$ rpki-client -vvf rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.mft File: y3TVYT1zQs-5t_ed7wyfrYhceCI.mft (raw, json) Hash identifier: +wQW0AChxPL4ncclV52Z64XjEihHbW59Y3lmNAez2Uo= Subject key identifier: 2B:14:79:F4:90:99:FC:71:F7:E8:88:B0:6E:1A:DE:AE:70:70:00:F9 Authority key identifier: CB:74:D5:61:3D:73:42:CF:B9:B7:F7:9D:EF:0C:9F:AD:88:5C:78:22 Certificate issuer: /CN=A917845B/serialNumber=CB74D5613D7342CFB9B7F79DEF0C9FAD885C7822 Certificate serial: 015A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y3TVYT1zQs-5t_ed7wyfrYhceCI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.mft Manifest number: 0158 Signing time: Thu 15 May 2025 03:28:11 +0000 Manifest this update: Thu 15 May 2025 03:28:11 +0000 Manifest next update: Thu 22 May 2025 03:28:11 +0000 Files and hashes: 1: y3TVYT1zQs-5t_ed7wyfrYhceCI.crl (hash: bY29CMnCp/r5WZ4UuqFXqgzV5vl3j4wwZXAuWK/XDBg=) 2: D5981734217611EE9EBE2F70C4F9AE02.roa (hash: mEyirxNNF/HUjbME+0mygxI2/51XwzfUXk7qYYI6cLw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.crl rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y3TVYT1zQs-5t_ed7wyfrYhceCI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 03:28:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 346 (0x15a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917845B, serialNumber=CB74D5613D7342CFB9B7F79DEF0C9FAD885C7822 Validity Not Before: May 15 03:28:11 2025 GMT Not After : May 22 03:28:11 2025 GMT Subject: CN=68255f4b-e4b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:68:11:35:3a:a1:6d:a2:8d:2b:3d:41:a3:03: 8d:a0:e6:95:d9:5b:15:03:cd:19:e9:ca:a9:a3:c6: 26:94:dd:bb:d3:fb:e0:3a:17:55:a8:73:91:2e:02: 62:fa:7f:07:73:ab:aa:49:9d:39:38:62:e4:63:ae: d4:6b:6a:5a:46:04:43:f0:5f:37:d1:4b:f5:f4:46: 44:55:36:17:2e:b1:77:e5:07:99:f0:8b:8d:5d:1f: c6:ef:4f:31:e6:6a:f0:b9:ba:f0:8d:21:e0:b6:d3: 05:d1:46:d9:82:87:20:85:25:e3:ed:c3:98:dd:6f: 1e:a5:90:d3:e6:39:c7:32:88:25:6d:67:68:e6:28: 85:95:22:9e:de:05:c5:79:6c:7f:6b:1d:24:75:88: 91:9b:08:2c:56:78:e0:b8:1e:3f:ec:6a:72:62:73: d1:63:f6:02:1d:b7:25:1f:f5:2f:00:8c:34:dd:05: 5b:a5:c0:67:0b:6d:61:62:2a:85:93:49:6a:ab:80: 12:5c:15:10:58:f8:26:00:61:28:80:cd:2b:b1:2f: 4e:24:96:b4:53:bb:69:2a:d2:70:26:81:70:c0:ea: af:ea:a4:6f:29:c6:c4:d1:7b:7e:1b:0a:a7:a6:46: d9:04:74:cc:51:a7:cf:f5:e1:3d:09:77:a9:d9:8f: da:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:14:79:F4:90:99:FC:71:F7:E8:88:B0:6E:1A:DE:AE:70:70:00:F9 X509v3 Authority Key Identifier: