$ rpki-client -vvf rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft File: y-PSoWWxlLlY7sO2qURXdyo6CSo.mft (raw, json) Hash identifier: xGftf0mG8zP3upYoYEWHxiZW/II3iMHNz02cteT+Gnw= Subject key identifier: 02:27:30:15:C8:37:1C:B2:94:FA:2B:70:7C:15:B2:53:99:48:12:1B Authority key identifier: CB:E3:D2:A1:65:B1:94:B9:58:EE:C3:B6:A9:44:57:77:2A:3A:09:2A Certificate issuer: /CN=A9154FE7/serialNumber=CBE3D2A165B194B958EEC3B6A94457772A3A092A Certificate serial: 0818 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft Manifest number: 080B Signing time: Sat 10 May 2025 20:33:52 +0000 Manifest this update: Sat 10 May 2025 20:33:51 +0000 Manifest next update: Sat 17 May 2025 20:33:51 +0000 Files and hashes: 1: y-PSoWWxlLlY7sO2qURXdyo6CSo.crl (hash: sJFKAYITe9dMKBaZtX51ry40OGUTjvazD3H4bC2Zp1k=) 2: 4B3AC7DC5FC811ED869A6956C4F9AE02.roa (hash: hwrYZn+i2OUNCmUoK3ena1siLJOV1HVO2m5EjPVb3kw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.crl rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 20:33:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2072 (0x818) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154FE7, serialNumber=CBE3D2A165B194B958EEC3B6A94457772A3A092A Validity Not Before: May 10 20:33:51 2025 GMT Not After : May 17 20:33:51 2025 GMT Subject: CN=681fb830-4966 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:27:88:7a:b6:f4:60:ee:e6:9d:c8:69:47:2e: 11:bf:54:6f:ed:8c:cc:74:a2:f1:1a:a4:e5:a0:63: 0c:8c:8e:3d:a2:eb:f3:d9:9f:88:5a:95:d4:a2:af: 9d:47:da:02:f2:49:04:3c:e5:c5:db:4a:f1:17:36: 50:6b:9f:1f:fd:b3:c7:56:89:2c:68:55:c1:29:05: 29:79:7c:c4:05:ec:a2:77:8e:58:bb:66:8a:98:12: 0a:84:27:53:05:57:40:88:ae:9c:39:0e:dc:fa:9a: 9a:12:00:40:d9:08:a6:5d:4f:91:2f:c9:fc:22:ee: cc:96:b1:44:40:37:9e:af:ae:0a:81:46:24:60:2c: 87:af:ba:31:97:77:1f:8e:6a:26:f4:b2:00:1e:e6: c1:cb:a7:51:71:40:d2:81:71:b9:87:bd:59:bf:f3: ab:a0:86:54:6b:df:9d:44:f2:de:da:1e:0f:1e:a5: 31:da:5f:c6:05:21:20:38:89:a9:cf:3f:d0:68:5e: 5f:da:71:1d:f3:b6:77:78:aa:dc:21:78:77:1a:36: 86:13:5d:62:dd:d3:94:2f:81:9c:7a:fe:e2:46:80: 65:03:48:d2:d1:1e:46:17:32:46:0f:35:2a:04:8b: 13:60:0a:ee:6e:15:49:8c:d9:4c:46:ad:dd:60:3d: 1b:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:27:30:15:C8:37:1C:B2:94:FA:2B:70:7C:15:B2:53:99:48:12:1B X509v3 Authority Key Identifier: keyid:CB:E3:D2:A1:65:B1:94:B9:58:EE:C3:B6:A9:44:57:77:2A:3A:09:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:9e:f8:37:53:72:58:89:d2:f9:76:20:13:12:7e:42:b2:0e: f0:f3:30:f3:37:2a:08:f5:06:58:b6:07:9d:3e:b6:80:ee:a7: 80:3c:1c:2b:72:92:70:08:e2:81:98:7f:e2:19:f7:89:96:bb: ec:b6:4d:76:94:4f:b8:06:c1:e6:11:2d:0d:58:a1:e4:51:b9: 16:5d:1b:06:55:1f:f7:0c:5e:7b:2d:75:05:59:00:00:bc:76: 25:74:89:1c:5b:d1:86:9d:91:74:96:4e:7a:d8:92:2a:bf:f8: fa:8c:9f:3e:02:1c:0e:1e:5b:8d:6f:39:95:d9:ac:ac:c6:0f: 86:04:91:40:74:7e:15:b8:9b:50:1b:28:07:39:9a:31:c3:ba: d0:19:e3:70:11:b1:e5:15:88:8b:f6:6e:8b:90:cd:ee:14:c9: ed:6d:31:7a:63:8b:32:af:da:02:e1:19:1b:10:e4:c8:2b:84: 4a:95:15:e7:ea:02:12:9e:c0:e6:9a:37:bd:4c:ae:df:bc:1e: a5:18:af:13:6d:f6:ce:36:55:9e:76:e7:a0:33:12:93:0e:60: dc:05:ab:ea:3d:15:11:22:3e:f2:67:21:58:80:81:70:b9:74: a0:bf:00:31:d0:14:57:a9:28:07:ee:6b:aa:64:69:70:cd:09: 9c:67:46:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRGRTcxMTAvBgNVBAUTKENCRTNEMkExNjVCMTk0Qjk1OEVFQzNCNkE5NDQ1Nzc3 MkEzQTA5MkEwHhcNMjUwNTEwMjAzMzUxWhcNMjUwNTE3MjAzMzUxWjAYMRYwFAYD VQQDEw02ODFmYjgzMC00OTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsyeIerb0YO7mnchpRy4Rv1Rv7YzMdKLxGqTloGMMjI49ouvz2Z+IWpXUoq+d R9oC8kkEPOXF20rxFzZQa58f/bPHVoksaFXBKQUpeXzEBeyid45Yu2aKmBIKhCdT BVdAiK6cOQ7c+pqaEgBA2QimXU+RL8n8Iu7MlrFEQDeer64KgUYkYCyHr7oxl3cf jmom9LIAHubBy6dRcUDSgXG5h71Zv/OroIZUa9+dRPLe2h4PHqUx2l/GBSEgOImp zz/QaF5f2nEd87Z3eKrcIXh3GjaGE11i3dOUL4Gcev7iRoBlA0jS0R5GFzJGDzUq BIsTYArubhVJjNlMRq3dYD0bUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAInMBXI NxyylPorcHwVslOZSBIbMB8GA1UdIwQYMBaAFMvj0qFlsZS5WO7DtqlEV3cqOgkq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEZFNy81QTJEODlFQURC N0QxMUVBQkNGM0VDM0VDNEY5QUUwMi95LVBTb1dXeGxMbFk3c08ycVVSWGR5bzZD U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ktUFNvV1d4bExsWTdzTzJxVVJYZHlvNkNTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEZFNy81QTJEODlFQURCN0QxMUVBQkNGM0VDM0VDNEY5QUUwMi95LVBTb1dXeGxM bFk3c08ycVVSWGR5bzZDU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOnvg3U3JYidL5diATEn5Csg7w8zDzNyoI9QZYtgedPraA7qeAPBwr cpJwCOKBmH/iGfeJlrvstk12lE+4BsHmES0NWKHkUbkWXRsGVR/3DF57LXUFWQAA vHYldIkcW9GGnZF0lk562JIqv/j6jJ8+AhwOHluNbzmV2aysxg+GBJFAdH4VuJtQ GygHOZoxw7rQGeNwEbHlFYiL9m6LkM3uFMntbTF6Y4syr9oC4RkbEOTIK4RKlRXn 6gISnsDmmje9TK7fvB6lGK8TbfbONlWeduegMxKTDmDcBavqPRURIj7yZyFYgIFw uXSgvwAx0BRXqSgH7muqZGlwzQmcZ0ZN -----END CERTIFICATE-----Generated at Sun May 11 09:22:13 2025 by rpki-client