$ rpki-client -vvf rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.mft File: ypVZFPmLL8kWpFEtpyq3WhHFK9A.mft (raw, json) Hash identifier: vELvIAXjPyLhKbkxF3XP2FMOufo50o5VqD0Y48alzCc= Subject key identifier: FF:CA:E7:3B:21:E5:79:D6:74:E0:8D:49:D2:0E:4D:D0:F9:64:D7:09 Authority key identifier: CA:95:59:14:F9:8B:2F:C9:16:A4:51:2D:A7:2A:B7:5A:11:C5:2B:D0 Certificate issuer: /CN=A9193037/serialNumber=CA955914F98B2FC916A4512DA72AB75A11C52BD0 Certificate serial: 08D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypVZFPmLL8kWpFEtpyq3WhHFK9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.mft Manifest number: 08CE Signing time: Wed 12 Mar 2025 20:11:30 +0000 Manifest this update: Wed 12 Mar 2025 20:11:29 +0000 Manifest next update: Wed 19 Mar 2025 20:11:29 +0000 Files and hashes: 1: ypVZFPmLL8kWpFEtpyq3WhHFK9A.crl (hash: A91t0Bw6ZqHjh7whQR8Avcyy9Vv7IzdxCrPfprNG2No=) 2: D9C523A0B05A11EAA233021EC4F9AE02.roa (hash: d7eZQhXl7uffo6qAEcA6YYcZjXgyj7hlZJtD1IB1s1s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.crl rsync://rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypVZFPmLL8kWpFEtpyq3WhHFK9A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 20:11:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2261 (0x8d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193037 Validity Not Before: Mar 12 20:11:29 2025 GMT Not After : Mar 19 20:11:29 2025 GMT Subject: CN=67d1ea71-e4cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:63:16:b8:4f:f8:e9:f8:df:0f:1f:f3:7d:a2: cc:49:ac:0d:bb:38:b4:bb:22:27:01:fd:75:25:23: 44:ba:01:df:6a:80:fb:14:d1:46:c6:70:32:8d:05: 2d:c0:f0:d5:55:d7:d3:2a:ea:35:c9:2b:67:f5:34: d1:14:4b:55:a8:7e:1b:ca:53:d3:28:8c:93:4a:c1: 4c:0c:fd:7e:d6:00:3a:f5:fa:9a:50:19:da:8a:1c: 38:45:61:8f:10:98:e0:c9:f7:53:83:00:3b:c9:56: 9a:e8:83:09:ad:d1:2f:ea:46:81:f7:08:b3:48:59: 64:30:c8:78:34:81:90:da:3a:c1:d2:62:5b:2c:56: 78:ec:d5:a0:13:cd:0f:85:13:e6:53:a7:ae:68:fd: 53:c2:87:8d:82:35:04:49:42:c6:44:9d:78:8a:b9: f6:50:39:8a:7c:8e:7c:3e:b5:87:df:37:de:51:48: 38:90:c6:81:f1:76:87:02:e5:26:03:56:6b:b2:b6: f5:59:dc:21:90:08:09:6f:b3:8f:a0:aa:60:30:da: 88:8b:b7:78:60:a5:b6:e0:b7:ad:9c:75:f5:e5:88: 3c:e5:c1:24:ec:5a:cd:46:32:e9:41:98:84:e8:55: 3c:30:28:15:52:c7:df:69:74:ce:35:e0:4a:02:d8: 1c:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:CA:E7:3B:21:E5:79:D6:74:E0:8D:49:D2:0E:4D:D0:F9:64:D7:09 X509v3 Authority Key Identifier: keyid:CA:95:59:14:F9:8B:2F:C9:16:A4:51:2D:A7:2A:B7:5A:11:C5:2B:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypVZFPmLL8kWpFEtpyq3WhHFK9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:65:6e:b6:79:3a:91:f2:91:bf:13:a5:e9:4c:1d:cb:21:23: 50:21:12:bd:4c:cb:92:bd:08:65:61:da:d7:73:24:69:86:84: 0a:fa:31:4a:61:be:b4:39:5d:ef:16:ba:84:49:43:0f:1c:39: 59:6c:3a:24:fc:7e:c8:fd:38:ca:00:d0:4d:f8:26:4f:94:00: 1a:c9:e1:9f:dc:70:c5:d5:8b:4c:9b:a1:ea:b8:d8:95:11:b0: c9:9c:12:c3:d5:36:66:22:10:b9:30:6a:bb:31:fd:4a:41:2b: 0d:1f:f5:6f:f7:4c:c7:41:3b:03:55:b1:62:65:a2:0d:91:10: 9b:7e:74:c5:72:b2:75:32:c4:92:ed:7d:45:cb:ba:dc:e7:79: ef:ab:22:c4:b1:96:e9:74:0b:2b:c2:d1:7b:5c:95:40:e7:a0: ec:40:e8:4f:2d:fa:21:70:36:44:87:31:dd:ff:21:46:9e:e6: 9a:63:44:7b:6f:10:9e:24:a0:e8:76:05:94:72:a0:76:6e:ee: 44:9a:6a:31:82:15:f0:46:d6:b3:af:f0:b8:d4:b3:8e:43:52: 06:f3:00:bb:19:de:83:a4:4f:92:c6:14:4a:cf:0f:17:d9:51: 5b:c3:a5:6a:6a:8a:53:f9:48:7b:25:cd:2a:ea:90:b5:41:cc: 47:6d:ac:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCNUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTMwMzcxMTAvBgNVBAUTKENBOTU1OTE0Rjk4QjJGQzkxNkE0NTEyREE3MkFCNzVB MTFDNTJCRDAwHhcNMjUwMzEyMjAxMTI5WhcNMjUwMzE5MjAxMTI5WjAYMRYwFAYD VQQDEw02N2QxZWE3MS1lNGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA02MWuE/46fjfDx/zfaLMSawNuzi0uyInAf11JSNEugHfaoD7FNFGxnAyjQUt wPDVVdfTKuo1yStn9TTRFEtVqH4bylPTKIyTSsFMDP1+1gA69fqaUBnaihw4RWGP EJjgyfdTgwA7yVaa6IMJrdEv6kaB9wizSFlkMMh4NIGQ2jrB0mJbLFZ47NWgE80P hRPmU6euaP1TwoeNgjUESULGRJ14irn2UDmKfI58PrWH3zfeUUg4kMaB8XaHAuUm A1Zrsrb1WdwhkAgJb7OPoKpgMNqIi7d4YKW24LetnHX15Yg85cEk7FrNRjLpQZiE 6FU8MCgVUsffaXTONeBKAtgcWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP/K5zsh 5XnWdOCNSdIOTdD5ZNcJMB8GA1UdIwQYMBaAFMqVWRT5iy/JFqRRLacqt1oRxSvQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzAzNy85NDBFNDZCNEFB QkMxMUVBQjEwNkMxNzZDNEY5QUUwMi95cFZaRlBtTEw4a1dwRkV0cHlxM1doSEZL OUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lwVlpGUG1MTDhrV3BGRXRweXEzV2hIRks5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzAzNy85NDBFNDZCNEFBQkMxMUVBQjEwNkMxNzZDNEY5QUUwMi95cFZaRlBtTEw4 a1dwRkV0cHlxM1doSEZLOUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUZW62eTqR8pG/E6XpTB3LISNQIRK9TMuSvQhlYdrXcyRphoQK+jFK Yb60OV3vFrqESUMPHDlZbDok/H7I/TjKANBN+CZPlAAayeGf3HDF1YtMm6HquNiV EbDJnBLD1TZmIhC5MGq7Mf1KQSsNH/Vv90zHQTsDVbFiZaINkRCbfnTFcrJ1MsSS 7X1Fy7rc53nvqyLEsZbpdAsrwtF7XJVA56DsQOhPLfohcDZEhzHd/yFGnuaaY0R7 bxCeJKDodgWUcqB2bu5EmmoxghXwRtazr/C41LOOQ1IG8wC7Gd6DpE+SxhRKzw8X 2VFbw6VqaopT+Uh7Jc0q6pC1QcxHbawC -----END CERTIFICATE-----Generated at Thu Mar 13 21:28:34 2025 by rpki-client