$ rpki-client -vvf rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.mft File: yyTPMxKhYnFYzDraiI5bywxnzqE.mft (raw, json) Hash identifier: qoVqprL54bDBCoidBgvuftRkcZWhTpMGvnxmU0ORizc= Subject key identifier: CC:22:25:49:22:2C:E1:A7:E5:AF:B0:31:BE:13:6C:AB:CB:D4:E0:61 Authority key identifier: CB:24:CF:33:12:A1:62:71:58:CC:3A:DA:88:8E:5B:CB:0C:67:CE:A1 Certificate issuer: /CN=A9122342/serialNumber=CB24CF3312A1627158CC3ADA888E5BCB0C67CEA1 Certificate serial: 0982 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yyTPMxKhYnFYzDraiI5bywxnzqE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.mft Manifest number: 097B Signing time: Fri 16 May 2025 20:24:26 +0000 Manifest this update: Fri 16 May 2025 20:24:25 +0000 Manifest next update: Fri 23 May 2025 20:24:25 +0000 Files and hashes: 1: yyTPMxKhYnFYzDraiI5bywxnzqE.crl (hash: XVEhQ2Y59rBhmy3e7MkXeFEqxLzO5S1CKPq9tO1Q1zQ=) 2: 4D23A77E8E8F11EAB30DCA1AC4F9AE02.roa (hash: lg62QlYMqjfdPrlhdfFEapPKxJAEOZfWw6bA0op19ko=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.crl rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yyTPMxKhYnFYzDraiI5bywxnzqE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 20:24:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2434 (0x982) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122342, serialNumber=CB24CF3312A1627158CC3ADA888E5BCB0C67CEA1 Validity Not Before: May 16 20:24:25 2025 GMT Not After : May 23 20:24:25 2025 GMT Subject: CN=68279ef9-380f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b8:f6:cf:83:0a:b7:25:d8:57:b3:12:49:fb: 7a:9e:b4:ea:c3:31:d8:cf:26:01:c8:d7:9c:5f:26: cc:f0:cb:4f:5b:26:49:c1:87:aa:d4:88:08:92:a8: 15:9c:46:08:f5:33:59:a3:ff:95:01:47:3b:02:28: 51:fc:0c:19:2f:d3:26:79:dc:06:74:00:c7:0f:d7: 9b:c0:c7:7f:ab:e6:2c:0b:c6:19:a6:71:82:7f:fc: f0:eb:46:f2:1b:35:c6:61:9a:e8:c9:61:66:96:10: e8:73:16:ec:e3:88:ba:39:34:36:65:24:97:8b:95: 84:1f:0c:01:f4:a5:1c:7c:8c:08:15:b2:ec:ab:93: 5c:e3:34:38:04:57:a5:45:85:0f:1a:b8:1c:ff:ca: 0d:4a:4b:35:0b:59:c1:c0:0f:df:35:16:e0:53:ba: 75:d5:46:5d:59:dc:76:9a:2d:29:dc:c5:5c:91:56: 32:36:66:34:09:23:78:3a:45:36:7a:06:11:81:5e: 0e:83:e7:2a:13:4e:10:e5:e0:df:9f:ce:68:86:e8: d8:dd:ce:b5:cc:84:9e:ee:b1:dd:69:e0:57:97:92: 8d:c4:44:5c:19:88:b0:62:7f:69:e5:ca:16:70:3d: 0f:9e:93:fe:e8:d0:4a:01:5b:52:77:ea:24:21:52: c6:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:22:25:49:22:2C:E1:A7:E5:AF:B0:31:BE:13:6C:AB:CB:D4:E0:61 X509v3 Authority Key Identifier: