$ rpki-client -vvf rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.mft File: Y4g-TKLI593aw5h-SE_R1nLZOUk.mft (raw, json) Hash identifier: yTlVvuYRhytQnsNA0GRid1R6GaK6dR9lcEJJ3tUHLBc= Subject key identifier: C4:B1:47:6F:FE:20:17:9B:2C:02:51:71:83:CC:1E:51:10:E2:96:1E Authority key identifier: 63:88:3E:4C:A2:C8:E7:DD:DA:C3:98:7E:48:4F:D1:D6:72:D9:39:49 Certificate issuer: /CN=A913E4AA/serialNumber=63883E4CA2C8E7DDDAC3987E484FD1D672D93949 Certificate serial: 0C01 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4g-TKLI593aw5h-SE_R1nLZOUk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.mft Manifest number: 0BFA Signing time: Wed 14 May 2025 18:52:16 +0000 Manifest this update: Wed 14 May 2025 18:52:15 +0000 Manifest next update: Wed 21 May 2025 18:52:15 +0000 Files and hashes: 1: Y4g-TKLI593aw5h-SE_R1nLZOUk.crl (hash: jqzJwuz59G72HhlrwRcUzyy4cZORdoqtAsLFyBbxEUY=) 2: 9D9E8D0C11DC11EABC4FB55AC4F9AE02.roa (hash: E2q/ZEHSPXl1Ew87PC9tVYqM/dotHBquWrnE6mAYEbI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.crl rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4g-TKLI593aw5h-SE_R1nLZOUk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 18:52:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3073 (0xc01) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E4AA, serialNumber=63883E4CA2C8E7DDDAC3987E484FD1D672D93949 Validity Not Before: May 14 18:52:15 2025 GMT Not After : May 21 18:52:15 2025 GMT Subject: CN=6824e65f-3a1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:4a:ed:80:91:5a:d4:33:ee:36:02:5b:5c:3a: 7e:e1:e9:59:e7:5a:84:6d:03:fd:f2:af:2a:86:da: 65:ea:9f:1f:ee:fa:a9:72:18:70:1a:86:79:1d:bf: df:39:f2:ab:4e:a6:05:3d:00:54:52:41:d3:a1:3c: 09:f0:33:d8:4b:35:a2:65:80:2b:d1:43:87:ed:dd: af:cd:3f:2d:ab:09:68:7b:e8:8a:a8:de:a5:0a:33: 17:a1:d6:e9:96:46:a4:da:2d:34:26:72:2f:8f:49: 55:47:96:d1:1e:a3:96:1b:44:2b:1d:63:30:8e:e1: b0:aa:55:17:ae:c8:53:87:90:15:a5:00:3c:1d:46: 9f:92:8e:27:e4:23:5b:c8:90:39:b4:8c:bd:93:72: 8a:8f:c9:73:6a:89:6d:6a:3b:4b:70:83:45:0a:6c: cb:d2:1d:c1:88:dc:87:45:b1:5c:85:e6:99:26:c5: c5:95:54:9b:4c:83:50:63:8f:4f:4f:62:67:10:1d: 59:b2:7d:55:05:33:2b:6a:cd:2d:a0:bc:df:01:8f: 14:ed:4e:fd:1d:52:2c:7a:40:a5:08:d0:6b:26:3f: 41:54:23:75:df:f6:49:ee:54:cc:04:1d:d6:11:54: 5b:40:6a:ce:95:41:93:37:4a:cb:48:67:41:cd:2b: dc:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:B1:47:6F:FE:20:17:9B:2C:02:51:71:83:CC:1E:51:10:E2:96:1E X509v3 Authority Key Identifier: keyid:63:88:3E:4C:A2:C8:E7:DD:DA:C3:98:7E:48:4F:D1:D6:72:D9:39:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4g-TKLI593aw5h-SE_R1nLZOUk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:78:e4:b8:43:7a:57:14:fd:c0:00:c7:06:f2:a8:d9:3b:7b: 74:79:15:4d:9c:ef:0b:43:16:e7:65:97:9c:92:62:31:fe:0c: 2f:3e:02:c3:f7:12:44:49:93:dc:c0:97:38:49:40:54:09:ef: 8f:03:fb:8e:2c:13:f0:51:66:90:a0:f6:44:e7:74:72:29:bb: ab:71:d3:ec:a7:54:9d:c7:b8:bc:bd:32:58:32:e6:46:84:b7: d5:28:eb:39:2f:7f:1a:e7:7e:09:59:ae:58:eb:55:f7:8c:60: 1b:32:1a:3c:18:04:5e:80:a4:54:2c:fd:79:bf:39:b6:43:1e: 6a:96:42:6a:2d:c8:20:9b:b1:ac:d0:53:76:07:33:f4:40:5d: 0b:4c:12:bf:80:86:87:a7:d3:f8:fe:b3:9d:d0:67:f5:d7:be: 5b:27:e7:d6:90:61:87:67:09:28:4a:ef:f6:80:10:d9:1e:dc: ce:8b:7b:91:48:6f:5e:d2:e7:ba:29:98:cf:f6:7f:be:de:c1: b8:00:db:bc:62:e5:80:e5:49:59:68:18:f2:e5:8d:63:f3:7d: a9:c9:91:ee:40:ce:97:39:93:63:30:61:76:d3:ff:cb:fb:dd: 3b:7b:33:29:ff:5c:32:a0:02:64:73:13:eb:18:9d:ec:75:1b: 2e:a2:1f:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0U0QUExMTAvBgNVBAUTKDYzODgzRTRDQTJDOEU3REREQUMzOTg3RTQ4NEZEMUQ2 NzJEOTM5NDkwHhcNMjUwNTE0MTg1MjE1WhcNMjUwNTIxMTg1MjE1WjAYMRYwFAYD VQQDEw02ODI0ZTY1Zi0zYTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz0rtgJFa1DPuNgJbXDp+4elZ51qEbQP98q8qhtpl6p8f7vqpchhwGoZ5Hb/f OfKrTqYFPQBUUkHToTwJ8DPYSzWiZYAr0UOH7d2vzT8tqwloe+iKqN6lCjMXodbp lkak2i00JnIvj0lVR5bRHqOWG0QrHWMwjuGwqlUXrshTh5AVpQA8HUafko4n5CNb yJA5tIy9k3KKj8lzaoltajtLcINFCmzL0h3BiNyHRbFcheaZJsXFlVSbTINQY49P T2JnEB1Zsn1VBTMras0toLzfAY8U7U79HVIsekClCNBrJj9BVCN13/ZJ7lTMBB3W EVRbQGrOlUGTN0rLSGdBzSvcAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMSxR2/+ IBebLAJRcYPMHlEQ4pYeMB8GA1UdIwQYMBaAFGOIPkyiyOfd2sOYfkhP0dZy2TlJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTRBQS82NzRDQTI5RTEx REIxMUVBQkY0NURBNTVDNEY5QUUwMi9ZNGctVEtMSTU5M2F3NWgtU0VfUjFuTFpP VWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1k0Zy1US0xJNTkzYXc1aC1TRV9SMW5MWk9Vay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTRBQS82NzRDQTI5RTExREIxMUVBQkY0NURBNTVDNEY5QUUwMi9ZNGctVEtMSTU5 M2F3NWgtU0VfUjFuTFpPVWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9eOS4Q3pXFP3AAMcG8qjZO3t0eRVNnO8LQxbnZZeckmIx/gwvPgLD 9xJESZPcwJc4SUBUCe+PA/uOLBPwUWaQoPZE53RyKburcdPsp1Sdx7i8vTJYMuZG hLfVKOs5L38a534JWa5Y61X3jGAbMho8GARegKRULP15vzm2Qx5qlkJqLcggm7Gs 0FN2BzP0QF0LTBK/gIaHp9P4/rOd0Gf1175bJ+fWkGGHZwkoSu/2gBDZHtzOi3uR SG9e0ue6KZjP9n++3sG4ANu8YuWA5UlZaBjy5Y1j832pyZHuQM6XOZNjMGF20//L +907ezMp/1wyoAJkcxPrGJ3sdRsuoh+x -----END CERTIFICATE-----Generated at Fri May 16 03:15:57 2025 by rpki-client