$ rpki-client -vvf rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft File: XfVm12I2fCjH8_ElYbRxa4yhuWY.mft (raw, json) Hash identifier: xbU+EwR3GZsbaTxq3yGRSTm/Lsa8lsXcL32UNdhAcVw= Subject key identifier: 9A:6F:2E:32:DA:55:A2:98:09:F1:60:D0:A5:D0:49:25:4C:D6:09:FE Authority key identifier: 5D:F5:66:D7:62:36:7C:28:C7:F3:F1:25:61:B4:71:6B:8C:A1:B9:66 Certificate issuer: /CN=A9133B47/serialNumber=5DF566D762367C28C7F3F12561B4716B8CA1B966 Certificate serial: B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfVm12I2fCjH8_ElYbRxa4yhuWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft Manifest number: B5 Signing time: Fri 25 Apr 2025 05:00:58 +0000 Manifest this update: Fri 25 Apr 2025 05:00:57 +0000 Manifest next update: Fri 02 May 2025 05:00:57 +0000 Files and hashes: 1: XfVm12I2fCjH8_ElYbRxa4yhuWY.crl (hash: sjzsGQFmncPnhmFU6dV1pDsdCvJbWvTo6z6872cvsLg=) 2: 23B1A0120FA511EFB28F5235C4F9AE02.roa (hash: hXpBoYToApPmmdPekjKleadge49SIJY0fjcaISdG6yE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.crl rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfVm12I2fCjH8_ElYbRxa4yhuWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 183 (0xb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133B47, serialNumber=5DF566D762367C28C7F3F12561B4716B8CA1B966 Validity Not Before: Apr 25 05:00:57 2025 GMT Not After : May 2 05:00:57 2025 GMT Subject: CN=680b1709-6177 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f2:ae:0a:01:44:5c:68:bb:ce:99:77:d2:62: c3:a8:d3:83:9f:06:09:99:fb:3f:d3:f9:4d:ed:72: ed:97:03:2a:17:a8:83:85:2c:19:37:16:51:9b:e1: bc:52:9e:04:e5:b3:3f:ed:cf:80:82:fd:c6:87:6f: 7d:92:66:64:f4:a0:f3:90:22:ed:48:18:c1:04:52: 76:57:70:93:58:88:c8:ad:9b:fe:70:16:3b:b6:cc: 9c:ee:fe:22:f9:61:d1:10:d2:6d:50:53:e4:14:e3: 66:c4:2e:47:88:ce:94:54:8d:43:0a:d3:7e:a1:60: 11:64:be:f2:a8:3d:63:21:3c:10:48:12:52:5e:1f: 37:80:dd:84:82:7e:5f:8c:c0:41:3d:fe:21:6e:e7: 33:9f:ff:7f:b0:c7:6f:e3:a7:96:fc:dc:97:a8:68: d6:09:20:78:c9:b6:9c:15:43:a1:e8:57:d3:b6:10: a4:17:2c:e8:3a:03:d7:7c:23:2c:c7:58:70:41:ee: d0:b6:2b:72:b7:a1:1e:2b:dd:14:ed:08:a3:6c:6b: 0c:74:52:97:9b:38:13:a6:8a:60:99:83:b4:48:29: ab:22:62:58:d4:1c:a3:e9:89:cf:46:bc:45:bc:a7: 0b:ff:ea:05:8a:72:a3:93:4f:d2:79:02:71:7d:4b: 7e:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:6F:2E:32:DA:55:A2:98:09:F1:60:D0:A5:D0:49:25:4C:D6:09:FE X509v3 Authority Key Identifier: keyid:5D:F5:66:D7:62:36:7C:28:C7:F3:F1:25:61:B4:71:6B:8C:A1:B9:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfVm12I2fCjH8_ElYbRxa4yhuWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:e3:d1:ec:38:64:42:7c:d1:0b:a0:23:0c:72:0f:8d:95:d9: 9c:aa:5e:5b:c1:b0:09:d0:95:b5:d3:79:03:4c:3c:de:fa:da: 48:77:84:bf:69:9a:eb:ac:2c:53:00:9c:a6:fe:d2:25:21:41: c6:89:72:57:cc:10:2c:40:98:76:3b:0c:c2:1c:f2:d2:68:57: e2:5c:7e:8d:fe:b9:e2:cc:70:ef:0a:37:aa:46:e7:72:04:aa: dc:5d:83:c2:e1:db:70:c6:4e:55:67:b0:a2:ee:6f:2c:ab:b5: 1e:de:f6:cb:43:27:4e:8b:87:84:9a:95:23:d5:76:55:84:92: b9:27:e0:97:bc:ab:3c:95:a8:8f:e0:90:70:fb:71:27:fc:66: ae:ac:72:bf:22:bd:a6:51:f8:95:c9:a2:6c:b7:f8:29:7b:0c: 1c:e0:89:60:b9:75:c2:5b:fc:33:1b:99:0b:c7:08:83:3f:01: 74:ca:bb:a3:87:c4:61:3f:f1:14:e9:7b:a4:51:3c:d4:30:e8: b7:cb:bd:ef:5f:ad:23:70:3a:b1:a9:87:27:4a:78:af:14:f0: 34:c0:d7:06:e5:ec:c0:50:f8:4d:89:35:33:7d:bf:9e:65:38: 3c:f0:48:20:0d:c2:6d:dc:66:07:6b:1f:4b:e4:6e:9d:ed:47: 82:f7:24:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzNCNDcxMTAvBgNVBAUTKDVERjU2NkQ3NjIzNjdDMjhDN0YzRjEyNTYxQjQ3MTZC OENBMUI5NjYwHhcNMjUwNDI1MDUwMDU3WhcNMjUwNTAyMDUwMDU3WjAYMRYwFAYD VQQDEw02ODBiMTcwOS02MTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/KuCgFEXGi7zpl30mLDqNODnwYJmfs/0/lN7XLtlwMqF6iDhSwZNxZRm+G8 Up4E5bM/7c+Agv3Gh299kmZk9KDzkCLtSBjBBFJ2V3CTWIjIrZv+cBY7tsyc7v4i +WHRENJtUFPkFONmxC5HiM6UVI1DCtN+oWARZL7yqD1jITwQSBJSXh83gN2Egn5f jMBBPf4hbuczn/9/sMdv46eW/NyXqGjWCSB4ybacFUOh6FfTthCkFyzoOgPXfCMs x1hwQe7Qtityt6EeK90U7QijbGsMdFKXmzgTpopgmYO0SCmrImJY1Byj6YnPRrxF vKcL/+oFinKjk0/SeQJxfUt+1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJpvLjLa VaKYCfFg0KXQSSVM1gn+MB8GA1UdIwQYMBaAFF31ZtdiNnwox/PxJWG0cWuMoblm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzM0I0Ny84NzFCOTI5NDBG QTQxMUVGQTFBMTY5MzRDNEY5QUUwMi9YZlZtMTJJMmZDakg4X0VsWWJSeGE0eWh1 V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hmVm0xMkkyZkNqSDhfRWxZYlJ4YTR5aHVXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz M0I0Ny84NzFCOTI5NDBGQTQxMUVGQTFBMTY5MzRDNEY5QUUwMi9YZlZtMTJJMmZD akg4X0VsWWJSeGE0eWh1V1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAk49HsOGRCfNELoCMMcg+Nldmcql5bwbAJ0JW103kDTDze+tpId4S/ aZrrrCxTAJym/tIlIUHGiXJXzBAsQJh2OwzCHPLSaFfiXH6N/rnizHDvCjeqRudy BKrcXYPC4dtwxk5VZ7Ci7m8sq7Ue3vbLQydOi4eEmpUj1XZVhJK5J+CXvKs8laiP 4JBw+3En/GaurHK/Ir2mUfiVyaJst/gpewwc4IlguXXCW/wzG5kLxwiDPwF0yruj h8RhP/EU6XukUTzUMOi3y73vX60jcDqxqYcnSnivFPA0wNcG5ezAUPhNiTUzfb+e ZTg88EggDcJt3GYHax9L5G6d7UeC9ySO -----END CERTIFICATE-----Generated at Sat Apr 26 04:37:33 2025 by rpki-client