$ rpki-client -vvf rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft File: YBi5hcOZywcxwWNM_ktHkS8q9dE.mft (raw, json) Hash identifier: pws9pIWmb5VaLd/XwJ0RaBP+Y30ICtOFfcbs0k1XIz8= Subject key identifier: CF:34:AB:B9:04:4F:21:66:D8:CE:44:B0:D3:89:F9:61:DE:33:73:C2 Authority key identifier: 60:18:B9:85:C3:99:CB:07:31:C1:63:4C:FE:4B:47:91:2F:2A:F5:D1 Certificate issuer: /CN=A9183BA5/serialNumber=6018B985C399CB0731C1634CFE4B47912F2AF5D1 Certificate serial: 01CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft Manifest number: 01C8 Signing time: Mon 05 May 2025 01:56:43 +0000 Manifest this update: Mon 05 May 2025 01:56:42 +0000 Manifest next update: Mon 12 May 2025 01:56:42 +0000 Files and hashes: 1: YBi5hcOZywcxwWNM_ktHkS8q9dE.crl (hash: Bmbu+le7Xr/I26ps/RQ2nmG0lOPq/ZQA44/wojUMNQM=) 2: C386C06A706211EDA9CCDB76C4F9AE02.roa (hash: kCv4bHKTur2lJoL7asgYL11dC+z1ZsHw44gWQxYmfaI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.crl rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 01:56:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 460 (0x1cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9183BA5, serialNumber=6018B985C399CB0731C1634CFE4B47912F2AF5D1 Validity Not Before: May 5 01:56:42 2025 GMT Not After : May 12 01:56:42 2025 GMT Subject: CN=68181ada-075c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:96:9d:61:87:1b:54:bc:4e:14:11:5f:06:5d: 69:f9:f1:01:c1:f1:b7:43:5b:8b:e0:51:81:11:27: ca:b6:90:d4:65:bd:ed:94:8c:a4:6d:34:4f:6e:21: 07:81:a6:db:41:6c:14:5a:17:38:95:cb:0f:c6:b4: 60:6c:bc:ca:d9:33:c9:02:5c:91:84:ad:cd:d1:f7: 52:fd:c9:cd:f5:56:51:6c:3a:63:72:34:ba:e1:10: 35:b5:eb:8b:9f:aa:60:b2:76:5a:33:66:77:fc:cc: 6a:b8:c2:dc:f9:2e:42:07:75:75:34:cd:42:24:56: 02:49:c4:03:b8:99:5f:b9:f3:02:da:52:82:03:9c: 55:60:43:82:a5:a5:6e:e9:c3:97:c6:70:ef:0e:22: 9d:10:2f:7c:ab:2e:9c:d1:c8:b9:12:b3:7e:64:6a: 04:33:21:9e:2e:50:42:1c:06:45:32:02:e8:2e:47: b5:21:11:9b:5e:95:78:ea:83:fc:36:b8:5f:7b:3f: 0a:67:de:7c:58:2c:7d:50:14:25:cf:48:47:4b:da: 4e:c0:ff:d8:4e:a6:97:ed:e4:59:81:9b:38:ad:76: be:79:15:36:ea:0e:a5:fe:75:de:9e:f0:20:30:63: 76:13:6a:af:61:12:4b:d8:81:2c:63:57:1a:64:04: 20:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:34:AB:B9:04:4F:21:66:D8:CE:44:B0:D3:89:F9:61:DE:33:73:C2 X509v3 Authority Key Identifier: keyid:60:18:B9:85:C3:99:CB:07:31:C1:63:4C:FE:4B:47:91:2F:2A:F5:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:90:1a:5b:6c:40:bd:82:02:4d:0e:ec:56:74:29:96:13:0b: 