$ rpki-client -vvf rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft File: ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft (raw, json) Hash identifier: jxAyr1TluMJ3Y48oFSSVMoFY1D7fC6DR9kq28l/jFx8= Subject key identifier: 52:17:96:CA:FC:61:D2:F1:74:03:86:AD:A3:E0:05:16:6E:3A:3A:8B Authority key identifier: CA:C4:47:8F:0F:DD:9A:E4:1E:24:E9:FC:67:F8:51:FF:43:C3:33:09 Certificate issuer: /CN=A919B5BB/serialNumber=CAC4478F0FDD9AE41E24E9FC67F851FF43C33309 Certificate serial: 20BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft Manifest number: 20B1 Signing time: Mon 14 Apr 2025 15:58:25 +0000 Manifest this update: Mon 14 Apr 2025 15:58:25 +0000 Manifest next update: Mon 21 Apr 2025 15:58:25 +0000 Files and hashes: 1: ysRHjw_dmuQeJOn8Z_hR_0PDMwk.crl (hash: BwHC8L6cDIneYOY6XUHbLiN8zQ2MThdXC/r00SGUsDY=) 2: C49E2E22FF0111E591C15659C4F9AE02.roa (hash: 8rysbZt21FvuQ0omuoFXFp8YfdP5EnJpmuu61zguRxM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.crl rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 21 Apr 2025 15:58:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8380 (0x20bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B5BB, serialNumber=CAC4478F0FDD9AE41E24E9FC67F851FF43C33309 Validity Not Before: Apr 14 15:58:25 2025 GMT Not After : Apr 21 15:58:25 2025 GMT Subject: CN=67fd30a1-ca1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b0:ee:dd:c7:d2:be:b1:e5:66:f1:c9:c7:32: 40:af:04:57:37:4c:d0:41:f5:1a:0a:c5:9d:ef:d0: 55:39:09:a9:9c:2f:9d:65:7c:a4:f2:26:b4:ae:eb: cd:67:f0:4b:df:aa:2f:c5:86:c7:bc:b9:20:6f:40: f1:d1:75:98:6e:5b:79:28:b8:ad:fc:f7:ca:ee:43: 03:be:90:be:91:35:39:a7:e3:1e:4a:24:30:9e:38: 34:e6:08:51:0e:2b:97:f3:fe:5a:90:43:4c:97:60: e2:40:01:d7:c8:3c:13:cb:c3:c0:73:44:31:12:29: 78:49:7b:cb:b1:de:3b:29:ab:2b:67:06:c8:7f:1c: 54:e5:48:ae:1f:1b:d0:0f:0e:dc:2a:b2:47:74:75: 3e:a7:24:f3:b1:34:0e:d2:b1:c9:b9:86:c1:b2:ab: 50:35:65:cf:d8:14:88:78:68:6f:3a:7e:1e:f7:3d: 16:22:52:70:e3:a0:fe:64:19:47:63:7f:61:ac:10: 96:8a:b1:a3:fd:3e:2f:d4:a9:f2:a6:16:93:ee:e4: b6:8d:b9:1e:82:13:16:56:5e:31:13:26:48:92:b2: 30:9a:63:d1:3b:69:0b:6e:b6:ab:df:01:b5:ae:df: 74:19:e6:f4:59:a2:ce:ae:00:0e:70:60:dd:b0:2d: 95:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:17:96:CA:FC:61:D2:F1:74:03:86:AD:A3:E0:05:16:6E:3A:3A:8B X509v3 Authority Key Identifier: keyid:CA:C4:47:8F:0F:DD:9A:E4:1E:24:E9:FC:67:F8:51:FF:43:C3:33:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:58:a9:3e:69:80:6f:5b:46:e9:02:9b:77:b6:37:15:f1:c0: 