$ rpki-client -vvf rpki.apnic.net/member_repository/A9175C2B/EEBBC116535311EEAEAF0B80C4F9AE02/YsDafzAgXhQZA4UrhjIw-eHi-c0.mft File: YsDafzAgXhQZA4UrhjIw-eHi-c0.mft (raw, json) Hash identifier: 7BTHtbChGnn7sM9F887NkqJLMWalNKWZjDUzCn+qNpM= Subject key identifier: 25:0D:27:58:8C:E1:C8:59:E3:48:BC:6D:4E:7C:0C:FD:0D:62:0A:53 Authority key identifier: 62:C0:DA:7F:30:20:5E:14:19:03:85:2B:86:32:30:F9:E1:E2:F9:CD Certificate issuer: /CN=A9175C2B/serialNumber=62C0DA7F30205E141903852B863230F9E1E2F9CD Certificate serial: 0143 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsDafzAgXhQZA4UrhjIw-eHi-c0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175C2B/EEBBC116535311EEAEAF0B80C4F9AE02/YsDafzAgXhQZA4UrhjIw-eHi-c0.mft Manifest number: 0140 Signing time: Sat 31 May 2025 03:59:56 +0000 Manifest this update: Sat 31 May 2025 03:59:56 +0000 Manifest next update: Sat 07 Jun 2025 03:59:56 +0000 Files and hashes: 1: YsDafzAgXhQZA4UrhjIw-eHi-c0.crl (hash: sBA7JNz++RLXerIyfaH0Ce4ow1TYIQrlfJYry4dHe0I=) 2: 0EB2F53A59A711EE9419DA2DC4F9AE02.roa (hash: JF98gdzocH1/AV+95pGblYdfL1FxgXSJftaTSJva7bI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175C2B/EEBBC116535311EEAEAF0B80C4F9AE02/YsDafzAgXhQZA4UrhjIw-eHi-c0.crl rsync://rpki.apnic.net/member_repository/A9175C2B/EEBBC116535311EEAEAF0B80C4F9AE02/YsDafzAgXhQZA4UrhjIw-eHi-c0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsDafzAgXhQZA4UrhjIw-eHi-c0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:59:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 323 (0x143) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175C2B, serialNumber=62C0DA7F30205E141903852B863230F9E1E2F9CD Validity Not Before: May 31 03:59:56 2025 GMT Not After : Jun 7 03:59:56 2025 GMT Subject: CN=683a7ebc-7764 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:3e:3c:f9:42:bb:f4:5f:43:4c:19:1f:b2:8f: b4:44:d6:58:6f:32:2e:94:56:0c:59:36:93:51:a3: e1:b0:bd:a3:64:d3:87:30:c4:6c:f8:f5:d7:0d:f3: 2e:12:a2:78:3a:8b:db:41:ef:94:f5:bb:d7:6d:2f: fb:80:a9:1f:e1:dd:78:38:45:7a:2d:0a:66:74:8d: 74:87:df:11:38:62:68:75:93:e2:07:bd:42:26:58: 80:56:61:ce:52:e6:5f:01:e7:ed:a2:a5:f0:91:c0: 93:72:94:36:53:c6:25:e9:8b:44:60:61:44:b2:9e: 49:4e:4c:f9:b5:fa:e8:b8:43:a0:35:59:00:36:e9: 55:08:31:66:81:95:de:f3:67:ab:11:0e:22:97:5d: 9d:62:0e:5b:14:6c:b7:9f:00:c1:43:d5:4a:61:60: 73:00:4a:50:5d:a2:67:95:da:9c:f2:83:a4:ad:a0: 48:d0:21:25:ac:3f:3c:ef:0f:50:08:df:e4:c7:bb: 4b:ba:e1:42:f2:dd:8b:59:0c:d8:0a:dd:a8:5b:04: 81:2a:56:be:03:7e:85:c5:04:ce:93:01:7d:5b:8e: 11:45:e8:44:25:43:90:32:16:29:3c:b7:08:76:d6: fc:18:6f:74:54:dd:1f:32:a3:0c:ee:47:09:13:9b: 5c:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:0D:27:58:8C:E1:C8:59:E3:48:BC:6D:4E:7C:0C:FD:0D:62:0A:53 X509v3 Authority Key Identifier: keyid:62:C0:DA:7F:30:20:5E:14:19:03:85:2B:86:32:30:F9:E1:E2:F9:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175C2B/EEBBC116535311EEAEAF0B80C4F9AE02/YsDafzAgXhQZA4UrhjIw-eHi-c0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsDafzAgXhQZA4UrhjIw-eHi-c0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175C2B/EEBBC116535311EEAEAF0B80C4F9AE02/YsDafzAgXhQZA4UrhjIw-eHi-c0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:18:35:22:07:88:da:98:1d:55:0a:5b:16:c0:6d:e7:d8:c2: 01:02:0d:57:38:d5:de:17:9d:fa:f2:ce:c7:86:28:d9:10:6b: 0a:7f:7c:94:d4:a3:d1:6d:40:4b:75:bc:6f:dc:fc:84:a2:fe: 1f:66:a4:94:97:29:73:db:db:29:28:b6:4f:b8:91:f8:81:95: b9:76:04:f1:70:e9:e2:b4:68:cb:9f:18:bc:9e:0c:ae:e8:b0: a8:33:0f:ca:0b:4f:b5:c5:db:41:40:aa:d1:90:d8:1b:fd:1a: 49:39:18:0b:9f:41:bd:9e:0d:34:03:c1:9d:9d:70:57:4b:9e: c5:e8:3b:46:63:87:77:6e:6b:cd:27:6e:9e:d3:69:fb:dc:1a: dd:d9:76:8d:f0:4b:f7:c8:5f:a9:04:59:87:20:63:51:80:f1: 80:03:fa:64:e9:b1:6e:0e:58:92:ae:c8:12:b2:a1:38:5b:71: 51:d1:c7:73:56:77:09:6a:ec:77:52:cb:37:1f:d4:99:e3:16: 6a:9c:2f:fa:52:bf:f4:1d:cf:5b:5d:d2:15:bd:79:34:c3:09: 9a:4b:13:a5:3e:f8:78:e5:c8:fd:cf:3d:d3:8c:df:4f:0f:78: e6:54:c1:e1:07:b5:c7:25:af:41:b7:e3:f1:91:83:24:2c:c4: 11:a2:2f:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzVDMkIxMTAvBgNVBAUTKDYyQzBEQTdGMzAyMDVFMTQxOTAzODUyQjg2MzIzMEY5 RTFFMkY5Q0QwHhcNMjUwNTMxMDM1OTU2WhcNMjUwNjA3MDM1OTU2WjAYMRYwFAYD VQQDEw02ODNhN2ViYy03NzY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnz48+UK79F9DTBkfso+0RNZYbzIulFYMWTaTUaPhsL2jZNOHMMRs+PXXDfMu EqJ4OovbQe+U9bvXbS/7gKkf4d14OEV6LQpmdI10h98ROGJodZPiB71CJliAVmHO UuZfAeftoqXwkcCTcpQ2U8Yl6YtEYGFEsp5JTkz5tfrouEOgNVkANulVCDFmgZXe 82erEQ4il12dYg5bFGy3nwDBQ9VKYWBzAEpQXaJnldqc8oOkraBI0CElrD887w9Q CN/kx7tLuuFC8t2LWQzYCt2oWwSBKla+A36FxQTOkwF9W44RRehEJUOQMhYpPLcI dtb8GG90VN0fMqMM7kcJE5tcaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCUNJ1iM 4chZ40i8bU58DP0NYgpTMB8GA1UdIwQYMBaAFGLA2n8wIF4UGQOFK4YyMPnh4vnN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NUMyQi9FRUJCQzExNjUz NTMxMUVFQUVBRjBCODBDNEY5QUUwMi9Zc0RhZnpBZ1hoUVpBNFVyaGpJdy1lSGkt YzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lzRGFmekFnWGhRWkE0VXJoakl3LWVIaS1jMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NUMyQi9FRUJCQzExNjUzNTMxMUVFQUVBRjBCODBDNEY5QUUwMi9Zc0RhZnpBZ1ho UVpBNFVyaGpJdy1lSGktYzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiGDUiB4jamB1VClsWwG3n2MIBAg1XONXeF5368s7HhijZEGsKf3yU 1KPRbUBLdbxv3PyEov4fZqSUlylz29spKLZPuJH4gZW5dgTxcOnitGjLnxi8ngyu 6LCoMw/KC0+1xdtBQKrRkNgb/RpJORgLn0G9ng00A8GdnXBXS57F6DtGY4d3bmvN J26e02n73Brd2XaN8Ev3yF+pBFmHIGNRgPGAA/pk6bFuDliSrsgSsqE4W3FR0cdz VncJaux3Uss3H9SZ4xZqnC/6Ur/0Hc9bXdIVvXk0wwmaSxOlPvh45cj9zz3TjN9P D3jmVMHhB7XHJa9Bt+PxkYMkLMQRoi9J -----END CERTIFICATE-----Generated at Sat May 31 16:57:52 2025 by rpki-client