78:d6:f6:7d:8a:b3:8e:9f:d0:df:b4:78:14:f0:b7:ec:20:d2: 13:b7:c6:8e:54:4a:35:20:fa:a2:8c:5b:d3:b6:2a:a9:21:7d: cd:8b:d7:d4:5b:96:ab:a8:b8:e5:d4:ba:09:13:39:5f:93:fb: 34:c5:a8:56:50:b9:e5:87:79:41:d0:c1:08:22:61:54:79:a8: 42:3d:40:7e:6a:eb:23:f5:a0:de:e6:e9:64:9a:66:6a:db:6d: 67:14:7f:cb:8b:cd:80:ec:4b:f0:ed:74:da:1c:8b:fe:6d:be: b2:07:92:4c:2f:7f:de:5e:40:cc:93:7f:51:53:bd:44:7f:50: 83:78:44:bd:31:46:34:20:ba:7b:e5:57:86:bc:76:64:c5:e9: 0c:56:4d:d9:af:32:15:6c:c5:5a:30:56:d7:8e:45:d8:ac:5c: f1:8f:52:67:02:21:f6:3e:18:ca:5e:7b:dd:36:c3:92:e8:a9: f0:47:af:fc:64:c0:fc:58:e7:d7:6d:16:97:89:7e:ae:ca:c2: 1d:9c:e0:c6:66:b5:d7:4a:10:ce:2d:aa:62:f6:65:d4:99:a8: 02:c4:79:c2:6b:56:4f:0e:15:29:12:56:51:ad:71:93:c7:e8: 65:78:df:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODNCQTUxMTAvBgNVBAUTKDYwMThCOTg1QzM5OUNCMDczMUMxNjM0Q0ZFNEI0Nzkx MkYyQUY1RDEwHhcNMjUwNTA1MDE1NjQyWhcNMjUwNTEyMDE1NjQyWjAYMRYwFAYD VQQDEw02ODE4MWFkYS0wNzVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvZadYYcbVLxOFBFfBl1p+fEBwfG3Q1uL4FGBESfKtpDUZb3tlIykbTRPbiEH gabbQWwUWhc4lcsPxrRgbLzK2TPJAlyRhK3N0fdS/cnN9VZRbDpjcjS64RA1teuL n6pgsnZaM2Z3/MxquMLc+S5CB3V1NM1CJFYCScQDuJlfufMC2lKCA5xVYEOCpaVu 6cOXxnDvDiKdEC98qy6c0ci5ErN+ZGoEMyGeLlBCHAZFMgLoLke1IRGbXpV46oP8 Nrhfez8KZ958WCx9UBQlz0hHS9pOwP/YTqaX7eRZgZs4rXa+eRU26g6l/nXenvAg MGN2E2qvYRJL2IEsY1caZAQgqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM80q7kE TyFm2M5EsNOJ+WHeM3PCMB8GA1UdIwQYMBaAFGAYuYXDmcsHMcFjTP5LR5EvKvXR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4M0JBNS8yODYyMENDNDcw NUUxMUVEQkMwN0YxNThDNEY5QUUwMi9ZQmk1aGNPWnl3Y3h3V05NX2t0SGtTOHE5 ZEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lCaTVoY09aeXdjeHdXTk1fa3RIa1M4cTlkRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 M0JBNS8yODYyMENDNDcwNUUxMUVEQkMwN0YxNThDNEY5QUUwMi9ZQmk1aGNPWnl3 Y3h3V05NX2t0SGtTOHE5ZEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASkBpbbEC9ggJNDuxWdCmWEwt41vZ9irOOn9DftHgU8LfsINITt8aO VEo1IPqijFvTtiqpIX3Ni9fUW5arqLjl1LoJEzlfk/s0xahWULnlh3lB0MEIImFU eahCPUB+ausj9aDe5ulkmmZq221nFH/Li82A7Evw7XTaHIv+bb6yB5JML3/eXkDM k39RU71Ef1CDeES9MUY0ILp75VeGvHZkxekMVk3ZrzIVbMVaMFbXjkXYrFzxj1Jn AiH2PhjKXnvdNsOS6KnwR6/8ZMD8WOfXbRaXiX6uysIdnODGZrXXShDOLapi9mXU magCxHnCa1ZPDhUpElZRrXGTx+hleN8F -----END CERTIFICATE-----Generated at Mon May 5 14:49:15 2025 by rpki-client