47:ba:1f:35:66:1f:24:15:cc:30:99:2d:56:6a:6d:a6:a4:56: 41:67:f0:9b:6d:d8:e3:b5:38:48:ff:25:7b:ca:33:c8:05:b6: 14:55:8d:58:18:e4:85:52:b0:60:37:36:87:f3:25:c0:c1:b6: 85:8c:9a:99:28:ae:3f:f4:6f:63:00:0f:1b:57:3d:68:72:9a: 92:62:b0:16:f0:0e:3b:ed:64:b1:5a:db:b5:4f:ae:c8:8e:8a: ab:48:f8:86:ac:9d:d6:de:55:47:4a:b9:5f:8a:f5:8a:e0:f7: c4:0d:fe:18:2a:c5:11:29:b6:28:35:c4:9b:fd:2f:27:47:d7: ce:45:ca:df:99:a7:0c:57:2e:28:67:98:8e:75:36:9d:09:80: 3f:61:33:fd:3a:9b:36:0e:2f:04:d8:f7:91:d0:c9:39:10:17: 56:91:3f:b4:82:d9:ff:ce:b2:31:b4:32:c0:a7:66:cd:bd:26: 7c:30:8b:f4:50:30:62:46:5c:a2:6d:ae:7c:fc:4d:16:a4:41: 4a:15:18:23:e2:4b:4d:ad:70:08:de:11:5a:11:58:28:98:c0: f8:69:db:ce:be:a1:90:09:d5:c9:e7:56:e8:86:42:57:17:e0: 8f:7c:d4:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICILwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUI1QkIxMTAvBgNVBAUTKENBQzQ0NzhGMEZERDlBRTQxRTI0RTlGQzY3Rjg1MUZG NDNDMzMzMDkwHhcNMjUwNDE0MTU1ODI1WhcNMjUwNDIxMTU1ODI1WjAYMRYwFAYD VQQDEw02N2ZkMzBhMS1jYTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsbDu3cfSvrHlZvHJxzJArwRXN0zQQfUaCsWd79BVOQmpnC+dZXyk8ia0ruvN Z/BL36ovxYbHvLkgb0Dx0XWYblt5KLit/PfK7kMDvpC+kTU5p+MeSiQwnjg05ghR DiuX8/5akENMl2DiQAHXyDwTy8PAc0QxEil4SXvLsd47KasrZwbIfxxU5UiuHxvQ Dw7cKrJHdHU+pyTzsTQO0rHJuYbBsqtQNWXP2BSIeGhvOn4e9z0WIlJw46D+ZBlH Y39hrBCWirGj/T4v1KnyphaT7uS2jbkeghMWVl4xEyZIkrIwmmPRO2kLbrar3wG1 rt90Geb0WaLOrgAOcGDdsC2VgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFIXlsr8 YdLxdAOGraPgBRZuOjqLMB8GA1UdIwQYMBaAFMrER48P3ZrkHiTp/Gf4Uf9DwzMJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjVCQi80NEJCQzE0Q0ZG MDExMUU1QjFDRkIwNThDNEY5QUUwMi95c1JIandfZG11UWVKT244Wl9oUl8wUERN d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lzUkhqd19kbXVRZUpPbjhaX2hSXzBQRE13ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QjVCQi80NEJCQzE0Q0ZGMDExMUU1QjFDRkIwNThDNEY5QUUwMi95c1JIandfZG11 UWVKT244Wl9oUl8wUERNd2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVWKk+aYBvW0bpApt3tjcV8cBHuh81Zh8kFcwwmS1Wam2mpFZBZ/Cb bdjjtThI/yV7yjPIBbYUVY1YGOSFUrBgNzaH8yXAwbaFjJqZKK4/9G9jAA8bVz1o cpqSYrAW8A477WSxWtu1T67IjoqrSPiGrJ3W3lVHSrlfivWK4PfEDf4YKsURKbYo NcSb/S8nR9fORcrfmacMVy4oZ5iOdTadCYA/YTP9Ops2Di8E2PeR0Mk5EBdWkT+0 gtn/zrIxtDLAp2bNvSZ8MIv0UDBiRlyiba58/E0WpEFKFRgj4ktNrXAI3hFaEVgo mMD4advOvqGQCdXJ51bohkJXF+CPfNRr -----END CERTIFICATE-----Generated at Wed Apr 16 16:47:08 2025 by rpki-client