$ rpki-client -vvf rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft File: tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft (raw, json) Hash identifier: NY4Id2Y2jhjdQN7J7AGgff0KM3ymp41gVbnLMM5Hhr8= Subject key identifier: E6:F9:91:C0:41:85:11:F0:6D:1C:F5:D9:5D:C3:DB:13:3F:8F:3F:28 Authority key identifier: B5:7B:20:7F:0E:1C:1B:A8:73:A0:79:35:82:C7:A8:13:40:98:67:4C Certificate issuer: /CN=A9131711/serialNumber=B57B207F0E1C1BA873A0793582C7A8134098674C Certificate serial: EB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tXsgfw4cG6hzoHk1gseoE0CYZ0w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft Manifest number: E6 Signing time: Fri 25 Apr 2025 04:31:28 +0000 Manifest this update: Fri 25 Apr 2025 04:31:27 +0000 Manifest next update: Fri 02 May 2025 04:31:27 +0000 Files and hashes: 1: tXsgfw4cG6hzoHk1gseoE0CYZ0w.crl (hash: rzba+WAj130T8/U14KQ/GSpgFHH1j9+1Hqby8BhSVUg=) 2: B2B006BAE3E911EEB845B268C4F9AE02.roa (hash: fj5an6uMsWFMPTZr6PrKep91XRX3rQER6UmH0deptJM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.crl rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tXsgfw4cG6hzoHk1gseoE0CYZ0w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:31:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 235 (0xeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131711, serialNumber=B57B207F0E1C1BA873A0793582C7A8134098674C Validity Not Before: Apr 25 04:31:27 2025 GMT Not After : May 2 04:31:27 2025 GMT Subject: CN=680b1020-6c30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:8f:06:17:5c:65:10:6f:4a:dd:df:26:24:fc: a9:52:0d:28:8d:d5:07:f8:da:70:70:03:39:46:89: 57:8e:82:65:84:46:b5:3b:66:c9:a4:6f:9d:4a:39: c0:78:4f:f6:84:69:83:69:2b:f2:b3:da:d2:05:61: 41:3b:de:e1:97:ff:50:15:c7:35:74:36:f8:39:ad: e4:be:ae:f4:50:c2:bd:ca:98:94:1a:e3:98:c8:fa: ef:0e:cf:8d:ac:02:71:7e:8c:50:13:4a:ae:ba:bf: 3d:18:5d:b3:51:92:ca:f8:af:2c:8e:ea:6d:53:91: 56:3d:9f:73:3d:25:bf:5b:71:b4:b1:96:24:3e:b8: 37:33:17:9b:35:bb:5c:9f:9e:fe:e9:0d:1d:94:1b: 1a:b2:55:37:7d:51:7a:ff:fa:de:1c:9c:de:a7:10: 75:47:cc:fb:18:4d:22:5e:d8:cc:39:bf:7b:0c:b0: f0:be:e9:b7:b1:13:4e:30:77:e8:30:26:0a:9d:e3: 41:45:97:e4:b3:62:56:f7:f3:37:02:b6:8a:b3:81: 20:64:6a:1a:a1:73:47:0c:cd:4e:3b:05:d3:3f:f2: 01:ac:18:60:e8:e8:da:d5:e0:81:af:c6:60:a7:d4: 91:5c:92:ae:89:a8:22:cd:a3:8c:2d:4d:18:60:e2: 4c:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:F9:91:C0:41:85:11:F0:6D:1C:F5:D9:5D:C3:DB:13:3F:8F:3F:28 X509v3 Authority Key Identifier: keyid:B5:7B:20:7F:0E:1C:1B:A8:73:A0:79:35:82:C7:A8:13:40:98:67:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tXsgfw4cG6hzoHk1gseoE0CYZ0w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:56:56:23:5c:50:d3:ae:f7:3f:b5:b5:84:ec:0f:69:fa:46: cf:62:c1:a9:c5:d3:a2:04:04:eb:17:12:58:67:d1:c2:b5:50: b8:66:12:05:2d:68:bf:8a:ad:f7:93:d9:16:8b:84:b2:24:33: 3e:df:d8:8e:c3:9b:e6:1d:41:e8:2e:18:29:d6:09:7c:61:8e: d7:76:21:4f:f2:ea:35:17:07:5d:53:83:9a:89:d3:b9:3d:b7: 2f:86:bf:b4:11:e2:7f:82:72:f6:8d:96:a2:4e:85:2e:ab:03: ed:04:6f:9b:01:99:c8:95:b3:30:dd:e9:c7:d4:da:08:62:27: 3b:27:65:0a:68:cc:1c:4b:79:55:2f:3e:79:33:35:0f:7a:39: 03:10:d3:95:7a:72:9a:77:f0:02:58:14:86:db:14:e4:9f:5b: ab:95:3c:54:cf:3b:fb:22:61:c2:23:bb:ef:82:18:35:ac:a4: e2:3e:96:3d:7a:dd:31:ef:fb:89:62:42:58:bf:35:95:0d:4c: eb:40:97:2c:8d:85:82:7f:d5:1c:e2:b5:93:cf:5f:6d:1f:66: d8:a2:b7:40:43:fd:f8:79:53:c9:77:d6:a3:00:bc:f1:59:53: ea:ae:74:f8:3c:dc:7c:13:42:d2:4b:f4:c9:39:9c:f2:8d:d1: 30:d9:b2:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE3MTExMTAvBgNVBAUTKEI1N0IyMDdGMEUxQzFCQTg3M0EwNzkzNTgyQzdBODEz NDA5ODY3NEMwHhcNMjUwNDI1MDQzMTI3WhcNMjUwNTAyMDQzMTI3WjAYMRYwFAYD VQQDEw02ODBiMTAyMC02YzMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwo8GF1xlEG9K3d8mJPypUg0ojdUH+NpwcAM5RolXjoJlhEa1O2bJpG+dSjnA eE/2hGmDaSvys9rSBWFBO97hl/9QFcc1dDb4Oa3kvq70UMK9ypiUGuOYyPrvDs+N rAJxfoxQE0quur89GF2zUZLK+K8sjuptU5FWPZ9zPSW/W3G0sZYkPrg3MxebNbtc n57+6Q0dlBsaslU3fVF6//reHJzepxB1R8z7GE0iXtjMOb97DLDwvum3sRNOMHfo MCYKneNBRZfks2JW9/M3AraKs4EgZGoaoXNHDM1OOwXTP/IBrBhg6Oja1eCBr8Zg p9SRXJKuiagizaOMLU0YYOJMmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOb5kcBB hRHwbRz12V3D2xM/jz8oMB8GA1UdIwQYMBaAFLV7IH8OHBuoc6B5NYLHqBNAmGdM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTcxMS85RkREMkRBMEM5 OTExMUVFODkxQkE0MTlDNEY5QUUwMi90WHNnZnc0Y0c2aHpvSGsxZ3Nlb0UwQ1la MHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RYc2dmdzRjRzZoem9IazFnc2VvRTBDWVowdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTcxMS85RkREMkRBMEM5OTExMUVFODkxQkE0MTlDNEY5QUUwMi90WHNnZnc0Y0c2 aHpvSGsxZ3Nlb0UwQ1laMHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByVlYjXFDTrvc/tbWE7A9p+kbPYsGpxdOiBATrFxJYZ9HCtVC4ZhIF LWi/iq33k9kWi4SyJDM+39iOw5vmHUHoLhgp1gl8YY7XdiFP8uo1FwddU4OaidO5 Pbcvhr+0EeJ/gnL2jZaiToUuqwPtBG+bAZnIlbMw3enH1NoIYic7J2UKaMwcS3lV Lz55MzUPejkDENOVenKad/ACWBSG2xTkn1urlTxUzzv7ImHCI7vvghg1rKTiPpY9 et0x7/uJYkJYvzWVDUzrQJcsjYWCf9Uc4rWTz19tH2bYordAQ/34eVPJd9ajALzx WVPqrnT4PNx8E0LSS/TJOZzyjdEw2bLB -----END CERTIFICATE-----Generated at Sat Apr 26 15:04:40 2025 by rpki-client