$ rpki-client -vvf rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft File: XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft (raw, json) Hash identifier: TgH6AkUkhDWiE5IPJUi8deeyJMDXeJceKAINYamE+o0= Subject key identifier: 13:18:3B:12:3A:83:20:E0:10:C2:5F:25:36:26:92:CA:EE:22:7C:1D Authority key identifier: 5E:84:25:16:65:70:4C:DD:DF:2F:3F:9B:E8:2E:31:FF:B0:74:A5:8E Certificate issuer: /CN=A9127EAD/serialNumber=5E84251665704CDDDF2F3F9BE82E31FFB074A58E Certificate serial: 07DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XoQlFmVwTN3fLz-b6C4x_7B0pY4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft Manifest number: 07D7 Signing time: Thu 24 Apr 2025 20:52:15 +0000 Manifest this update: Thu 24 Apr 2025 20:52:14 +0000 Manifest next update: Thu 01 May 2025 20:52:14 +0000 Files and hashes: 1: XoQlFmVwTN3fLz-b6C4x_7B0pY4.crl (hash: yBW68zJur8PUMCpCbla9k+IRJo9ic7CYflG2txlVE7Y=) 2: 6CAC2064EA2211EA9C2F064AC4F9AE02.roa (hash: 8MctpWGtN4TB9CaLOxK2lVRFp6WdGzpjql1y9Hz4Ctk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.crl rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XoQlFmVwTN3fLz-b6C4x_7B0pY4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:52:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2013 (0x7dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127EAD, serialNumber=5E84251665704CDDDF2F3F9BE82E31FFB074A58E Validity Not Before: Apr 24 20:52:14 2025 GMT Not After : May 1 20:52:14 2025 GMT Subject: CN=680aa47f-077b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:08:e5:84:c5:10:96:b5:6e:52:34:bc:c9:f1: 5f:9f:15:03:2d:1f:d2:63:98:dc:19:8a:93:cc:17: f9:f3:38:14:df:e4:dd:6a:b9:87:f0:fe:08:d9:78: f0:5b:5a:e3:46:e7:f5:09:17:d5:d0:ba:60:4f:6f: f9:23:ed:03:d1:e9:27:70:cd:25:8e:c0:70:8c:c7: 63:b8:eb:36:d1:12:4c:85:bb:6d:20:12:28:c5:bd: ac:95:1d:e7:b9:a5:c7:31:b2:36:1c:53:3a:f1:b7: 7f:54:33:95:a3:d5:51:9e:bc:c0:11:65:15:e1:fd: 4b:59:62:99:ea:85:2f:bc:a1:6f:69:49:0a:b5:b2: 86:7a:ad:2b:06:ef:22:19:95:d7:47:6e:12:f4:db: ef:b4:5d:6c:c3:69:b3:03:97:c3:85:1f:f6:d2:8e: af:16:59:ee:e1:66:4a:dc:c1:1f:ba:8c:0e:10:8f: 82:a5:f2:1c:e5:c9:b2:d2:26:67:88:cf:a2:e8:9b: 22:14:8d:03:28:b6:33:2e:d2:9a:f4:93:7b:68:d3: 34:d6:a7:0f:72:db:c3:bb:6f:cd:aa:32:dd:f0:75: f3:e3:3a:67:d4:5d:b6:68:b0:33:b1:66:2c:7e:13: d4:bb:98:76:98:9f:ce:57:49:29:64:4c:d4:aa:52: e9:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:18:3B:12:3A:83:20:E0:10:C2:5F:25:36:26:92:CA:EE:22:7C:1D X509v3 Authority Key Identifier: keyid:5E:84:25:16:65:70:4C:DD:DF:2F:3F:9B:E8:2E:31:FF:B0:74:A5:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XoQlFmVwTN3fLz-b6C4x_7B0pY4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:66:78:d7:bf:83:5e:9e:a3:a5:6b:d7:4f:90:f6:f4:b2:32: 2b:9d:2d:dd:59:10:91:cb:83:e2:b3:ad:24:28:00:37:17:19: e5:f4:a4:33:e7:dc:e2:27:2b:c8:f6:fa:0e:d6:b4:9f:a2:12: 98:06:6d:67:a7:01:15:02:bb:57:6e:b8:bb:be:70:34:48:39: 8b:b2:ab:2c:91:2f:3f:cf:2b:5e:19:17:4b:9e:7c:4a:19:27: 20:c8:bc:85:83:72:89:c3:a7:85:3d:9f:4c:1c:11:d3:65:35: 0f:aa:24:1c:ac:98:3e:33:8f:9e:8f:22:6f:f1:ed:b5:5e:32: 1e:11:89:e7:6b:61:79:f7:73:28:d8:9e:30:b2:d0:b4:32:1e: be:db:23:76:33:5c:e3:bb:16:d1:fb:ad:f1:53:ad:f4:63:0a: 91:11:ab:54:d7:98:95:7e:1d:49:a5:99:7f:24:16:3c:04:59: 77:c1:51:97:86:85:3e:d7:08:c6:1c:ba:18:06:5f:47:b6:e9: a2:6d:c1:b5:6a:d8:3e:60:1b:30:0f:79:82:9f:8e:9c:6f:56: a7:c0:eb:91:22:c8:b1:24:ff:63:65:d7:d9:1d:ca:89:cd:1f: a0:f3:35:d7:a6:6c:c7:ae:b0:45:80:aa:fc:1d:c6:cb:fb:b6: 2c:ae:34:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB90wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjdFQUQxMTAvBgNVBAUTKDVFODQyNTE2NjU3MDRDRERERjJGM0Y5QkU4MkUzMUZG QjA3NEE1OEUwHhcNMjUwNDI0MjA1MjE0WhcNMjUwNTAxMjA1MjE0WjAYMRYwFAYD VQQDEw02ODBhYTQ3Zi0wNzdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwQjlhMUQlrVuUjS8yfFfnxUDLR/SY5jcGYqTzBf58zgU3+TdarmH8P4I2Xjw W1rjRuf1CRfV0LpgT2/5I+0D0ekncM0ljsBwjMdjuOs20RJMhbttIBIoxb2slR3n uaXHMbI2HFM68bd/VDOVo9VRnrzAEWUV4f1LWWKZ6oUvvKFvaUkKtbKGeq0rBu8i GZXXR24S9NvvtF1sw2mzA5fDhR/20o6vFlnu4WZK3MEfuowOEI+CpfIc5cmy0iZn iM+i6JsiFI0DKLYzLtKa9JN7aNM01qcPctvDu2/NqjLd8HXz4zpn1F22aLAzsWYs fhPUu5h2mJ/OV0kpZEzUqlLpRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBMYOxI6 gyDgEMJfJTYmksruInwdMB8GA1UdIwQYMBaAFF6EJRZlcEzd3y8/m+guMf+wdKWO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyN0VBRC9FOUI3MDY2NkVB MjAxMUVBOUNCRkFENDhDNEY5QUUwMi9Yb1FsRm1Wd1ROM2ZMei1iNkM0eF83QjBw WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hvUWxGbVZ3VE4zZkx6LWI2QzR4XzdCMHBZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy N0VBRC9FOUI3MDY2NkVBMjAxMUVBOUNCRkFENDhDNEY5QUUwMi9Yb1FsRm1Wd1RO M2ZMei1iNkM0eF83QjBwWTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAZnjXv4NenqOla9dPkPb0sjIrnS3dWRCRy4Pis60kKAA3Fxnl9KQz 59ziJyvI9voO1rSfohKYBm1npwEVArtXbri7vnA0SDmLsqsskS8/zyteGRdLnnxK GScgyLyFg3KJw6eFPZ9MHBHTZTUPqiQcrJg+M4+ejyJv8e21XjIeEYnna2F593Mo 2J4wstC0Mh6+2yN2M1zjuxbR+63xU630YwqREatU15iVfh1JpZl/JBY8BFl3wVGX hoU+1wjGHLoYBl9HtumibcG1atg+YBswD3mCn46cb1anwOuRIsixJP9jZdfZHcqJ zR+g8zXXpmzHrrBFgKr8HcbL+7YsrjTA -----END CERTIFICATE-----Generated at Sat Apr 26 05:27:41 2025 by rpki-client