61:61:20:8a:9d:a0:0a:3f:ee:c9:2c: fe:e5:02:82:a0:84:f0:f5:b2:47:ea:69:5a:ea:08:78:12:20: 6e:f7:fe:a5:90:e9:50:82:62:b3:55:b2:ca:db:fb:ee:78:ef: f3:ff:72:8d:18:77:01:6c:0d:cd:40:3a:e8:1c:c5:f3:9e:e8: 4c:0d:0b:0f:e3:1e:7a:ee:b4:78:e1:cb:6f:1d:c2:54:df:8f: e2:7c:e4:dc:36:cc:f0:cd:0b:78:83:65:bb:7b:37:f9:03:fd: f7:19:a1:84:ea:67:6a:aa:4b:a1:78:dd:48:a3:10:fa:cd:f7: 3b:f5:3c:d8:d4:7e:ab:14:e2:cf:a0:54:18:35:ed:c3:9f:4b: 3e:d3:62:1c:2c:74:4f:39:e7:ef:65:18:74:c6:cc:28:4b:46: 61:d0:d5:13:1d:30:32:88:d5:83:41:a0:fa:85:f5:14:3b:d6: f8:ec:23:c4:7c:cc:8b:3d:4a:4f:47:d7:42:66:83:e9:f0:43: 10:d0:70:2e:a0:bc:a4:14:9e:b4:22:97:ae:a0:02:b6:18:e9: a0:40:16:05:2f:bf:f0:79:f2:a3:81:d3:6d:44:d5:ed:2e:5d: 4c:94:ae:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTMwMzcxMTAvBgNVBAUTKENBOTU1OTE0Rjk4QjJGQzkxNkE0NTEyREE3MkFCNzVB MTFDNTJCRDAwHhcNMjUwNDE2MjAxMjQ2WhcNMjUwNDIzMjAxMjQ2WjAYMRYwFAYD VQQDEw02ODAwMGYzZi01NGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxV8PazUCQUkPKqikh/ICo/+WAL02XlX8Kd8+He3L5+IVI1NGeofFc8hwZCXv ovfmFfL+IU6ABmCNrANz6xh5OV6V5iWlEOdhL+eyQvRIhQNFOk+69jfhQjiduOjU 5ITO7xMI/TdL6Q75mYRVRV3aUSUiAQbsbabctjesl0zeBaXe5ituAhfEYiwHfMCw zlBIuGBglbR24P4mIeYMn64pTmvUQZTgGnolF8vLaZJtw2zTttZnfyjAW1Vhm1hE 7FTNyUJmvs/U790HbnN5l8E99VKELy06VcvRISUeL44RASgFSIW5Z1crSVmi5UQp uuuaG8mjFpaiWPpbaW3wD3WYqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBLg2uTl Ia4iRRlqqm32tPiH06LHMB8GA1UdIwQYMBaAFMqVWRT5iy/JFqRRLacqt1oRxSvQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzAzNy85NDBFNDZCNEFB QkMxMUVBQjEwNkMxNzZDNEY5QUUwMi95cFZaRlBtTEw4a1dwRkV0cHlxM1doSEZL OUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lwVlpGUG1MTDhrV3BGRXRweXEzV2hIRks5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzAzNy85NDBFNDZCNEFBQkMxMUVBQjEwNkMxNzZDNEY5QUUwMi95cFZaRlBtTEw4 a1dwRkV0cHlxM1doSEZLOUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYT3+eKvS8oZpxCgFbO1Pq/W0G3REEbJpmYWEgip2gCj/uySz+5QKC oITw9bJH6mla6gh4EiBu9/6lkOlQgmKzVbLK2/vueO/z/3KNGHcBbA3NQDroHMXz nuhMDQsP4x567rR44ctvHcJU34/ifOTcNszwzQt4g2W7ezf5A/33GaGE6mdqqkuh eN1IoxD6zfc79TzY1H6rFOLPoFQYNe3Dn0s+02IcLHRPOefvZRh0xswoS0Zh0NUT HTAyiNWDQaD6hfUUO9b47CPEfMyLPUpPR9dCZoPp8EMQ0HAuoLykFJ60IpeuoAK2 GOmgQBYFL7/wefKjgdNtRNXtLl1MlK7v -----END CERTIFICATE-----Generated at Fri Apr 18 17:47:32 2025 by rpki-client