$ rpki-client -vvf rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.mft File: Y04osQAuVW6OsU-VPq1jttZ3WAk.mft (raw, json) Hash identifier: OLtUDcj+whm3uFTLEq0CNSVtfn2xd/Iuh2kYzXi2LLQ= Subject key identifier: A2:1A:F3:0A:50:8B:6A:C8:39:BE:BB:1F:D4:09:F0:F0:E9:41:6B:ED Authority key identifier: 63:4E:28:B1:00:2E:55:6E:8E:B1:4F:95:3E:AD:63:B6:D6:77:58:09 Certificate issuer: /CN=A9194C0D/serialNumber=634E28B1002E556E8EB14F953EAD63B6D6775809 Certificate serial: 0145 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y04osQAuVW6OsU-VPq1jttZ3WAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.mft Manifest number: 0133 Signing time: Thu 13 Mar 2025 03:15:36 +0000 Manifest this update: Thu 13 Mar 2025 03:15:35 +0000 Manifest next update: Thu 20 Mar 2025 03:15:35 +0000 Files and hashes: 1: Y04osQAuVW6OsU-VPq1jttZ3WAk.crl (hash: s56SdWNGbYKRzcQD0HQFWr0o2y66d8KnGk7ixR10pW4=) 2: F6FAEC5CCB0411EEAB05F93CC4F9AE02.roa (hash: iEq1aNRP/IljFzwgZtZtkJCpzqh+TTJ3bhmSxew1yxo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.crl rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y04osQAuVW6OsU-VPq1jttZ3WAk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 03:15:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 325 (0x145) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194C0D Validity Not Before: Mar 13 03:15:35 2025 GMT Not After : Mar 20 03:15:35 2025 GMT Subject: CN=67d24dd7-11dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:02:4f:ab:12:2e:17:f3:5f:e6:6f:a5:5c:11: 46:06:d8:33:55:6a:94:c3:9a:0d:28:46:ba:db:80: 69:b3:79:07:88:a0:27:3e:8a:3c:9b:5d:ae:8c:3d: 57:ab:4a:1d:e9:ce:15:99:4f:63:f0:29:96:d4:37: b6:3f:8b:09:fd:c2:25:71:10:21:a0:71:85:6f:e2: 4d:cf:63:2a:ba:29:c9:e5:48:e6:1a:65:ff:66:70: 56:1e:cf:ce:9e:84:69:d2:32:b7:f9:9f:d3:dc:42: f4:f9:38:22:05:6b:b5:78:7e:dc:3c:e5:3a:f7:7c: 60:24:7d:e7:d5:94:7e:89:77:0c:74:e3:0e:6b:f3: 32:92:ee:6b:8f:40:c5:a9:97:ff:fc:2e:ec:1f:91: 01:ef:57:2c:51:db:49:3a:9f:67:ae:99:35:40:35: 4f:6f:7f:6d:84:88:45:34:d9:37:ed:9e:b8:b0:c6: cd:dc:b9:6f:74:57:a6:44:5e:a8:b9:ba:ce:16:ab: 92:93:24:28:fa:9b:47:47:9d:20:57:f6:52:b1:81: c4:ba:04:b1:2b:99:2f:14:af:77:d6:2a:3c:cb:40: 86:65:bc:6f:83:2b:70:4b:72:a9:95:14:2b:3b:62: 47:71:e5:d2:87:f7:03:cb:16:0a:78:79:3e:6e:b6: 51:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:1A:F3:0A:50:8B:6A:C8:39:BE:BB:1F:D4:09:F0:F0:E9:41:6B:ED X509v3 Authority Key Identifier: keyid:63:4E:28:B1:00:2E:55:6E:8E:B1:4F:95:3E:AD:63:B6:D6:77:58:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y04osQAuVW6OsU-VPq1jttZ3WAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:db:a6:40:d5:df:db:b2:96:25:2b:4d:48:21:3e:53:51:50: 17:22:1b:65:d2:35:0f:fa:d8:88:52:0b:c9:2b:ae:0a:22:2c: 5a:32:f7:e7:22:57:f7:d3:1a:15:d9:30:99:4d:99:ff:0d:84: 4d:6a:46:f2:ef:4d:97:22:99:b1:b6:f6:99:74:26:3e:27:f9: c3:fb:24:98:09:af:4d:8b:1f:cc:88:81:22:a0:10:2b:5e:ec: 33:a4:6f:4c:36:67:83:49:38:1d:3a:f5:d7:00:a3:e8:b6:14: 06:ae:e2:ac:c7:cc:d9:c7:22:ca:c0:e7:5b:60:b9:bf:a5:a5: 34:27:f5:ab:12:a3:28:d8:6d:8d:d8:d9:69:fb:72:90:e5:ae: 66:33:4d:66:8c:d5:bc:3c:9e:ab:03:29:a2:61:96:9d:a0:5c: 1f:e9:49:de:4c:1a:e2:b0:f9:c8:7d:89:5f:3e:3d:28:23:cc: 85:db:ea:79:70:bc:51:74:ec:0a:b0:4d:2b:0c:15:e8:bc:20: b8:14:c4:a8:06:52:0a:d7:e6:18:44:74:2c:de:c3:26:64:aa: 3e:19:fb:7c:15:ab:65:c8:44:bb:d0:e3:e0:5a:5c:90:a6:7e: 2d:db:46:42:d0:57:22:92:ad:b5:9e:ce:c2:f9:62:2c:14:ea: c7:c2:57:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRDMEQxMTAvBgNVBAUTKDYzNEUyOEIxMDAyRTU1NkU4RUIxNEY5NTNFQUQ2M0I2 RDY3NzU4MDkwHhcNMjUwMzEzMDMxNTM1WhcNMjUwMzIwMDMxNTM1WjAYMRYwFAYD VQQDEw02N2QyNGRkNy0xMWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3gJPqxIuF/Nf5m+lXBFGBtgzVWqUw5oNKEa624Bps3kHiKAnPoo8m12ujD1X q0od6c4VmU9j8CmW1De2P4sJ/cIlcRAhoHGFb+JNz2MquinJ5UjmGmX/ZnBWHs/O noRp0jK3+Z/T3EL0+TgiBWu1eH7cPOU693xgJH3n1ZR+iXcMdOMOa/Myku5rj0DF qZf//C7sH5EB71csUdtJOp9nrpk1QDVPb39thIhFNNk37Z64sMbN3LlvdFemRF6o ubrOFquSkyQo+ptHR50gV/ZSsYHEugSxK5kvFK931io8y0CGZbxvgytwS3KplRQr O2JHceXSh/cDyxYKeHk+brZR5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKIa8wpQ i2rIOb67H9QJ8PDpQWvtMB8GA1UdIwQYMBaAFGNOKLEALlVujrFPlT6tY7bWd1gJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEMwRC9BRDI1ODg5MDU3 NTQxMUVFOTQwQ0Q5NTRDNEY5QUUwMi9ZMDRvc1FBdVZXNk9zVS1WUHExanR0WjNX QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kwNG9zUUF1Vlc2T3NVLVZQcTFqdHRaM1dBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEMwRC9BRDI1ODg5MDU3NTQxMUVFOTQwQ0Q5NTRDNEY5QUUwMi9ZMDRvc1FBdVZX Nk9zVS1WUHExanR0WjNXQWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBo26ZA1d/bspYlK01IIT5TUVAXIhtl0jUP+tiIUgvJK64KIixaMvfn Ilf30xoV2TCZTZn/DYRNakby702XIpmxtvaZdCY+J/nD+ySYCa9Nix/MiIEioBAr XuwzpG9MNmeDSTgdOvXXAKPothQGruKsx8zZxyLKwOdbYLm/paU0J/WrEqMo2G2N 2Nlp+3KQ5a5mM01mjNW8PJ6rAymiYZadoFwf6UneTBrisPnIfYlfPj0oI8yF2+p5 cLxRdOwKsE0rDBXovCC4FMSoBlIK1+YYRHQs3sMmZKo+Gft8FatlyES70OPgWlyQ pn4t20ZC0Fcikq21ns7C+WIsFOrHwlcN -----END CERTIFICATE-----Generated at Thu Mar 13 21:28:09 2025 by rpki-client