$ rpki-client -vvf rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.mft File: yCt7N51v7So8MMRTfg-HzLYIIus.mft (raw, json) Hash identifier: 3hMGebvBW3keILEgOsnOUi3M5JDJC2No5wNggEkgGfk= Subject key identifier: AA:60:1C:6D:C1:51:34:33:17:B4:59:7D:05:61:2C:A3:33:BB:B5:4A Authority key identifier: C8:2B:7B:37:9D:6F:ED:2A:3C:30:C4:53:7E:0F:87:CC:B6:08:22:EB Certificate issuer: /CN=A917EB96/serialNumber=C82B7B379D6FED2A3C30C4537E0F87CCB60822EB Certificate serial: 015A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCt7N51v7So8MMRTfg-HzLYIIus.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.mft Manifest number: 0156 Signing time: Sat 03 May 2025 03:30:54 +0000 Manifest this update: Sat 03 May 2025 03:30:53 +0000 Manifest next update: Sat 10 May 2025 03:30:53 +0000 Files and hashes: 1: yCt7N51v7So8MMRTfg-HzLYIIus.crl (hash: Tfxq4moBjTWvwmCC2IgdS6ceJBAIgj+NUO5SSyAf2xU=) 2: B50ECD32A57E11EEB4533738C4F9AE02.roa (hash: BkdlPGBhBetu9r/R8RI86aafR+sAmMSSEW9hm5cCW00=) 3: 348BAEE41C2D11EEB362491FC4F9AE02.roa (hash: ABPxiDdG7YwQPZkFSTV8BYz3BNZi1RIYblf+R4M0eLY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.crl rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCt7N51v7So8MMRTfg-HzLYIIus.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 03:30:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 346 (0x15a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917EB96, serialNumber=C82B7B379D6FED2A3C30C4537E0F87CCB60822EB Validity Not Before: May 3 03:30:53 2025 GMT Not After : May 10 03:30:53 2025 GMT Subject: CN=68158ded-6e39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:2a:b5:bc:e7:7a:20:b0:f3:b3:78:79:bc:eb: 92:51:49:bd:13:8b:05:97:ee:fd:29:ee:7b:7c:cd: 4d:c9:5f:6d:b1:11:0f:03:b1:99:77:54:4c:ca:5e: 4d:fc:3a:1d:d7:df:e3:ff:9b:4e:c7:e5:08:39:4c: 50:d4:1f:1d:8c:f3:ef:b3:0b:22:ed:0c:97:00:0e: 82:6b:1e:0f:25:47:c6:a8:81:e4:07:a1:b1:de:35: 5a:c5:39:45:26:ea:cd:39:25:61:76:60:0d:7a:9c: 63:06:14:7c:11:50:cd:79:b2:4e:98:a5:dc:f6:5f: 60:e2:fe:be:6f:76:22:ee:96:69:46:e9:af:ea:db: 22:0c:c6:3f:63:97:13:08:ee:9a:0b:1b:ba:93:70: 49:77:2f:9b:25:fb:8a:79:45:cd:98:03:44:c4:9e: 26:ac:12:73:6c:4c:c6:91:af:d8:de:9c:1a:7f:a2: c4:eb:75:14:af:a7:4a:87:15:72:d7:c7:9d:3f:01: 11:0e:26:d4:b8:7e:36:0d:b3:02:17:52:b5:6c:e6: d8:cd:80:a5:f1:bf:6d:f5:26:f9:de:44:37:0b:14: 2f:63:25:73:16:b5:88:c4:fa:38:f5:fb:e7:76:b5: 4d:2c:74:56:02:f6:63:3a:c6:e9:2f:4c:be:4d:94: 3b:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:60:1C:6D:C1:51:34:33:17:B4:59:7D:05:61:2C:A3:33:BB:B5:4A X509v3 Authority Key Identifier: keyid:C8:2B:7B:37:9D:6F:ED:2A:3C:30:C4:53:7E:0F:87:CC:B6:08:22:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCt7N51v7So8MMRTfg-HzLYIIus.