$ rpki-client -vvf rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft File: y1sC0Pxzbip6stKIoPwzFnpLvO0.mft (raw, json) Hash identifier: qMpPwGIcBwO5ArcYPpPrRBnaTiIQQrZqAirI/Utvofs= Subject key identifier: B5:97:F5:C0:EB:5B:5E:40:EE:AA:15:F4:42:EF:28:C0:8B:37:54:A0 Authority key identifier: CB:5B:02:D0:FC:73:6E:2A:7A:B2:D2:88:A0:FC:33:16:7A:4B:BC:ED Certificate issuer: /CN=A9129F1D/serialNumber=CB5B02D0FC736E2A7AB2D288A0FC33167A4BBCED Certificate serial: 01BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft Manifest number: 01B9 Signing time: Sun 11 May 2025 02:02:57 +0000 Manifest this update: Sun 11 May 2025 02:02:57 +0000 Manifest next update: Sun 18 May 2025 02:02:57 +0000 Files and hashes: 1: y1sC0Pxzbip6stKIoPwzFnpLvO0.crl (hash: Fn7OXTq/wQMuxxTx1CmjMrp+C08xpCM26E/hRNY4cps=) 2: 3E122AE0876011ED84335D46C4F9AE02.roa (hash: bMGYEkxmsNwyimLtEml2g/yxjeK2QwKmxudQ/0mQEOc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.crl rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:02:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 445 (0x1bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129F1D, serialNumber=CB5B02D0FC736E2A7AB2D288A0FC33167A4BBCED Validity Not Before: May 11 02:02:57 2025 GMT Not After : May 18 02:02:57 2025 GMT Subject: CN=68200551-6681 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:0d:b6:a3:f5:91:31:3b:1e:28:25:2a:73:6f: e1:be:cb:09:66:bc:67:14:5a:18:2b:45:bb:60:99: 57:4a:48:82:91:51:00:56:e7:db:ee:23:68:9e:bf: de:d3:9d:b1:4f:1d:49:33:ac:34:50:a4:31:1e:f3: 19:0f:1e:8a:e7:59:c3:6c:c5:8d:86:0a:af:cc:57: 4f:a4:70:58:c3:1e:eb:1c:96:17:d1:5f:58:a4:1a: 75:31:bc:0d:22:f5:c1:c9:68:e9:20:7b:71:be:b0: f4:a7:62:b0:57:4f:03:6c:1c:0c:94:32:e7:e9:60: 8c:b6:cb:c4:9c:2a:c7:d7:7a:2d:e5:97:4e:c4:98: af:37:ae:0b:46:fd:36:76:0e:72:de:75:6a:d5:f9: c8:0c:b2:a7:7b:00:24:f4:98:f6:47:c1:4b:98:87: af:8d:11:db:b6:7e:e7:48:8a:db:a2:9f:eb:48:7e: fe:5d:88:9d:f9:6d:bd:37:15:b5:52:49:49:8f:af: 23:d7:92:bc:36:bc:a7:6b:97:10:83:8a:69:77:76: 6c:69:f0:b0:67:be:9c:db:fd:99:8a:16:9c:8e:62: bc:65:51:86:2a:d5:84:9f:26:b5:4d:05:2a:bb:73: fa:72:02:57:ac:ad:6b:d6:56:e7:e3:74:9f:08:ee: fd:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:97:F5:C0:EB:5B:5E:40:EE:AA:15:F4:42:EF:28:C0:8B:37:54:A0 X509v3 Authority Key Identifier: keyid:CB:5B:02:D0:FC:73:6E:2A:7A:B2:D2:88:A0:FC:33:16:7A:4B:BC:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:6f:db:e2:6f:b8:a7:b8:0d:cc:a7:cd:33:ae:47:c5:c7:03: cd:f5:a5:c4:c0:22:a0:c8:0b:2d:35:8a:d1:50:dd:48:5b:df: a1:31:08:1f:72:30:d4:9e:66:e2:29:63:49:6f:ac:e2:84:41: 92:09:65:b2:21:c1:c7:9c:39:a9:7c:7d:30:a4:28:c4:f9:72: 18:b2:99:01:0a:8d:24:6f:ad:fd:b7:ed:20:64:ac:30:bf:44: cc:23:28:d1:ac:1c:ee:97:dc:5d:9f:9d:e2:6f:91:ad:fb:a5: a4:7f:d4:0f:2e:9d:ac:4b:d9:ec:cd:91:71:91:4b:41:5a:ab: ac:9c:33:88:91:a9:1c:ae:d7:38:7c:12:3d:91:30:e8:90:72: 1e:63:92:99:e0:27:08:fb:ca:1b:b5:13:f0:7a:6a:f6:d6:54: 24:e6:57:4d:39:8a:2e:d3:78:54:4a:99:58:33:53:48:22:b2: 08:f1:d9:4c:17:29:e7:3f:b5:08:22:94:b4:ec:99:84:de:5f: d2:70:52:ee:e6:25:09:20:c2:d5:7b:f7:d4:cc:5a:c7:12:9e: 7b:de:1b:20:df:c8:c2:69:d3:87:f5:29:9d:69:0e:94:64:92: 0b:da:e8:51:13:25:b7:70:22:6f:7b:29:c1:e3:69:51:4a:1f: 49:3e:17:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAb0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlGMUQxMTAvBgNVBAUTKENCNUIwMkQwRkM3MzZFMkE3QUIyRDI4OEEwRkMzMzE2 N0E0QkJDRUQwHhcNMjUwNTExMDIwMjU3WhcNMjUwNTE4MDIwMjU3WjAYMRYwFAYD VQQDEw02ODIwMDU1MS02NjgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyA22o/WRMTseKCUqc2/hvssJZrxnFFoYK0W7YJlXSkiCkVEAVufb7iNonr/e 052xTx1JM6w0UKQxHvMZDx6K51nDbMWNhgqvzFdPpHBYwx7rHJYX0V9YpBp1MbwN IvXByWjpIHtxvrD0p2KwV08DbBwMlDLn6WCMtsvEnCrH13ot5ZdOxJivN64LRv02 dg5y3nVq1fnIDLKnewAk9Jj2R8FLmIevjRHbtn7nSIrbop/rSH7+XYid+W29NxW1 UklJj68j15K8Nryna5cQg4ppd3ZsafCwZ76c2/2ZihacjmK8ZVGGKtWEnya1TQUq u3P6cgJXrK1r1lbn43SfCO793QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLWX9cDr W15A7qoV9ELvKMCLN1SgMB8GA1UdIwQYMBaAFMtbAtD8c24qerLSiKD8MxZ6S7zt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUYxRC8yMUNBQkE1Qzg3 NUUxMUVEQkRDNjQ5NDZDNEY5QUUwMi95MXNDMFB4emJpcDZzdEtJb1B3ekZucEx2 TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kxc0MwUHh6YmlwNnN0S0lvUHd6Rm5wTHZPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OUYxRC8yMUNBQkE1Qzg3NUUxMUVEQkRDNjQ5NDZDNEY5QUUwMi95MXNDMFB4emJp cDZzdEtJb1B3ekZucEx2TzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjb9vib7inuA3Mp80zrkfFxwPN9aXEwCKgyAstNYrRUN1IW9+hMQgf cjDUnmbiKWNJb6zihEGSCWWyIcHHnDmpfH0wpCjE+XIYspkBCo0kb639t+0gZKww v0TMIyjRrBzul9xdn53ib5Gt+6Wkf9QPLp2sS9nszZFxkUtBWqusnDOIkakcrtc4 fBI9kTDokHIeY5KZ4CcI+8obtRPwemr21lQk5ldNOYou03hUSplYM1NIIrII8dlM FynnP7UIIpS07JmE3l/ScFLu5iUJIMLVe/fUzFrHEp573hsg38jCadOH9SmdaQ6U ZJIL2uhREyW3cCJveynB42lRSh9JPhfX -----END CERTIFICATE-----Generated at Mon May 12 18:58:47 2025 by rpki-client