$ rpki-client -vvf rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.mft File: ypVZFPmLL8kWpFEtpyq3WhHFK9A.mft (raw, json) Hash identifier: SWPRWytvJ+YBGQqn0/M6Aln8Dt2Bf3LU8E7zAMsWE9c= Subject key identifier: 13:64:22:F5:7B:E0:E6:1D:C5:D9:13:31:F4:FB:87:5F:E9:2E:02:D4 Authority key identifier: CA:95:59:14:F9:8B:2F:C9:16:A4:51:2D:A7:2A:B7:5A:11:C5:2B:D0 Certificate issuer: /CN=A9193037/serialNumber=CA955914F98B2FC916A4512DA72AB75A11C52BD0 Certificate serial: 08C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypVZFPmLL8kWpFEtpyq3WhHFK9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.mft Manifest number: 08C2 Signing time: Sun 16 Feb 2025 21:02:16 +0000 Manifest this update: Sun 16 Feb 2025 21:02:15 +0000 Manifest next update: Sun 23 Feb 2025 21:02:15 +0000 Files and hashes: 1: ypVZFPmLL8kWpFEtpyq3WhHFK9A.crl (hash: 44A6lGqdX3S2iljK9Qpxv7F9sJpOP6lPMOvr07WiwEU=) 2: D9C523A0B05A11EAA233021EC4F9AE02.roa (hash: d7eZQhXl7uffo6qAEcA6YYcZjXgyj7hlZJtD1IB1s1s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.crl rsync://rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypVZFPmLL8kWpFEtpyq3WhHFK9A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2249 (0x8c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193037 Validity Not Before: Feb 16 21:02:15 2025 GMT Not After : Feb 23 21:02:15 2025 GMT Subject: CN=67b25257-92cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:2e:f8:f3:f3:e0:6d:94:8b:c0:f3:a1:15:bc: a2:24:35:93:7b:2b:a7:93:4b:14:5a:2a:e4:c2:72: cb:ad:84:3a:9f:b5:24:0e:bc:94:4f:a1:67:a5:55: 3f:4d:9e:d2:e5:3e:f1:ef:a2:e0:47:fb:79:a7:67: 99:b1:53:fc:28:40:2e:47:3b:52:2c:e4:58:9f:1b: cf:5b:fc:98:b3:95:f0:ba:99:ab:d1:62:6e:2c:89: d4:71:e9:45:38:dc:97:b9:bc:cb:4e:6e:1e:d1:49: 1a:70:a5:5b:8a:3c:6e:0d:c3:e3:66:08:82:73:aa: d8:db:d9:f3:68:4c:30:3e:37:d1:20:8f:25:8c:03: df:23:ec:dc:6a:ff:eb:9f:f9:91:d2:a5:d5:a0:c3: 67:93:a6:86:9b:61:3b:66:57:10:4e:cd:2a:8b:19: 8e:71:a3:ca:76:24:5f:0a:09:50:fd:34:c9:0f:53: fe:ba:d8:cf:fd:53:16:8b:7c:12:5f:ea:d8:e0:e3: cf:89:df:d3:45:e4:5f:a3:59:08:d4:52:04:a9:84: 1d:a1:00:09:3d:77:a1:56:57:96:01:0f:98:92:41: db:b4:9c:a1:e5:8c:33:5c:f3:aa:ab:cc:a9:93:53: ba:b5:35:c3:97:12:67:47:4c:40:96:1a:b7:1d:55: aa:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:64:22:F5:7B:E0:E6:1D:C5:D9:13:31:F4:FB:87:5F:E9:2E:02:D4 X509v3 Authority Key Identifier: