$ rpki-client -vvf rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft File: ny5XiO95WFurdhmHfTlierLl1Rk.mft (raw, json) Hash identifier: qjNQFOkFjNCGOwTHDNo4ovv8x7LV+P1Op9Cj0c+FgFQ= Subject key identifier: C4:BE:8C:EA:F8:BC:CD:B7:9B:28:6E:B0:CB:82:F3:D5:39:00:C3:AA Authority key identifier: 9F:2E:57:88:EF:79:58:5B:AB:76:19:87:7D:39:62:7A:B2:E5:D5:19 Certificate issuer: /CN=A913A7A6/serialNumber=9F2E5788EF79585BAB7619877D39627AB2E5D519 Certificate serial: 09ED Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ny5XiO95WFurdhmHfTlierLl1Rk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft Manifest number: 09E6 Signing time: Wed 12 Mar 2025 19:39:24 +0000 Manifest this update: Wed 12 Mar 2025 19:39:24 +0000 Manifest next update: Wed 19 Mar 2025 19:39:24 +0000 Files and hashes: 1: ny5XiO95WFurdhmHfTlierLl1Rk.crl (hash: JDWkUcQyCMLtJMLxd+IIBAOG6qyffr7XCU5odd77j2k=) 2: 4DAFC184ADC011ED897A4050C4F9AE02.roa (hash: /BGVJbRRDfivu1c+fyECLgKysqOT6aaM0UL54g9lwQ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.crl rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ny5XiO95WFurdhmHfTlierLl1Rk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 19:39:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2541 (0x9ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A7A6 Validity Not Before: Mar 12 19:39:24 2025 GMT Not After : Mar 19 19:39:24 2025 GMT Subject: CN=67d1e2ec-bc06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:54:d7:8d:b4:71:60:07:4b:84:f7:d9:48:d1: 7a:01:84:64:da:0d:cb:d8:52:1b:04:a5:c2:21:62: d1:65:7b:73:c2:9f:6d:42:d1:23:f1:7a:41:50:a1: 35:3a:a2:72:c1:ea:a8:ab:19:64:62:33:e8:eb:fd: 52:b9:ef:86:6d:e7:c5:cc:3c:78:29:6e:71:e2:b0: d0:ab:cd:3a:bd:8c:11:53:02:09:d8:51:0e:ce:dd: c6:11:9c:b9:37:4b:30:39:2a:81:7c:1e:77:e2:4f: 62:80:f8:81:3e:93:d2:c3:43:96:94:49:56:3f:c9: f0:ce:cb:48:d2:24:0d:a3:80:64:0c:eb:02:a6:1d: 67:4f:ea:06:0e:85:c4:08:f2:1d:f9:86:72:5a:b5: ee:4d:96:22:36:a8:18:80:9c:3d:d9:01:f9:93:42: 3c:cd:e9:b1:3d:61:6d:ff:9a:2b:00:dd:d4:84:53: 07:99:0e:e8:c9:99:55:55:cd:62:11:87:2e:4d:9e: 2b:07:f1:bc:61:5b:48:44:39:33:6e:3a:0f:13:6a: 02:40:a3:c4:7e:86:38:1f:27:57:18:b4:22:c4:5e: bc:29:3b:8e:cc:ce:65:24:75:78:f2:17:2d:dd:de: cc:61:36:15:69:01:18:61:f6:87:9f:12:46:1e:cb: ab:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:BE:8C:EA:F8:BC:CD:B7:9B:28:6E:B0:CB:82:F3:D5:39:00:C3:AA X509v3 Authority Key Identifier: keyid:9F:2E:57:88:EF:79:58:5B:AB:76:19:87:7D:39:62:7A:B2:E5:D5:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ny5XiO95WFurdhmHfTlierLl1Rk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:83:1b:e8:d0:d8:f7:ff:70:0e:61:42:5f:e8:02:24:f6:e7: ae:17:c3:f0:59:05:18:c3:00:2e:32:95:51:30:29:2a:e0:77: 66:4a:50:f3:a2:9b:03:8e:18:4a:56:8c:83:58:5c:db:88:af: 2e:da:ac:8b:1c:c6:81:e4:dc:d1:f9:b8:3a:1f:f6:a2:a6:32: 6f:1c:09:d2:3b:41:5d:a4:5e:3e:af:9b:36:09:bf:9a:94:e9: fc:8e:8e:67:f8:a9:07:5d:0d:19:15:5f:8f:17:17:6d:12:4b: 90:24:a7:ee:36:46:05:0d:67:cb:a3:df:dc:ac:01:56:10:e2: 3a:6b:cf:bd:18:5a:dc:d8:de:b5:bc:3c:28:c8:60:b3:c6:c1: ad:65:06:3a:1a:39:cb:dc:f0:0c:11:e0:dd:fe:c2:78:59:b9: a0:48:43:f5:65:fe:33:b7:2a:b4:79:a5:d9:95:84:2e:51:9f: e1:6f:8a:27:10:30:36:fe:c6:cf:ed:ff:d3:21:f9:d1:35:8e: 36:08:f9:46:74:6c:98:0a:9e:f8:52:0e:04:56:4a:39:c9:b1: cb:b8:4a:e3:ac:d9:ad:9e:a9:1a:d0:04:cb:c1:c5:16:15:b9: 9e:2b:e4:80:c1:6a:00:d8:f6:4c:a6:88:52:fc:8a:8a:c9:7e: d7:ed:9c:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCe0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E3QTYxMTAvBgNVBAUTKDlGMkU1Nzg4RUY3OTU4NUJBQjc2MTk4NzdEMzk2MjdB QjJFNUQ1MTkwHhcNMjUwMzEyMTkzOTI0WhcNMjUwMzE5MTkzOTI0WjAYMRYwFAYD VQQDEw02N2QxZTJlYy1iYzA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3FTXjbRxYAdLhPfZSNF6AYRk2g3L2FIbBKXCIWLRZXtzwp9tQtEj8XpBUKE1 OqJyweqoqxlkYjPo6/1Sue+GbefFzDx4KW5x4rDQq806vYwRUwIJ2FEOzt3GEZy5 N0swOSqBfB534k9igPiBPpPSw0OWlElWP8nwzstI0iQNo4BkDOsCph1nT+oGDoXE CPId+YZyWrXuTZYiNqgYgJw92QH5k0I8zemxPWFt/5orAN3UhFMHmQ7oyZlVVc1i EYcuTZ4rB/G8YVtIRDkzbjoPE2oCQKPEfoY4HydXGLQixF68KTuOzM5lJHV48hct 3d7MYTYVaQEYYfaHnxJGHsurGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMS+jOr4 vM23myhusMuC89U5AMOqMB8GA1UdIwQYMBaAFJ8uV4jveVhbq3YZh305Ynqy5dUZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTdBNi80NTdBOEU4Mjcz QjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9ueTVYaU85NVdGdXJkaG1IZlRsaWVyTGwx UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL255NVhpTzk1V0Z1cmRobUhmVGxpZXJMbDFSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTdBNi80NTdBOEU4MjczQjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9ueTVYaU85NVdG dXJkaG1IZlRsaWVyTGwxUmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBngxvo0Nj3/3AOYUJf6AIk9ueuF8PwWQUYwwAuMpVRMCkq4HdmSlDz opsDjhhKVoyDWFzbiK8u2qyLHMaB5NzR+bg6H/aipjJvHAnSO0FdpF4+r5s2Cb+a lOn8jo5n+KkHXQ0ZFV+PFxdtEkuQJKfuNkYFDWfLo9/crAFWEOI6a8+9GFrc2N61 vDwoyGCzxsGtZQY6GjnL3PAMEeDd/sJ4WbmgSEP1Zf4ztyq0eaXZlYQuUZ/hb4on EDA2/sbP7f/TIfnRNY42CPlGdGyYCp74Ug4EVko5ybHLuErjrNmtnqka0ATLwcUW FbmeK+SAwWoA2PZMpohS/IqKyX7X7ZzV -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:51 2025 by rpki-client