$ rpki-client -vvf rpki.apnic.net/member_repository/A9116907/B56A7CB07AB711ED9B953569C4F9AE02/ygBwrFIB1vandapSXVPY4zDjIJY.mft File: ygBwrFIB1vandapSXVPY4zDjIJY.mft (raw, json) Hash identifier: G6vnxP5VXeM9Rfno3ueZh0nONvBgBAqFwb2DX9UvF5M= Subject key identifier: A3:D2:0E:DE:21:E3:D8:AA:12:2D:84:F0:46:CC:25:74:9D:97:6B:C2 Authority key identifier: CA:00:70:AC:52:01:D6:F6:A7:75:AA:52:5D:53:D8:E3:30:E3:20:96 Certificate issuer: /CN=A9116907/serialNumber=CA0070AC5201D6F6A775AA525D53D8E330E32096 Certificate serial: 01D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ygBwrFIB1vandapSXVPY4zDjIJY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116907/B56A7CB07AB711ED9B953569C4F9AE02/ygBwrFIB1vandapSXVPY4zDjIJY.mft Manifest number: 01CA Signing time: Sun 11 May 2025 01:58:15 +0000 Manifest this update: Sun 11 May 2025 01:58:14 +0000 Manifest next update: Sun 18 May 2025 01:58:14 +0000 Files and hashes: 1: ygBwrFIB1vandapSXVPY4zDjIJY.crl (hash: sU0l+1NTIoTvaNAelBwUdwnh+zeatBfgQ5xzC2+A/kY=) 2: 9DE3DEAEAC9E11EFBAC6A027C4F9AE02.roa (hash: TvtT1Oa3KekcpLOO3lB33TtpOxnVn3h062NADWWRlOE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116907/B56A7CB07AB711ED9B953569C4F9AE02/ygBwrFIB1vandapSXVPY4zDjIJY.crl rsync://rpki.apnic.net/member_repository/A9116907/B56A7CB07AB711ED9B953569C4F9AE02/ygBwrFIB1vandapSXVPY4zDjIJY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ygBwrFIB1vandapSXVPY4zDjIJY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 01:58:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 466 (0x1d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116907, serialNumber=CA0070AC5201D6F6A775AA525D53D8E330E32096 Validity Not Before: May 11 01:58:14 2025 GMT Not After : May 18 01:58:14 2025 GMT Subject: CN=68200437-312d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:27:91:ed:b0:7f:4e:26:a9:ab:36:79:57:54: 45:00:2c:50:ff:ce:e4:51:ec:5c:b9:b8:75:1f:be: ca:ad:5a:d5:18:ed:4d:ea:fd:07:86:ff:3c:d1:0d: 2a:eb:a5:52:ae:20:04:f4:63:cd:75:f8:c3:58:94: 35:26:1c:21:21:0f:16:3d:89:1e:1c:d1:2b:ce:ef: 2b:47:d3:2a:97:eb:6c:94:fc:ce:bf:cf:3d:c7:13: 12:22:28:0e:48:f9:55:d3:65:67:10:0c:fe:38:0d: d6:96:a9:b4:46:13:f0:38:8c:25:fc:1b:69:f2:27: 65:29:23:b1:f3:ce:41:b0:f4:e6:8f:68:ac:03:da: 39:c7:13:07:9e:32:2a:82:f1:42:f2:3f:81:18:81: 43:3b:15:71:71:89:94:a5:fd:66:1c:60:55:8e:5f: 90:10:ef:d1:5d:75:94:94:bf:4a:cd:c5:01:39:ed: 09:68:ef:7a:f5:25:d0:dd:d6:27:7b:d9:b6:b0:9f: 74:7b:31:84:5e:fe:e6:1b:e3:e0:d3:1e:46:f7:8b: b2:b7:6e:e8:78:77:66:28:87:ff:b7:21:8a:c2:ef: eb:dd:b1:33:1f:83:49:46:31:e0:c5:8f:90:89:92: e3:df:c9:ce:1d:26:bf:ee:b8:e3:b4:9a:3e:80:6e: 22:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:D2:0E:DE:21:E3:D8:AA:12:2D:84:F0:46:CC:25:74:9D:97:6B:C2 X509v3 Authority Key Identifier: keyid:CA:00:70:AC:52:01:D6:F6:A7:75:AA:52:5D:53:D8:E3:30:E3:20:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116907/B56A7CB07AB711ED9B953569C4F9AE02/ygBwrFIB1vandapSXVPY4zDjIJY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ygBwrFIB1vandapSXVPY4zDjIJY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116907/B56A7CB07AB711ED9B953569C4F9AE02/ygBwrFIB1vandapSXVPY4zDjIJY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:87:b7:93:56:00:78:15:71:8a:bb:db:e3:e7:1b:58:df:3e: 72:b7:b5:9c:49:3f:17:2c:9b:db:98:89:4c:78:52:9a:88:22: b3:d9:34:0e:62:b9:75:b7:30:63:80:9f:a0:22:b1:8a:5a:c5: 5e:08:21:28:81:60:68:5f:fe:30:aa:42:9d:c5:01:d7:e4:7e: 8d:6a:09:99:50:bb:bf:13:a8:c4:de:22:13:41:74:ec:a6:a3: d8:10:51:6e:64:0d:9b:e3:47:0d:09:6e:3c:80:59:4d:b9:39: d4:91:b9:46:49:06:61:6d:5b:90:63:1a:fd:4a:02:ab:80:64: 89:5b:85:f7:17:18:db:39:a3:e3:c2:d8:bd:e4:e0:f5:e1:8c: a4:67:a3:2b:43:f0:60:06:e7:de:d2:a5:6b:36:a1:d0:7d:e2: eb:cf:81:d6:d2:19:89:68:67:1b:e7:a3:17:92:bc:eb:71:35: e3:29:02:8c:dc:3f:6c:78:f7:0e:45:6e:46:61:41:cc:b6:d1: 7e:0b:1b:e4:4a:e6:f6:f0:26:4d:6a:e1:a5:a6:b5:13:59:66: 73:46:21:27:0b:51:2f:d6:73:7e:f3:a0:3d:43:4a:8a:4c:e8: 55:73:03:74:42:fb:b9:31:1b:87:d0:c2:9a:21:db:01:42:5f: c4:ae:c4:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY5MDcxMTAvBgNVBAUTKENBMDA3MEFDNTIwMUQ2RjZBNzc1QUE1MjVENTNEOEUz MzBFMzIwOTYwHhcNMjUwNTExMDE1ODE0WhcNMjUwNTE4MDE1ODE0WjAYMRYwFAYD VQQDEw02ODIwMDQzNy0zMTJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyyeR7bB/TiapqzZ5V1RFACxQ/87kUexcubh1H77KrVrVGO1N6v0Hhv880Q0q 66VSriAE9GPNdfjDWJQ1JhwhIQ8WPYkeHNErzu8rR9Mql+tslPzOv889xxMSIigO SPlV02VnEAz+OA3Wlqm0RhPwOIwl/Btp8idlKSOx885BsPTmj2isA9o5xxMHnjIq gvFC8j+BGIFDOxVxcYmUpf1mHGBVjl+QEO/RXXWUlL9KzcUBOe0JaO969SXQ3dYn e9m2sJ90ezGEXv7mG+Pg0x5G94uyt27oeHdmKIf/tyGKwu/r3bEzH4NJRjHgxY+Q iZLj38nOHSa/7rjjtJo+gG4iUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKPSDt4h 49iqEi2E8EbMJXSdl2vCMB8GA1UdIwQYMBaAFMoAcKxSAdb2p3WqUl1T2OMw4yCW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjkwNy9CNTZBN0NCMDdB QjcxMUVEOUI5NTM1NjlDNEY5QUUwMi95Z0J3ckZJQjF2YW5kYXBTWFZQWTR6RGpJ SlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lnQndyRklCMXZhbmRhcFNYVlBZNHpEaklKWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjkwNy9CNTZBN0NCMDdBQjcxMUVEOUI5NTM1NjlDNEY5QUUwMi95Z0J3ckZJQjF2 YW5kYXBTWFZQWTR6RGpJSlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXh7eTVgB4FXGKu9vj5xtY3z5yt7WcST8XLJvbmIlMeFKaiCKz2TQO Yrl1tzBjgJ+gIrGKWsVeCCEogWBoX/4wqkKdxQHX5H6NagmZULu/E6jE3iITQXTs pqPYEFFuZA2b40cNCW48gFlNuTnUkblGSQZhbVuQYxr9SgKrgGSJW4X3FxjbOaPj wti95OD14YykZ6MrQ/BgBufe0qVrNqHQfeLrz4HW0hmJaGcb56MXkrzrcTXjKQKM 3D9sePcORW5GYUHMttF+CxvkSub28CZNauGlprUTWWZzRiEnC1Ev1nN+86A9Q0qK TOhVcwN0Qvu5MRuH0MKaIdsBQl/ErsSi -----END CERTIFICATE-----Generated at Sun May 11 11:03:17 2025 by rpki-client