keyid:CB:74:D5:61:3D:73:42:CF:B9:B7:F7:9D:EF:0C:9F:AD:88:5C:78:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y3TVYT1zQs-5t_ed7wyfrYhceCI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:82:05:aa:90:dc:9e:90:a8:5e:28:84:e8:6d:f9:b5:0b:15: 98:90:b6:5a:6c:49:8b:65:74:b9:b8:34:d6:c5:ca:9a:1f:71: 79:25:de:45:d9:31:36:a4:90:f8:a7:05:eb:2f:f7:e8:3b:39: c4:72:ec:0f:bf:51:44:f4:23:46:97:ff:16:32:43:29:2f:0e: ff:40:57:f7:18:5a:0f:c7:13:a4:44:c8:6f:bd:50:f6:83:ff: 7a:9e:d1:0c:a6:e9:b8:0e:51:b4:0b:7a:12:29:b1:2f:a1:c0: 82:9a:ed:07:42:b6:7a:02:7a:41:6a:cc:f3:10:ac:c8:11:1c: 48:64:cb:03:81:e7:a6:68:cf:ff:bb:e7:68:27:e7:0d:35:2a: 9f:c9:35:eb:1c:d4:b6:0f:09:83:f8:50:38:6d:e5:af:04:ae: 2f:ff:26:bc:b1:0f:68:1e:da:8b:a4:09:d2:dd:e5:1b:03:33: 27:fa:54:ab:6f:ca:f0:c4:aa:85:43:af:23:a3:36:27:5e:2f: 3e:74:e7:ec:bd:8e:a2:fb:07:eb:90:1a:0c:16:e5:3a:bf:03: e0:18:aa:54:e9:ef:ab:13:9c:b8:35:68:df:21:7f:8b:3b:b6: ef:90:2c:d1:64:b4:1f:20:fe:96:8f:51:a5:23:ac:9e:c3:a6: 9c:e6:c1:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzg0NUIxMTAvBgNVBAUTKENCNzRENTYxM0Q3MzQyQ0ZCOUI3Rjc5REVGMEM5RkFE ODg1Qzc4MjIwHhcNMjUwNTE1MDMyODExWhcNMjUwNTIyMDMyODExWjAYMRYwFAYD VQQDEw02ODI1NWY0Yi1lNGIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyWgRNTqhbaKNKz1BowONoOaV2VsVA80Z6cqpo8YmlN270/vgOhdVqHORLgJi +n8Hc6uqSZ05OGLkY67Ua2paRgRD8F830Uv19EZEVTYXLrF35QeZ8IuNXR/G708x 5mrwubrwjSHgttMF0UbZgocghSXj7cOY3W8epZDT5jnHMoglbWdo5iiFlSKe3gXF eWx/ax0kdYiRmwgsVnjguB4/7GpyYnPRY/YCHbclH/UvAIw03QVbpcBnC21hYiqF k0lqq4ASXBUQWPgmAGEogM0rsS9OJJa0U7tpKtJwJoFwwOqv6qRvKcbE0Xt+Gwqn pkbZBHTMUafP9eE9CXep2Y/a9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCsUefSQ mfxx9+iIsG4a3q5wcAD5MB8GA1UdIwQYMBaAFMt01WE9c0LPubf3ne8Mn62IXHgi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3ODQ1Qi85NzM2OUI0NjIx NzYxMUVFQjRGM0FENkZDNEY5QUUwMi95M1RWWVQxelFzLTV0X2VkN3d5ZnJZaGNl Q0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kzVFZZVDF6UXMtNXRfZWQ3d3lmclloY2VDSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 ODQ1Qi85NzM2OUI0NjIxNzYxMUVFQjRGM0FENkZDNEY5QUUwMi95M1RWWVQxelFz LTV0X2VkN3d5ZnJZaGNlQ0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTggWqkNyekKheKITobfm1CxWYkLZabEmLZXS5uDTWxcqaH3F5Jd5F 2TE2pJD4pwXrL/foOznEcuwPv1FE9CNGl/8WMkMpLw7/QFf3GFoPxxOkRMhvvVD2 g/96ntEMpum4DlG0C3oSKbEvocCCmu0HQrZ6AnpBaszzEKzIERxIZMsDgeemaM// u+doJ+cNNSqfyTXrHNS2DwmD+FA4beWvBK4v/ya8sQ9oHtqLpAnS3eUbAzMn+lSr b8rwxKqFQ68jozYnXi8+dOfsvY6i+wfrkBoMFuU6vwPgGKpU6e+rE5y4NWjfIX+L O7bvkCzRZLQfIP6Wj1GlI6yew6ac5sHg -----END CERTIFICATE-----Generated at Fri May 16 04:55:18 2025 by rpki-client