$ rpki-client -vvf rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft File: YfjH66e1XnGy5rF3QJFCUdiM8KY.mft (raw, json) Hash identifier: CA9aqkHoOrrPuWtR/qrEpLLhpLXGL0cycWNKy+eiPEw= Subject key identifier: 97:B3:5F:7A:45:5B:8E:20:96:0A:B2:37:C4:D4:93:54:CB:D1:29:53 Authority key identifier: 61:F8:C7:EB:A7:B5:5E:71:B2:E6:B1:77:40:91:42:51:D8:8C:F0:A6 Certificate issuer: /CN=A9158491/serialNumber=61F8C7EBA7B55E71B2E6B17740914251D88CF0A6 Certificate serial: 4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfjH66e1XnGy5rF3QJFCUdiM8KY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft Manifest number: 44 Signing time: Thu 15 May 2025 06:52:20 +0000 Manifest this update: Thu 15 May 2025 06:52:19 +0000 Manifest next update: Thu 22 May 2025 06:52:19 +0000 Files and hashes: 1: YfjH66e1XnGy5rF3QJFCUdiM8KY.crl (hash: wOZ33jSQRSBcXo0oMUgGFZPAxqm12gWQI7dx2yve3rc=) 2: 5FDDEE1CE34211EF8EA0CA77C4F9AE02.roa (hash: U1IGaFhELlQWY/Ln876qk8JzJ3sNkyrrUJbwE+5NxYc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.crl rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfjH66e1XnGy5rF3QJFCUdiM8KY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 06:52:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158491, serialNumber=61F8C7EBA7B55E71B2E6B17740914251D88CF0A6 Validity Not Before: May 15 06:52:19 2025 GMT Not After : May 22 06:52:19 2025 GMT Subject: CN=68258f24-5dfb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:17:6b:8c:5b:1b:8f:1c:0d:b1:a9:e1:5a:03: bd:f9:8b:d1:49:75:16:cc:be:f4:84:e2:e0:2e:4c: 14:ed:68:97:9f:d8:c9:f6:35:1f:33:a4:87:c2:95: bb:7e:e4:e9:e5:d4:5a:fc:a6:2b:b9:64:59:f5:72: 9b:80:e9:f3:6a:8d:5d:c7:f6:48:03:dd:90:12:c6: 1b:fc:e1:46:6a:43:93:e1:df:f4:c9:9a:4d:92:a2: ee:17:ec:87:4d:cb:d7:c0:9b:ec:30:00:e2:1d:90: c5:02:95:e9:c8:77:e2:6c:5c:bf:9a:61:7d:32:5f: 4b:d3:d7:88:ed:63:35:87:2c:69:e6:76:47:bd:82: 29:35:1d:f7:3d:e3:58:eb:f6:66:15:da:e3:c1:50: df:de:8e:92:58:9c:3b:82:27:fe:4f:df:6d:a4:67: 90:ac:c6:cf:69:30:7f:73:02:39:6d:d8:7f:86:d0: 6e:a5:af:a4:81:4b:a1:7e:39:30:74:0e:2f:c1:52: 2a:2b:f1:16:0d:d6:d6:59:59:a5:11:ff:0a:32:1a: 97:b6:d0:84:6d:74:20:e2:23:2c:dd:5a:dd:dd:dd: f9:ef:56:24:51:2d:37:7e:2a:da:1c:f2:55:65:a3: b6:5c:18:79:08:6a:aa:46:5b:8d:30:c3:10:60:2c: ed:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:B3:5F:7A:45:5B:8E:20:96:0A:B2:37:C4:D4:93:54:CB:D1:29:53 X509v3 Authority Key Identifier: keyid:61:F8:C7:EB:A7:B5:5E:71:B2:E6:B1:77:40:91:42:51:D8:8C:F0:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfjH66e1XnGy5rF3QJFCUdiM8KY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:f5:c7:52:e1:51:2c:cc:81:a8:44:e4:b6:76:02:04:4f:ed: 05:f3:3c:cb:56:ae:72:17:b1:bc:dd:b4:87:0e:a8:08:72:45: 69:30:4d:40:35:7f:e1:89:c0:25:c7:88:dd:7d:dd:0a:f2:47: 8a:a8:f3:2c:cc:08:e9:cf:e5:8e:c3:a6:40:dc:66:f0:a0:54: 3a:e7:58:89:f9:91:b0:35:46:ef:9e:28:14:f9:68:a3:91:89: 18:ea:ae:f6:88:8e:b1:5f:96:5e:4f:43:f6:7d:43:d9:62:92: b6:2c:f4:4d:60:85:ef:7f:19:e0:2c:75:04:f5:8b:e2:9f:be: ee:36:9d:dc:ec:b4:76:85:8a:73:df:79:fa:81:ed:21:73:73: 1c:4e:11:b9:b3:91:23:5c:96:f5:d7:c7:f6:5b:3e:ae:5d:82: c6:d4:ca:48:61:01:86:e1:12:00:74:20:2d:88:b6:c4:45:b2: f2:87:36:19:fc:8c:53:2c:38:20:b6:7f:02:83:60:d4:62:c4: 70:06:6f:6b:d3:77:58:6e:c7:48:3d:35:41:db:de:b7:d6:2b: 21:cf:fc:0b:c1:36:60:73:b5:0d:ac:b9:bf:f3:4f:42:d0:bf: c5:4f:0d:68:7b:4b:56:44:a8:03:fe:b0:6e:20:81:f7:eb:11: 96:1b:b6:01 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 ODQ5MTExMC8GA1UEBRMoNjFGOEM3RUJBN0I1NUU3MUIyRTZCMTc3NDA5MTQyNTFE ODhDRjBBNjAeFw0yNTA1MTUwNjUyMTlaFw0yNTA1MjIwNjUyMTlaMBgxFjAUBgNV BAMTDTY4MjU4ZjI0LTVkZmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGF2uMWxuPHA2xqeFaA735i9FJdRbMvvSE4uAuTBTtaJef2Mn2NR8zpIfClbt+ 5Onl1Fr8piu5ZFn1cpuA6fNqjV3H9kgD3ZASxhv84UZqQ5Ph3/TJmk2Sou4X7IdN y9fAm+wwAOIdkMUClenId+JsXL+aYX0yX0vT14jtYzWHLGnmdke9gik1Hfc941jr 9mYV2uPBUN/ejpJYnDuCJ/5P322kZ5Csxs9pMH9zAjlt2H+G0G6lr6SBS6F+OTB0 Di/BUior8RYN1tZZWaUR/woyGpe20IRtdCDiIyzdWt3d3fnvViRRLTd+Ktoc8lVl o7ZcGHkIaqpGW40wwxBgLO09AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUl7NfekVb jiCWCrI3xNSTVMvRKVMwHwYDVR0jBBgwFoAUYfjH66e1XnGy5rF3QJFCUdiM8KYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU4NDkxLzYwREE1M0ZBREZB NTExRUY4QkQ0OUY4N0M0RjlBRTAyL1lmakg2NmUxWG5HeTVyRjNRSkZDVWRpTThL WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWWZqSDY2ZTFYbkd5NXJGM1FKRkNVZGlNOEtZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU4 NDkxLzYwREE1M0ZBREZBNTExRUY4QkQ0OUY4N0M0RjlBRTAyL1lmakg2NmUxWG5H eTVyRjNRSkZDVWRpTThLWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALj1x1LhUSzMgahE5LZ2AgRP7QXzPMtWrnIXsbzdtIcOqAhyRWkwTUA1 f+GJwCXHiN193QryR4qo8yzMCOnP5Y7DpkDcZvCgVDrnWIn5kbA1Ru+eKBT5aKOR iRjqrvaIjrFfll5PQ/Z9Q9likrYs9E1ghe9/GeAsdQT1i+Kfvu42ndzstHaFinPf efqB7SFzcxxOEbmzkSNclvXXx/ZbPq5dgsbUykhhAYbhEgB0IC2ItsRFsvKHNhn8 jFMsOCC2fwKDYNRixHAGb2vTd1hux0g9NUHb3rfWKyHP/AvBNmBztQ2sub/zT0LQ v8VPDWh7S1ZEqAP+sG4ggffrEZYbtgE= -----END CERTIFICATE-----Generated at Fri May 16 13:54:44 2025 by rpki-client