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:77:c9:55:07:6c:56:0c:50:b8:43:06:63:0f:c2:34:8d:b4: 02:e5:25:68:02:58:cf:5b:c3:ed:b4:21:9d:a2:33:45:97:b0: 94:57:f5:11:5d:d8:7a:31:60:1d:3a:9c:8c:21:3f:10:8d:c4: 27:0e:0c:17:6b:73:5c:08:49:4d:79:94:6e:6b:0d:07:c3:b0: ff:b9:a1:19:85:df:7e:9a:df:3a:d0:a1:5f:58:77:cb:ac:fd: 1c:c9:e9:e7:44:01:8c:d6:49:51:9b:a1:f1:72:44:1e:ca:b3: b5:57:e4:7f:5d:db:94:9f:ba:77:75:c6:17:62:55:48:ee:e3: 86:23:94:18:cb:26:ba:96:54:89:14:3c:3c:bb:81:84:e3:1c: 88:b4:69:79:aa:f4:96:8b:8b:72:aa:d8:9e:c7:f4:76:1d:5f: 28:b1:7e:4a:04:50:c8:82:30:a5:20:f2:0f:b2:f5:e5:81:8f: 73:7e:e8:4f:59:39:52:68:92:68:51:8c:74:5f:c8:92:41:4c: 40:4d:1f:94:74:43:97:e1:55:44:dc:df:bb:c7:26:d1:e9:58: e2:33:dd:fa:20:80:bb:cb:0c:17:bd:e9:c2:5a:d6:48:1e:47: a5:f7:7c:70:e4:5f:91:70:26:df:3d:db:41:49:d4:db:4f:3b: df:59:31:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VCOTYxMTAvBgNVBAUTKEM4MkI3QjM3OUQ2RkVEMkEzQzMwQzQ1MzdFMEY4N0ND QjYwODIyRUIwHhcNMjUwNTAzMDMzMDUzWhcNMjUwNTEwMDMzMDUzWjAYMRYwFAYD VQQDEw02ODE1OGRlZC02ZTM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyCq1vOd6ILDzs3h5vOuSUUm9E4sFl+79Ke57fM1NyV9tsREPA7GZd1RMyl5N /Dod19/j/5tOx+UIOUxQ1B8djPPvswsi7QyXAA6Cax4PJUfGqIHkB6Gx3jVaxTlF JurNOSVhdmANepxjBhR8EVDNebJOmKXc9l9g4v6+b3Yi7pZpRumv6tsiDMY/Y5cT CO6aCxu6k3BJdy+bJfuKeUXNmANExJ4mrBJzbEzGka/Y3pwaf6LE63UUr6dKhxVy 18edPwERDibUuH42DbMCF1K1bObYzYCl8b9t9Sb53kQ3CxQvYyVzFrWIxPo49fvn drVNLHRWAvZjOsbpL0y+TZQ7PQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKpgHG3B UTQzF7RZfQVhLKMzu7VKMB8GA1UdIwQYMBaAFMgrezedb+0qPDDEU34Ph8y2CCLr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUI5Ni82NEQ2QkRDQzFD MjkxMUVFOUQwNkY5MEFDNEY5QUUwMi95Q3Q3TjUxdjdTbzhNTVJUZmctSHpMWUlJ dXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lDdDdONTF2N1NvOE1NUlRmZy1IekxZSUl1cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RUI5Ni82NEQ2QkRDQzFDMjkxMUVFOUQwNkY5MEFDNEY5QUUwMi95Q3Q3TjUxdjdT bzhNTVJUZmctSHpMWUlJdXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqd8lVB2xWDFC4QwZjD8I0jbQC5SVoAljPW8PttCGdojNFl7CUV/UR Xdh6MWAdOpyMIT8QjcQnDgwXa3NcCElNeZRuaw0Hw7D/uaEZhd9+mt860KFfWHfL rP0cyennRAGM1klRm6HxckQeyrO1V+R/XduUn7p3dcYXYlVI7uOGI5QYyya6llSJ FDw8u4GE4xyItGl5qvSWi4tyqtiex/R2HV8osX5KBFDIgjClIPIPsvXlgY9zfuhP WTlSaJJoUYx0X8iSQUxATR+UdEOX4VVE3N+7xybR6VjiM936IIC7ywwXvenCWtZI Hkel93xw5F+RcCbfPdtBSdTbTzvfWTEB -----END CERTIFICATE-----Generated at Mon May 5 03:23:34 2025 by rpki-client