$ rpki-client -vvf rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.mft File: Xtho2ocq-NaWpcGp-ngp9lJzynk.mft (raw, json) Hash identifier: epIuFXeewaZadx21I6ZdMV0Xv+zL2z2Ui7zDXWnxqOk= Subject key identifier: 60:60:82:F4:64:45:47:E1:6B:6B:E5:5C:58:D8:A8:41:BB:E8:3E:4E Authority key identifier: 5E:D8:68:DA:87:2A:F8:D6:96:A5:C1:A9:FA:78:29:F6:52:73:CA:79 Certificate issuer: /CN=A9119B43/serialNumber=5ED868DA872AF8D696A5C1A9FA7829F65273CA79 Certificate serial: 0463 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xtho2ocq-NaWpcGp-ngp9lJzynk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.mft Manifest number: 045B Signing time: Thu 24 Apr 2025 23:57:13 +0000 Manifest this update: Thu 24 Apr 2025 23:57:13 +0000 Manifest next update: Thu 01 May 2025 23:57:13 +0000 Files and hashes: 1: Xtho2ocq-NaWpcGp-ngp9lJzynk.crl (hash: 3DyI9zD35JbTiLidOSf3ANFeH5KrwIJPVHrZAXajKSU=) 2: 6C27C19E4BFA11ECA6797F6DC4F9AE02.roa (hash: 9zlcNMp71CcrKhJ6RcgbQ3pW8nUmE/ShM6R3qPGEpIM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.crl rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xtho2ocq-NaWpcGp-ngp9lJzynk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:57:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1123 (0x463) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119B43, serialNumber=5ED868DA872AF8D696A5C1A9FA7829F65273CA79 Validity Not Before: Apr 24 23:57:13 2025 GMT Not After : May 1 23:57:13 2025 GMT Subject: CN=680acfd9-05bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:3f:62:a6:55:2a:7e:71:50:71:d4:b3:06:c1: 47:76:b6:52:44:2f:02:ea:2a:86:59:b9:4d:d2:45: 09:68:52:d9:f9:c5:dc:ce:7f:72:a2:37:7a:80:42: 33:b6:81:6a:7f:69:1e:43:ad:b6:86:86:0e:68:fc: 02:88:dd:d4:79:15:8d:0b:46:69:e9:dc:47:0d:d3: 5b:56:d9:ba:4c:b7:ca:d2:84:6d:94:6c:99:a9:8d: 66:24:73:a6:2a:7c:8e:73:34:8b:4f:c3:3b:3e:e0: 18:a5:e6:ef:ac:0d:32:90:05:d0:1e:48:09:b6:8f: 87:fd:82:c8:b1:63:fd:0d:20:08:bb:80:eb:f5:02: 0b:54:0a:d1:6f:27:d9:73:47:42:d5:8e:db:04:75: 62:fa:9f:3e:66:8b:8b:86:dc:0c:73:57:bd:f3:15: 24:e4:ee:d8:f3:0c:b2:41:75:2a:5b:5f:fb:7c:dd: 1c:32:06:5d:b1:cd:be:e7:8d:ec:89:a2:53:9e:2f: 00:dd:40:97:29:b7:3e:5a:49:67:8e:bb:bb:42:70: ff:c4:cf:67:d9:29:64:92:34:df:27:3c:28:47:43: cd:74:6c:04:a0:4f:4e:27:9d:7c:4b:16:25:18:f7: 5d:0b:75:56:8d:02:92:1b:37:dc:41:5d:8b:53:d4: 49:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:60:82:F4:64:45:47:E1:6B:6B:E5:5C:58:D8:A8:41:BB:E8:3E:4E X509v3 Authority Key Identifier: keyid:5E:D8:68:DA:87:2A:F8:D6:96:A5:C1:A9:FA:78:29:F6:52:73:CA:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xtho2ocq-NaWpcGp-ngp9lJzynk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:fe:88:99:9c:4f:36:20:f0:25:f9:70:2c:78:71:20:e3:96: e2:ba:8e:19:fa:5e:55:7e:fe:8f:f9:07:a5:10:e7:16:db:ef: 09:74:0f:f0:1e:89:d8:37:2c:c9:ca:a7:4d:3b:64:4a:6f:b6: b3:8e:c1:08:b1:7e:58:1e:bc:6e:fc:d3:51:dc:32:1c:dd:67: 63:d6:dd:ae:60:fe:72:bd:fb:fb:a4:a8:2e:b8:a1:be:62:3f: b8:06:a3:9c:6e:40:ee:3e:98:73:fa:8c:e5:b6:ec:15:ba:1d: f0:e6:19:ff:b4:22:db:4d:9b:95:f9:3e:88:fd:e6:40:fa:27: 10:21:6f:7d:6a:11:23:15:45:c4:31:5a:e4:7c:51:61:ec:7c: 71:f7:e4:84:54:83:75:42:63:5c:af:18:95:11:ea:7e:6f:4d: 61:d2:6e:f0:02:a8:0d:09:b3:c6:a4:a2:91:90:4a:71:64:3d: 57:f9:24:d2:40:42:05:ff:59:5d:ee:1a:77:fd:76:c2:75:ce: fc:e4:b5:e2:9f:5f:86:cd:90:75:e8:5b:01:0d:d0:b8:e2:43: 49:ad:17:bb:44:84:8c:63:84:25:da:fd:98:a8:44:1e:d1:8d: 51:2b:e8:73:4a:02:d7:99:b3:41:ce:f8:05:34:15:0f:33:94: 4e:cd:3f:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlCNDMxMTAvBgNVBAUTKDVFRDg2OERBODcyQUY4RDY5NkE1QzFBOUZBNzgyOUY2 NTI3M0NBNzkwHhcNMjUwNDI0MjM1NzEzWhcNMjUwNTAxMjM1NzEzWjAYMRYwFAYD VQQDEw02ODBhY2ZkOS0wNWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1z9iplUqfnFQcdSzBsFHdrZSRC8C6iqGWblN0kUJaFLZ+cXczn9yojd6gEIz toFqf2keQ622hoYOaPwCiN3UeRWNC0Zp6dxHDdNbVtm6TLfK0oRtlGyZqY1mJHOm KnyOczSLT8M7PuAYpebvrA0ykAXQHkgJto+H/YLIsWP9DSAIu4Dr9QILVArRbyfZ c0dC1Y7bBHVi+p8+ZouLhtwMc1e98xUk5O7Y8wyyQXUqW1/7fN0cMgZdsc2+543s iaJTni8A3UCXKbc+Wklnjru7QnD/xM9n2SlkkjTfJzwoR0PNdGwEoE9OJ518SxYl GPddC3VWjQKSGzfcQV2LU9RJQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGBggvRk RUfha2vlXFjYqEG76D5OMB8GA1UdIwQYMBaAFF7YaNqHKvjWlqXBqfp4KfZSc8p5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOUI0My9FNUI4Mzk4MjRC M0ExMUVDOTkyRTgxNTBDNEY5QUUwMi9YdGhvMm9jcS1OYVdwY0dwLW5ncDlsSnp5 bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h0aG8yb2NxLU5hV3BjR3AtbmdwOWxKenluay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OUI0My9FNUI4Mzk4MjRCM0ExMUVDOTkyRTgxNTBDNEY5QUUwMi9YdGhvMm9jcS1O YVdwY0dwLW5ncDlsSnp5bmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBF/oiZnE82IPAl+XAseHEg45biuo4Z+l5Vfv6P+QelEOcW2+8JdA/w HonYNyzJyqdNO2RKb7azjsEIsX5YHrxu/NNR3DIc3Wdj1t2uYP5yvfv7pKguuKG+ Yj+4BqOcbkDuPphz+ozltuwVuh3w5hn/tCLbTZuV+T6I/eZA+icQIW99ahEjFUXE MVrkfFFh7Hxx9+SEVIN1QmNcrxiVEep+b01h0m7wAqgNCbPGpKKRkEpxZD1X+STS QEIF/1ld7hp3/XbCdc785LXin1+GzZB16FsBDdC44kNJrRe7RISMY4Ql2v2YqEQe 0Y1RK+hzSgLXmbNBzvgFNBUPM5ROzT+f -----END CERTIFICATE-----Generated at Sat Apr 26 04:22:52 2025 by rpki-client