$ rpki-client -vvf rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft File: gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft (raw, json) Hash identifier: POK8uOPfLCa+BVancbLmJsbBugCBdA1uB16zb1R9SJA= Subject key identifier: F7:DE:16:72:5A:9E:05:52:B7:0D:F0:87:A3:3D:AE:8C:63:A0:C3:B4 Authority key identifier: 83:2F:E5:61:4E:02:D3:50:F8:86:79:0D:E4:BD:C9:9F:42:64:55:E4 Certificate issuer: /CN=A9171669/serialNumber=832FE5614E02D350F886790DE4BDC99F426455E4 Certificate serial: 0272 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft Manifest number: 026F Signing time: Thu 15 May 2025 01:43:19 +0000 Manifest this update: Thu 15 May 2025 01:43:19 +0000 Manifest next update: Thu 22 May 2025 01:43:19 +0000 Files and hashes: 1: gy_lYU4C01D4hnkN5L3Jn0JkVeQ.crl (hash: dAuQ4UhtJx6ZtnLb9IHVNrHx7gKrkiZBbiE93vahqUM=) 2: 91BBC8880D9711ED8F09C27DC4F9AE02.roa (hash: iNGLEhZ74V/teXh5s40LgFHohuZJ0yOem+a3lr8uSKQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.crl rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 01:43:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 626 (0x272) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171669, serialNumber=832FE5614E02D350F886790DE4BDC99F426455E4 Validity Not Before: May 15 01:43:19 2025 GMT Not After : May 22 01:43:19 2025 GMT Subject: CN=682546b7-21c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:bb:92:89:c3:e9:ac:76:54:f8:84:9e:a9:64: 90:e5:77:99:fa:3c:83:ef:45:c9:3a:d2:c0:27:12: 5a:2c:a5:0e:02:6d:33:ba:75:30:f2:45:03:0e:0a: 91:61:84:b6:17:e6:04:e6:16:ce:4f:4b:48:0d:de: 39:36:ad:19:73:5d:77:13:e6:72:de:3b:01:70:c7: c8:11:e8:b7:1d:cb:2d:dc:60:1c:b8:74:2c:e4:fc: f1:67:f9:35:8a:fb:41:b1:1c:b8:89:8f:42:23:f2: d8:40:a6:24:1d:1d:b4:84:3d:b3:65:ea:55:11:3e: c3:c1:08:4b:c7:17:87:d7:2e:9f:09:42:d3:c9:a5: 48:77:21:1a:bc:67:f5:46:e9:a2:34:3e:d5:da:b1: 6e:cf:68:7e:fa:d0:a8:eb:7f:b2:e5:81:99:ee:0e: 20:62:1d:46:7c:80:79:6f:91:a2:c7:9b:45:2a:4f: 5f:93:33:31:f1:dc:c9:c0:e0:96:59:fe:fa:25:03: 89:06:cc:21:29:5a:b6:29:51:59:71:8b:5a:f0:21: 76:31:18:64:34:62:4c:e7:5d:31:c2:0a:2a:5e:f0: 1a:b8:41:6d:cb:06:d4:76:90:a2:b6:12:9a:a9:30: 20:f4:8a:b0:18:99:ef:ad:d2:74:72:23:7b:00:93: 51:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:DE:16:72:5A:9E:05:52:B7:0D:F0:87:A3:3D:AE:8C:63:A0:C3:B4 X509v3 Authority Key Identifier: