$ rpki-client -vvf rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/YBC8xly5zPAs9-0p7HXk1iK98_A.mft File: YBC8xly5zPAs9-0p7HXk1iK98_A.mft (raw, json) Hash identifier: O8xLyNd5R2Ofoku0yBGvtM3+UXOLW17362xCbuw1ZIQ= Subject key identifier: 8F:9A:60:6E:80:0E:83:2F:F8:58:88:64:F5:27:0A:EC:E9:61:2C:89 Authority key identifier: 60:10:BC:C6:5C:B9:CC:F0:2C:F7:ED:29:EC:75:E4:D6:22:BD:F3:F0 Certificate issuer: /CN=A9144F45/serialNumber=6010BCC65CB9CCF02CF7ED29EC75E4D622BDF3F0 Certificate serial: 0492 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBC8xly5zPAs9-0p7HXk1iK98_A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/YBC8xly5zPAs9-0p7HXk1iK98_A.mft Manifest number: 048E Signing time: Thu 15 May 2025 00:03:31 +0000 Manifest this update: Thu 15 May 2025 00:03:31 +0000 Manifest next update: Thu 22 May 2025 00:03:31 +0000 Files and hashes: 1: YBC8xly5zPAs9-0p7HXk1iK98_A.crl (hash: dJZ9A7bujVYZeiCMkbojTFT0pnZVRx9n3lhq46wLTdM=) 2: E225E68E397411EC8120D135C4F9AE02.roa (hash: GWZiL4+KkXKacwwHdWBVfV3QtoEcyH45HgJbisXMlBM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/YBC8xly5zPAs9-0p7HXk1iK98_A.crl rsync://rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/YBC8xly5zPAs9-0p7HXk1iK98_A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBC8xly5zPAs9-0p7HXk1iK98_A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 00:03:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1170 (0x492) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144F45, serialNumber=6010BCC65CB9CCF02CF7ED29EC75E4D622BDF3F0 Validity Not Before: May 15 00:03:31 2025 GMT Not After : May 22 00:03:31 2025 GMT Subject: CN=68252f53-3dba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:33:79:cf:28:c9:64:a6:28:cc:e9:13:06:82: 84:c6:a1:53:73:01:ed:0c:27:9d:41:e2:5b:d9:54: 21:c0:ec:21:9a:2a:26:67:e3:f7:2a:33:3e:01:ff: 72:64:4e:93:5d:fc:18:6d:fa:57:47:25:c9:47:37: 8d:36:99:e0:f6:d6:47:54:6a:71:23:35:e9:b7:33: bd:3d:79:a3:a2:a6:0c:44:92:f5:00:44:78:42:68: e0:de:84:f4:b3:38:ee:02:15:18:56:45:4c:d3:4b: 4c:ef:59:0c:41:2e:14:ec:8b:4e:b4:ba:36:58:77: 59:d4:37:11:18:cd:1e:b7:8b:78:88:89:80:73:08: 84:3c:2d:11:09:b3:73:22:d6:8c:f9:8e:c7:a3:86: ff:e0:08:c9:81:c5:b8:52:8a:bb:df:da:26:5f:3e: 37:86:36:51:f6:f7:5e:7e:f3:c4:aa:72:01:e7:2a: 05:44:ac:cd:1d:87:51:e3:9d:db:03:44:a0:46:54: cf:b7:fd:77:7f:78:cd:02:54:7b:43:93:20:14:15: bf:29:ac:4b:15:f9:35:04:30:c3:24:7b:e8:77:89: 1c:19:60:39:ff:a5:b6:6a:85:92:02:cc:91:60:40: 6b:7f:e3:8f:c2:ef:cb:51:5c:c4:69:7b:d3:58:07: da:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:9A:60:6E:80:0E:83:2F:F8:58:88:64:F5:27:0A:EC:E9:61:2C:89 X509v3 Authority Key Identifier: keyid:60:10:BC:C6:5C:B9:CC:F0:2C:F7:ED:29:EC:75:E4:D6:22:BD:F3:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/YBC8xly5zPAs9-0p7HXk1iK98_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBC8xly5zPAs9-0p7HXk1iK98_A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/YBC8xly5zPAs9-0p7HXk1iK98_A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:d3:20:4b:2f:56:d3:3a:d8:03:e5:8e:23:48:65:3e:88:32: 02:71:9a:87:71:41:03:8e:94:be:85:7a:7e:3b:e3:6c:15:15: b5:62:a8:25:9a:13:3d:31:5e:79:81:d2:82:fb:95:c3:84:87: 05:b6:a8:fe:6b:69:66:01:df:fe:ec:02:bb:05:ed:10:ab:a8: 50:3f:24:29:8c:f1:ca:b2:d3:90:7a:cd:b8:00:9e:33:b9:cd: 83:bd:a6:7b:ea:fa:79:ec:8b:0c:40:1b:7b:5a:5b:84:2b:5f: b4:08:ef:2b:0f:93:e6:86:2d:a9:8b:42:f7:c5:32:1c:63:49: a1:36:8c:20:6e:a1:d5:80:45:e8:5e:5b:41:8e:06:cc:6a:8c: c5:c1:3c:89:29:ba:10:13:bc:71:cf:33:61:8a:44:c5:51:c1: 81:d3:54:b4:d0:49:5d:e6:7d:77:04:38:ec:3b:4f:09:7d:42: 98:1d:72:e1:00:01:f2:86:2f:d6:92:d6:3d:4f:fd:8a:87:d7: fb:92:8a:fe:c6:65:2e:55:4a:b3:bf:af:f4:57:5b:70:bb:72: 02:a1:85:d3:3f:db:b6:d2:4b:29:32:54:d4:b3:d3:ed:4c:4f: 3b:47:2c:0f:35:28:e2:42:29:f5:9f:c5:63:5f:41:54:58:20: 82:3f:ac:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRGNDUxMTAvBgNVBAUTKDYwMTBCQ0M2NUNCOUNDRjAyQ0Y3RUQyOUVDNzVFNEQ2 MjJCREYzRjAwHhcNMjUwNTE1MDAwMzMxWhcNMjUwNTIyMDAwMzMxWjAYMRYwFAYD VQQDEw02ODI1MmY1My0zZGJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwTN5zyjJZKYozOkTBoKExqFTcwHtDCedQeJb2VQhwOwhmiomZ+P3KjM+Af9y ZE6TXfwYbfpXRyXJRzeNNpng9tZHVGpxIzXptzO9PXmjoqYMRJL1AER4Qmjg3oT0 szjuAhUYVkVM00tM71kMQS4U7ItOtLo2WHdZ1DcRGM0et4t4iImAcwiEPC0RCbNz ItaM+Y7Ho4b/4AjJgcW4Uoq739omXz43hjZR9vdefvPEqnIB5yoFRKzNHYdR453b A0SgRlTPt/13f3jNAlR7Q5MgFBW/KaxLFfk1BDDDJHvod4kcGWA5/6W2aoWSAsyR YEBrf+OPwu/LUVzEaXvTWAfazwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI+aYG6A DoMv+FiIZPUnCuzpYSyJMB8GA1UdIwQYMBaAFGAQvMZcuczwLPftKex15NYivfPw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEY0NS9ENzZGRjA0NDM5 NzAxMUVDOUI2NUJBMTZDNEY5QUUwMi9ZQkM4eGx5NXpQQXM5LTBwN0hYazFpSzk4 X0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lCQzh4bHk1elBBczktMHA3SFhrMWlLOThfQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NEY0NS9ENzZGRjA0NDM5NzAxMUVDOUI2NUJBMTZDNEY5QUUwMi9ZQkM4eGx5NXpQ QXM5LTBwN0hYazFpSzk4X0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCN0yBLL1bTOtgD5Y4jSGU+iDICcZqHcUEDjpS+hXp+O+NsFRW1Yqgl mhM9MV55gdKC+5XDhIcFtqj+a2lmAd/+7AK7Be0Qq6hQPyQpjPHKstOQes24AJ4z uc2DvaZ76vp57IsMQBt7WluEK1+0CO8rD5Pmhi2pi0L3xTIcY0mhNowgbqHVgEXo XltBjgbMaozFwTyJKboQE7xxzzNhikTFUcGB01S00Eld5n13BDjsO08JfUKYHXLh AAHyhi/WktY9T/2Kh9f7kor+xmUuVUqzv6/0V1twu3ICoYXTP9u20kspMlTUs9Pt TE87RywPNSjiQin1n8VjX0FUWCCCP6zs -----END CERTIFICATE-----Generated at Fri May 16 06:29:39 2025 by rpki-client