keyid:CB:24:CF:33:12:A1:62:71:58:CC:3A:DA:88:8E:5B:CB:0C:67:CE:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yyTPMxKhYnFYzDraiI5bywxnzqE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:31:4c:c3:f2:7f:3c:75:88:58:84:b3:94:e9:10:98:27:bd: 93:ac:a1:b7:57:2f:d1:b5:06:c0:6d:04:9a:b7:1d:df:83:42: c2:ea:92:34:00:e7:1d:40:66:a8:04:d0:20:43:1b:41:b2:7d: 8f:86:d2:9e:1b:ca:77:3d:4a:90:0e:09:28:38:f3:75:22:10: 7c:d5:f5:7a:9e:d8:df:fa:67:1e:57:29:7a:a4:a9:85:af:7b: cd:f1:3b:8d:b1:2b:94:af:ba:83:82:c7:62:63:97:87:54:35: 62:e6:17:52:93:93:e0:a2:a6:70:cb:09:85:7b:b2:6d:6b:a1: ac:57:b0:9d:fd:25:de:65:65:46:f7:f3:7a:ec:14:1c:59:e8: b5:d1:7c:ba:4d:1f:06:12:6d:6b:0f:1d:b6:ae:db:81:31:13: 62:73:18:e2:a4:e7:3a:33:e7:87:35:ed:9c:f0:42:ad:b6:54: ee:4c:58:d9:e2:6a:cb:b0:31:ba:b3:76:8e:a6:6e:a8:d1:75: 2e:73:07:b6:d7:e1:04:41:2d:5c:34:c5:9d:74:27:95:73:56: 6b:6c:43:58:f9:71:05:5b:51:89:11:4e:f5:ce:49:41:75:22: 21:cc:93:e2:a6:e8:03:c0:32:e0:24:e4:cd:ed:85:96:5e:d1: 75:c8:6d:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCYIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjIzNDIxMTAvBgNVBAUTKENCMjRDRjMzMTJBMTYyNzE1OENDM0FEQTg4OEU1QkNC MEM2N0NFQTEwHhcNMjUwNTE2MjAyNDI1WhcNMjUwNTIzMjAyNDI1WjAYMRYwFAYD VQQDEw02ODI3OWVmOS0zODBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx7j2z4MKtyXYV7MSSft6nrTqwzHYzyYByNecXybM8MtPWyZJwYeq1IgIkqgV nEYI9TNZo/+VAUc7AihR/AwZL9MmedwGdADHD9ebwMd/q+YsC8YZpnGCf/zw60by GzXGYZroyWFmlhDocxbs44i6OTQ2ZSSXi5WEHwwB9KUcfIwIFbLsq5Nc4zQ4BFel RYUPGrgc/8oNSks1C1nBwA/fNRbgU7p11UZdWdx2mi0p3MVckVYyNmY0CSN4OkU2 egYRgV4Og+cqE04Q5eDfn85ohujY3c61zISe7rHdaeBXl5KNxERcGYiwYn9p5coW cD0PnpP+6NBKAVtSd+okIVLGjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMwiJUki LOGn5a+wMb4TbKvL1OBhMB8GA1UdIwQYMBaAFMskzzMSoWJxWMw62oiOW8sMZ86h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjM0Mi8wQjQxMDBDMDhF OEMxMUVBQkQzNDU4MTFDNEY5QUUwMi95eVRQTXhLaFluRll6RHJhaUk1Ynl3eG56 cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3l5VFBNeEtoWW5GWXpEcmFpSTVieXd4bnpxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjM0Mi8wQjQxMDBDMDhFOEMxMUVBQkQzNDU4MTFDNEY5QUUwMi95eVRQTXhLaFlu Rll6RHJhaUk1Ynl3eG56cUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQMUzD8n88dYhYhLOU6RCYJ72TrKG3Vy/RtQbAbQSatx3fg0LC6pI0 AOcdQGaoBNAgQxtBsn2PhtKeG8p3PUqQDgkoOPN1IhB81fV6ntjf+mceVyl6pKmF r3vN8TuNsSuUr7qDgsdiY5eHVDVi5hdSk5PgoqZwywmFe7Jta6GsV7Cd/SXeZWVG 9/N67BQcWei10Xy6TR8GEm1rDx22rtuBMRNicxjipOc6M+eHNe2c8EKttlTuTFjZ 4mrLsDG6s3aOpm6o0XUucwe21+EEQS1cNMWddCeVc1ZrbENY+XEFW1GJEU71zklB dSIhzJPipugDwDLgJOTN7YWWXtF1yG2N -----END CERTIFICATE-----Generated at Sat May 17 15:12:57 2025 by rpki-client