$ rpki-client -vvf rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.mft File: yQm9soTk3whHdmDWgrfLP1lIMeM.mft (raw, json) Hash identifier: Lv+DjnBywVC+zrNh4XGMUfHMgUBNyCJ5POZ7LI7Ukes= Subject key identifier: C3:3C:53:09:4F:66:B3:4A:99:33:C0:88:27:98:58:0D:A2:58:0A:8C Authority key identifier: C9:09:BD:B2:84:E4:DF:08:47:76:60:D6:82:B7:CB:3F:59:48:31:E3 Certificate issuer: /CN=A912BD25/serialNumber=C909BDB284E4DF08477660D682B7CB3F594831E3 Certificate serial: 0BF3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yQm9soTk3whHdmDWgrfLP1lIMeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.mft Manifest number: 0BEA Signing time: Sat 10 May 2025 18:34:45 +0000 Manifest this update: Sat 10 May 2025 18:34:44 +0000 Manifest next update: Sat 17 May 2025 18:34:44 +0000 Files and hashes: 1: yQm9soTk3whHdmDWgrfLP1lIMeM.crl (hash: ZIm+tkLqSDzdfJFLAUZ62zZrp0i/kYe7PzYggBrde2s=) 2: CF3378E272DB11ED8483E95DC4F9AE02.roa (hash: 7P+2TWLqfeVNyGM33Rg8heOwqWfXOoMC0kS7Ev1IOzE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.crl rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yQm9soTk3whHdmDWgrfLP1lIMeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 18:34:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3059 (0xbf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BD25, serialNumber=C909BDB284E4DF08477660D682B7CB3F594831E3 Validity Not Before: May 10 18:34:44 2025 GMT Not After : May 17 18:34:44 2025 GMT Subject: CN=681f9c44-f56c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:50:80:9d:e8:e7:0c:32:8e:c4:e8:af:d2:0a: d2:33:f8:0b:ce:9f:55:d0:dd:ea:57:51:e1:3b:23: 2d:d3:69:fe:83:09:bc:d8:f0:90:bf:81:d1:a7:25: b4:43:6a:67:7e:3b:d7:0b:e6:d3:6e:40:c6:e3:c0: 63:f9:c3:c0:3d:fa:9f:b2:f9:38:30:c6:ca:8a:98: 4b:d1:5d:8d:37:59:be:96:18:67:83:0d:dd:c5:d5: 77:2e:90:45:d7:c1:c5:50:3d:c7:b7:ac:b0:9c:f5: 52:b0:2c:fe:c4:38:ed:aa:c1:01:ad:80:69:9b:51: 7a:76:9e:e8:a2:6c:26:ef:0d:dd:49:bf:5b:56:d7: 8e:3b:6f:71:9e:30:ef:84:dc:16:bd:99:63:0f:e3: 01:f9:a1:c7:42:b1:9d:e2:2c:f6:fe:ae:d6:df:21: af:8e:61:4f:7b:20:6c:d6:79:d3:f2:fd:4d:f5:2e: b8:ae:3e:f7:f9:c3:0c:41:8c:f2:f1:00:d7:39:94: 90:bf:21:2e:94:be:25:29:cb:c1:e6:59:f9:15:b8: 63:66:f2:78:d0:95:ba:58:75:22:cc:d4:0b:05:b1: 48:42:12:d2:3b:81:69:a0:33:5d:4c:84:f5:8c:5a: 22:66:41:c0:0c:11:da:d1:ae:33:0b:75:63:bb:f0: d9:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:3C:53:09:4F:66:B3:4A:99:33:C0:88:27:98:58:0D:A2:58:0A:8C X509v3 Authority Key Identifier: keyid:C9:09:BD:B2:84:E4:DF:08:47:76:60:D6:82:B7:CB:3F:59:48:31:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yQm9soTk3whHdmDWgrfLP1lIMeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:f6:8a:33:3d:2b:3d:0f:0c:47:93:ea:56:4f:c2:0c:54:bd: 8a:79:91:8a:e5:71:e2:23:04:6b:db:69:35:37:2e:64:28:a9: de:64:85:81:22:02:f3:ee:ac:75:f0:ed:11:f1:62:14:c5:7d: 4e:63:fc:bc:5e:f9:db:21:ad:d9:ea:cb:18:05:28:13:8a:35: 6d:bf:c1:ab:21:c7:06:4a:64:4c:28:84:8c:8f:e7:8c:f4:ea: 8b:df:b7:05:30:22:28:a0:42:d1:95:ca:58:d0:2d:70:32:af: 49:24:e4:2e:b6:14:be:d7:fd:f3:89:ad:b1:b5:22:85:8c:2a: 7e:2e:d3:88:aa:24:d8:d1:3a:dc:b6:d3:e6:50:bb:c1:a8:eb: 8c:4f:f8:e8:86:cf:ef:55:46:d6:42:87:40:51:22:42:4e:02: 16:72:1b:cf:4f:24:3f:ce:56:83:c5:b4:ba:bd:63:be:6e:e8: 4c:94:c6:81:8d:03:d7:1c:2d:15:cc:cb:61:d4:31:b8:ae:c1: 36:cb:b5:03:81:57:4b:c3:f1:b4:61:44:f9:ec:cf:6f:50:6e: f9:ed:d4:13:19:86:31:7d:82:a1:23:f2:6d:11:f7:c5:93:95: 29:91:bb:22:54:98:53:b1:2b:bc:85:9f:6c:95:fa:31:42:b6: bb:88:a3:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC/MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJEMjUxMTAvBgNVBAUTKEM5MDlCREIyODRFNERGMDg0Nzc2NjBENjgyQjdDQjNG NTk0ODMxRTMwHhcNMjUwNTEwMTgzNDQ0WhcNMjUwNTE3MTgzNDQ0WjAYMRYwFAYD VQQDEw02ODFmOWM0NC1mNTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7VCAnejnDDKOxOiv0grSM/gLzp9V0N3qV1HhOyMt02n+gwm82PCQv4HRpyW0 Q2pnfjvXC+bTbkDG48Bj+cPAPfqfsvk4MMbKiphL0V2NN1m+lhhngw3dxdV3LpBF 18HFUD3Ht6ywnPVSsCz+xDjtqsEBrYBpm1F6dp7oomwm7w3dSb9bVteOO29xnjDv hNwWvZljD+MB+aHHQrGd4iz2/q7W3yGvjmFPeyBs1nnT8v1N9S64rj73+cMMQYzy 8QDXOZSQvyEulL4lKcvB5ln5FbhjZvJ40JW6WHUizNQLBbFIQhLSO4FpoDNdTIT1 jFoiZkHADBHa0a4zC3Vju/DZjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMM8UwlP ZrNKmTPAiCeYWA2iWAqMMB8GA1UdIwQYMBaAFMkJvbKE5N8IR3Zg1oK3yz9ZSDHj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkQyNS8wN0Y4MjE0QTE0 RTQxMUVBODc2RTg2NDBDNEY5QUUwMi95UW05c29UazN3aEhkbURXZ3JmTFAxbElN ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lRbTlzb1RrM3doSGRtRFdncmZMUDFsSU1lTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkQyNS8wN0Y4MjE0QTE0RTQxMUVBODc2RTg2NDBDNEY5QUUwMi95UW05c29UazN3 aEhkbURXZ3JmTFAxbElNZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCE9oozPSs9DwxHk+pWT8IMVL2KeZGK5XHiIwRr22k1Ny5kKKneZIWB IgLz7qx18O0R8WIUxX1OY/y8XvnbIa3Z6ssYBSgTijVtv8GrIccGSmRMKISMj+eM 9OqL37cFMCIooELRlcpY0C1wMq9JJOQuthS+1/3zia2xtSKFjCp+LtOIqiTY0Trc ttPmULvBqOuMT/johs/vVUbWQodAUSJCTgIWchvPTyQ/zlaDxbS6vWO+buhMlMaB jQPXHC0VzMth1DG4rsE2y7UDgVdLw/G0YUT57M9vUG757dQTGYYxfYKhI/JtEffF k5UpkbsiVJhTsSu8hZ9slfoxQra7iKMU -----END CERTIFICATE-----Generated at Mon May 12 07:25:49 2025 by rpki-client