keyid:83:2F:E5:61:4E:02:D3:50:F8:86:79:0D:E4:BD:C9:9F:42:64:55:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:30:23:84:78:10:12:50:6e:3e:e7:8c:1e:2f:48:a7:42:18: 18:eb:9f:80:7c:0c:2d:69:26:c4:85:e4:51:b2:e4:d2:75:67: dd:51:6a:43:62:55:8d:b4:19:2b:f7:70:46:17:30:2a:5d:94: ec:bd:5d:a0:1d:5d:fb:3b:26:45:0b:f9:e1:7c:f4:ba:2e:13: e8:ed:66:ec:3a:b0:4a:67:91:70:21:c2:33:64:2c:fd:da:94: 0d:51:26:73:f8:d1:5e:4f:6b:a8:f9:02:c9:d4:26:79:7c:dc: 5d:65:fc:fa:75:d1:f8:1f:33:f5:dd:fd:57:36:5b:3c:80:80: bf:8d:62:4f:f2:21:36:07:52:e6:c7:6d:aa:bf:28:fb:6d:00: 1a:77:03:0f:ce:76:c0:d8:74:7a:6b:aa:91:2e:e8:55:cb:9d: bc:43:37:26:8e:48:06:e2:7f:a0:4e:57:cd:56:9e:d1:e8:9e: 3f:22:38:ba:00:74:a3:2b:36:69:46:3e:36:09:f8:13:89:1d: e7:05:4d:03:11:78:99:15:16:c8:48:56:de:98:3c:25:d7:55: a3:93:af:f4:86:ab:45:e5:64:cb:ec:60:3a:3b:a8:83:6a:96: 1e:6f:fc:91:f5:95:f6:d0:4e:2f:e7:ac:ed:22:1b:d9:38:c3: 8b:6a:09:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE2NjkxMTAvBgNVBAUTKDgzMkZFNTYxNEUwMkQzNTBGODg2NzkwREU0QkRDOTlG NDI2NDU1RTQwHhcNMjUwNTE1MDE0MzE5WhcNMjUwNTIyMDE0MzE5WjAYMRYwFAYD VQQDEw02ODI1NDZiNy0yMWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo7uSicPprHZU+ISeqWSQ5XeZ+jyD70XJOtLAJxJaLKUOAm0zunUw8kUDDgqR YYS2F+YE5hbOT0tIDd45Nq0Zc113E+Zy3jsBcMfIEei3Hcst3GAcuHQs5PzxZ/k1 ivtBsRy4iY9CI/LYQKYkHR20hD2zZepVET7DwQhLxxeH1y6fCULTyaVIdyEavGf1 RumiND7V2rFuz2h++tCo63+y5YGZ7g4gYh1GfIB5b5Gix5tFKk9fkzMx8dzJwOCW Wf76JQOJBswhKVq2KVFZcYta8CF2MRhkNGJM510xwgoqXvAauEFtywbUdpCithKa qTAg9IqwGJnvrdJ0ciN7AJNR9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPfeFnJa ngVStw3wh6M9roxjoMO0MB8GA1UdIwQYMBaAFIMv5WFOAtNQ+IZ5DeS9yZ9CZFXk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTY2OS9CNTU4QkEwNjBE OTQxMUVEQTVENEUwNTFDNEY5QUUwMi9neV9sWVU0QzAxRDRobmtONUwzSm4wSmtW ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d5X2xZVTRDMDFENGhua041TDNKbjBKa1ZlUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTY2OS9CNTU4QkEwNjBEOTQxMUVEQTVENEUwNTFDNEY5QUUwMi9neV9sWVU0QzAx RDRobmtONUwzSm4wSmtWZVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbMCOEeBASUG4+54weL0inQhgY65+AfAwtaSbEheRRsuTSdWfdUWpD YlWNtBkr93BGFzAqXZTsvV2gHV37OyZFC/nhfPS6LhPo7WbsOrBKZ5FwIcIzZCz9 2pQNUSZz+NFeT2uo+QLJ1CZ5fNxdZfz6ddH4HzP13f1XNls8gIC/jWJP8iE2B1Lm x22qvyj7bQAadwMPznbA2HR6a6qRLuhVy528QzcmjkgG4n+gTlfNVp7R6J4/Iji6 AHSjKzZpRj42CfgTiR3nBU0DEXiZFRbISFbemDwl11Wjk6/0hqtF5WTL7GA6O6iD apYeb/yR9ZX20E4v56ztIhvZOMOLagk7 -----END CERTIFICATE-----Generated at Fri May 16 10:01:19 2025 by rpki-client