$ rpki-client -vvf rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/RYzdyj6PtkydGiNJJSi6d3_N0jQ.mft File: RYzdyj6PtkydGiNJJSi6d3_N0jQ.mft (raw, json) Hash identifier: owlxuQcgEQMCm0xdiWQtXsxw+mzeKCPFxwNSBMkgTDk= Subject key identifier: 5C:30:0C:18:BF:F0:FE:60:A1:FA:09:D3:15:0C:8D:B0:96:2D:F5:A7 Authority key identifier: 45:8C:DD:CA:3E:8F:B6:4C:9D:1A:23:49:25:28:BA:77:7F:CD:D2:34 Certificate issuer: /CN=A9174589/serialNumber=458CDDCA3E8FB64C9D1A23492528BA777FCDD234 Certificate serial: 014F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYzdyj6PtkydGiNJJSi6d3_N0jQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/RYzdyj6PtkydGiNJJSi6d3_N0jQ.mft Manifest number: 0142 Signing time: Thu 15 May 2025 03:54:56 +0000 Manifest this update: Thu 15 May 2025 03:54:56 +0000 Manifest next update: Thu 22 May 2025 03:54:56 +0000 Files and hashes: 1: RYzdyj6PtkydGiNJJSi6d3_N0jQ.crl (hash: hexxJ+nV0L2C5Tn8TS+cyo96nvjm/cn+66NCKsKI+tw=) 2: 5D4FB6AA9AB711EE86E1D058C4F9AE02.roa (hash: /lY6MRoQmBol07GaZSzAkv2Tfx/7fsrdKUpKLuZMxDs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/RYzdyj6PtkydGiNJJSi6d3_N0jQ.crl rsync://rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/RYzdyj6PtkydGiNJJSi6d3_N0jQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYzdyj6PtkydGiNJJSi6d3_N0jQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 03:54:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 335 (0x14f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174589, serialNumber=458CDDCA3E8FB64C9D1A23492528BA777FCDD234 Validity Not Before: May 15 03:54:56 2025 GMT Not After : May 22 03:54:56 2025 GMT Subject: CN=68256590-3596 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:52:e2:69:1f:21:76:df:ad:f9:7b:fa:2a:54: 74:f7:5d:65:5f:03:69:9d:a5:f3:af:e7:50:fc:8d: 6a:f2:8d:67:89:2f:56:50:87:4b:73:59:5f:a4:c5: 7e:aa:b4:de:d6:f8:bb:1d:f0:25:4b:e9:61:38:8f: 89:bc:f1:2d:86:c0:75:2f:38:59:71:97:f6:88:a5: 28:21:51:7b:a2:82:9a:85:ac:5c:2b:80:4b:4a:76: dc:ce:0e:aa:68:1c:dc:de:b3:fc:0c:2f:7f:47:41: e4:dd:33:d5:c7:bc:dd:08:a2:e2:d7:f6:b7:67:32: d1:97:ec:42:8e:16:b0:04:68:6a:4a:46:be:5c:d2: 8c:fa:bf:02:2c:22:dd:fb:1d:00:f7:e2:4d:56:e0: ca:3f:e6:f3:73:f0:62:f2:07:c6:1c:ca:ee:9e:49: 35:b5:71:04:c0:a2:d6:98:25:b8:0c:d8:29:b4:92: 64:26:17:4c:93:2d:02:88:85:39:c4:e8:c8:05:3f: 17:12:d1:ce:4b:ca:4f:7d:6a:19:bd:91:d4:66:99: 2a:8a:f6:71:62:11:62:23:66:e7:a4:f3:b2:0f:01: 44:fc:51:a4:91:0c:56:ee:6e:f4:42:94:83:62:90: 9a:ff:8d:1c:2b:ba:a3:84:9d:f2:95:ae:d8:e7:97: 58:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:30:0C:18:BF:F0:FE:60:A1:FA:09:D3:15:0C:8D:B0:96:2D:F5:A7 X509v3 Authority Key Identifier: keyid:45:8C:DD:CA:3E:8F:B6:4C:9D:1A:23:49:25:28:BA:77:7F:CD:D2:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/RYzdyj6PtkydGiNJJSi6d3_N0jQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYzdyj6PtkydGiNJJSi6d3_N0jQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/RYzdyj6PtkydGiNJJSi6d3_N0jQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:5b:31:43:8a:00:2f:24:0b:3d:4d:30:e5:ab:7a:1f:b2:c7: a4:23:5d:67:de:89:75:74:59:73:45:a0:2f:0d:4b:54:2b:47: 8b:2f:10:d2:85:b1:69:a2:7c:01:1f:a1:26:97:bb:54:42:76: b5:f6:88:36:28:26:61:e8:69:67:6a:8e:05:14:48:6c:e3:b8: 5d:37:d7:13:82:57:93:e3:05:a8:f2:15:0b:a6:d9:32:6d:60: 5f:fd:ec:f8:81:01:91:f4:6b:05:6b:78:0c:43:3f:a0:22:0e: 68:78:b8:99:32:21:8e:ce:58:af:31:54:d4:71:59:49:c2:74: 23:d9:42:d4:4d:cf:af:23:1c:f1:90:4e:e0:e3:f9:b5:fc:2c: fb:1b:47:61:71:bc:19:97:a8:34:b4:c6:9c:51:e1:7c:df:1e: 0e:28:db:52:48:7f:ab:c4:ad:c2:7f:4e:4c:ab:6b:96:d0:04: f7:e6:9d:1f:34:0b:cf:b6:96:50:62:1b:c5:10:79:7a:b5:f0: 7b:68:07:da:dd:71:b8:b2:86:d2:d7:d4:a8:e6:2e:c2:64:ba: 4d:bc:79:e4:d3:89:1c:2e:e0:1f:f3:f2:d0:64:30:2a:92:12: fa:6a:06:25:70:1c:df:94:a1:c6:36:a7:0e:07:c1:d0:46:48: a8:5a:38:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQ1ODkxMTAvBgNVBAUTKDQ1OENERENBM0U4RkI2NEM5RDFBMjM0OTI1MjhCQTc3 N0ZDREQyMzQwHhcNMjUwNTE1MDM1NDU2WhcNMjUwNTIyMDM1NDU2WjAYMRYwFAYD VQQDEw02ODI1NjU5MC0zNTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu1LiaR8hdt+t+Xv6KlR0911lXwNpnaXzr+dQ/I1q8o1niS9WUIdLc1lfpMV+ qrTe1vi7HfAlS+lhOI+JvPEthsB1LzhZcZf2iKUoIVF7ooKahaxcK4BLSnbczg6q aBzc3rP8DC9/R0Hk3TPVx7zdCKLi1/a3ZzLRl+xCjhawBGhqSka+XNKM+r8CLCLd +x0A9+JNVuDKP+bzc/Bi8gfGHMrunkk1tXEEwKLWmCW4DNgptJJkJhdMky0CiIU5 xOjIBT8XEtHOS8pPfWoZvZHUZpkqivZxYhFiI2bnpPOyDwFE/FGkkQxW7m70QpSD YpCa/40cK7qjhJ3yla7Y55dYEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFwwDBi/ 8P5gofoJ0xUMjbCWLfWnMB8GA1UdIwQYMBaAFEWM3co+j7ZMnRojSSUound/zdI0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDU4OS81RkM2MjdDNDYx QzQxMUVFQkIxNTFDNEJDNEY5QUUwMi9SWXpkeWo2UHRreWRHaU5KSlNpNmQzX04w alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JZemR5ajZQdGt5ZEdpTkpKU2k2ZDNfTjBqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDU4OS81RkM2MjdDNDYxQzQxMUVFQkIxNTFDNEJDNEY5QUUwMi9SWXpkeWo2UHRr eWRHaU5KSlNpNmQzX04walEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmWzFDigAvJAs9TTDlq3ofssekI11n3ol1dFlzRaAvDUtUK0eLLxDS hbFponwBH6Eml7tUQna19og2KCZh6Glnao4FFEhs47hdN9cTgleT4wWo8hULptky bWBf/ez4gQGR9GsFa3gMQz+gIg5oeLiZMiGOzlivMVTUcVlJwnQj2ULUTc+vIxzx kE7g4/m1/Cz7G0dhcbwZl6g0tMacUeF83x4OKNtSSH+rxK3Cf05Mq2uW0AT35p0f NAvPtpZQYhvFEHl6tfB7aAfa3XG4sobS19So5i7CZLpNvHnk04kcLuAf8/LQZDAq khL6agYlcBzflKHGNqcOB8HQRkioWjii -----END CERTIFICATE-----Generated at Fri May 16 10:38:09 2025 by rpki-client