keyid:CA:95:59:14:F9:8B:2F:C9:16:A4:51:2D:A7:2A:B7:5A:11:C5:2B:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypVZFPmLL8kWpFEtpyq3WhHFK9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:ef:b6:eb:aa:3a:f7:27:45:ab:dc:09:fd:78:ec:85:70:c3: eb:14:19:d3:df:b3:16:fa:b8:de:a8:ed:51:c2:77:18:1b:d9: 00:58:1e:5b:0a:80:9d:11:ef:80:79:cd:5d:7a:16:01:6f:bd: 6e:13:c6:41:1d:82:c3:12:50:b1:aa:58:50:86:c1:0a:d1:8a: 0a:23:41:1b:c8:04:36:f8:32:89:5e:eb:89:86:77:f9:eb:7a: ca:6d:73:44:19:1e:89:34:92:5c:3c:a7:80:01:98:01:5b:14: 8b:dc:30:41:21:76:5c:db:f6:20:dc:ec:aa:ed:a0:7f:c7:d1: e2:fc:c3:b8:00:ae:d9:2a:78:5e:53:dd:43:c1:c7:8d:99:f0: e8:1b:1e:52:92:65:4e:ed:1c:a5:49:4a:a1:e4:39:7f:7d:63: a1:e6:40:1b:59:a4:e3:12:9b:a8:b8:5f:68:db:ed:3c:3f:43: 68:22:c5:4f:30:d4:8a:57:3c:8d:e2:b2:29:c5:9d:75:16:0c: 98:62:e0:b5:e2:a7:4c:f7:3e:56:21:40:76:82:e1:27:d9:85: 8e:c1:cc:60:25:ff:2f:b1:94:67:0a:22:f8:d0:41:68:bb:f9: b8:29:9c:80:f5:af:d1:93:73:9f:41:3a:4e:8d:95:7c:ba:5e: 1b:5a:ce:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTMwMzcxMTAvBgNVBAUTKENBOTU1OTE0Rjk4QjJGQzkxNkE0NTEyREE3MkFCNzVB MTFDNTJCRDAwHhcNMjUwMjE2MjEwMjE1WhcNMjUwMjIzMjEwMjE1WjAYMRYwFAYD VQQDEw02N2IyNTI1Ny05MmNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7C748/PgbZSLwPOhFbyiJDWTeyunk0sUWirkwnLLrYQ6n7UkDryUT6FnpVU/ TZ7S5T7x76LgR/t5p2eZsVP8KEAuRztSLORYnxvPW/yYs5Xwupmr0WJuLInUcelF ONyXubzLTm4e0UkacKVbijxuDcPjZgiCc6rY29nzaEwwPjfRII8ljAPfI+zcav/r n/mR0qXVoMNnk6aGm2E7ZlcQTs0qixmOcaPKdiRfCglQ/TTJD1P+utjP/VMWi3wS X+rY4OPPid/TReRfo1kI1FIEqYQdoQAJPXehVleWAQ+YkkHbtJyh5YwzXPOqq8yp k1O6tTXDlxJnR0xAlhq3HVWqtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBNkIvV7 4OYdxdkTMfT7h1/pLgLUMB8GA1UdIwQYMBaAFMqVWRT5iy/JFqRRLacqt1oRxSvQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzAzNy85NDBFNDZCNEFB QkMxMUVBQjEwNkMxNzZDNEY5QUUwMi95cFZaRlBtTEw4a1dwRkV0cHlxM1doSEZL OUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lwVlpGUG1MTDhrV3BGRXRweXEzV2hIRks5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzAzNy85NDBFNDZCNEFBQkMxMUVBQjEwNkMxNzZDNEY5QUUwMi95cFZaRlBtTEw4 a1dwRkV0cHlxM1doSEZLOUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBP77brqjr3J0Wr3An9eOyFcMPrFBnT37MW+rjeqO1RwncYG9kAWB5b CoCdEe+Aec1dehYBb71uE8ZBHYLDElCxqlhQhsEK0YoKI0EbyAQ2+DKJXuuJhnf5 63rKbXNEGR6JNJJcPKeAAZgBWxSL3DBBIXZc2/Yg3Oyq7aB/x9Hi/MO4AK7ZKnhe U91DwceNmfDoGx5SkmVO7RylSUqh5Dl/fWOh5kAbWaTjEpuouF9o2+08P0NoIsVP MNSKVzyN4rIpxZ11FgyYYuC14qdM9z5WIUB2guEn2YWOwcxgJf8vsZRnCiL40EFo u/m4KZyA9a/Rk3OfQTpOjZV8ul4bWs5G -----END CERTIFICATE-----Generated at Mon Feb 17 08:24:05 2025 by rpki-client