$ rpki-client -vvf rpki.apnic.net/member_repository/A919FA55/0F9E616E40FC11EEB8206744C4F9AE02/YCdrQR9t9pTdNkxP04LyXJ5qYGI.mft File: YCdrQR9t9pTdNkxP04LyXJ5qYGI.mft (raw, json) Hash identifier: lewLZEGbVTk/0Bhe5LN2FvgHVMxrk944WcmszPclGXQ= Subject key identifier: 13:63:8A:5E:5D:22:4B:DC:57:FF:25:11:C2:23:B8:48:C9:77:90:3A Authority key identifier: 60:27:6B:41:1F:6D:F6:94:DD:36:4C:4F:D3:82:F2:5C:9E:6A:60:62 Certificate issuer: /CN=A919FA55/serialNumber=60276B411F6DF694DD364C4FD382F25C9E6A6062 Certificate serial: 0132 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCdrQR9t9pTdNkxP04LyXJ5qYGI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919FA55/0F9E616E40FC11EEB8206744C4F9AE02/YCdrQR9t9pTdNkxP04LyXJ5qYGI.mft Manifest number: 012C Signing time: Thu 13 Mar 2025 03:09:05 +0000 Manifest this update: Thu 13 Mar 2025 03:09:05 +0000 Manifest next update: Thu 20 Mar 2025 03:09:05 +0000 Files and hashes: 1: YCdrQR9t9pTdNkxP04LyXJ5qYGI.crl (hash: 1YYglRCWFPuZEQQZu2ICQCrC79J9oi1KDuxQ/c/Gy9I=) 2: 730BFF8C428B11EEB9A5EA63C4F9AE02.roa (hash: kkjE94BBiiWiAJ9He43Jc/0GO/LlMOG+ydM9xjAZ/oQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919FA55/0F9E616E40FC11EEB8206744C4F9AE02/YCdrQR9t9pTdNkxP04LyXJ5qYGI.crl rsync://rpki.apnic.net/member_repository/A919FA55/0F9E616E40FC11EEB8206744C4F9AE02/YCdrQR9t9pTdNkxP04LyXJ5qYGI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCdrQR9t9pTdNkxP04LyXJ5qYGI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 03:09:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 306 (0x132) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919FA55 Validity Not Before: Mar 13 03:09:05 2025 GMT Not After : Mar 20 03:09:05 2025 GMT Subject: CN=67d24c51-446a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:dd:90:df:ed:30:79:73:cf:37:6a:09:cb:8a: d0:16:b0:7d:af:9b:ac:22:ca:c1:a7:a7:34:28:1e: 8c:1b:8b:41:98:95:ea:40:a0:c6:67:ed:0c:75:d3: a1:aa:eb:22:eb:0c:e6:44:90:ad:84:73:90:4d:23: 85:3d:59:c2:2a:7b:93:9e:78:09:f4:6e:3d:0b:a1: fe:dd:46:4f:77:a6:c9:18:7a:d2:2c:92:a7:78:6f: 9b:f7:5d:16:d9:d7:9c:99:d8:a6:b8:7c:48:96:97: 64:c2:f3:98:e7:da:29:80:4f:35:b8:4d:99:7e:58: 2e:3c:0a:63:04:5d:0a:7e:20:89:81:a9:82:c5:eb: 72:80:36:c2:3a:82:3a:e2:8f:78:e3:8d:7e:52:8a: 97:78:ab:36:19:e8:d7:f5:06:2a:42:0d:9e:1c:b0: be:70:8d:c6:10:77:1b:80:66:9a:38:b5:19:6c:59: bb:eb:09:dc:32:93:6d:12:88:25:6e:09:a5:9b:24: 7f:d2:88:e1:a2:92:ee:41:72:1b:1b:23:fe:f5:90: 35:91:92:40:2a:76:11:c4:14:58:3f:1f:8d:46:c6: 48:d5:78:95:a6:13:25:33:2f:86:30:4d:b7:c3:0e: 27:fb:6d:79:28:68:fb:dc:0f:8b:89:a0:c0:41:46: a5:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:63:8A:5E:5D:22:4B:DC:57:FF:25:11:C2:23:B8:48:C9:77:90:3A X509v3 Authority Key Identifier: keyid:60:27:6B:41:1F:6D:F6:94:DD:36:4C:4F:D3:82:F2:5C:9E:6A:60:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919FA55/0F9E616E40FC11EEB8206744C4F9AE02/YCdrQR9t9pTdNkxP04LyXJ5qYGI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCdrQR9t9pTdNkxP04LyXJ5qYGI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FA55/0F9E616E40FC11EEB8206744C4F9AE02/YCdrQR9t9pTdNkxP04LyXJ5qYGI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:19:cc:b7:a6:85:a9:3e:58:63:93:8d:6b:27:55:83:a2:12: a6:59:b8:56:11:f1:8d:a4:78:0f:e9:1a:19:8e:40:f5:43:c9: eb:70:7d:e7:e4:fd:96:b9:ea:ac:83:c3:47:d3:3d:86:79:4e: 60:3c:ae:33:6a:96:ae:46:ae:25:01:f1:4f:c9:ab:d1:fc:fe: ff:a9:15:b4:ab:ef:d3:b0:8c:01:db:e6:d0:22:bb:a9:f3:6d: b9:9b:56:d3:0f:d5:c7:e9:8f:58:32:31:dc:11:57:a4:2b:d3: 7b:2e:e8:19:0d:8f:84:57:90:e6:ce:02:7a:b2:d6:03:d2:8a: 2d:7d:3b:a8:3a:eb:9f:49:ba:99:e3:58:23:da:51:36:ed:bf: a3:ae:e2:97:14:c7:d4:ec:cc:e1:e7:9c:cc:ff:fb:0f:7e:91: 42:a4:b8:05:fa:1c:9a:38:e6:58:00:7f:d0:b9:f4:c4:6a:70: fd:3c:48:fe:53:91:33:7c:e6:e8:15:0a:42:ad:22:47:ba:d8: 67:f9:1e:ef:38:f7:b5:c3:2c:ef:22:05:81:04:78:73:c2:26: e8:44:be:f1:5c:2d:92:37:96:e2:be:88:8b:6a:92:df:5b:c5: 6d:9f:37:a4:b9:97:d9:ff:9b:cd:de:aa:19:ac:b5:67:e5:f5: ba:45:5c:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUZBNTUxMTAvBgNVBAUTKDYwMjc2QjQxMUY2REY2OTRERDM2NEM0RkQzODJGMjVD OUU2QTYwNjIwHhcNMjUwMzEzMDMwOTA1WhcNMjUwMzIwMDMwOTA1WjAYMRYwFAYD VQQDEw02N2QyNGM1MS00NDZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzN2Q3+0weXPPN2oJy4rQFrB9r5usIsrBp6c0KB6MG4tBmJXqQKDGZ+0MddOh qusi6wzmRJCthHOQTSOFPVnCKnuTnngJ9G49C6H+3UZPd6bJGHrSLJKneG+b910W 2decmdimuHxIlpdkwvOY59opgE81uE2ZflguPApjBF0KfiCJgamCxetygDbCOoI6 4o94441+UoqXeKs2GejX9QYqQg2eHLC+cI3GEHcbgGaaOLUZbFm76wncMpNtEogl bgmlmyR/0ojhopLuQXIbGyP+9ZA1kZJAKnYRxBRYPx+NRsZI1XiVphMlMy+GME23 ww4n+215KGj73A+LiaDAQUaldQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBNjil5d IkvcV/8lEcIjuEjJd5A6MB8GA1UdIwQYMBaAFGAna0EfbfaU3TZMT9OC8lyeamBi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RkE1NS8wRjlFNjE2RTQw RkMxMUVFQjgyMDY3NDRDNEY5QUUwMi9ZQ2RyUVI5dDlwVGROa3hQMDRMeVhKNXFZ R0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lDZHJRUjl0OXBUZE5reFAwNEx5WEo1cVlHSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RkE1NS8wRjlFNjE2RTQwRkMxMUVFQjgyMDY3NDRDNEY5QUUwMi9ZQ2RyUVI5dDlw VGROa3hQMDRMeVhKNXFZR0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQGcy3poWpPlhjk41rJ1WDohKmWbhWEfGNpHgP6RoZjkD1Q8nrcH3n 5P2Wueqsg8NH0z2GeU5gPK4zapauRq4lAfFPyavR/P7/qRW0q+/TsIwB2+bQIrup 8225m1bTD9XH6Y9YMjHcEVekK9N7LugZDY+EV5DmzgJ6stYD0ootfTuoOuufSbqZ 41gj2lE27b+jruKXFMfU7Mzh55zM//sPfpFCpLgF+hyaOOZYAH/QufTEanD9PEj+ U5EzfOboFQpCrSJHuthn+R7vOPe1wyzvIgWBBHhzwiboRL7xXC2SN5bivoiLapLf W8VtnzekuZfZ/5vN3qoZrLVn5fW6RVzK -----END CERTIFICATE-----Generated at Thu Mar 13 21:28:56 2025 by rpki-client