$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft File: YLrcBCw3e4bA3J7riVEnJc4-IzY.mft (raw, json) Hash identifier: EvkFYTBgwr4+YMBueD3RQKGJKRNHx+n5N1scQXAdR80= Subject key identifier: 4D:82:A0:03:3A:A1:3C:0A:F5:5F:80:BE:24:A1:43:E7:B5:61:24:36 Authority key identifier: 60:BA:DC:04:2C:37:7B:86:C0:DC:9E:EB:89:51:27:25:CE:3E:23:36 Certificate issuer: /CN=A918D0AA/serialNumber=60BADC042C377B86C0DC9EEB89512725CE3E2336 Certificate serial: 01D5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YLrcBCw3e4bA3J7riVEnJc4-IzY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft Manifest number: 01CE Signing time: Tue 13 May 2025 02:14:51 +0000 Manifest this update: Tue 13 May 2025 02:14:50 +0000 Manifest next update: Tue 20 May 2025 02:14:50 +0000 Files and hashes: 1: YLrcBCw3e4bA3J7riVEnJc4-IzY.crl (hash: Q0ttfk6VWS/2qAyqaEKOZk6YVhi+jOB3g9nJrWkFtfA=) 2: B6C4F8787A5911EDB8C4E04FC4F9AE02.roa (hash: EGxldo7AGw1cFMotW1VKii2ay/EqR5jKmsG9yMQNqRc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.crl rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YLrcBCw3e4bA3J7riVEnJc4-IzY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 02:14:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 469 (0x1d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0AA, serialNumber=60BADC042C377B86C0DC9EEB89512725CE3E2336 Validity Not Before: May 13 02:14:50 2025 GMT Not After : May 20 02:14:50 2025 GMT Subject: CN=6822ab1b-706c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:f8:77:53:8c:bb:73:d8:5a:6c:20:e5:0d:df: 88:2d:93:bc:5b:56:bb:76:83:36:e9:b1:02:30:54: ba:5b:d2:93:10:37:81:ae:76:52:ac:ed:2b:50:a0: 29:9d:79:37:52:23:71:77:0d:89:5e:b3:be:b4:53: 4e:29:ee:96:5f:18:90:da:3d:5d:af:f1:db:ac:e0: 8a:04:ff:47:ec:a3:8f:84:41:df:8a:62:5d:37:2d: fc:29:19:8c:24:fc:6e:02:f8:b2:00:9d:b3:4c:6a: c3:ce:c4:ab:6c:f5:c5:66:62:75:64:30:d4:a0:89: 3c:29:7f:d8:a4:ff:27:85:ac:58:cd:97:37:4a:89: 97:96:60:59:4d:4f:80:5a:82:50:73:f5:5a:ed:38: d7:a9:b8:93:b1:63:02:bf:9c:f6:07:dc:d6:79:b4: 8e:c9:04:85:d5:31:88:92:f2:c7:2a:76:f5:8b:ff: 98:4a:83:05:fe:f3:d7:da:68:ed:67:5f:f8:87:8c: b8:10:32:9c:7c:4d:66:f1:01:21:0d:37:3e:1e:bf: 44:d7:f2:76:62:81:a3:fb:cf:11:24:0f:9f:6a:fc: c8:3c:1f:60:b6:d7:4b:1f:6f:6a:49:c9:aa:b9:0e: f3:61:43:27:e2:bb:93:d7:2e:97:b4:c8:73:0d:11: a4:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:82:A0:03:3A:A1:3C:0A:F5:5F:80:BE:24:A1:43:E7:B5:61:24:36 X509v3 Authority Key Identifier: keyid:60:BA:DC:04:2C:37:7B:86:C0:DC:9E:EB:89:51:27:25:CE:3E:23:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YLrcBCw3e4bA3J7riVEnJc4-IzY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:7e:76:db:bb:71:36:e3:f8:d8:e5:23:cd:5c:0c:b8:b8:10: a0:b7:b3:7d:c8:11:f0:3e:fd:6a:d5:4b:cc:4e:0e:0b:3c:aa: c7:c0:6e:3f:06:d5:60:e3:98:4c:b7:83:16:bf:92:12:8d:8a: b5:71:9e:00:20:64:26:74:2a:8b:cc:b4:25:cb:5f:a1:26:dd: 98:06:8f:4b:bc:31:37:ba:1d:c7:46:54:c7:9d:04:cd:de:38: 4c:85:6b:90:c8:d1:f4:b8:b3:c3:60:53:1e:bc:ed:c7:d0:46: 32:f4:d6:9c:59:be:ad:05:86:2b:a8:ee:e8:17:b8:ae:6b:9b: 64:72:68:9b:7e:ae:9d:44:f7:d3:7e:46:bf:b0:77:df:1f:3a: 3f:5f:0c:ed:1d:5a:c4:3a:1a:bc:ee:90:4b:b2:56:ca:12:0e: dc:a6:ba:ac:bc:da:69:a2:34:26:50:41:a7:e8:0d:35:78:e4: 36:ea:14:0e:98:78:34:51:a5:be:09:df:37:ea:c3:4d:ba:df: 52:f0:3c:45:7b:a5:18:e4:3f:7e:f1:36:c7:d8:76:8e:43:8d: 49:e6:a4:ec:9a:c4:b0:e9:09:06:2c:40:47:b6:06:4e:fb:1d: 26:22:41:eb:01:22:4d:7a:9d:10:73:45:ae:ba:21:55:2e:62: fc:c0:a6:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwQUExMTAvBgNVBAUTKDYwQkFEQzA0MkMzNzdCODZDMERDOUVFQjg5NTEyNzI1 Q0UzRTIzMzYwHhcNMjUwNTEzMDIxNDUwWhcNMjUwNTIwMDIxNDUwWjAYMRYwFAYD VQQDEw02ODIyYWIxYi03MDZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4vh3U4y7c9habCDlDd+ILZO8W1a7doM26bECMFS6W9KTEDeBrnZSrO0rUKAp nXk3UiNxdw2JXrO+tFNOKe6WXxiQ2j1dr/HbrOCKBP9H7KOPhEHfimJdNy38KRmM JPxuAviyAJ2zTGrDzsSrbPXFZmJ1ZDDUoIk8KX/YpP8nhaxYzZc3SomXlmBZTU+A WoJQc/Va7TjXqbiTsWMCv5z2B9zWebSOyQSF1TGIkvLHKnb1i/+YSoMF/vPX2mjt Z1/4h4y4EDKcfE1m8QEhDTc+Hr9E1/J2YoGj+88RJA+favzIPB9gttdLH29qScmq uQ7zYUMn4ruT1y6XtMhzDRGkRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE2CoAM6 oTwK9V+AviShQ+e1YSQ2MB8GA1UdIwQYMBaAFGC63AQsN3uGwNye64lRJyXOPiM2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBBQS8yQzc1RkVDODdB M0MxMUVEODYxQjI5MzNDNEY5QUUwMi9ZTHJjQkN3M2U0YkEzSjdyaVZFbkpjNC1J elkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1lMcmNCQ3czZTRiQTNKN3JpVkVuSmM0LUl6WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBBQS8yQzc1RkVDODdBM0MxMUVEODYxQjI5MzNDNEY5QUUwMi9ZTHJjQkN3M2U0 YkEzSjdyaVZFbkpjNC1JelkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4fnbbu3E24/jY5SPNXAy4uBCgt7N9yBHwPv1q1UvMTg4LPKrHwG4/ BtVg45hMt4MWv5ISjYq1cZ4AIGQmdCqLzLQly1+hJt2YBo9LvDE3uh3HRlTHnQTN 3jhMhWuQyNH0uLPDYFMevO3H0EYy9NacWb6tBYYrqO7oF7iua5tkcmibfq6dRPfT fka/sHffHzo/XwztHVrEOhq87pBLslbKEg7cprqsvNppojQmUEGn6A01eOQ26hQO mHg0UaW+Cd836sNNut9S8DxFe6UY5D9+8TbH2HaOQ41J5qTsmsSw6QkGLEBHtgZO +x0mIkHrASJNep0Qc0WuuiFVLmL8wKa1 -----END CERTIFICATE-----Generated at Tue May 13 20:45:03 2025 by rpki-client