$ rpki-client -vvf rpki.apnic.net/member_repository/A913EE46/AE82E12612ED11ED9E4D760EC4F9AE02/Y1FbNkEThI-lVNKEL1hBh3z2rwA.mft File: Y1FbNkEThI-lVNKEL1hBh3z2rwA.mft (raw, json) Hash identifier: zfILu+nKV8mf0A5nnFDqns3Vn180lgPYjZjUQp5kpLw= Subject key identifier: 75:94:6E:42:27:D6:A0:CC:01:61:E4:8E:09:44:8D:C1:41:5D:2D:29 Authority key identifier: 63:51:5B:36:41:13:84:8F:A5:54:D2:84:2F:58:41:87:7C:F6:AF:00 Certificate issuer: /CN=A913EE46/serialNumber=63515B364113848FA554D2842F5841877CF6AF00 Certificate serial: 0263 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1FbNkEThI-lVNKEL1hBh3z2rwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913EE46/AE82E12612ED11ED9E4D760EC4F9AE02/Y1FbNkEThI-lVNKEL1hBh3z2rwA.mft Manifest number: 0260 Signing time: Thu 15 May 2025 01:46:08 +0000 Manifest this update: Thu 15 May 2025 01:46:08 +0000 Manifest next update: Thu 22 May 2025 01:46:08 +0000 Files and hashes: 1: Y1FbNkEThI-lVNKEL1hBh3z2rwA.crl (hash: VIaDls6r5XARdKF1x9tfmnA8vuS/gzTPYpMol/KzndY=) 2: 9DFFBC7C12F011EDA0DB0B12C4F9AE02.roa (hash: I/KyU3geIWwBo8ZaiWc/F+HF/TbeVrVlUgdVYuSp+mY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913EE46/AE82E12612ED11ED9E4D760EC4F9AE02/Y1FbNkEThI-lVNKEL1hBh3z2rwA.crl rsync://rpki.apnic.net/member_repository/A913EE46/AE82E12612ED11ED9E4D760EC4F9AE02/Y1FbNkEThI-lVNKEL1hBh3z2rwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1FbNkEThI-lVNKEL1hBh3z2rwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 01:46:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 611 (0x263) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913EE46, serialNumber=63515B364113848FA554D2842F5841877CF6AF00 Validity Not Before: May 15 01:46:08 2025 GMT Not After : May 22 01:46:08 2025 GMT Subject: CN=68254760-d0a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:00:55:3b:52:81:82:e4:42:3c:17:0f:71:4b: 9b:bf:7a:72:0e:35:8f:41:6e:17:5e:ac:50:a3:45: 32:66:af:01:e9:da:cc:08:db:be:27:a5:42:c0:f2: 6e:fd:be:af:46:57:0b:5f:a7:4c:d1:06:4a:cb:ee: 9e:4c:70:cc:b7:58:51:6a:3a:23:e2:c3:ef:af:4d: 09:df:4e:6b:94:e8:c7:b1:79:6f:68:b8:91:d1:0d: 0e:fe:52:ca:2a:f0:73:91:c9:ce:b7:af:82:f0:47: 15:2a:2d:85:f3:d1:8d:cd:18:be:1d:20:7a:4a:24: 04:49:0b:3b:7c:72:38:28:90:45:83:b3:e8:d4:91: b9:8f:69:2a:ed:f4:9c:ed:ca:66:b3:05:7b:fa:a9: 21:45:3e:88:3c:1a:4f:c4:6a:b4:3e:2a:ed:04:a1: ce:60:f3:fa:98:b0:4f:60:e5:6a:af:39:c9:1d:a6: 74:e1:32:42:46:1a:50:c7:bc:9d:a3:59:5c:97:fa: cd:c8:ff:db:75:6e:99:31:3e:1f:96:f7:14:6e:a1: b2:d9:2e:f1:b4:44:ff:c2:9c:24:c3:03:f9:1a:4b: af:9c:76:45:62:f9:a3:60:df:1a:5d:f2:20:a1:34: 37:53:af:1b:9f:63:df:b7:99:39:60:53:1a:23:5c: fd:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:94:6E:42:27:D6:A0:CC:01:61:E4:8E:09:44:8D:C1:41:5D:2D:29 X509v3 Authority Key Identifier: keyid:63:51:5B:36:41:13:84:8F:A5:54:D2:84:2F:58:41:87:7C:F6:AF:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913EE46/AE82E12612ED11ED9E4D760EC4F9AE02/Y1FbNkEThI-lVNKEL1hBh3z2rwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1FbNkEThI-lVNKEL1hBh3z2rwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913EE46/AE82E12612ED11ED9E4D760EC4F9AE02/Y1FbNkEThI-lVNKEL1hBh3z2rwA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:32:67:51:c3:6b:e6:7c:40:bd:8d:c3:d1:2a:9b:a1:6a:7b: 1b:56:59:35:f1:f1:d8:f3:82:70:5f:d3:56:92:1b:6b:74:42: 9e:d1:87:5f:c7:af:76:53:f7:70:b7:6e:d4:42:53:b7:c0:0c: 0e:13:aa:5c:24:38:44:7f:77:18:ac:cc:a0:05:9b:e3:2a:28: 8f:31:a9:1c:cf:62:85:8e:7b:18:33:b0:3d:7b:88:22:c1:cf: 8c:2a:96:e9:4e:6d:79:03:81:59:91:9a:3b:12:2b:9d:88:62: a2:bd:dc:b9:b2:3f:ea:07:fc:11:c3:90:75:ca:f9:9d:51:db: 3a:3c:b5:94:0a:10:2f:4d:9e:77:19:9c:81:ed:73:3c:a5:cf: e5:00:f5:9c:31:45:6e:29:d8:c3:93:b2:ac:c5:a8:e3:6b:58: 14:d4:25:05:64:31:97:cc:4a:e1:bd:f1:6b:48:2d:87:61:41: 55:33:7a:83:24:f8:d5:f8:7c:ff:64:4a:df:df:2a:87:eb:2a: c3:5a:4c:27:f5:3a:b5:40:44:61:d2:02:ba:eb:2b:76:1a:ea: 2f:59:fe:b8:d5:47:1c:78:e0:a1:d9:f5:ec:2d:6d:36:4b:bb: 11:3b:9f:6d:e8:03:f1:ec:13:89:26:f7:76:71:86:5b:05:76: 15:94:af:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0VFNDYxMTAvBgNVBAUTKDYzNTE1QjM2NDExMzg0OEZBNTU0RDI4NDJGNTg0MTg3 N0NGNkFGMDAwHhcNMjUwNTE1MDE0NjA4WhcNMjUwNTIyMDE0NjA4WjAYMRYwFAYD VQQDEw02ODI1NDc2MC1kMGE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtgBVO1KBguRCPBcPcUubv3pyDjWPQW4XXqxQo0UyZq8B6drMCNu+J6VCwPJu /b6vRlcLX6dM0QZKy+6eTHDMt1hRajoj4sPvr00J305rlOjHsXlvaLiR0Q0O/lLK KvBzkcnOt6+C8EcVKi2F89GNzRi+HSB6SiQESQs7fHI4KJBFg7Po1JG5j2kq7fSc 7cpmswV7+qkhRT6IPBpPxGq0PirtBKHOYPP6mLBPYOVqrznJHaZ04TJCRhpQx7yd o1lcl/rNyP/bdW6ZMT4flvcUbqGy2S7xtET/wpwkwwP5GkuvnHZFYvmjYN8aXfIg oTQ3U68bn2Pft5k5YFMaI1z9SQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHWUbkIn 1qDMAWHkjglEjcFBXS0pMB8GA1UdIwQYMBaAFGNRWzZBE4SPpVTShC9YQYd89q8A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRUU0Ni9BRTgyRTEyNjEy RUQxMUVEOUU0RDc2MEVDNEY5QUUwMi9ZMUZiTmtFVGhJLWxWTktFTDFoQmgzejJy d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kxRmJOa0VUaEktbFZOS0VMMWhCaDN6MnJ3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RUU0Ni9BRTgyRTEyNjEyRUQxMUVEOUU0RDc2MEVDNEY5QUUwMi9ZMUZiTmtFVGhJ LWxWTktFTDFoQmgzejJyd0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1MmdRw2vmfEC9jcPRKpuhansbVlk18fHY84JwX9NWkhtrdEKe0Ydf x692U/dwt27UQlO3wAwOE6pcJDhEf3cYrMygBZvjKiiPMakcz2KFjnsYM7A9e4gi wc+MKpbpTm15A4FZkZo7EiudiGKivdy5sj/qB/wRw5B1yvmdUds6PLWUChAvTZ53 GZyB7XM8pc/lAPWcMUVuKdjDk7Ksxajja1gU1CUFZDGXzErhvfFrSC2HYUFVM3qD JPjV+Hz/ZErf3yqH6yrDWkwn9Tq1QERh0gK66yt2GuovWf641UcceOCh2fXsLW02 S7sRO59t6APx7BOJJvd2cYZbBXYVlK/V -----END CERTIFICATE-----Generated at Fri May 16 00:22:36 2025 by rpki-client